$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907c1477-ed7a-4c00-a9b3-48ab045038dc.roa File: 907c1477-ed7a-4c00-a9b3-48ab045038dc.roa (raw, json) Hash identifier: HgIe4Y4H3l1QMju0fKHVZ9LZuLY9RbkcNAKhFhoh6xk= Subject key identifier: 84:F9:99:18:3F:CF:13:31:53:67:C7:C6:32:04:05:64:0C:6E:D5:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C154AE775585DA38AAE3C349CD312C32F292AF1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907c1477-ed7a-4c00-a9b3-48ab045038dc.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 143.227.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:15:4a:e7:75:58:5d:a3:8a:ae:3c:34:9c:d3:12:c3:2f:29:2a:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=45c6656530e51a39c972608de03cffe7c2f433c999ead8ff6fe33dafc29471b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a1:fd:6e:39:3e:20:3b:df:99:eb:70:fa:10: 41:4c:15:29:b8:cb:90:25:db:32:79:99:e7:d9:af: e7:c3:f6:a1:a5:a0:9d:25:42:14:ad:6e:be:bb:20: 6a:31:a7:37:dc:71:d0:72:25:bf:88:e7:fc:fc:89: eb:bf:e8:ee:49:ab:9e:13:5a:2c:ef:39:f0:ce:65: 4b:b1:ec:e1:8a:61:cc:9a:c4:4b:cd:f3:75:7d:ce: 4e:d3:7f:48:58:21:e6:93:7f:82:fd:95:d5:09:c1: b5:1e:27:55:41:7c:93:ef:2c:11:f0:3d:e7:e9:d0: df:92:89:1a:f8:39:07:7a:3d:9c:f5:4b:ca:58:db: 82:74:7f:26:22:4f:58:5a:39:23:13:ca:0a:b0:e8: ca:d5:24:c1:0c:ee:e9:85:94:d1:93:bb:ee:81:a0: a1:c1:08:6a:38:a3:0a:9a:cf:52:9b:01:f2:36:88: 7a:5d:b7:7b:09:fd:4e:11:6f:72:c2:7a:5b:56:c0: 20:49:1c:ad:ef:87:5d:bf:d3:14:5f:7e:d0:2c:92: a4:c2:df:a9:f0:a1:7c:ba:8c:60:a9:5a:42:87:c6: ad:8d:62:5a:06:a0:b2:87:92:0d:38:63:53:97:bf: 08:cd:bc:04:36:14:ec:47:b3:de:a3:46:cf:f8:48: 0d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F9:99:18:3F:CF:13:31:53:67:C7:C6:32:04:05:64:0C:6E:D5:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907c1477-ed7a-4c00-a9b3-48ab045038dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.227.0.0/16 Signature Algorithm: sha256WithRSAEncryption 96:81:6a:45:39:df:c9:c1:cc:6c:be:8a:31:6e:29:a2:74:35: e0:32:32:f4:5e:9c:43:be:e8:12:57:35:ba:60:c6:60:79:18: 63:41:4e:db:85:f3:3f:42:5b:40:90:b8:87:18:98:7a:8d:68: 45:07:8a:9e:6e:7e:91:e3:b0:d3:17:6a:cb:4e:a4:ce:6b:da: d3:04:0b:e3:53:d4:7b:45:08:e7:2a:60:f9:9c:13:85:05:ad: c8:da:bd:a5:75:6c:34:1f:33:3e:37:28:e3:fa:29:93:77:d4: 25:c9:44:c3:8f:1b:76:de:b0:50:f5:b5:06:93:8b:96:9d:52: d3:d0:76:2b:26:ef:97:24:0c:e7:05:fa:89:22:5d:27:df:c6: 87:4d:17:cc:e4:fb:32:a9:44:c7:bc:85:bc:9d:37:43:87:b3: dc:a4:6b:e4:7d:20:ba:f1:e7:ea:3a:a7:e4:34:7e:3b:62:43: c4:06:87:2e:5a:f3:c3:29:64:95:75:ee:5b:e6:74:ca:4d:4b: f6:e1:d0:d2:6c:51:72:48:fa:f9:70:f7:09:57:f4:f8:4b:8e: 4d:bb:e0:0a:2d:b5:41:9d:a1:44:8b:f1:44:42:5f:10:94:58: 76:e6:5b:d1:7c:13:98:7c:55:12:3b:23:e4:68:73:06:fe:55: ab:10:54:52 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULBVK53VYXaOKrjw0nNMSwy8pKvEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NWM2NjU2NTMwZTUxYTM5Yzk3MjYwOGRlMDNjZmZlN2My ZjQzM2M5OTllYWQ4ZmY2ZmUzM2RhZmMyOTQ3MWI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeof1uOT4gO9+Z63D6EEFMFSm4y5Al2zJ5mefZr+fD9qGl oJ0lQhStbr67IGoxpzfccdByJb+I5/z8ieu/6O5Jq54TWizvOfDOZUux7OGKYcya xEvN83V9zk7Tf0hYIeaTf4L9ldUJwbUeJ1VBfJPvLBHwPefp0N+SiRr4OQd6PZz1 S8pY24J0fyYiT1haOSMTygqw6MrVJMEM7umFlNGTu+6BoKHBCGo4owqaz1KbAfI2 iHpdt3sJ/U4Rb3LCeltWwCBJHK3vh12/0xRfftAskqTC36nwoXy6jGCpWkKHxq2N YloGoLKHkg04Y1OXvwjNvAQ2FOxHs96jRs/4SA3lAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhPmZGD/PEzFTZ8fGMgQFZAxu1awwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkwN2MxNDc3LWVkN2EtNGMwMC1hOWIzLTQ4YWIwNDUwMzhkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCP4zANBgkqhkiG9w0BAQsFAAOCAQEAloFqRTnfycHMbL6KMW4ponQ14DIy 9F6cQ77oElc1umDGYHkYY0FO24XzP0JbQJC4hxiYeo1oRQeKnm5+keOw0xdqy06k zmva0wQL41PUe0UI5ypg+ZwThQWtyNq9pXVsNB8zPjco4/opk3fUJclEw48bdt6w UPW1BpOLlp1S09B2KybvlyQM5wX6iSJdJ9/Gh00XzOT7MqlEx7yFvJ03Q4ez3KRr 5H0guvHn6jqn5DR+O2JDxAaHLlrzwylklXXuW+Z0yk1L9uHQ0mxRckj6+XD3CVf0 +EuOTbvgCi21QZ2hRIvxREJfEJRYduZb0XwTmHxVEjsj5GhzBv5VqxBUUg== -----END CERTIFICATE-----Generated at Wed May 1 22:06:38 2024 by rpki-client on console-fra.rpki-client.org