$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6a318bc-f485-4225-bc95-983413d9b86e.roa File: a6a318bc-f485-4225-bc95-983413d9b86e.roa (raw, json) Hash identifier: ooc8wJ8paPFCgQxtvvwr6Mwy45pJPEsVgi4JtN2usY4= Subject key identifier: A2:60:E2:DB:07:9C:65:F3:F6:CA:F0:CD:EC:18:23:46:B3:C0:C8:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6022130FAAC39E82146BA6B740326F509AB0BC68 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6a318bc-f485-4225-bc95-983413d9b86e.roa Signing time: Tue 30 Apr 2024 00:00:00 +0000 ROA not before: Tue 30 Apr 2024 00:00:00 +0000 ROA not after: Tue 04 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 207.36.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:22:13:0f:aa:c3:9e:82:14:6b:a6:b7:40:32:6f:50:9a:b0:bc:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 30 00:00:00 2024 GMT Not After : Jun 4 23:59:59 2024 GMT Subject: serialNumber=7d1e348012beee5b7e9d06894a785bcba4c72e45e5b6138d5466295e70c259bf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:73:6b:01:12:b9:14:e5:e5:ae:ca:fa:7f:cc: 49:7f:c6:ce:33:c4:57:eb:db:2d:02:90:17:0b:58: 80:e8:3b:75:61:89:28:6c:26:1a:11:a7:ac:46:b4: b6:4a:35:8a:20:e7:3b:64:d6:90:3f:f0:f9:3c:10: 34:21:39:0f:14:28:2f:c5:e6:eb:2c:97:df:aa:a0: 76:72:65:66:54:20:49:f8:4f:e4:2b:25:04:03:fb: da:d6:05:9b:dc:ea:8e:f0:0b:d7:1c:0d:25:47:ef: 1b:7f:84:01:d6:ff:93:1e:72:33:cc:52:5e:3b:43: ce:76:29:b8:af:c2:6a:f6:ad:96:8a:4b:e5:ed:a7: ce:37:22:ec:ec:69:31:c1:56:87:e2:ca:5a:b0:c3: 6b:e0:fe:69:7d:69:c6:cf:64:5a:3f:f5:ff:e0:47: c5:55:eb:a5:00:81:ec:d6:ec:87:03:11:e3:9a:2f: c5:f3:26:04:f0:94:41:1c:34:81:4f:21:6a:65:ad: e0:58:c7:2c:3b:77:54:a5:ff:20:fe:98:ba:fb:6a: 29:e6:2a:81:f0:1a:86:39:d9:43:21:22:75:e1:8c: 35:b8:08:12:d5:f9:47:dd:2b:8b:3e:dc:8c:f3:b2: 7c:e1:b0:01:fc:58:f7:a3:51:be:4b:3b:d7:c3:70: 7b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:60:E2:DB:07:9C:65:F3:F6:CA:F0:CD:EC:18:23:46:B3:C0:C8:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6a318bc-f485-4225-bc95-983413d9b86e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.36.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5c:57:d4:5f:dc:7e:06:f3:53:4a:b5:91:68:e8:4c:48:52:5c: c0:21:4e:ff:29:a0:67:ff:35:04:f8:29:fb:48:e2:42:76:d3: a7:3e:d5:9b:a8:b1:2c:5b:8c:24:a5:29:bb:60:ea:e4:d4:22: d8:0e:83:7c:14:11:df:9c:a4:cc:3d:88:2a:bc:3d:98:d5:75: ae:7e:9e:1e:6b:7f:df:d5:7e:d3:34:ed:96:88:27:8c:0d:64: b1:9b:aa:8d:16:d5:dc:bb:6f:4a:7a:00:fb:fd:bf:94:63:16: db:77:a2:65:d9:4a:d7:74:45:b7:4e:96:93:7b:7e:79:27:9d: 90:33:41:96:db:1f:d8:ba:80:3f:82:d9:10:93:72:b9:d6:3d: d9:4e:79:5c:0f:b0:c4:d4:f3:f3:3f:84:39:ed:fd:14:a2:d2: d5:3a:e6:7f:7f:cd:c0:7b:d9:bb:3f:65:ed:d8:1e:9b:6e:7e: bc:ba:ec:9b:a3:b9:58:ce:cd:d6:f8:4c:46:f0:c6:07:d6:c7: 9f:b6:f4:bf:68:b8:5d:af:80:ec:f5:bc:28:a8:a1:41:60:a0: 0e:db:b8:45:cb:95:a3:2b:61:de:34:4a:1e:e5:ec:7c:3d:ce: 41:c8:6f:c7:b8:71:c4:e6:19:d5:b7:c7:3b:bf:84:7a:61:07: 66:f3:b3:1a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYCITD6rDnoIUa6a3QDJvUJqwvGgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDMwMDAwMDAwWhcNMjQwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDFlMzQ4MDEyYmVlZTViN2U5ZDA2ODk0YTc4NWJjYmE0 YzcyZTQ1ZTViNjEzOGQ1NDY2Mjk1ZTcwYzI1OWJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8c2sBErkU5eWuyvp/zEl/xs4zxFfr2y0CkBcLWIDoO3Vh iShsJhoRp6xGtLZKNYog5ztk1pA/8Pk8EDQhOQ8UKC/F5ussl9+qoHZyZWZUIEn4 T+QrJQQD+9rWBZvc6o7wC9ccDSVH7xt/hAHW/5MecjPMUl47Q852Kbivwmr2rZaK S+Xtp843IuzsaTHBVofiylqww2vg/ml9acbPZFo/9f/gR8VV66UAgezW7IcDEeOa L8XzJgTwlEEcNIFPIWplreBYxyw7d1Sl/yD+mLr7ainmKoHwGoY52UMhInXhjDW4 CBLV+UfdK4s+3IzzsnzhsAH8WPejUb5LO9fDcHvDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUomDi2wecZfP2yvDN7BgjRrPAyHYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2YTMxOGJjLWY0ODUtNDIyNS1iYzk1LTk4MzQxM2Q5Yjg2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDPJDANBgkqhkiG9w0BAQsFAAOCAQEAXFfUX9x+BvNTSrWRaOhMSFJcwCFO /ymgZ/81BPgp+0jiQnbTpz7Vm6ixLFuMJKUpu2Dq5NQi2A6DfBQR35ykzD2IKrw9 mNV1rn6eHmt/39V+0zTtlognjA1ksZuqjRbV3LtvSnoA+/2/lGMW23eiZdlK13RF t06Wk3t+eSedkDNBltsf2LqAP4LZEJNyudY92U55XA+wxNTz8z+EOe39FKLS1Trm f3/NwHvZuz9l7dgem25+vLrsm6O5WM7N1vhMRvDGB9bHn7b0v2i4Xa+A7PW8KKih QWCgDtu4RcuVoyth3jRKHuXsfD3OQchvx7hxxOYZ1bfHO7+EemEHZvOzGg== -----END CERTIFICATE-----Generated at Thu May 9 01:25:41 2024 by rpki-client on console-fra.rpki-client.org