$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb48584d-19e8-48c5-bd15-8a33b9dc6d49.roa File: cb48584d-19e8-48c5-bd15-8a33b9dc6d49.roa (raw, json) Hash identifier: QSzet8rZwUZkLbcEQ7eBnyvgVOAtKEx+uzmUl/+iJCM= Subject key identifier: 38:F4:A5:E5:02:A3:D5:9F:84:C4:BC:23:78:69:4D:5F:48:D6:D5:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 17198ABA540E6031C27282C106B0281C6A114532 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb48584d-19e8-48c5-bd15-8a33b9dc6d49.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.73.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:19:8a:ba:54:0e:60:31:c2:72:82:c1:06:b0:28:1c:6a:11:45:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=48d83b007088788ce8ea89202da8c6270de46357e1a60a8f1eb6a6c11245b314, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ac:cd:12:c7:59:9d:fc:8d:59:ac:bc:b2:bb: 08:65:65:28:6d:02:92:de:fd:c4:f3:66:92:28:f8: 66:42:31:1a:5f:ea:e2:7f:57:30:72:33:72:eb:91: ff:40:ce:4e:c0:c6:fa:21:b5:c2:4a:d0:10:78:30: da:41:76:cc:f3:62:45:51:d7:d0:6a:4e:83:11:ec: 32:23:21:da:5b:ea:c2:a9:03:61:69:0c:37:40:8f: 7f:78:53:ac:8d:0e:7e:f1:dc:e0:38:fb:9f:7f:67: fc:e5:d9:47:da:f9:57:eb:7e:ff:3e:9f:b5:70:a2: 59:45:f1:3e:d5:ea:3c:49:e6:ae:e6:f4:6c:a0:b8: 97:51:3f:da:e7:a3:f9:69:b7:ac:a3:a4:4d:a2:96: 79:fc:33:79:25:76:50:83:ad:39:d1:4b:63:5d:01: 14:94:a0:30:9e:31:6f:cb:c5:c3:b2:8d:42:a6:6c: 5f:3f:37:a8:4d:ae:00:d8:dc:3c:30:d8:e1:f1:92: f7:e0:ae:d4:08:8c:8a:11:2f:8a:67:c1:e8:cd:bc: 16:8c:01:07:13:2e:fd:2a:8a:ce:23:4a:fb:93:d8: f3:d5:6c:65:b0:bf:2f:b4:51:e2:83:70:5a:de:3f: f0:bd:c4:e9:66:44:c2:76:6e:cf:ba:42:56:7b:be: fc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F4:A5:E5:02:A3:D5:9F:84:C4:BC:23:78:69:4D:5F:48:D6:D5:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb48584d-19e8-48c5-bd15-8a33b9dc6d49.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption 35:ed:6b:f5:6e:85:32:4f:83:95:1b:3a:0e:2d:f8:df:f4:44: 39:31:88:bd:10:69:ab:ba:6e:9b:fa:c0:c6:a6:9c:c5:5d:e9: 8f:a8:45:23:a0:2a:f3:5e:b7:d8:d8:05:db:6c:4d:72:c6:f0: 53:44:4e:1c:4a:73:00:1c:98:41:e3:a5:3a:c3:82:40:35:8b: 47:3b:29:97:65:4d:e0:ea:09:0c:f3:2a:57:0d:7f:fb:53:b1: 8a:bd:1b:a9:7a:5b:22:9a:d8:fe:f3:bf:a6:31:b0:b0:65:d0: fb:ae:84:ac:97:86:a7:18:94:5b:b9:8a:58:82:21:ad:e3:bc: 0d:87:e1:8e:d3:4e:db:96:da:64:27:53:06:02:15:d4:9a:ed: 73:67:23:86:9a:b7:c1:21:03:f1:0a:15:e5:6e:97:db:41:8e: b2:ac:2d:94:b3:e9:3b:98:13:4d:b5:29:9d:06:f6:ad:55:6b: 82:9b:dc:d4:3e:9e:84:be:45:f4:dc:a8:26:73:a1:5d:81:16: e6:1a:32:4d:df:22:3b:54:f4:ae:90:fa:93:77:75:27:50:1c: 6c:28:2f:2d:74:78:5a:be:24:6c:e4:eb:c8:c5:e9:15:e0:d7: 65:bd:2a:41:bb:89:40:54:cd:d4:b5:ee:79:2d:1f:f8:9d:7f: 2f:a6:aa:95 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFxmKulQOYDHCcoLBBrAoHGoRRTIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGQ4M2IwMDcwODg3ODhjZThlYTg5MjAyZGE4YzYyNzBk ZTQ2MzU3ZTFhNjBhOGYxZWI2YTZjMTEyNDViMzE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgrM0Sx1md/I1ZrLyyuwhlZShtApLe/cTzZpIo+GZCMRpf 6uJ/VzByM3Lrkf9Azk7AxvohtcJK0BB4MNpBdszzYkVR19BqToMR7DIjIdpb6sKp A2FpDDdAj394U6yNDn7x3OA4+59/Z/zl2Ufa+Vfrfv8+n7VwollF8T7V6jxJ5q7m 9GyguJdRP9rno/lpt6yjpE2ilnn8M3kldlCDrTnRS2NdARSUoDCeMW/LxcOyjUKm bF8/N6hNrgDY3Dww2OHxkvfgrtQIjIoRL4pnwejNvBaMAQcTLv0qis4jSvuT2PPV bGWwvy+0UeKDcFreP/C9xOlmRMJ2bs+6QlZ7vvxpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOPSl5QKj1Z+ExLwjeGlNX0jW1VUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiNDg1ODRkLTE5ZTgtNDhjNS1iZDE1LThhMzNiOWRjNmQ0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4STANBgkqhkiG9w0BAQsFAAOCAQEANe1r9W6FMk+DlRs6Di343/REOTGI vRBpq7pum/rAxqacxV3pj6hFI6Aq81632NgF22xNcsbwU0ROHEpzAByYQeOlOsOC QDWLRzspl2VN4OoJDPMqVw1/+1Oxir0bqXpbIprY/vO/pjGwsGXQ+66ErJeGpxiU W7mKWIIhreO8DYfhjtNO25baZCdTBgIV1Jrtc2cjhpq3wSED8QoV5W6X20GOsqwt lLPpO5gTTbUpnQb2rVVrgpvc1D6ehL5F9NyoJnOhXYEW5hoyTd8iO1T0rpD6k3d1 J1AcbCgvLXR4Wr4kbOTryMXpFeDXZb0qQbuJQFTN1LXueS0f+J1/L6aqlQ== -----END CERTIFICATE-----Generated at Thu May 2 11:33:24 2024 by rpki-client on console-fra.rpki-client.org