$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1749ed4-63c3-4d7e-b546-f0c9e7c168d2.roa File: a1749ed4-63c3-4d7e-b546-f0c9e7c168d2.roa (raw, json) Hash identifier: j12UJ57hnbe7S8eSjVsKk20b7m/1QsoFMKmQqr3CKTY= Subject key identifier: 83:21:D1:50:7E:D1:9E:34:E5:92:AD:C5:F6:F0:B4:46:0B:19:1B:CB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EA61EA899CEFCC96269E7C75C47096E98419E41 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1749ed4-63c3-4d7e-b546-f0c9e7c168d2.roa Signing time: Thu 18 Apr 2024 00:00:00 +0000 ROA not before: Thu 18 Apr 2024 00:00:00 +0000 ROA not after: Thu 23 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 204.31.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:a6:1e:a8:99:ce:fc:c9:62:69:e7:c7:5c:47:09:6e:98:41:9e:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:00:00 2024 GMT Not After : May 23 23:59:59 2024 GMT Subject: serialNumber=4290cb274de01def9ed381a157b1138fcaba33404ff84b8891ef59f0992da7ad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b6:4e:63:a0:fc:34:ff:db:e1:97:59:8b:62: 1b:d5:5f:0d:92:ba:da:5c:77:26:3c:5f:f8:6b:c4: c3:3d:67:f1:04:a8:5e:34:8f:ed:29:3c:45:77:aa: ed:f6:bd:e6:8d:46:7e:8e:68:a9:fe:74:22:4e:7b: 6d:40:31:7a:ed:9f:7c:01:91:f2:bd:fd:bd:af:af: 7e:20:cb:0f:f5:1c:10:de:af:2e:1b:4f:bd:b8:5b: c2:38:21:67:66:ca:7a:f2:49:12:44:82:2b:20:dc: f1:e6:9c:25:db:47:3c:28:ae:b5:fd:43:23:ff:69: 12:28:ed:33:0a:fa:84:c4:5a:bb:e7:92:bd:2b:a8: 8c:5a:af:97:e8:5e:15:5e:24:05:48:a5:7f:21:db: a9:a9:89:c2:f6:5f:47:54:63:2b:4c:ba:15:e3:e6: a7:4d:9b:95:b0:01:30:41:e3:28:1c:d5:c1:ff:12: e1:c6:a8:fe:f6:4e:95:8c:cb:8c:91:76:6d:eb:04: 3e:4c:2f:4b:44:df:cd:8b:40:1f:1f:45:8e:a8:3b: 58:db:52:50:08:de:e3:99:69:24:01:d5:0d:b3:b4: 14:36:92:3d:32:65:f0:05:8a:f9:ee:eb:f3:35:b4: 94:78:b3:58:1b:33:06:71:0c:6a:ad:63:c3:ad:6e: 28:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:21:D1:50:7E:D1:9E:34:E5:92:AD:C5:F6:F0:B4:46:0B:19:1B:CB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1749ed4-63c3-4d7e-b546-f0c9e7c168d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.31.128.0/19 Signature Algorithm: sha256WithRSAEncryption d0:6e:a7:85:77:78:4e:90:ae:9e:ce:2b:e0:55:86:60:b4:47: ee:6b:68:b4:b0:fe:de:45:a5:39:bd:af:de:2f:28:24:c5:c7: 6c:29:28:74:86:ba:c2:93:d1:63:53:37:16:d6:93:30:9e:55: f5:2e:66:c6:28:89:93:90:de:38:52:6c:73:cc:0b:cc:cb:1d: cc:32:15:2a:21:fd:06:0c:c9:0a:e6:e9:e9:56:6c:0e:97:73: 12:c9:20:4e:b8:57:bf:3b:fc:34:b4:75:8f:bb:ec:11:52:8e: ee:f0:8e:d6:1f:11:77:27:3b:2b:7a:98:04:64:41:64:3a:ea: dd:70:9c:73:86:04:b2:26:bc:7e:b7:7b:72:3a:d8:92:73:03: a2:a0:6c:c1:9c:bc:40:58:66:7d:cf:02:64:0f:57:94:5a:bf: cc:d0:ef:98:f7:58:7c:30:8d:62:12:5a:dd:ee:d7:62:71:47: b9:e8:b4:dd:4c:07:e6:7c:57:67:e0:bc:cd:49:1b:57:0e:d4: 54:e7:e8:58:9c:fb:61:ec:10:f1:95:ae:79:01:45:fd:2f:b0: 16:d2:f4:18:b4:6b:d0:8c:77:fb:ef:23:8c:3e:3e:b1:c6:44: d8:be:9d:fd:47:e0:1d:0f:c5:9b:24:03:fe:72:b4:05:91:6e: 7c:ab:71:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfqYeqJnO/MliaefHXEcJbphBnkEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE4MDAwMDAwWhcNMjQwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjkwY2IyNzRkZTAxZGVmOWVkMzgxYTE1N2IxMTM4ZmNh YmEzMzQwNGZmODRiODg5MWVmNTlmMDk5MmRhN2FkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCptk5joPw0/9vhl1mLYhvVXw2SutpcdyY8X/hrxMM9Z/EE qF40j+0pPEV3qu32veaNRn6OaKn+dCJOe21AMXrtn3wBkfK9/b2vr34gyw/1HBDe ry4bT724W8I4IWdmynrySRJEgisg3PHmnCXbRzworrX9QyP/aRIo7TMK+oTEWrvn kr0rqIxar5foXhVeJAVIpX8h26mpicL2X0dUYytMuhXj5qdNm5WwATBB4ygc1cH/ EuHGqP72TpWMy4yRdm3rBD5ML0tE382LQB8fRY6oO1jbUlAI3uOZaSQB1Q2ztBQ2 kj0yZfAFivnu6/M1tJR4s1gbMwZxDGqtY8OtbihxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgyHRUH7RnjTlkq3F9vC0RgsZG8swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ExNzQ5ZWQ0LTYzYzMtNGQ3ZS1iNTQ2LWYwYzllN2MxNjhkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXMH4AwDQYJKoZIhvcNAQELBQADggEBANBup4V3eE6Qrp7OK+BVhmC0R+5r aLSw/t5FpTm9r94vKCTFx2wpKHSGusKT0WNTNxbWkzCeVfUuZsYoiZOQ3jhSbHPM C8zLHcwyFSoh/QYMyQrm6elWbA6XcxLJIE64V787/DS0dY+77BFSju7wjtYfEXcn Oyt6mARkQWQ66t1wnHOGBLImvH63e3I62JJzA6KgbMGcvEBYZn3PAmQPV5Rav8zQ 75j3WHwwjWISWt3u12JxR7notN1MB+Z8V2fgvM1JG1cO1FTn6Fic+2HsEPGVrnkB Rf0vsBbS9Bi0a9CMd/vvI4w+PrHGRNi+nf1H4B0PxZskA/5ytAWRbnyrcR4= -----END CERTIFICATE-----Generated at Thu May 9 15:19:50 2024 by rpki-client on console-fra.rpki-client.org