$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ebe2ca3-bd47-4c61-86d3-83c9cab1b836.roa File: 9ebe2ca3-bd47-4c61-86d3-83c9cab1b836.roa (raw, json) Hash identifier: ms4pG7sUcbdDvPXHRXNJ3Y0438JqI955U679zpQXJ48= Subject key identifier: FF:4D:A8:60:D7:F1:40:28:F9:7D:A8:5A:FF:D2:00:7E:2D:69:7A:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 065D18009E2AF47A5EC81CE09E68E03341BD1103 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ebe2ca3-bd47-4c61-86d3-83c9cab1b836.roa Signing time: Fri 26 Apr 2024 00:00:00 +0000 ROA not before: Fri 26 Apr 2024 00:00:00 +0000 ROA not after: Fri 31 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 150.245.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:5d:18:00:9e:2a:f4:7a:5e:c8:1c:e0:9e:68:e0:33:41:bd:11:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 26 00:00:00 2024 GMT Not After : May 31 23:59:59 2024 GMT Subject: serialNumber=35312f32dbb81ea0c4fec87e60e2c910277471eceee7b4ba8e6693b4f251213d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e5:b0:e1:88:f9:3e:1f:42:fd:5b:e9:33:cd: 24:9c:04:58:39:08:c8:59:4e:7d:59:08:75:e0:53: 8b:b5:98:98:32:0f:ca:7e:22:d7:d6:a8:74:cc:2c: df:71:a6:ee:dc:7a:af:6e:bc:f1:a9:71:8b:44:02: bf:de:6a:03:27:15:62:f2:56:b1:5e:9a:36:06:3d: 1c:25:5a:f9:e2:36:c1:92:ab:74:b6:dc:2a:70:d0: 80:5f:fb:b1:dd:8f:b1:93:a5:69:02:38:f7:5f:eb: 00:e5:94:62:a5:60:6e:4d:38:8d:d4:d8:a6:c0:11: 5f:e5:8f:be:32:6b:22:94:0e:a0:1a:68:29:0b:79: 9c:80:a5:d5:1d:5c:4a:5a:cf:2b:71:c6:70:a2:b8: 2a:43:9d:60:c2:21:ff:e2:a6:c9:31:9f:1f:31:13: 3d:db:6c:b1:ac:72:21:bd:2f:b0:c6:4d:e6:5d:f2: 8f:e5:35:5c:32:95:8a:c1:d7:58:f8:ec:07:ba:f2: 8c:46:e7:66:0b:1c:fd:67:7c:13:d8:c2:c5:1c:47: 27:1e:ed:40:cb:a3:fd:49:f9:6e:49:69:56:ea:8e: aa:1a:50:4c:4a:25:3e:fd:10:59:c4:cd:b5:84:63: bf:0b:5a:57:32:9f:31:df:ea:cb:95:f1:e1:d5:65: 88:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4D:A8:60:D7:F1:40:28:F9:7D:A8:5A:FF:D2:00:7E:2D:69:7A:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ebe2ca3-bd47-4c61-86d3-83c9cab1b836.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.245.0.0/16 Signature Algorithm: sha256WithRSAEncryption 81:2d:e1:7c:d3:3e:ff:71:a3:06:8e:f2:42:b4:32:04:ec:fc: 69:dd:1e:a4:72:8d:5f:81:4e:23:b6:7c:16:bb:ad:a1:80:bd: 3c:ca:07:a5:6f:6b:0d:b3:e9:e1:da:67:6b:15:9f:96:34:78: 2a:6a:eb:26:f4:9e:42:c0:90:eb:4a:56:42:38:0e:cf:cd:7e: d7:9a:c6:8b:9d:db:0f:7b:a3:1f:71:b1:f5:5b:9c:f1:f7:96: 50:d5:69:5f:92:74:16:f1:25:27:24:b9:62:64:f7:29:ad:b0: 50:82:01:ca:b0:e6:9d:81:8b:e6:f3:fa:b4:4d:37:22:59:f2: e7:5d:a2:54:69:98:1c:8f:73:e2:d3:50:a6:bb:e7:c6:cc:02: 7c:1b:b9:3d:bd:f6:5e:ab:90:b1:04:fd:b3:6b:66:3b:55:bc: 01:35:2f:fa:75:14:89:b4:58:4e:d9:9a:51:02:1e:d1:d8:9a: ce:4a:1b:3c:7e:af:a6:fd:1a:f7:84:e2:fb:6e:73:0d:68:9c: dd:0d:60:9d:d8:6f:87:bb:0b:f5:14:4a:ec:49:42:88:98:70: cf:b8:5e:28:93:10:28:4c:e4:f2:b2:73:8f:28:7f:8d:26:72: 13:75:f6:96:56:af:d4:40:4a:f9:b3:dd:e7:02:77:da:e0:7a: f5:e9:d0:ae -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBl0YAJ4q9HpeyBzgnmjgM0G9EQMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI2MDAwMDAwWhcNMjQwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTMxMmYzMmRiYjgxZWEwYzRmZWM4N2U2MGUyYzkxMDI3 NzQ3MWVjZWVlN2I0YmE4ZTY2OTNiNGYyNTEyMTNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz5bDhiPk+H0L9W+kzzSScBFg5CMhZTn1ZCHXgU4u1mJgy D8p+ItfWqHTMLN9xpu7ceq9uvPGpcYtEAr/eagMnFWLyVrFemjYGPRwlWvniNsGS q3S23Cpw0IBf+7Hdj7GTpWkCOPdf6wDllGKlYG5NOI3U2KbAEV/lj74yayKUDqAa aCkLeZyApdUdXEpazytxxnCiuCpDnWDCIf/ipskxnx8xEz3bbLGsciG9L7DGTeZd 8o/lNVwylYrB11j47Ae68oxG52YLHP1nfBPYwsUcRyce7UDLo/1J+W5JaVbqjqoa UExKJT79EFnEzbWEY78LWlcynzHf6suV8eHVZYjZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/02oYNfxQCj5faha/9IAfi1peoQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllYmUyY2EzLWJkNDctNGM2MS04NmQzLTgzYzljYWIxYjgzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCW9TANBgkqhkiG9w0BAQsFAAOCAQEAgS3hfNM+/3GjBo7yQrQyBOz8ad0e pHKNX4FOI7Z8FrutoYC9PMoHpW9rDbPp4dpnaxWfljR4KmrrJvSeQsCQ60pWQjgO z81+15rGi53bD3ujH3Gx9Vuc8feWUNVpX5J0FvElJyS5YmT3Ka2wUIIByrDmnYGL 5vP6tE03Ilny512iVGmYHI9z4tNQprvnxswCfBu5Pb32XquQsQT9s2tmO1W8ATUv +nUUibRYTtmaUQIe0diazkobPH6vpv0a94Ti+25zDWic3Q1gndhvh7sL9RRK7ElC iJhwz7heKJMQKEzk8rJzjyh/jSZyE3X2llav1EBK+bPd5wJ32uB69enQrg== -----END CERTIFICATE-----Generated at Thu May 2 11:33:21 2024 by rpki-client on console-fra.rpki-client.org