$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa File: 972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa (raw, json) Hash identifier: AIFeJKA9OTPXhta5Ce/D4Wh7GbQkMbQ4QhrZTHBPYE0= Subject key identifier: 03:CC:0D:34:CF:19:3E:BE:2D:79:9B:43:A2:DA:C5:9A:F0:32:32:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7286CEA1030E3D7DB67119E0A5C907FC77446B9B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.239.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:86:ce:a1:03:0e:3d:7d:b6:71:19:e0:a5:c9:07:fc:77:44:6b:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=6abdb92e4f8b0f9be2a4d14520555c821a51162a5b1263138590af836880ffac, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7e:5e:39:86:d6:e1:b2:51:6c:85:99:86:34: ca:f4:63:3e:73:3f:bc:16:50:20:16:cd:79:99:70: 4c:de:de:93:01:ad:ae:7f:9a:aa:06:64:94:20:7c: 15:b0:d2:1f:4f:d7:43:12:c9:1d:21:a3:17:f7:73: 8a:0e:da:ce:4c:aa:10:25:7a:d5:2b:28:d8:5f:99: cd:64:c6:31:b0:88:5c:23:f0:bf:b0:ad:7f:9b:76: b6:00:88:9f:d1:98:67:28:7c:cb:51:3b:14:df:8b: 88:3d:df:b0:75:4f:c3:84:dc:bf:a7:d0:b1:94:8c: 7b:a7:f4:65:6a:10:d1:5a:bb:99:18:ba:f6:dd:e6: 8b:0a:da:ca:f6:cb:66:8d:7d:a4:1d:80:13:96:b3: 56:f4:c4:34:0d:f8:0a:c7:77:a7:f3:b3:02:a0:71: b4:f8:f1:ad:68:29:95:5a:a3:50:40:4e:42:c3:22: c4:38:1a:26:24:21:2b:f5:e7:a5:a5:3b:23:5f:0d: 36:10:87:d9:8b:2c:8c:69:29:e7:72:10:7c:35:b2: 1b:35:67:9c:36:a8:69:d5:cf:93:14:81:9f:0c:4b: 12:d4:ea:f2:f2:b3:11:61:86:30:8f:45:7e:cb:29: 50:27:a0:32:29:98:6d:a7:a0:d7:75:85:57:b3:48: 5e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CC:0D:34:CF:19:3E:BE:2D:79:9B:43:A2:DA:C5:9A:F0:32:32:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/972b83eb-d496-42ce-9c01-8ffb21ac19d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.239.0.0/16 Signature Algorithm: sha256WithRSAEncryption 59:e4:2c:2d:6f:7e:6a:a3:27:3f:52:07:3e:2f:c7:d9:92:37: c3:00:0a:a9:4c:e3:3d:02:dd:e9:7c:45:1d:c6:3f:b4:dd:c7: 47:85:46:af:47:be:00:c6:cf:6e:8a:5c:b6:18:a4:de:34:b1: 7c:d4:8e:0c:6a:67:d3:91:37:72:0d:cf:31:ae:42:74:91:d8: 43:23:27:69:45:05:66:fb:0c:db:17:4c:18:3f:85:64:ae:57: e2:eb:3f:dd:92:52:4f:38:68:08:bf:37:25:6c:82:19:00:93: a5:ed:f5:da:61:1a:a6:a9:bb:d8:f6:bc:b9:7e:48:f6:0a:57: 38:5f:94:70:d1:35:56:92:f4:5d:29:94:b6:f1:cd:4b:8b:e2: 62:f3:4a:ed:7c:20:7e:3d:36:b6:6a:3a:86:ff:f8:04:11:67: d6:84:60:f4:ef:d8:3b:fa:33:61:9e:45:88:1e:1f:f8:7b:bb: 67:80:b1:9d:46:3c:94:24:ec:f2:8d:ec:47:a4:ff:d9:28:a6: f9:fb:16:3b:fe:ef:0f:3c:f8:ca:08:e7:06:d1:4b:3e:2a:6e: 75:72:80:b2:80:ec:20:e8:00:ba:94:0f:7f:30:b1:b1:b8:49: b7:9c:c9:00:20:bf:47:c5:69:74:85:24:b0:ae:72:a4:1c:30: 96:71:4a:6f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcobOoQMOPX22cRngpckH/HdEa5swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWJkYjkyZTRmOGIwZjliZTJhNGQxNDUyMDU1NWM4MjFh NTExNjJhNWIxMjYzMTM4NTkwYWY4MzY4ODBmZmFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9fl45htbhslFshZmGNMr0Yz5zP7wWUCAWzXmZcEze3pMB ra5/mqoGZJQgfBWw0h9P10MSyR0hoxf3c4oO2s5MqhAletUrKNhfmc1kxjGwiFwj 8L+wrX+bdrYAiJ/RmGcofMtROxTfi4g937B1T8OE3L+n0LGUjHun9GVqENFau5kY uvbd5osK2sr2y2aNfaQdgBOWs1b0xDQN+ArHd6fzswKgcbT48a1oKZVao1BATkLD IsQ4GiYkISv156WlOyNfDTYQh9mLLIxpKedyEHw1shs1Z5w2qGnVz5MUgZ8MSxLU 6vLysxFhhjCPRX7LKVAnoDIpmG2noNd1hVezSF6NAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUA8wNNM8ZPr4teZtDotrFmvAyMiIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3MmI4M2ViLWQ0OTYtNDJjZS05YzAxLThmZmIyMWFjMTlkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo7zANBgkqhkiG9w0BAQsFAAOCAQEAWeQsLW9+aqMnP1IHPi/H2ZI3wwAK qUzjPQLd6XxFHcY/tN3HR4VGr0e+AMbPbopcthik3jSxfNSODGpn05E3cg3PMa5C dJHYQyMnaUUFZvsM2xdMGD+FZK5X4us/3ZJSTzhoCL83JWyCGQCTpe312mEapqm7 2Pa8uX5I9gpXOF+UcNE1VpL0XSmUtvHNS4viYvNK7Xwgfj02tmo6hv/4BBFn1oRg 9O/YO/ozYZ5FiB4f+Hu7Z4CxnUY8lCTs8o3sR6T/2Sim+fsWO/7vDzz4ygjnBtFL PipudXKAsoDsIOgAupQPfzCxsbhJt5zJACC/R8VpdIUksK5ypBwwlnFKbw== -----END CERTIFICATE-----Generated at Sat Apr 20 03:56:32 2024 by rpki-client on console-fra.rpki-client.org