$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4cd15fa-81ee-4976-b600-934f1f36a677.roa File: a4cd15fa-81ee-4976-b600-934f1f36a677.roa (raw, json) Hash identifier: 0LGMOzJsLZlZnQjDmwZs2o7exsOO7vKbTgfCjZCxi8Q= Subject key identifier: EA:91:9B:E4:6D:2F:11:34:B3:B6:7C:22:2F:D1:68:0F:62:49:27:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0CE1018F52277E717DC8B9A57DAF6A259CCDF57B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4cd15fa-81ee-4976-b600-934f1f36a677.roa Signing time: Mon 06 May 2024 00:00:00 +0000 ROA not before: Mon 06 May 2024 00:00:00 +0000 ROA not after: Mon 10 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 148.73.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:e1:01:8f:52:27:7e:71:7d:c8:b9:a5:7d:af:6a:25:9c:cd:f5:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:00:00 2024 GMT Not After : Jun 10 23:59:59 2024 GMT Subject: serialNumber=aef1d201d4fd42621694b5487fef42e0beb90a39c2475863f4d2b7668b9c9e61, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:3a:cb:c5:5a:d6:12:f0:62:d7:4d:f2:da:7e: fe:7e:e7:6b:f7:16:0f:e4:28:13:de:19:4f:40:f0: 14:20:7f:bd:a0:21:1d:9d:79:b1:af:e4:ae:e6:23: 57:b6:dd:19:97:00:4e:c8:a1:80:63:1f:ee:2a:81: fa:e8:52:8e:bf:11:6e:77:35:c2:50:e3:50:fd:5f: bd:40:16:06:04:c1:06:e0:bc:2c:b3:10:7d:be:cc: b3:3c:45:25:d5:5e:be:a3:83:38:45:69:2e:81:58: 03:0c:b7:79:f2:8c:c4:14:fc:24:19:d5:f0:b5:d0: 79:e4:fa:de:c6:3f:34:9e:95:e4:b5:fc:dc:79:3e: 1a:d7:07:a8:c8:fe:9a:51:45:35:64:ef:4b:a2:8c: 1f:dc:e8:c8:fa:c4:05:8a:ed:bc:67:19:6f:fc:a4: 09:f2:9d:f5:a7:93:1a:31:4d:ae:e9:14:39:ea:b7: 5d:31:56:3c:c1:d2:91:5d:a6:3b:c2:8a:22:9e:a5: a4:07:95:a6:13:b6:f6:d3:02:a8:cd:9b:89:69:83: 1e:15:5a:a5:41:08:0d:80:8c:0e:99:c1:0c:42:b0: 29:55:0d:b4:03:da:99:87:7a:b0:1b:b1:92:9c:09: 45:51:d5:85:c8:ca:db:dc:d7:20:40:0f:0b:10:af: 1e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:91:9B:E4:6D:2F:11:34:B3:B6:7C:22:2F:D1:68:0F:62:49:27:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4cd15fa-81ee-4976-b600-934f1f36a677.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 148.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption 64:76:25:54:8f:5a:e9:78:9a:17:02:48:92:79:17:5f:53:30: 33:89:37:ed:b0:c1:3d:80:e1:3d:00:bc:97:03:15:8a:ec:26: c6:8b:9c:3d:ff:a8:7c:79:06:45:33:5c:d5:65:97:b4:d8:98: fd:2c:87:7a:eb:e7:f8:50:a7:1b:e2:7f:3f:66:4e:72:76:1a: 12:ab:97:6c:20:76:22:c6:1f:24:0f:c3:02:0c:c4:34:55:cc: da:02:94:53:34:f7:90:96:ea:bd:4b:af:47:4e:ac:5c:9c:4f: 55:0b:7e:76:27:51:dc:f9:73:28:d8:f5:1d:88:02:22:4c:ac: 42:81:a2:c1:ac:a9:a9:a5:5a:c2:57:71:55:89:7f:f5:05:f3: ec:00:f5:b8:13:48:ed:7c:5f:42:0d:ce:04:3d:f3:38:32:5a: 12:13:98:e7:75:79:42:d1:48:ea:05:97:88:c6:94:2b:79:bc: 50:5b:c3:d1:ea:ad:18:40:34:9a:21:14:43:59:93:f2:cb:65: 24:1e:4c:f2:85:c8:9b:d6:68:66:9e:79:59:1e:52:00:25:24: 43:f0:bc:ee:3c:4b:ee:1c:b1:51:c6:db:95:c3:47:66:98:47: 17:1b:64:ef:c8:81:c5:a8:f0:b5:8a:bd:6e:61:b4:7d:a7:be: 1c:e3:2c:90 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDOEBj1InfnF9yLmlfa9qJZzN9XswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA2MDAwMDAwWhcNMjQwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZWYxZDIwMWQ0ZmQ0MjYyMTY5NGI1NDg3ZmVmNDJlMGJl YjkwYTM5YzI0NzU4NjNmNGQyYjc2NjhiOWM5ZTYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpOsvFWtYS8GLXTfLafv5+52v3Fg/kKBPeGU9A8BQgf72g IR2debGv5K7mI1e23RmXAE7IoYBjH+4qgfroUo6/EW53NcJQ41D9X71AFgYEwQbg vCyzEH2+zLM8RSXVXr6jgzhFaS6BWAMMt3nyjMQU/CQZ1fC10Hnk+t7GPzSeleS1 /Nx5PhrXB6jI/ppRRTVk70uijB/c6Mj6xAWK7bxnGW/8pAnynfWnkxoxTa7pFDnq t10xVjzB0pFdpjvCiiKepaQHlaYTtvbTAqjNm4lpgx4VWqVBCA2AjA6ZwQxCsClV DbQD2pmHerAbsZKcCUVR1YXIytvc1yBADwsQrx5BAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6pGb5G0vETSztnwiL9FoD2JJJ4kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E0Y2QxNWZhLTgxZWUtNDk3Ni1iNjAwLTkzNGYxZjM2YTY3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCUSTANBgkqhkiG9w0BAQsFAAOCAQEAZHYlVI9a6XiaFwJIknkXX1MwM4k3 7bDBPYDhPQC8lwMViuwmxoucPf+ofHkGRTNc1WWXtNiY/SyHeuvn+FCnG+J/P2ZO cnYaEquXbCB2IsYfJA/DAgzENFXM2gKUUzT3kJbqvUuvR06sXJxPVQt+didR3Plz KNj1HYgCIkysQoGiwaypqaVawldxVYl/9QXz7AD1uBNI7XxfQg3OBD3zODJaEhOY 53V5QtFI6gWXiMaUK3m8UFvD0eqtGEA0miEUQ1mT8stlJB5M8oXIm9ZoZp55WR5S ACUkQ/C87jxL7hyxUcbblcNHZphHFxtk78iBxajwtYq9bmG0fae+HOMskA== -----END CERTIFICATE-----Generated at Thu May 9 01:25:41 2024 by rpki-client on console-fra.rpki-client.org