$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2657b36-9417-4838-b13e-541841e2a18f.roa File: c2657b36-9417-4838-b13e-541841e2a18f.roa (raw, json) Hash identifier: pnG205tL8VNk3JndFhhOdi8XAHft2ZAK7PrKI6/fw5M= Subject key identifier: A5:E7:4E:3C:90:06:51:8D:E4:28:A2:70:0A:32:D0:D8:E8:24:AD:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FF14CBDA998E932E088FB1A388561AD909B3CAE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2657b36-9417-4838-b13e-541841e2a18f.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 216.182.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:f1:4c:bd:a9:98:e9:32:e0:88:fb:1a:38:85:61:ad:90:9b:3c:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=17fda5d340078b48b3c677345a7215a328de13533ee6e0b73855b06308cc6e9a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:40:fb:4e:21:90:50:b6:bc:1d:9d:c4:2c:c8: 2e:64:4e:2b:cd:a7:80:fa:73:e5:2c:c7:58:ac:9c: fd:ee:f9:de:79:87:d8:83:d9:70:dc:52:e8:2e:58: 73:32:75:85:d4:c4:02:46:f4:00:d1:f9:72:f6:ad: 85:0d:64:63:fd:0a:6d:23:87:a8:a2:c0:49:c5:2e: 8d:20:69:7c:be:9b:e6:a9:89:21:f4:92:e3:ee:ec: 6c:3c:87:55:bd:c3:fe:bc:d3:77:0a:d5:b0:4c:fc: 6b:c3:2a:de:9e:b6:98:c7:80:03:01:29:95:ee:16: 3a:64:b3:cc:89:bd:a2:1c:37:10:84:35:ff:fe:7e: 52:9e:2e:49:a3:5a:69:13:4b:b4:9c:2a:95:31:ac: 91:83:65:22:01:e8:51:c8:49:89:e5:81:e5:9e:2a: 79:ad:76:2d:56:e0:58:e6:81:aa:29:67:44:19:29: 1f:24:18:8d:c9:fb:9d:a3:b5:52:a8:02:15:ee:e0: 3c:b0:fc:c4:55:9d:67:cf:ad:6a:ee:a3:b4:cc:cb: 2f:0e:06:76:4a:28:33:6d:97:0a:6e:4c:1a:e4:f0: c7:09:13:2e:fb:24:0c:ea:35:40:b1:db:88:87:93: e9:52:91:ac:1e:8f:a9:7c:2d:d0:e3:ef:b6:ef:d1: 12:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:E7:4E:3C:90:06:51:8D:E4:28:A2:70:0A:32:D0:D8:E8:24:AD:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2657b36-9417-4838-b13e-541841e2a18f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.182.224.0/20 Signature Algorithm: sha256WithRSAEncryption d8:21:e5:85:2e:d2:d2:57:68:88:35:d2:c5:30:59:1c:23:49: da:27:55:2a:97:68:bd:10:d2:ed:59:ac:e4:ca:cf:ab:53:21: 22:00:ba:de:f9:69:19:a3:52:ac:6b:5d:06:4d:e4:33:49:3a: 08:8d:5c:09:5a:b7:af:ae:d9:77:8b:56:5a:2e:eb:18:2d:00: 64:b9:a6:ed:4f:49:1a:e8:94:d1:a7:59:fd:5e:05:1e:9e:3a: ba:2e:a6:e9:74:5c:59:3b:8b:61:11:ce:4a:61:39:e1:e8:8a: 8f:a0:a2:16:81:f3:a1:c1:70:18:6c:b3:af:5d:49:7f:fc:b3: 80:d7:75:f8:77:66:98:f7:d2:aa:63:20:0e:eb:66:f3:84:da: c8:a2:a0:6b:43:c9:fc:c0:bf:a3:d8:36:58:11:9b:d6:5e:ca: ec:6c:cf:c4:d0:ea:85:c4:89:4e:52:c9:51:76:5e:71:2d:33: 4d:ff:a7:95:a0:45:ab:99:df:0f:15:e6:a2:64:11:be:20:f1: 6e:7b:be:50:2b:66:d6:f0:0c:4a:09:3d:28:27:20:f8:1c:35: fa:56:67:d9:48:95:86:9e:d3:e8:cd:79:91:34:78:13:83:ca: 19:d2:11:56:8e:e3:25:aa:61:76:2d:0b:32:1a:68:85:43:a6: f4:3d:6e:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT/FMvamY6TLgiPsaOIVhrZCbPK4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2ZkYTVkMzQwMDc4YjQ4YjNjNjc3MzQ1YTcyMTVhMzI4 ZGUxMzUzM2VlNmUwYjczODU1YjA2MzA4Y2M2ZTlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmQPtOIZBQtrwdncQsyC5kTivNp4D6c+Usx1isnP3u+d55 h9iD2XDcUuguWHMydYXUxAJG9ADR+XL2rYUNZGP9Cm0jh6iiwEnFLo0gaXy+m+ap iSH0kuPu7Gw8h1W9w/6803cK1bBM/GvDKt6etpjHgAMBKZXuFjpks8yJvaIcNxCE Nf/+flKeLkmjWmkTS7ScKpUxrJGDZSIB6FHISYnlgeWeKnmtdi1W4FjmgaopZ0QZ KR8kGI3J+52jtVKoAhXu4Dyw/MRVnWfPrWruo7TMyy8OBnZKKDNtlwpuTBrk8McJ Ey77JAzqNUCx24iHk+lSkawej6l8LdDj77bv0RIZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpedOPJAGUY3kKKJwCjLQ2OgkreMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyNjU3YjM2LTk0MTctNDgzOC1iMTNlLTU0MTg0MWUyYTE4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATYtuAwDQYJKoZIhvcNAQELBQADggEBANgh5YUu0tJXaIg10sUwWRwjSdon VSqXaL0Q0u1ZrOTKz6tTISIAut75aRmjUqxrXQZN5DNJOgiNXAlat6+u2XeLVlou 6xgtAGS5pu1PSRrolNGnWf1eBR6eOroupul0XFk7i2ERzkphOeHoio+gohaB86HB cBhss69dSX/8s4DXdfh3Zpj30qpjIA7rZvOE2siioGtDyfzAv6PYNlgRm9Zeyuxs z8TQ6oXEiU5SyVF2XnEtM03/p5WgRauZ3w8V5qJkEb4g8W57vlArZtbwDEoJPSgn IPgcNfpWZ9lIlYae0+jNeZE0eBODyhnSEVaO4yWqYXYtCzIaaIVDpvQ9bvA= -----END CERTIFICATE-----Generated at Thu May 9 01:25:46 2024 by rpki-client on console-fra.rpki-client.org