$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d86172d-b742-4059-8c77-b1f0a8aec0c7.roa File: 9d86172d-b742-4059-8c77-b1f0a8aec0c7.roa (raw, json) Hash identifier: vgxOCzNtLZL3V6DaJvgoeVt56ORKbIj1j//xoOT9f9I= Subject key identifier: F4:30:9B:5E:E9:13:4C:6F:49:B3:D6:AF:DF:96:56:16:70:20:C8:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63E3BDEB6153376337FB9FA1A52C93DE6ACB431E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d86172d-b742-4059-8c77-b1f0a8aec0c7.roa Signing time: Fri 26 Apr 2024 00:00:00 +0000 ROA not before: Fri 26 Apr 2024 00:00:00 +0000 ROA not after: Fri 31 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 150.247.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e3:bd:eb:61:53:37:63:37:fb:9f:a1:a5:2c:93:de:6a:cb:43:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 26 00:00:00 2024 GMT Not After : May 31 23:59:59 2024 GMT Subject: serialNumber=bd8915ea34efd0588fe603f63ef6e6d9796bdcb8fe740fb29a29a44792a44a5a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:68:43:aa:ba:87:b6:66:92:d2:5b:30:4e:c6: 16:45:5d:65:4c:6a:13:64:b9:8f:50:33:f5:76:ab: 21:12:0d:8b:63:cb:e1:a7:5f:91:72:0b:81:dc:90: 98:1a:c6:52:c6:f6:d1:99:33:6d:88:94:2e:cf:c3: 80:60:20:c2:68:7a:96:f1:9b:c8:6f:e9:23:00:17: 54:d2:0e:12:d8:e4:c9:e8:06:c6:aa:a8:19:4d:c9: 71:f0:86:4a:3a:b4:34:ad:a6:05:8f:39:b0:0e:fa: 8f:4f:54:52:69:6a:f9:4b:e9:82:fd:97:50:77:53: e3:74:87:67:84:21:d8:31:ad:5e:9f:b8:e9:19:23: 8a:2d:8b:f6:cc:fe:3b:3f:da:75:8d:c1:5b:c9:08: df:88:76:b5:37:71:80:1b:30:8d:a8:14:ac:50:60: 96:46:c0:df:70:2c:55:55:30:97:01:40:a1:04:dd: ca:98:d9:25:31:b4:1b:8c:7e:b0:52:be:26:c5:b8: bf:4b:c6:87:95:dc:fe:a7:98:a2:84:fa:bf:e0:d7: da:bf:77:e6:2c:cd:49:0f:66:4a:f9:6a:e7:c0:3d: ab:a5:c7:a6:b1:3c:85:bb:c9:97:c6:8a:da:c9:20: 7a:be:4c:cd:25:d3:92:7b:41:c4:28:4e:eb:a9:58: df:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:30:9B:5E:E9:13:4C:6F:49:B3:D6:AF:DF:96:56:16:70:20:C8:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d86172d-b742-4059-8c77-b1f0a8aec0c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.247.64.0/19 Signature Algorithm: sha256WithRSAEncryption 07:78:67:76:9a:ce:02:c3:1e:82:63:0f:c2:b2:10:dd:c8:35: be:94:d0:a1:8e:2c:b1:cc:fd:f5:35:a2:1f:6b:0e:45:0c:c7: 3b:31:e8:af:9b:03:0e:e0:45:8c:ad:05:88:35:b8:e1:4f:ca: 1d:36:b4:45:97:4c:30:fb:d9:4e:4d:93:71:2b:55:05:f4:28: 8a:3b:b2:4a:dc:ea:f8:43:36:ab:a8:54:07:3b:6f:dc:94:fb: 0e:03:56:43:72:fd:84:60:a4:73:1b:f9:29:93:19:d5:52:1d: 45:87:14:21:e3:f0:8b:30:af:f1:10:84:f8:c2:d8:f9:cc:8e: b8:d5:30:9f:e9:45:23:64:65:94:9e:d7:9b:88:de:81:3c:93: f8:c4:45:3c:79:79:98:b7:fd:e3:63:af:cb:2e:52:52:ff:c6: 0a:bc:88:80:4d:31:65:d6:dc:af:a9:eb:44:7f:af:04:43:6c: 97:20:7a:7e:fd:29:f4:19:93:45:07:25:79:e0:32:4e:31:9f: b3:d9:be:21:57:06:19:60:d5:88:62:9b:6a:d7:08:9e:88:6f: 36:7b:ea:41:1d:3e:d3:67:0e:e6:06:98:f1:00:c8:8f:bf:84: d6:d9:22:1f:4c:03:fc:20:92:42:a3:43:97:5b:a9:d6:bb:0c: 1d:0b:34:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY+O962FTN2M3+5+hpSyT3mrLQx4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI2MDAwMDAwWhcNMjQwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDg5MTVlYTM0ZWZkMDU4OGZlNjAzZjYzZWY2ZTZkOTc5 NmJkY2I4ZmU3NDBmYjI5YTI5YTQ0NzkyYTQ0YTVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/aEOquoe2ZpLSWzBOxhZFXWVMahNkuY9QM/V2qyESDYtj y+GnX5FyC4HckJgaxlLG9tGZM22IlC7Pw4BgIMJoepbxm8hv6SMAF1TSDhLY5Mno BsaqqBlNyXHwhko6tDStpgWPObAO+o9PVFJpavlL6YL9l1B3U+N0h2eEIdgxrV6f uOkZI4oti/bM/js/2nWNwVvJCN+IdrU3cYAbMI2oFKxQYJZGwN9wLFVVMJcBQKEE 3cqY2SUxtBuMfrBSvibFuL9LxoeV3P6nmKKE+r/g19q/d+YszUkPZkr5aufAPaul x6axPIW7yZfGitrJIHq+TM0l05J7QcQoTuupWN8tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9DCbXukTTG9Js9av35ZWFnAgyEkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkODYxNzJkLWI3NDItNDA1OS04Yzc3LWIxZjBhOGFlYzBjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWW90AwDQYJKoZIhvcNAQELBQADggEBAAd4Z3aazgLDHoJjD8KyEN3INb6U 0KGOLLHM/fU1oh9rDkUMxzsx6K+bAw7gRYytBYg1uOFPyh02tEWXTDD72U5Nk3Er VQX0KIo7skrc6vhDNquoVAc7b9yU+w4DVkNy/YRgpHMb+SmTGdVSHUWHFCHj8Isw r/EQhPjC2PnMjrjVMJ/pRSNkZZSe15uI3oE8k/jERTx5eZi3/eNjr8suUlL/xgq8 iIBNMWXW3K+p60R/rwRDbJcgen79KfQZk0UHJXngMk4xn7PZviFXBhlg1Yhim2rX CJ6IbzZ76kEdPtNnDuYGmPEAyI+/hNbZIh9MA/wgkkKjQ5dbqda7DB0LNGU= -----END CERTIFICATE-----Generated at Thu May 2 06:12:45 2024 by rpki-client on console-fra.rpki-client.org