$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d91aaa-a302-47ac-9ff3-22b5494654b8.roa File: 94d91aaa-a302-47ac-9ff3-22b5494654b8.roa (raw, json) Hash identifier: br+Ko3M4cWnQMmR+hArrCe1/8ggZcoh2Xh+HUjjP7PY= Subject key identifier: B6:39:0A:5C:92:07:21:6B:7A:6C:2F:D4:EE:28:D5:EE:14:C8:DA:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77418CF4128FFC06C02F76A4CAC6CCFA4622712D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d91aaa-a302-47ac-9ff3-22b5494654b8.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:41:8c:f4:12:8f:fc:06:c0:2f:76:a4:ca:c6:cc:fa:46:22:71:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=24c21e84fbecba7ffe77c60d0a5d4b9a84854999b323a3214d8e223dfa1ba808, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:42:43:a9:80:c2:18:cf:85:4d:17:fb:e6:f1: f0:8c:a8:17:e7:8a:95:d9:5d:b1:a6:b4:da:19:e6: f4:5e:07:c4:55:cb:4e:34:0a:8e:fa:0a:29:db:38: 43:b9:09:15:14:e3:d4:bd:d4:26:93:75:5e:11:2c: 80:84:c1:ed:48:ff:f2:da:33:27:2a:b8:72:97:cb: be:ad:77:18:a6:ea:02:db:f7:16:ac:c5:bf:8b:01: fe:8d:b3:52:ed:aa:0c:aa:e5:29:58:18:1c:62:87: bc:5b:6e:ca:b2:7f:7a:c0:b3:05:a6:b2:58:72:a2: 92:7d:09:72:46:5c:31:d3:75:60:56:4b:cf:72:ca: 53:f7:c2:bb:3c:a8:53:f2:cd:31:ad:52:ca:fa:40: fa:6a:ba:5f:21:5d:e5:9a:77:15:ff:4e:d4:3d:a8: 14:31:55:ac:d9:6f:1b:e9:3f:76:f7:69:c4:c5:34: f1:f4:be:87:af:b9:3f:9c:a8:05:07:68:32:83:56: 85:56:4d:f3:0f:48:ad:f0:a9:ea:d9:32:04:bd:13: e6:b0:a4:e9:4b:d1:ce:43:04:90:65:f9:24:8d:f7: 00:58:34:f6:af:f8:c5:e4:89:52:76:96:c4:c8:82: de:29:22:a9:c8:16:31:1f:db:2d:bc:1c:f0:25:7e: b0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:39:0A:5C:92:07:21:6B:7A:6C:2F:D4:EE:28:D5:EE:14:C8:DA:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d91aaa-a302-47ac-9ff3-22b5494654b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.115.0/24 Signature Algorithm: sha256WithRSAEncryption 79:5e:4d:78:bf:b1:b9:0e:e8:cc:fa:0b:29:1e:07:bd:be:75: 30:41:3d:ae:96:10:23:46:7b:62:84:98:48:b3:63:64:92:10: d6:fc:a6:57:9d:d9:81:51:09:f9:3c:31:f7:3f:c2:b7:fe:c7: bc:97:9b:76:d5:7a:c3:06:a8:a9:af:29:60:27:d5:d8:99:05: 81:aa:41:21:25:1d:04:27:1b:96:c3:8e:6d:94:58:75:04:bc: 7d:d1:19:7b:04:e9:c5:d2:56:ea:b6:ae:6b:a8:7a:c5:86:ae: 1d:44:eb:46:75:d3:a3:c5:32:fd:3a:5c:08:fb:a7:6f:55:cb: 36:8c:f5:89:af:eb:8d:99:5b:b8:bf:51:76:46:23:5a:9f:bf: d2:e4:7c:26:b1:42:3b:b7:c9:54:9c:cb:9e:d1:3d:52:a4:b1: ce:77:18:d6:11:48:c8:33:cf:8b:f7:f2:df:08:9d:89:93:47: 41:4b:ab:b1:78:38:a5:d5:df:fa:63:7a:83:a0:df:8d:fb:af: b7:aa:60:2f:79:19:50:28:dc:e9:7f:86:16:50:9b:c0:bf:b1: c3:36:8e:b1:f0:d2:31:62:f0:35:53:29:ca:6a:5d:42:2e:50: 84:a2:66:5c:b7:ee:af:a2:c8:8e:30:01:d3:80:41:87:ef:bf: 33:60:f1:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd0GM9BKP/AbAL3akysbM+kYicS0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNGMyMWU4NGZiZWNiYTdmZmU3N2M2MGQwYTVkNGI5YTg0 ODU0OTk5YjMyM2EzMjE0ZDhlMjIzZGZhMWJhODA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcQkOpgMIYz4VNF/vm8fCMqBfnipXZXbGmtNoZ5vReB8RV y040Co76CinbOEO5CRUU49S91CaTdV4RLICEwe1I//LaMycquHKXy76tdxim6gLb 9xasxb+LAf6Ns1Ltqgyq5SlYGBxih7xbbsqyf3rAswWmslhyopJ9CXJGXDHTdWBW S89yylP3wrs8qFPyzTGtUsr6QPpqul8hXeWadxX/TtQ9qBQxVazZbxvpP3b3acTF NPH0voevuT+cqAUHaDKDVoVWTfMPSK3wqerZMgS9E+awpOlL0c5DBJBl+SSN9wBY NPav+MXkiVJ2lsTIgt4pIqnIFjEf2y28HPAlfrC9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtjkKXJIHIWt6bC/U7ijV7hTI2kkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0ZDkxYWFhLWEzMDItNDdhYy05ZmYzLTIyYjU0OTQ2NTRiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HMwDQYJKoZIhvcNAQELBQADggEBAHleTXi/sbkO6Mz6CykeB72+dTBB Pa6WECNGe2KEmEizY2SSENb8pled2YFRCfk8Mfc/wrf+x7yXm3bVesMGqKmvKWAn 1diZBYGqQSElHQQnG5bDjm2UWHUEvH3RGXsE6cXSVuq2rmuoesWGrh1E60Z106PF Mv06XAj7p29VyzaM9Ymv642ZW7i/UXZGI1qfv9LkfCaxQju3yVScy57RPVKksc53 GNYRSMgzz4v38t8InYmTR0FLq7F4OKXV3/pjeoOg3437r7eqYC95GVAo3Ol/hhZQ m8C/scM2jrHw0jFi8DVTKcpqXUIuUISiZly37q+iyI4wAdOAQYfvvzNg8bI= -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:21 2024 by rpki-client on console-fra.rpki-client.org