$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a790757-122d-4cb2-a0a7-ea07b5c649e8.roa File: 9a790757-122d-4cb2-a0a7-ea07b5c649e8.roa (raw, json) Hash identifier: SxVbNESQ2MKzFjzzZCGgcjMwnhVDaCS+VIjlpoRrvgs= Subject key identifier: 5C:DC:A7:78:5B:2B:F6:2F:52:D4:71:27:60:7B:FC:F0:75:37:C6:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E9DEB454F66EFCD2A33CE7338B5DA41BCD396AD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a790757-122d-4cb2-a0a7-ea07b5c649e8.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 104.255.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:9d:eb:45:4f:66:ef:cd:2a:33:ce:73:38:b5:da:41:bc:d3:96:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=e98aae46464321b6f1fe196ee441beda699e35164632632578c0f55102da011d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:75:71:56:e4:9a:af:ef:52:08:2f:c7:59:97: 1a:53:6e:72:3e:b5:69:79:ff:ee:4f:96:35:e2:8f: 1f:8a:26:bc:32:76:14:b7:c9:1f:ed:e5:ea:36:7e: 6f:7e:0b:99:55:f0:17:c6:63:05:b9:da:11:8a:08: 9d:e9:24:86:83:55:9d:99:70:80:43:fd:50:ee:d4: a0:ed:17:d6:b3:8d:54:00:8c:c7:f8:9f:b6:67:0e: 29:11:5f:25:39:06:f6:2b:17:ba:d7:b2:39:2a:38: e8:ce:d6:f9:16:f0:2d:29:d5:36:04:ad:de:86:89: ba:9a:bc:81:fe:7f:53:b4:be:ab:c5:63:fb:ca:12: 65:09:c2:5a:0a:95:0c:2d:b9:1a:6a:be:69:4e:a5: 4a:14:b0:b9:9c:b6:23:61:c6:6b:88:d9:10:88:7f: 25:4e:12:1d:3e:b1:3c:94:1c:3f:db:e5:16:80:a6: 00:49:8f:65:b0:2c:3e:a2:af:2d:bb:7b:db:84:ef: 13:5e:07:97:ac:e4:eb:7c:d1:d6:54:da:cd:94:ba: f1:cf:62:8c:79:25:73:b6:e9:58:da:f7:37:de:9f: c8:5e:7c:20:44:02:83:6b:11:80:0b:4b:7f:46:1e: 66:7d:80:a8:90:fc:b8:ad:99:ac:49:f9:63:2a:b0: 84:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:DC:A7:78:5B:2B:F6:2F:52:D4:71:27:60:7B:FC:F0:75:37:C6:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a790757-122d-4cb2-a0a7-ea07b5c649e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.255.56.0/21 Signature Algorithm: sha256WithRSAEncryption 7e:48:3f:27:f7:6d:b4:b1:97:d1:30:88:c5:3b:47:96:7d:f6: c7:98:66:57:7e:23:81:37:ca:4a:13:89:1d:a0:49:e5:fa:15: 18:c8:3e:29:ef:b9:a5:98:63:7e:79:14:25:a2:6e:42:6e:87: 72:d6:fd:b3:90:b5:74:7d:42:a7:82:de:43:c2:87:32:90:d2: 0c:1a:a8:a9:f4:85:cd:13:b4:de:97:ef:bc:c3:56:51:64:50: b8:70:a3:ec:6c:32:b1:62:ed:f7:0f:3e:c0:f1:27:01:0d:56: 6f:25:60:4e:bb:c2:e0:62:80:a1:7a:c0:e1:63:a4:19:1f:69: 77:95:9f:bf:01:41:8d:82:01:e4:14:b5:e6:23:8f:0d:e2:37: 04:18:71:a5:d8:5e:1c:c1:3b:40:46:a4:c9:2b:47:fa:25:2f: 45:a1:2b:e7:72:f9:2d:3a:4e:5b:d7:52:2f:e3:0e:a2:9f:05: 5e:5b:fe:35:6f:6a:3f:b3:dd:e6:80:0b:c2:7e:25:11:81:dd: 18:14:20:a9:69:58:85:13:06:e8:98:1d:af:e0:bd:d1:f0:a2: f1:e7:3a:58:e4:b0:8e:07:0e:3d:4f:18:0d:12:54:81:77:c2: fa:5f:78:4d:e9:33:4d:db:e5:33:b9:50:b0:ba:90:4e:ca:39: 8d:ce:b7:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDp3rRU9m780qM85zOLXaQbzTlq0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOThhYWU0NjQ2NDMyMWI2ZjFmZTE5NmVlNDQxYmVkYTY5 OWUzNTE2NDYzMjYzMjU3OGMwZjU1MTAyZGEwMTFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHdXFW5Jqv71IIL8dZlxpTbnI+tWl5/+5PljXijx+KJrwy dhS3yR/t5eo2fm9+C5lV8BfGYwW52hGKCJ3pJIaDVZ2ZcIBD/VDu1KDtF9azjVQA jMf4n7ZnDikRXyU5BvYrF7rXsjkqOOjO1vkW8C0p1TYErd6GibqavIH+f1O0vqvF Y/vKEmUJwloKlQwtuRpqvmlOpUoUsLmctiNhxmuI2RCIfyVOEh0+sTyUHD/b5RaA pgBJj2WwLD6iry27e9uE7xNeB5es5Ot80dZU2s2UuvHPYox5JXO26Vja9zfen8he fCBEAoNrEYALS39GHmZ9gKiQ/LitmaxJ+WMqsIQbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXNyneFsr9i9S1HEnYHv88HU3xqwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhNzkwNzU3LTEyMmQtNGNiMi1hMGE3LWVhMDdiNWM2NDllOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANo/zgwDQYJKoZIhvcNAQELBQADggEBAH5IPyf3bbSxl9EwiMU7R5Z99seY Zld+I4E3ykoTiR2gSeX6FRjIPinvuaWYY355FCWibkJuh3LW/bOQtXR9QqeC3kPC hzKQ0gwaqKn0hc0TtN6X77zDVlFkULhwo+xsMrFi7fcPPsDxJwENVm8lYE67wuBi gKF6wOFjpBkfaXeVn78BQY2CAeQUteYjjw3iNwQYcaXYXhzBO0BGpMkrR/olL0Wh K+dy+S06TlvXUi/jDqKfBV5b/jVvaj+z3eaAC8J+JRGB3RgUIKlpWIUTBuiYHa/g vdHwovHnOljksI4HDj1PGA0SVIF3wvpfeE3pM03b5TO5ULC6kE7KOY3Ot24= -----END CERTIFICATE-----Generated at Thu May 2 08:51:09 2024 by rpki-client on console-fra.rpki-client.org