$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/afe3f41c-3477-4fb3-ad26-6f3a9793063f.roa File: afe3f41c-3477-4fb3-ad26-6f3a9793063f.roa (raw, json) Hash identifier: jPxfzIL9+ESrzsfhfUH/FLd2TKAv9gCJj0u9AycVwLc= Subject key identifier: E3:67:EE:ED:75:69:21:D8:08:9D:81:63:39:35:E5:F4:41:DD:0B:40 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F23A51735EF388C0E58136709FADE8B1370051B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/afe3f41c-3477-4fb3-ad26-6f3a9793063f.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:23:a5:17:35:ef:38:8c:0e:58:13:67:09:fa:de:8b:13:70:05:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=6a488dfd165ef13417c89243cf11e4fa6655c83ffbdfec8e579fcc10ca28b27c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f7:70:c2:8d:99:d5:8a:5e:09:88:42:49:91: 57:9e:2e:2b:43:5f:25:36:a6:fa:68:1e:d7:dd:fe: 5b:96:f9:2c:07:cb:56:d7:72:de:ef:48:6f:62:08: bd:a1:9c:e6:23:62:be:0d:c9:e6:9b:9c:f4:a7:e0: 9b:11:d7:95:3e:9c:1e:2b:9d:6c:20:50:fb:78:28: 3c:64:92:39:80:20:a9:a5:cc:7a:0a:fd:eb:b5:1d: 3a:cd:59:92:64:6a:ec:e9:e9:35:8d:6f:dc:44:8a: c8:be:65:de:34:71:b1:35:c2:94:ca:d5:0b:d4:4c: aa:e7:98:2a:1d:6d:ef:92:30:11:d6:fb:af:5e:1a: 49:94:12:a5:b9:6a:fe:86:93:24:9f:f5:f6:41:9c: 79:93:09:7e:08:a1:78:c2:cc:93:e6:06:b8:af:d5: 69:32:5c:14:96:dc:98:d8:64:fd:97:dd:d3:4e:82: 23:cb:75:f4:89:e0:d6:fc:0e:95:2b:c0:9c:69:63: 75:5e:42:2f:d0:49:2f:23:74:a2:3f:6c:4f:d7:af: 3f:71:e2:e7:f5:80:3b:d7:0e:b9:72:b7:e9:5d:fb: b1:3c:9c:ee:df:c1:68:03:11:2b:61:0c:7e:9e:fd: 16:cd:10:3c:fc:0e:7c:73:fb:bb:7f:ea:d9:86:51: 33:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:67:EE:ED:75:69:21:D8:08:9D:81:63:39:35:E5:F4:41:DD:0B:40 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/afe3f41c-3477-4fb3-ad26-6f3a9793063f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.119.0/24 Signature Algorithm: sha256WithRSAEncryption a8:35:c4:27:96:19:87:a9:ba:e2:87:95:32:79:b4:2c:de:dc: 9a:81:31:eb:51:07:7c:e4:45:dd:dc:b2:a4:91:8b:80:00:89: 2c:6b:51:a7:c1:8e:6c:27:a5:fe:d7:25:52:00:b7:ef:63:8f: a3:2e:a2:23:4b:9f:42:7a:81:00:cd:da:6f:9e:e5:39:e0:69: 6d:fe:94:2d:2e:62:4d:00:73:c0:3f:65:d6:53:7a:7c:55:3b: 20:b0:a3:3e:86:0c:13:78:d9:36:b8:1d:dd:d2:c7:a9:6c:e8: 64:96:73:0c:6c:4b:29:bd:d4:96:eb:8d:a8:1e:71:d3:cd:99: ba:1d:c9:bd:3b:79:b6:f8:80:21:f4:42:55:96:29:a2:d0:fe: 61:0c:25:98:c6:87:d2:14:c3:5a:8c:32:f3:df:80:4f:42:5b: b8:cd:13:00:b6:dd:cc:78:fe:fc:d2:c5:3f:82:3c:81:b2:07: 24:4e:56:45:dd:61:71:4e:b0:65:fd:03:92:ed:2a:e3:24:c7: a0:b5:0e:90:cb:ad:62:e2:9f:7f:7d:da:34:b4:c2:98:f7:4a: a4:ae:b2:a8:a8:cb:6c:dc:7d:56:87:3b:f8:5a:3f:a5:3f:aa: 00:95:2f:35:40:24:bf:f9:a3:4f:04:fe:cf:b8:a8:68:38:6b: 6b:3d:9e:3a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXyOlFzXvOIwOWBNnCfreixNwBRswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTQ4OGRmZDE2NWVmMTM0MTdjODkyNDNjZjExZTRmYTY2 NTVjODNmZmJkZmVjOGU1NzlmY2MxMGNhMjhiMjdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDo93DCjZnVil4JiEJJkVeeLitDXyU2pvpoHtfd/luW+SwH y1bXct7vSG9iCL2hnOYjYr4NyeabnPSn4JsR15U+nB4rnWwgUPt4KDxkkjmAIKml zHoK/eu1HTrNWZJkauzp6TWNb9xEisi+Zd40cbE1wpTK1QvUTKrnmCodbe+SMBHW +69eGkmUEqW5av6GkySf9fZBnHmTCX4IoXjCzJPmBriv1WkyXBSW3JjYZP2X3dNO giPLdfSJ4Nb8DpUrwJxpY3VeQi/QSS8jdKI/bE/Xrz9x4uf1gDvXDrlyt+ld+7E8 nO7fwWgDESthDH6e/RbNEDz8Dnxz+7t/6tmGUTN9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU42fu7XVpIdgInYFjOTXl9EHdC0AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmZTNmNDFjLTM0NzctNGZiMy1hZDI2LTZmM2E5NzkzMDYzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXcwDQYJKoZIhvcNAQELBQADggEBAKg1xCeWGYepuuKHlTJ5tCze3JqB MetRB3zkRd3csqSRi4AAiSxrUafBjmwnpf7XJVIAt+9jj6MuoiNLn0J6gQDN2m+e 5TngaW3+lC0uYk0Ac8A/ZdZTenxVOyCwoz6GDBN42Ta4Hd3Sx6ls6GSWcwxsSym9 1JbrjagecdPNmbodyb07ebb4gCH0QlWWKaLQ/mEMJZjGh9IUw1qMMvPfgE9CW7jN EwC23cx4/vzSxT+CPIGyByROVkXdYXFOsGX9A5LtKuMkx6C1DpDLrWLin3992jS0 wpj3SqSusqioy2zcfVaHO/haP6U/qgCVLzVAJL/5o08E/s+4qGg4a2s9njo= -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:30 2024 by rpki-client on console-fra.rpki-client.org