$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce1fb8ae-b11f-4d53-9264-87bf8f24c78a.roa File: ce1fb8ae-b11f-4d53-9264-87bf8f24c78a.roa (raw, json) Hash identifier: rKrNZuMPaBMMOUbBTtKoyEFem5DGqp6Ig+EDml7dOtI= Subject key identifier: 7E:C3:C4:72:F5:AC:0A:D6:B4:BE:66:D2:10:74:AA:D2:AC:24:5E:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02AE6A714778F8585AD243398E7A8A01D32CDF0E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce1fb8ae-b11f-4d53-9264-87bf8f24c78a.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 67.202.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ae:6a:71:47:78:f8:58:5a:d2:43:39:8e:7a:8a:01:d3:2c:df:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=791d00d8c6937aca9e42c399cfe830d11318aeac3e8483d90d109fd53e5d64db, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:54:ca:a2:1c:01:cb:ee:d0:d6:cb:c2:76:09: 4d:bc:b8:b6:e0:4c:a4:f9:24:d2:8f:ef:df:07:8a: 11:8d:82:26:8f:1b:34:66:d5:5e:13:04:a5:46:f0: 37:64:21:04:af:49:db:37:a1:87:64:00:ae:70:db: f1:bb:fb:29:b9:b2:94:83:36:5d:7a:fe:f4:a7:da: 5c:c2:db:81:7c:f1:2f:32:cf:b9:5d:2c:06:d8:bf: 66:e3:c4:bf:69:20:c6:ec:7c:c0:b5:74:c6:60:fe: e8:f0:aa:07:79:73:17:19:fb:b4:c1:df:33:b9:05: 09:56:9a:6a:f3:05:f5:ba:4f:8a:f5:aa:d1:28:17: b0:4e:c3:41:f2:03:a4:2c:93:26:7d:36:73:fc:d4: 05:0a:94:72:0f:66:b8:f9:85:88:1a:d1:02:bc:a0: 7b:69:b6:bb:03:99:53:4f:24:e8:bf:60:80:2c:0f: a4:44:4d:5c:4c:fc:0d:fd:5c:62:7a:6c:c0:bc:b1: ac:2e:21:88:d5:d9:96:08:37:a6:44:ee:db:44:59: 79:4e:74:b7:8b:90:56:79:50:52:14:c2:b4:94:56: 9e:ad:cd:ce:e7:3d:6c:09:94:5e:57:7c:df:07:65: 33:d7:87:c3:1b:98:59:08:b4:64:86:3d:cc:0e:37: 62:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:C3:C4:72:F5:AC:0A:D6:B4:BE:66:D2:10:74:AA:D2:AC:24:5E:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce1fb8ae-b11f-4d53-9264-87bf8f24c78a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.202.0.0/18 Signature Algorithm: sha256WithRSAEncryption 7b:33:dc:68:41:82:f0:98:89:a8:4f:d3:cc:d0:b4:4e:ee:14: 31:04:64:5f:42:2c:e3:66:71:58:ae:e3:f3:78:f8:1a:f4:46: 0b:df:69:c8:f8:4d:84:25:09:52:42:82:3d:79:9a:6a:7c:52: 24:dd:c5:52:a9:e6:47:9a:e1:99:ed:87:53:90:b1:b0:9f:8a: 7a:f9:a2:15:19:8c:6f:c9:6e:20:33:5a:35:1a:b3:d2:6d:d2: d2:79:11:16:5b:eb:2d:45:69:98:0d:2b:09:37:3b:c6:1a:91: 66:3e:e0:7f:cf:ed:f0:ab:b3:37:4e:53:48:ab:09:3e:e9:9a: 43:5e:1e:d6:7c:f4:9c:3a:a3:39:23:c5:33:72:4d:b3:cc:41: 8a:eb:4b:6d:36:b5:ba:a7:f9:d8:de:02:71:58:c4:38:44:67: 1c:9c:d6:42:79:73:c7:e4:8e:82:e5:14:e5:95:8f:33:11:ce: 69:53:70:f4:d6:b8:ec:3e:2a:2e:c1:7c:27:98:bb:b8:da:8f: 46:39:7e:4e:52:f0:34:ee:d4:ee:d0:8c:db:92:7b:84:d0:9e: 88:e3:6a:3e:d1:21:e9:72:f2:f3:bb:b2:64:7f:bb:cc:c9:7d: 85:48:66:34:f6:10:e7:62:cf:b4:08:a0:cd:85:d5:69:7d:d2: 65:82:a2:bb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAq5qcUd4+Fha0kM5jnqKAdMs3w4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTFkMDBkOGM2OTM3YWNhOWU0MmMzOTljZmU4MzBkMTEz MThhZWFjM2U4NDgzZDkwZDEwOWZkNTNlNWQ2NGRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3VMqiHAHL7tDWy8J2CU28uLbgTKT5JNKP798HihGNgiaP GzRm1V4TBKVG8DdkIQSvSds3oYdkAK5w2/G7+ym5spSDNl16/vSn2lzC24F88S8y z7ldLAbYv2bjxL9pIMbsfMC1dMZg/ujwqgd5cxcZ+7TB3zO5BQlWmmrzBfW6T4r1 qtEoF7BOw0HyA6QskyZ9NnP81AUKlHIPZrj5hYga0QK8oHtptrsDmVNPJOi/YIAs D6RETVxM/A39XGJ6bMC8sawuIYjV2ZYIN6ZE7ttEWXlOdLeLkFZ5UFIUwrSUVp6t zc7nPWwJlF5XfN8HZTPXh8MbmFkItGSGPcwON2IXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfsPEcvWsCta0vmbSEHSq0qwkXqIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlMWZiOGFlLWIxMWYtNGQ1My05MjY0LTg3YmY4ZjI0Yzc4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZDygAwDQYJKoZIhvcNAQELBQADggEBAHsz3GhBgvCYiahP08zQtE7uFDEE ZF9CLONmcViu4/N4+Br0Rgvfacj4TYQlCVJCgj15mmp8UiTdxVKp5kea4Znth1OQ sbCfinr5ohUZjG/JbiAzWjUas9Jt0tJ5ERZb6y1FaZgNKwk3O8YakWY+4H/P7fCr szdOU0irCT7pmkNeHtZ89Jw6ozkjxTNyTbPMQYrrS202tbqn+djeAnFYxDhEZxyc 1kJ5c8fkjoLlFOWVjzMRzmlTcPTWuOw+Ki7BfCeYu7jaj0Y5fk5S8DTu1O7QjNuS e4TQnojjaj7RIely8vO7smR/u8zJfYVIZjT2EOdiz7QIoM2F1Wl90mWCors= -----END CERTIFICATE-----Generated at Thu May 9 01:25:47 2024 by rpki-client on console-fra.rpki-client.org