$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9f65bea-8ca3-415d-b0e3-6b568f8e01ba.roa File: c9f65bea-8ca3-415d-b0e3-6b568f8e01ba.roa (raw, json) Hash identifier: yVKtRN9nMjWc3Q5EEDmu3CXLOb+lXRnYVkFp5Is4BQw= Subject key identifier: 8C:BC:F6:95:72:28:58:DC:15:41:B6:8C:F5:CC:DD:39:44:9A:B3:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08AC7DC43C44A12BAA871AD41E39AAF4DABA3D80 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9f65bea-8ca3-415d-b0e3-6b568f8e01ba.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:ac:7d:c4:3c:44:a1:2b:aa:87:1a:d4:1e:39:aa:f4:da:ba:3d:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=337a6ed59a58f4ed7fd8e5ffa4b9934a898ac7f282f747c20e074686c16b54a6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:93:dc:ea:66:9c:b6:e3:6d:84:d6:43:75:46: 6f:f1:23:91:81:aa:d2:8e:20:a9:6f:15:97:6c:99: 86:7d:b1:41:88:b4:f8:11:34:e7:66:d9:1d:84:e3: 5e:70:3d:a4:5e:4c:ae:ba:f1:09:ea:14:e9:56:59: ef:66:64:11:8f:0f:33:e5:90:3f:2e:44:17:36:b9: 48:0f:15:40:27:3c:7e:9f:05:c6:cb:45:62:63:bc: ad:14:fb:25:a1:fe:b8:51:41:a0:53:4f:8e:47:36: 97:72:7c:3e:4b:c9:f6:d7:69:7f:b1:91:6f:c5:1f: 70:b5:61:ac:81:34:63:9d:14:9d:b5:ad:53:6a:72: 32:9e:d4:0a:85:9e:0b:fa:19:cb:6c:8f:11:d1:cf: 2f:8c:7e:c5:27:07:f3:ef:58:67:5c:57:97:09:d7: 5d:c1:ce:5d:aa:b5:8c:44:82:79:08:6f:47:98:87: fd:4c:0c:02:cd:65:82:3e:b7:57:42:ad:fb:32:35: 0e:d1:34:4a:6e:82:68:68:f2:96:86:0e:f3:66:38: b3:de:f1:9c:4b:68:11:ae:8a:ac:ad:74:d0:ea:90: b0:c8:66:99:80:fc:fd:fb:29:57:3b:ac:1b:f2:47: f6:95:61:98:7a:c7:b2:dc:85:75:6b:37:c6:28:d3: 67:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BC:F6:95:72:28:58:DC:15:41:B6:8C:F5:CC:DD:39:44:9A:B3:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9f65bea-8ca3-415d-b0e3-6b568f8e01ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.120.0/21 Signature Algorithm: sha256WithRSAEncryption 3f:df:19:cf:03:bc:f5:57:d0:64:65:5e:25:9c:76:61:6b:1b: f7:dd:f1:7e:25:00:72:0d:b8:4d:f1:1d:f3:7c:6a:1e:91:3c: db:34:04:48:44:2a:2f:14:a5:d3:89:0c:3c:49:5c:24:dd:aa: 54:16:e3:1f:4f:43:92:64:3f:47:1b:8d:70:b4:4b:b7:ac:22: b4:ec:c2:0a:56:df:00:b3:cf:6f:31:39:52:df:f1:62:46:e4: 26:c6:7f:f7:e3:d2:2e:ed:5f:59:b5:b9:21:79:b1:fa:72:e1: ea:39:b6:48:af:62:44:68:09:0e:6c:d3:d2:be:2d:c5:79:72: dd:d2:c3:59:5a:de:b7:34:d1:15:6e:64:e7:1c:5f:ab:f6:c0: 35:39:4b:b0:da:1c:4e:9b:6d:2e:6f:74:48:e6:5b:57:d5:7d: d8:b4:67:8b:62:74:d1:70:97:14:1a:b4:1c:59:ae:04:2c:6b: 6f:1b:39:96:f1:86:52:85:97:83:fe:4e:d2:bf:aa:f1:20:92: 3f:26:d7:8d:0c:16:5c:99:b4:a3:57:21:6e:d0:28:75:ad:5e: c3:22:1c:91:f2:cf:3a:9f:cb:3e:01:91:71:14:b4:fa:0e:05: fa:a5:e2:d7:18:f8:05:08:98:a9:1e:42:2e:9d:31:49:4b:51: 47:7b:0d:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCKx9xDxEoSuqhxrUHjmq9Nq6PYAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzdhNmVkNTlhNThmNGVkN2ZkOGU1ZmZhNGI5OTM0YTg5 OGFjN2YyODJmNzQ3YzIwZTA3NDY4NmMxNmI1NGE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOk9zqZpy2422E1kN1Rm/xI5GBqtKOIKlvFZdsmYZ9sUGI tPgRNOdm2R2E415wPaReTK668QnqFOlWWe9mZBGPDzPlkD8uRBc2uUgPFUAnPH6f BcbLRWJjvK0U+yWh/rhRQaBTT45HNpdyfD5LyfbXaX+xkW/FH3C1YayBNGOdFJ21 rVNqcjKe1AqFngv6GctsjxHRzy+MfsUnB/PvWGdcV5cJ113Bzl2qtYxEgnkIb0eY h/1MDALNZYI+t1dCrfsyNQ7RNEpugmho8paGDvNmOLPe8ZxLaBGuiqytdNDqkLDI ZpmA/P37KVc7rBvyR/aVYZh6x7LchXVrN8Yo02cRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjLz2lXIoWNwVQbaM9czdOUSasxAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5ZjY1YmVhLThjYTMtNDE1ZC1iMGUzLTZiNTY4ZjhlMDFiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgAHgwDQYJKoZIhvcNAQELBQADggEBAD/fGc8DvPVX0GRlXiWcdmFrG/fd 8X4lAHINuE3xHfN8ah6RPNs0BEhEKi8UpdOJDDxJXCTdqlQW4x9PQ5JkP0cbjXC0 S7esIrTswgpW3wCzz28xOVLf8WJG5CbGf/fj0i7tX1m1uSF5sfpy4eo5tkivYkRo CQ5s09K+LcV5ct3Sw1la3rc00RVuZOccX6v2wDU5S7DaHE6bbS5vdEjmW1fVfdi0 Z4tidNFwlxQatBxZrgQsa28bOZbxhlKFl4P+TtK/qvEgkj8m140MFlyZtKNXIW7Q KHWtXsMiHJHyzzqfyz4BkXEUtPoOBfql4tcY+AUImKkeQi6dMUlLUUd7DdY= -----END CERTIFICATE-----Generated at Wed Apr 24 01:49:03 2024 by rpki-client on console-fra.rpki-client.org