$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae7fd512-be39-49fd-a290-231494080d7f.roa File: ae7fd512-be39-49fd-a290-231494080d7f.roa (raw, json) Hash identifier: GCj6Rj8wKkIXFM2nW+ZJL4K2gglsiB/janSYTKuRLEE= Subject key identifier: 79:55:56:BE:B6:5F:2C:91:2D:75:23:94:F8:CE:04:98:D3:80:9F:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03A907F2B5B38892DC0B1C76259A3EE700CFF218 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae7fd512-be39-49fd-a290-231494080d7f.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.165.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:a9:07:f2:b5:b3:88:92:dc:0b:1c:76:25:9a:3e:e7:00:cf:f2:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=722a05a8b691af0ef3fd45cd5f1339c16f23f3f37867132a8d120cc2cd8cf897, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:95:97:86:fd:0a:08:6f:a0:b5:72:f9:cf:a1: 09:ff:7a:38:b0:ec:a8:30:5a:35:ca:a9:e9:48:bc: 6c:51:52:67:b3:41:d6:db:08:6b:a2:33:2b:fa:75: 8a:22:34:72:9e:0b:e6:80:e2:4a:6d:de:d1:c0:53: 5d:57:29:ab:58:5b:39:e7:95:67:7d:20:42:5f:1b: 64:b0:83:9e:c9:e0:e6:90:da:a5:58:0a:ea:7f:60: 8e:d1:b2:c4:0e:de:2f:a6:cb:dd:88:db:12:60:3e: 6b:cb:64:6a:43:0e:52:53:5b:da:98:88:f9:44:23: f3:3f:2f:42:ba:21:f4:23:b9:cc:33:60:55:60:21: fc:ae:23:ec:1e:dc:1f:23:7c:94:1b:10:ee:84:8c: 01:74:15:a8:16:51:5a:85:15:a2:4b:6e:53:1d:16: 58:59:e0:3c:d8:34:2b:f1:ae:f9:1c:86:ca:b6:46: ba:38:ea:31:cf:98:a6:73:87:fe:b6:45:6b:89:67: 6c:fc:8a:d4:03:ad:4b:db:60:82:d0:c6:a1:4e:9e: a4:bf:7a:d8:ff:a8:06:ed:06:c2:c9:46:7b:e6:76: 71:7e:33:4a:e3:3c:19:95:0d:57:a3:1d:ca:0f:cf: 42:a4:7f:65:df:b8:49:00:48:cc:84:9e:c9:3c:76: 0d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:55:56:BE:B6:5F:2C:91:2D:75:23:94:F8:CE:04:98:D3:80:9F:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae7fd512-be39-49fd-a290-231494080d7f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.165.0.0/16 Signature Algorithm: sha256WithRSAEncryption af:52:83:c7:b3:98:c1:76:4f:b0:09:42:a1:07:58:5d:40:a3: 94:73:e6:ee:7b:f4:92:d6:2b:5f:81:31:bd:d7:04:ac:ff:52: e2:1a:30:d0:eb:04:bb:b6:8f:8b:6c:cb:96:21:28:32:04:33: a1:fc:5b:3d:43:4e:3c:ef:c6:1c:4f:c9:0c:57:28:c0:14:81: 33:30:76:c0:64:19:23:bb:f7:81:29:1f:7e:34:2c:07:d1:62: 7a:29:c0:61:6d:4b:dd:fb:31:66:a6:52:11:7b:16:de:85:e1: 81:f6:57:27:db:11:c0:fc:9e:2d:90:80:63:a8:af:0c:f0:49: 0a:fa:6e:b9:e9:a4:1b:99:96:c9:e6:ad:e5:5d:7c:c6:46:ac: 9a:e3:0e:5c:4b:9b:bb:a9:4f:6e:60:64:16:fd:8d:03:d6:13: d2:e0:e5:94:43:11:be:e8:65:18:52:89:51:f9:9a:3d:98:d4: 0f:11:de:6d:50:c6:24:6e:d8:a6:7c:a4:9c:20:b1:82:78:3d: a3:bb:d6:36:1a:d5:0c:c4:75:fc:c9:fe:86:d6:fd:99:8b:47: e4:c8:2d:66:aa:0c:12:d8:e5:58:b8:04:0e:33:4e:13:1b:65: 5e:3b:e2:05:0c:2e:d3:49:74:01:17:ad:b6:90:24:20:f9:79: 78:5c:b1:1b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA6kH8rWziJLcCxx2JZo+5wDP8hgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEwMDAwMDAwWhcNMjQwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjJhMDVhOGI2OTFhZjBlZjNmZDQ1Y2Q1ZjEzMzljMTZm MjNmM2YzNzg2NzEzMmE4ZDEyMGNjMmNkOGNmODk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0lZeG/QoIb6C1cvnPoQn/ejiw7KgwWjXKqelIvGxRUmez QdbbCGuiMyv6dYoiNHKeC+aA4kpt3tHAU11XKatYWznnlWd9IEJfG2Swg57J4OaQ 2qVYCup/YI7RssQO3i+my92I2xJgPmvLZGpDDlJTW9qYiPlEI/M/L0K6IfQjucwz YFVgIfyuI+we3B8jfJQbEO6EjAF0FagWUVqFFaJLblMdFlhZ4DzYNCvxrvkchsq2 Rro46jHPmKZzh/62RWuJZ2z8itQDrUvbYILQxqFOnqS/etj/qAbtBsLJRnvmdnF+ M0rjPBmVDVejHcoPz0Kkf2XfuEkASMyEnsk8dg1tAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeVVWvrZfLJEtdSOU+M4EmNOAn6QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlN2ZkNTEyLWJlMzktNDlmZC1hMjkwLTIzMTQ5NDA4MGQ3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAopTANBgkqhkiG9w0BAQsFAAOCAQEAr1KDx7OYwXZPsAlCoQdYXUCjlHPm 7nv0ktYrX4ExvdcErP9S4how0OsEu7aPi2zLliEoMgQzofxbPUNOPO/GHE/JDFco wBSBMzB2wGQZI7v3gSkffjQsB9FieinAYW1L3fsxZqZSEXsW3oXhgfZXJ9sRwPye LZCAY6ivDPBJCvpuuemkG5mWyeat5V18xkasmuMOXEubu6lPbmBkFv2NA9YT0uDl lEMRvuhlGFKJUfmaPZjUDxHebVDGJG7YpnyknCCxgng9o7vWNhrVDMR1/Mn+htb9 mYtH5MgtZqoMEtjlWLgEDjNOExtlXjviBQwu00l0ARettpAkIPl5eFyxGw== -----END CERTIFICATE-----Generated at Thu May 2 08:51:11 2024 by rpki-client on console-fra.rpki-client.org