$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd8acad9-5eda-4708-a880-a3786977daa5.roa File: cd8acad9-5eda-4708-a880-a3786977daa5.roa (raw, json) Hash identifier: gevj+Kv7AKGRqbarVIxeDDRiNrnsWe3tl9dafbihOC0= Subject key identifier: D4:A8:EC:DF:09:F4:67:DD:4D:2E:15:75:B2:82:77:AE:AC:8F:B4:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4AB2D8435AB2D3417F5FB40B6B5D0FFD341B16BD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd8acad9-5eda-4708-a880-a3786977daa5.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 155.193.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b2:d8:43:5a:b2:d3:41:7f:5f:b4:0b:6b:5d:0f:fd:34:1b:16:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=f8d507e4720bd86699a1fbf70040a93c06be4de5873e6293d75ef502c7dec671, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d9:5c:77:87:8d:17:1b:3b:43:cc:62:95:51: 7c:9f:10:7a:bc:7d:c3:cd:70:49:80:bc:50:8d:ab: 98:24:99:cf:41:f0:3e:1d:bb:0d:59:75:13:9a:ef: b3:65:97:b5:f9:a7:e6:f5:3e:4e:a2:cd:34:d7:76: 5d:e7:13:7b:f3:b2:20:8f:ed:5f:06:c2:6f:35:da: a2:35:4e:22:d9:21:fd:55:64:75:73:a1:5a:23:05: 3d:61:27:56:94:b2:2e:43:3b:0c:46:5e:05:ac:7e: 4e:50:61:49:b5:ec:57:d1:a5:fd:ba:1a:23:24:25: a2:25:a4:96:4d:cf:37:12:bb:6c:c8:25:27:91:a2: 26:64:dc:cf:d9:1e:e4:32:bb:19:43:11:f1:9a:36: d7:a6:5d:05:cd:58:59:1e:89:1d:7d:b5:32:de:79: 32:53:04:02:7c:81:cf:0b:9c:67:1d:90:69:90:23: d2:6d:12:cc:a2:d4:7b:87:16:b8:1b:c9:2a:13:8c: d0:e9:32:fb:1e:dc:63:35:c6:87:b4:2b:2f:f8:53: 2f:a9:2a:aa:78:60:6d:b4:01:37:74:a7:ff:ca:c9: 2b:93:64:a8:d6:ce:65:77:6c:34:ab:92:f8:5e:23: 37:18:34:ec:42:e3:4a:d3:35:38:71:eb:35:b2:30: 3a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A8:EC:DF:09:F4:67:DD:4D:2E:15:75:B2:82:77:AE:AC:8F:B4:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd8acad9-5eda-4708-a880-a3786977daa5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.193.0.0/16 Signature Algorithm: sha256WithRSAEncryption 23:d1:9f:88:65:b9:8a:66:63:96:7b:69:f2:5a:ca:65:d7:b9: 5c:d6:97:92:7d:a8:39:43:b3:88:6e:3b:a1:cf:02:9f:fd:e5: 79:b2:40:15:1e:1f:80:ef:2f:2b:21:e4:ce:dd:82:bf:8d:6b: 88:61:6f:a4:04:a7:16:2e:26:f9:2d:48:6d:25:2f:d0:cb:aa: 55:73:e9:1e:7a:91:7a:59:3d:6a:cf:7e:9d:83:1b:6c:ea:41: 24:c2:18:79:65:0c:d9:c0:3e:59:5a:dd:fc:10:be:30:62:e5: a5:a3:18:91:f8:ee:d3:f7:61:3a:9e:95:4b:8b:10:47:06:64: f7:12:c3:26:c1:eb:ba:07:93:5a:5b:04:fd:7b:a7:d3:45:ec: 4d:67:44:c0:37:90:9f:9d:c0:b8:c9:6a:51:87:6c:60:77:81: 34:f9:2e:5a:f0:c5:51:3e:f4:52:41:62:cf:87:b5:f8:25:35: cd:b4:91:1a:69:b3:19:33:40:31:b2:6d:18:dd:d9:e3:07:87: 99:1c:6c:d5:6d:ce:44:1a:bf:20:0d:ad:d4:f5:76:69:43:87: 55:3e:f0:3b:17:33:49:19:26:4b:02:2f:8f:67:ae:db:f7:65: 02:1e:30:04:72:63:7c:1a:11:93:73:17:4f:fd:31:2b:4a:78: f4:1d:7a:43 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSrLYQ1qy00F/X7QLa10P/TQbFr0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOGQ1MDdlNDcyMGJkODY2OTlhMWZiZjcwMDQwYTkzYzA2 YmU0ZGU1ODczZTYyOTNkNzVlZjUwMmM3ZGVjNjcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCc2Vx3h40XGztDzGKVUXyfEHq8fcPNcEmAvFCNq5gkmc9B 8D4duw1ZdROa77Nll7X5p+b1Pk6izTTXdl3nE3vzsiCP7V8Gwm812qI1TiLZIf1V ZHVzoVojBT1hJ1aUsi5DOwxGXgWsfk5QYUm17FfRpf26GiMkJaIlpJZNzzcSu2zI JSeRoiZk3M/ZHuQyuxlDEfGaNtemXQXNWFkeiR19tTLeeTJTBAJ8gc8LnGcdkGmQ I9JtEsyi1HuHFrgbySoTjNDpMvse3GM1xoe0Ky/4Uy+pKqp4YG20ATd0p//KySuT ZKjWzmV3bDSrkvheIzcYNOxC40rTNThx6zWyMDplAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1Kjs3wn0Z91NLhV1soJ3rqyPtJMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkOGFjYWQ5LTVlZGEtNDcwOC1hODgwLWEzNzg2OTc3ZGFhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCbwTANBgkqhkiG9w0BAQsFAAOCAQEAI9GfiGW5imZjlntp8lrKZde5XNaX kn2oOUOziG47oc8Cn/3lebJAFR4fgO8vKyHkzt2Cv41riGFvpASnFi4m+S1IbSUv 0MuqVXPpHnqRelk9as9+nYMbbOpBJMIYeWUM2cA+WVrd/BC+MGLlpaMYkfju0/dh Op6VS4sQRwZk9xLDJsHrugeTWlsE/Xun00XsTWdEwDeQn53AuMlqUYdsYHeBNPku WvDFUT70UkFiz4e1+CU1zbSRGmmzGTNAMbJtGN3Z4weHmRxs1W3ORBq/IA2t1PV2 aUOHVT7wOxczSRkmSwIvj2eu2/dlAh4wBHJjfBoRk3MXT/0xK0p49B16Qw== -----END CERTIFICATE-----Generated at Thu May 2 08:51:13 2024 by rpki-client on console-fra.rpki-client.org