$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa File: 9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa (raw, json) Hash identifier: c1I2OBUdfKKZQt/GGKdRYpreS/b7UjRt7b2sZtf3Zj8= Subject key identifier: 5D:FA:41:1D:B6:E1:9D:07:57:A6:54:8F:52:59:29:9C:D3:9D:DE:3D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B857D7A2A87997F629E5B56FC392CBBB416329B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 66.165.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:85:7d:7a:2a:87:99:7f:62:9e:5b:56:fc:39:2c:bb:b4:16:32:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=985114b409f766da13830b8649009d65c37b0ece606a69ca5232ad431156959a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c3:54:0d:d2:4a:91:20:f7:e2:e0:11:2f:bc: 65:3c:05:c7:2c:12:d9:3a:c1:85:ad:49:29:08:1a: 2c:8c:d5:fc:fc:a7:7e:7d:b0:7b:36:97:49:0d:1f: 8f:9f:b9:c3:93:c4:0c:ba:f6:6a:66:a6:42:1b:62: 7e:e5:70:5e:3b:db:37:6f:1c:68:26:e1:d3:cb:8f: 65:7f:52:9b:e4:19:05:86:7b:fc:f0:3e:7e:dc:f6: ce:c3:ca:6c:a0:54:ac:72:e5:8b:63:f5:45:bf:8a: fa:b4:2c:ea:af:41:21:d8:c2:4d:f0:2f:8f:db:9c: ca:09:0c:2f:8b:aa:23:14:15:3d:f2:f2:29:4e:11: cc:a4:62:76:24:3c:4d:39:d3:77:df:82:23:2f:e6: ee:ee:11:39:81:f4:64:7f:0d:4b:13:6d:62:97:14: 0c:2f:64:75:e7:56:30:67:94:8c:77:39:d5:26:07: 30:d2:cb:3a:4f:39:02:51:af:a8:ec:da:ba:db:2c: b1:77:d2:8c:76:37:44:a7:f8:10:8b:6e:ba:d9:a5: 7d:f4:8f:e8:a7:9e:3b:e9:1e:ad:6d:aa:f0:7b:14: f7:43:1a:2b:3d:5e:5d:b1:8b:cf:c3:84:29:f9:0e: c0:c6:db:c1:b7:6c:03:8b:4e:74:30:92:b8:55:90: 69:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:FA:41:1D:B6:E1:9D:07:57:A6:54:8F:52:59:29:9C:D3:9D:DE:3D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.165.64.0/18 Signature Algorithm: sha256WithRSAEncryption 86:73:30:a6:97:bd:60:4d:c7:24:fa:6b:30:00:c5:e2:66:ec: f8:4c:06:9b:5e:db:ae:60:7a:63:f0:a8:ab:05:fd:5e:ef:29: ba:03:00:c8:99:20:9f:ce:dc:3d:6f:ed:86:7f:4f:dd:2a:71: 8f:ec:1b:25:01:e5:fc:6e:22:19:20:e9:c3:48:2a:ca:44:08: c4:23:7d:52:86:90:44:bf:a4:bf:d2:05:6f:73:38:e4:59:90: 2c:71:83:ac:e0:75:d2:cb:ec:27:65:a4:53:cf:80:96:be:20: 9f:6f:34:dd:6a:d5:26:18:2a:71:c0:af:2a:54:63:77:a2:4e: 4a:b6:59:3d:29:87:6e:fe:03:dc:80:7d:1a:db:b3:5d:23:bb: d0:de:5e:de:21:7d:fa:d3:2d:13:58:f2:b9:ec:5b:33:96:f9: e2:a8:40:55:8e:0a:c6:04:3d:bb:6a:e9:23:7a:93:7b:0e:fa: 9e:c1:19:c9:52:10:c4:36:35:bd:1b:dc:bb:96:b1:6e:27:1c: 60:ba:a4:6b:2b:cb:74:ef:4c:c6:42:27:dc:79:61:0b:40:b5: c9:62:18:2f:d3:3d:8f:37:95:cb:8e:fd:35:31:a3:07:1c:57: 14:52:62:84:c1:c9:75:e1:5e:19:37:cd:81:7a:74:06:3c:56: ce:d4:05:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK4V9eiqHmX9inltW/Dksu7QWMpswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODUxMTRiNDA5Zjc2NmRhMTM4MzBiODY0OTAwOWQ2NWMz N2IwZWNlNjA2YTY5Y2E1MjMyYWQ0MzExNTY5NTlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvw1QN0kqRIPfi4BEvvGU8BccsEtk6wYWtSSkIGiyM1fz8 p359sHs2l0kNH4+fucOTxAy69mpmpkIbYn7lcF472zdvHGgm4dPLj2V/UpvkGQWG e/zwPn7c9s7DymygVKxy5Ytj9UW/ivq0LOqvQSHYwk3wL4/bnMoJDC+LqiMUFT3y 8ilOEcykYnYkPE0503ffgiMv5u7uETmB9GR/DUsTbWKXFAwvZHXnVjBnlIx3OdUm BzDSyzpPOQJRr6js2rrbLLF30ox2N0Sn+BCLbrrZpX30j+innjvpHq1tqvB7FPdD Gis9Xl2xi8/DhCn5DsDG28G3bAOLTnQwkrhVkGlBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXfpBHbbhnQdXplSPUlkpnNOd3j0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhM2EwNWNiLTk2MGItNDY4OC04MzExLWVlOGYyYjk1OWQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCpUAwDQYJKoZIhvcNAQELBQADggEBAIZzMKaXvWBNxyT6azAAxeJm7PhM Bpte265gemPwqKsF/V7vKboDAMiZIJ/O3D1v7YZ/T90qcY/sGyUB5fxuIhkg6cNI KspECMQjfVKGkES/pL/SBW9zOORZkCxxg6zgddLL7CdlpFPPgJa+IJ9vNN1q1SYY KnHArypUY3eiTkq2WT0ph27+A9yAfRrbs10ju9DeXt4hffrTLRNY8rnsWzOW+eKo QFWOCsYEPbtq6SN6k3sO+p7BGclSEMQ2Nb0b3LuWsW4nHGC6pGsry3TvTMZCJ9x5 YQtAtcliGC/TPY83lcuO/TUxowccVxRSYoTByXXhXhk3zYF6dAY8Vs7UBds= -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:21 2024 by rpki-client on console-fra.rpki-client.org