$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa File: c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa (raw, json) Hash identifier: yKeFruOVLwhAG8WeGZaOg18+HmZkZii4YSRU2AMccNc= Subject key identifier: F0:28:44:83:AA:73:56:82:F6:95:0A:15:E2:67:CB:95:52:8B:F4:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 078625CE58AEF76935639C90A3ED0418E6702262 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.227.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:86:25:ce:58:ae:f7:69:35:63:9c:90:a3:ed:04:18:e6:70:22:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=8a00a3147d386b73d5506801a2c5d3693c6b86fa9e18047ffccc48dc454422de, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:04:08:48:f3:68:b5:2b:fa:bf:e9:24:af:ed: f4:4e:bd:90:57:aa:4d:ce:d5:17:66:74:ce:2e:ed: 7c:49:51:c4:d0:d8:41:ad:8e:9b:23:50:c0:a0:a7: cd:68:80:29:77:16:c7:fd:cd:81:99:d0:24:eb:13: fd:4f:1a:8b:bf:ea:fe:74:54:a6:d0:24:b9:5d:f4: d3:ca:d2:42:5c:03:e6:f5:b5:49:fd:9d:69:3b:db: 0d:c4:b0:bc:44:8c:43:55:21:43:ad:8a:ce:7c:6a: ec:98:6d:15:3d:8a:c4:2e:81:9f:e6:ab:ab:40:ff: b1:25:17:ae:43:13:ac:d3:08:41:4a:5d:fa:59:4a: ca:ef:48:a0:4c:a4:34:84:c1:cc:47:11:ef:0e:33: 15:24:dc:d4:0d:9c:8e:5f:c3:c8:4f:34:bc:e3:63: a2:9f:90:25:84:31:ee:d3:03:32:e4:5b:83:b7:9c: da:4b:73:39:7d:9b:98:39:70:20:8c:24:54:db:c7: 15:ec:3d:91:8e:0e:ee:59:14:93:5f:5c:78:7c:e5: 30:be:81:5b:c0:9d:25:66:a8:69:92:f3:98:8e:71: 76:3d:34:72:69:eb:d8:3c:75:7c:c6:fc:2b:68:b8: 7b:8d:94:9c:a0:15:e0:8a:7b:63:07:88:f8:7e:21: 18:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:28:44:83:AA:73:56:82:F6:95:0A:15:E2:67:CB:95:52:8B:F4:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.227.0.0/16 Signature Algorithm: sha256WithRSAEncryption cf:db:3b:06:db:3c:ea:48:43:82:43:73:ce:84:4f:ea:81:fc: a8:8b:eb:1e:d7:b3:95:90:a1:0b:a6:84:54:ff:8c:41:e3:86: 5f:eb:27:92:68:37:9f:e0:68:f5:09:2a:eb:e4:b1:8e:a7:27: 88:a6:93:c2:d4:6f:53:97:42:f2:29:a0:13:7b:2f:ab:7e:24: f3:59:34:17:06:67:43:de:f4:d6:b3:e8:cc:c5:13:45:96:ca: ab:76:20:9a:ba:d6:75:25:36:fd:dd:ff:2d:3b:7a:ce:96:75: 53:c6:18:4a:b4:1e:8f:7d:aa:71:e2:cd:c4:cc:a6:fb:fd:30: d3:22:24:a4:6c:eb:4d:d2:88:f9:4b:20:86:7c:86:3c:df:32: 43:4f:6e:18:b1:e9:36:01:94:92:15:8a:66:64:48:c0:9f:2a: ec:92:09:08:db:e6:87:58:ea:a2:53:fc:42:26:c7:ca:79:49: c0:63:2e:d8:3c:fc:33:49:78:25:b1:9d:ff:35:ad:34:9f:0b: 2f:ac:30:a8:c6:d2:dd:f9:f2:74:de:4b:db:5b:dd:02:3b:ec: 60:d2:e9:13:08:9e:a6:32:e6:a1:cc:1b:76:f4:da:46:72:e7: 65:70:4d:52:bb:85:e1:fe:90:90:06:78:91:05:ee:d5:61:54: a8:41:f9:6c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUB4Ylzliu92k1Y5yQo+0EGOZwImIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEwMDAwMDAwWhcNMjQwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTAwYTMxNDdkMzg2YjczZDU1MDY4MDFhMmM1ZDM2OTNj NmI4NmZhOWUxODA0N2ZmY2NjNDhkYzQ1NDQyMmRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxBAhI82i1K/q/6SSv7fROvZBXqk3O1RdmdM4u7XxJUcTQ 2EGtjpsjUMCgp81ogCl3Fsf9zYGZ0CTrE/1PGou/6v50VKbQJLld9NPK0kJcA+b1 tUn9nWk72w3EsLxEjENVIUOtis58auyYbRU9isQugZ/mq6tA/7ElF65DE6zTCEFK XfpZSsrvSKBMpDSEwcxHEe8OMxUk3NQNnI5fw8hPNLzjY6KfkCWEMe7TAzLkW4O3 nNpLczl9m5g5cCCMJFTbxxXsPZGODu5ZFJNfXHh85TC+gVvAnSVmqGmS85iOcXY9 NHJp69g8dXzG/CtouHuNlJygFeCKe2MHiPh+IRiLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8ChEg6pzVoL2lQoV4mfLlVKL9J0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMGU2NWNkLWRkNjItNGE3OC05MDEzLTIzZTRhYTM2NjNkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo4zANBgkqhkiG9w0BAQsFAAOCAQEAz9s7Bts86khDgkNzzoRP6oH8qIvr HtezlZChC6aEVP+MQeOGX+snkmg3n+Bo9Qkq6+SxjqcniKaTwtRvU5dC8imgE3sv q34k81k0FwZnQ9701rPozMUTRZbKq3YgmrrWdSU2/d3/LTt6zpZ1U8YYSrQej32q ceLNxMym+/0w0yIkpGzrTdKI+UsghnyGPN8yQ09uGLHpNgGUkhWKZmRIwJ8q7JIJ CNvmh1jqolP8QibHynlJwGMu2Dz8M0l4JbGd/zWtNJ8LL6wwqMbS3fnydN5L21vd AjvsYNLpEwiepjLmocwbdvTaRnLnZXBNUruF4f6QkAZ4kQXu1WFUqEH5bA== -----END CERTIFICATE-----Generated at Thu Apr 18 23:54:35 2024 by rpki-client on console-fra.rpki-client.org