$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e31855d-83f9-4a6c-a51f-b006f05db89d.roa File: 9e31855d-83f9-4a6c-a51f-b006f05db89d.roa (raw, json) Hash identifier: 5zufwdcLOv1ZFQNqaiRQXKxF0AnHdUSbsDhGaL7BJc4= Subject key identifier: 90:13:24:7D:44:9B:93:12:12:0A:FE:BD:DE:3E:20:35:E4:EB:7B:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 546F1A4C1FD585262C86DF38F185620ADE5F9BBD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e31855d-83f9-4a6c-a51f-b006f05db89d.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.193.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:6f:1a:4c:1f:d5:85:26:2c:86:df:38:f1:85:62:0a:de:5f:9b:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=1f506d1bdf3ad7aa937505bf081c51a74c412ea035626ee2e3c6f8fe29b1cea6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:00:da:79:f2:eb:01:cf:16:8d:46:0a:a9:f7: 61:6b:84:dc:fc:d6:f5:50:d9:3f:0f:dc:e0:84:2d: 15:74:bb:3b:2c:7e:9a:e2:e9:61:21:55:06:08:20: 41:69:b2:f7:8f:8a:0b:db:85:57:00:91:ab:b6:1d: af:71:a7:21:92:43:e6:cd:be:01:3f:c6:59:96:80: d4:4f:63:d5:bd:d3:e5:de:6a:eb:55:75:b5:b1:28: 1f:f1:83:08:d8:a1:0b:52:43:71:23:51:de:65:aa: b5:e4:38:ee:28:c6:79:b0:76:e1:1a:df:14:60:1b: 3d:d1:ec:f8:b0:c1:4f:c5:a8:34:58:d6:cc:a0:bf: d3:18:f0:7e:f7:fa:a3:3a:8b:bb:f0:5f:4e:d7:e3: 4f:f8:5b:df:b8:d6:b8:93:93:65:bd:36:f2:c9:8a: f8:a0:f8:44:7d:3b:b9:57:e3:03:53:49:18:b1:68: 59:da:07:7c:19:83:8b:fa:4d:cf:06:a7:5a:58:b8: 53:4a:b9:67:6b:aa:fa:07:1c:d3:83:a5:5d:6e:f6: c9:d8:e5:98:10:c1:f4:8b:9a:2b:84:93:b8:26:65: e7:86:f9:1e:66:4f:ed:aa:77:b6:66:3f:fd:49:72: 5b:16:b0:4d:8f:6b:a2:38:ba:bd:40:7a:e0:59:f0: 7c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:13:24:7D:44:9B:93:12:12:0A:FE:BD:DE:3E:20:35:E4:EB:7B:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e31855d-83f9-4a6c-a51f-b006f05db89d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.193.0.0/16 Signature Algorithm: sha256WithRSAEncryption c7:5a:d8:ae:1d:af:8f:43:28:6c:7c:be:0a:9f:a6:ea:97:39: 56:8e:63:da:c4:50:6b:b5:83:66:a2:ab:de:78:86:36:78:05: 53:0e:ae:66:0c:f5:17:ea:39:06:fb:44:73:55:f6:49:2c:62: f7:d6:34:32:c2:41:b9:fe:38:a8:82:88:7e:fa:75:a2:0a:5d: a6:6f:9d:c2:7e:ba:8b:ca:d4:51:76:63:17:48:0e:94:63:0f: 53:86:37:b3:a0:23:23:7e:ca:0c:b0:a6:e9:6b:99:18:31:d6: 3d:fa:a7:ce:9b:c2:62:e5:b2:92:85:6b:70:e1:43:4a:0b:c3: 2d:d0:ae:30:fe:38:a2:54:49:79:19:f1:b5:9b:41:39:ec:9c: 4a:1a:6a:3b:01:d0:67:c2:d5:be:9e:43:67:b0:d3:7c:2e:bf: 4a:d8:06:c1:e2:cb:3c:c9:3c:c8:10:11:63:6a:d7:f8:f4:9f: 7c:19:5d:58:e9:b8:c2:d0:a6:8f:5b:70:c6:c0:ac:73:73:4d: fd:7f:d1:f6:55:c7:a4:17:4e:49:cd:bb:6f:d9:0e:35:39:3c: d2:fd:5b:22:41:66:14:7e:c0:4e:24:6d:aa:15:62:f6:27:b7: 36:cb:68:5f:79:08:e0:e0:dd:f6:bc:35:21:90:78:06:aa:86: ab:e6:6e:c0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVG8aTB/VhSYsht848YViCt5fm70wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjUwNmQxYmRmM2FkN2FhOTM3NTA1YmYwODFjNTFhNzRj NDEyZWEwMzU2MjZlZTJlM2M2ZjhmZTI5YjFjZWE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcANp58usBzxaNRgqp92FrhNz81vVQ2T8P3OCELRV0uzss fpri6WEhVQYIIEFpsvePigvbhVcAkau2Ha9xpyGSQ+bNvgE/xlmWgNRPY9W90+Xe autVdbWxKB/xgwjYoQtSQ3EjUd5lqrXkOO4oxnmwduEa3xRgGz3R7PiwwU/FqDRY 1sygv9MY8H73+qM6i7vwX07X40/4W9+41riTk2W9NvLJivig+ER9O7lX4wNTSRix aFnaB3wZg4v6Tc8Gp1pYuFNKuWdrqvoHHNODpV1u9snY5ZgQwfSLmiuEk7gmZeeG +R5mT+2qd7ZmP/1JclsWsE2Pa6I4ur1AeuBZ8HyVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkBMkfUSbkxISCv693j4gNeTre/cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllMzE4NTVkLTgzZjktNGE2Yy1hNTFmLWIwMDZmMDVkYjg5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowTANBgkqhkiG9w0BAQsFAAOCAQEAx1rYrh2vj0MobHy+Cp+m6pc5Vo5j 2sRQa7WDZqKr3niGNngFUw6uZgz1F+o5BvtEc1X2SSxi99Y0MsJBuf44qIKIfvp1 ogpdpm+dwn66i8rUUXZjF0gOlGMPU4Y3s6AjI37KDLCm6WuZGDHWPfqnzpvCYuWy koVrcOFDSgvDLdCuMP44olRJeRnxtZtBOeycShpqOwHQZ8LVvp5DZ7DTfC6/StgG weLLPMk8yBARY2rX+PSffBldWOm4wtCmj1twxsCsc3NN/X/R9lXHpBdOSc27b9kO NTk80v1bIkFmFH7ATiRtqhVi9ie3NstoX3kI4ODd9rw1IZB4BqqGq+ZuwA== -----END CERTIFICATE-----Generated at Thu May 2 11:33:21 2024 by rpki-client on console-fra.rpki-client.org