$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c08a872f-947c-45f1-871e-4f3f0a6f9ac8.roa File: c08a872f-947c-45f1-871e-4f3f0a6f9ac8.roa (raw, json) Hash identifier: Vqqa7ZvHS8mBL1XIse32Tu6xDGDnBR7iFJpbBiWHTFo= Subject key identifier: D7:15:1E:C1:75:AE:80:8A:90:64:87:78:52:32:8D:34:97:D8:7F:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C1B3D5C73D3AB16EA5676C06373C3A17EF07288 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c08a872f-947c-45f1-871e-4f3f0a6f9ac8.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 40.45.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:1b:3d:5c:73:d3:ab:16:ea:56:76:c0:63:73:c3:a1:7e:f0:72:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=e71f4a5e58442c43cf53da5d895fd66f0a73260f6062308754ef8c80b3bddd8c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c8:63:ba:bb:10:05:3e:88:41:0f:94:03:6c: 18:0a:7a:a7:e9:5b:6d:9d:23:61:db:3b:5d:6b:38: 96:1e:22:f9:6e:07:f2:30:be:e5:2d:85:92:f6:74: d4:35:29:e9:f7:d0:12:89:3d:d7:87:a9:77:db:00: 0a:41:fb:88:07:bf:bd:6c:54:50:f3:29:68:fb:8d: b7:35:71:62:ce:4b:a5:da:b5:0a:f0:d9:95:8b:82: 9f:a9:33:69:22:43:d2:0b:03:a4:23:e6:12:fb:91: 8e:bb:cf:b3:de:4b:53:af:8d:4d:b0:d9:32:d8:ae: bb:88:0a:2b:c0:9d:18:b5:dd:22:d5:f1:62:84:91: 46:a6:06:85:15:b8:ec:7a:1a:22:0e:4c:a3:f9:23: 1a:bd:a8:fe:67:22:08:ce:ce:89:17:ea:65:15:aa: 7f:96:40:02:88:92:a6:21:c0:75:54:fb:ea:46:81: 2f:c8:67:ed:ae:d4:03:80:a4:4c:e1:97:53:32:f7: 6a:b2:7b:f3:a1:b1:fb:6c:99:95:d7:24:f8:23:81: 8b:29:75:91:70:46:b3:92:30:d5:04:c2:30:5e:fb: d7:8e:38:97:df:b6:19:eb:0f:66:8b:f7:24:78:c1: 57:e5:b2:d3:b9:ee:18:c9:7c:aa:07:df:6c:ae:13: 93:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:15:1E:C1:75:AE:80:8A:90:64:87:78:52:32:8D:34:97:D8:7F:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c08a872f-947c-45f1-871e-4f3f0a6f9ac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.45.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6b:d3:ef:ac:c6:f7:4b:de:a0:e5:ea:47:2f:52:63:02:52:70: 81:ab:e2:36:12:96:5e:41:35:1b:d6:1d:a4:64:ac:98:bf:f4: f4:62:d1:54:d2:7a:e6:f3:14:d7:d7:db:77:6b:29:8a:e3:1f: 1c:ef:4a:12:e8:d9:26:bc:e8:b6:03:b8:42:8e:56:c1:9a:60: 15:f7:3d:d8:d2:43:5b:9c:57:a6:0c:2d:64:a8:1e:ef:6d:a8: 54:3b:28:d9:6b:e0:8a:2b:3a:86:44:06:a0:39:31:49:82:ab: 59:7b:74:bd:02:4a:fc:a4:3d:d8:5e:97:a9:93:22:8e:be:45: 80:45:8c:fe:42:be:48:bb:c3:dd:64:7c:04:5c:68:f9:67:06: ef:2c:17:68:70:50:a3:93:14:16:f4:b4:e2:77:76:99:43:18: f6:38:13:90:1b:76:ec:f0:80:fe:6b:bd:19:cf:47:c5:93:0f: 5f:a2:aa:f6:6c:ed:b3:d4:8b:a7:e6:27:82:58:aa:e7:a2:fa: df:85:f2:ea:52:7f:14:ae:50:e3:fa:91:03:26:97:78:ae:4f: aa:ec:35:94:96:e1:36:2d:70:cb:50:9a:07:0d:32:06:76:3b: dd:e1:57:56:11:7c:a6:2c:c5:43:10:b3:5b:85:a8:d6:67:91: 29:cb:b1:99 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfBs9XHPTqxbqVnbAY3PDoX7wcogwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzFmNGE1ZTU4NDQyYzQzY2Y1M2RhNWQ4OTVmZDY2ZjBh NzMyNjBmNjA2MjMwODc1NGVmOGM4MGIzYmRkZDhjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfyGO6uxAFPohBD5QDbBgKeqfpW22dI2HbO11rOJYeIvlu B/IwvuUthZL2dNQ1Ken30BKJPdeHqXfbAApB+4gHv71sVFDzKWj7jbc1cWLOS6Xa tQrw2ZWLgp+pM2kiQ9ILA6Qj5hL7kY67z7PeS1OvjU2w2TLYrruICivAnRi13SLV 8WKEkUamBoUVuOx6GiIOTKP5Ixq9qP5nIgjOzokX6mUVqn+WQAKIkqYhwHVU++pG gS/IZ+2u1AOApEzhl1My92qye/OhsftsmZXXJPgjgYspdZFwRrOSMNUEwjBe+9eO OJffthnrD2aL9yR4wVflstO57hjJfKoH32yuE5NvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1xUewXWugIqQZId4UjKNNJfYfwMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwOGE4NzJmLTk0N2MtNDVmMS04NzFlLTRmM2YwYTZmOWFjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoLTANBgkqhkiG9w0BAQsFAAOCAQEAa9PvrMb3S96g5epHL1JjAlJwgavi NhKWXkE1G9YdpGSsmL/09GLRVNJ65vMU19fbd2spiuMfHO9KEujZJrzotgO4Qo5W wZpgFfc92NJDW5xXpgwtZKge722oVDso2Wvgiis6hkQGoDkxSYKrWXt0vQJK/KQ9 2F6XqZMijr5FgEWM/kK+SLvD3WR8BFxo+WcG7ywXaHBQo5MUFvS04nd2mUMY9jgT kBt27PCA/mu9Gc9HxZMPX6Kq9mzts9SLp+Yngliq56L634Xy6lJ/FK5Q4/qRAyaX eK5Pquw1lJbhNi1wy1CaBw0yBnY73eFXVhF8pizFQxCzW4Wo1meRKcuxmQ== -----END CERTIFICATE-----Generated at Thu May 9 01:25:45 2024 by rpki-client on console-fra.rpki-client.org