$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce97c611-2d92-41ef-8c05-54514964b382.roa File: ce97c611-2d92-41ef-8c05-54514964b382.roa (raw, json) Hash identifier: EVo1wwZt98rzEWinjs8ilVMGpgYBeCQXcyPoPDoc+FU= Subject key identifier: 54:DC:13:A6:CA:CE:78:EF:7E:26:BC:A3:8B:06:04:AC:92:66:00:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BE8236F9DCBD0E803137B0FA880FB25ACE0195E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce97c611-2d92-41ef-8c05-54514964b382.roa Signing time: Thu 18 Apr 2024 00:00:00 +0000 ROA not before: Thu 18 Apr 2024 00:00:00 +0000 ROA not after: Thu 23 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 204.32.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:e8:23:6f:9d:cb:d0:e8:03:13:7b:0f:a8:80:fb:25:ac:e0:19:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:00:00 2024 GMT Not After : May 23 23:59:59 2024 GMT Subject: serialNumber=174570a8238df87f7b4d0d2632ed45a7d39b0fc4063eabffb6e4ef8c2d1491da, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:9a:2f:37:69:99:72:a6:fc:67:a7:5d:88:91: 04:f4:32:51:4c:24:5b:ab:0e:39:39:08:c2:5a:5f: 2b:3e:c4:55:2e:cc:05:bf:a8:6c:1d:a8:8a:c1:3d: 67:1b:bd:d3:78:62:e4:80:cb:68:57:33:45:99:17: 9c:f8:a9:7a:36:9b:52:2b:a5:e4:8f:e4:26:d1:5c: 9c:5f:0a:06:0a:66:27:98:cf:78:24:31:c9:88:27: 40:03:2a:4c:2b:d2:60:f2:08:31:ac:57:e9:5d:43: a2:e4:a7:fc:43:32:34:44:91:e6:95:f8:76:8c:5e: 20:3d:31:45:7a:1b:eb:91:7b:96:f3:86:5b:be:c9: 53:2d:e8:70:02:e5:0e:23:08:82:f3:6d:28:7b:75: ce:b7:ca:8d:cb:46:fb:ed:aa:2d:53:2f:d5:c1:3c: 47:a1:b4:a9:3e:31:ee:5a:d5:3c:40:b1:dc:06:34: f4:1b:b4:63:c0:91:e6:5f:3a:99:eb:8a:07:8f:3c: 58:5e:93:62:a3:27:da:d4:74:15:fc:c3:f9:ab:51: 2a:3e:3f:90:e8:1c:d1:3d:5f:d3:9b:96:32:7c:0a: 83:27:0a:c4:cc:da:4a:35:17:00:69:a2:c7:d6:0b: b9:e8:e7:4d:f3:34:2e:06:10:0e:b4:c2:0b:a6:31: 0c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DC:13:A6:CA:CE:78:EF:7E:26:BC:A3:8B:06:04:AC:92:66:00:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce97c611-2d92-41ef-8c05-54514964b382.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.32.128.0/20 Signature Algorithm: sha256WithRSAEncryption a8:1b:32:c2:48:f7:ea:0e:91:bf:3d:53:df:ec:39:d9:04:d4: f1:f9:32:7c:94:b7:a6:e8:86:7a:91:3a:02:91:79:7a:c7:a0: 96:f2:11:b8:2e:d2:42:5f:88:dc:a3:27:2d:67:98:d4:b4:74: e3:f7:07:ea:79:61:61:29:19:6c:92:b2:b8:d0:23:8a:54:05: 23:c4:b6:bd:b6:d7:25:e6:33:5c:78:d8:25:4e:eb:69:76:42: 08:1c:b2:7d:f3:2b:81:54:89:7b:14:a7:ec:e1:ab:43:fa:ac: a5:22:d4:70:a2:ac:eb:89:8e:8e:41:21:ce:fa:b2:1f:63:d4: 5d:f3:58:c8:cc:da:4a:27:6d:76:6e:73:60:c7:89:b4:49:8b: 5a:b0:94:96:0c:be:3a:3d:11:51:42:41:e3:41:98:7f:4d:68: 79:14:cd:b0:3b:40:95:c8:fe:15:08:59:d3:e4:ab:1a:cd:f0: 48:0e:20:e2:d2:d2:13:8a:73:3d:2d:a2:95:b8:fe:38:6b:18: 5a:9b:31:34:09:7e:4c:11:8d:9f:b9:5c:04:30:2f:4f:7c:89: dd:83:38:99:ce:ce:7a:10:08:ce:87:02:3b:b6:2c:29:b5:1f: 6e:15:ec:88:da:2d:5b:20:31:cb:b0:f6:02:90:72:61:4a:b3: 4d:24:33:33 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe+gjb53L0OgDE3sPqID7JazgGV4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE4MDAwMDAwWhcNMjQwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzQ1NzBhODIzOGRmODdmN2I0ZDBkMjYzMmVkNDVhN2Qz OWIwZmM0MDYzZWFiZmZiNmU0ZWY4YzJkMTQ5MWRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNmi83aZlypvxnp12IkQT0MlFMJFurDjk5CMJaXys+xFUu zAW/qGwdqIrBPWcbvdN4YuSAy2hXM0WZF5z4qXo2m1IrpeSP5CbRXJxfCgYKZieY z3gkMcmIJ0ADKkwr0mDyCDGsV+ldQ6Lkp/xDMjREkeaV+HaMXiA9MUV6G+uRe5bz hlu+yVMt6HAC5Q4jCILzbSh7dc63yo3LRvvtqi1TL9XBPEehtKk+Me5a1TxAsdwG NPQbtGPAkeZfOpnrigePPFhek2KjJ9rUdBX8w/mrUSo+P5DoHNE9X9ObljJ8CoMn CsTM2ko1FwBposfWC7no503zNC4GEA60wgumMQxPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVNwTpsrOeO9+JryjiwYErJJmAFAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlOTdjNjExLTJkOTItNDFlZi04YzA1LTU0NTE0OTY0YjM4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATMIIAwDQYJKoZIhvcNAQELBQADggEBAKgbMsJI9+oOkb89U9/sOdkE1PH5 MnyUt6bohnqROgKReXrHoJbyEbgu0kJfiNyjJy1nmNS0dOP3B+p5YWEpGWySsrjQ I4pUBSPEtr221yXmM1x42CVO62l2Qggcsn3zK4FUiXsUp+zhq0P6rKUi1HCirOuJ jo5BIc76sh9j1F3zWMjM2konbXZuc2DHibRJi1qwlJYMvjo9EVFCQeNBmH9NaHkU zbA7QJXI/hUIWdPkqxrN8EgOIOLS0hOKcz0topW4/jhrGFqbMTQJfkwRjZ+5XAQw L098id2DOJnOznoQCM6HAju2LCm1H24V7IjaLVsgMcuw9gKQcmFKs00kMzM= -----END CERTIFICATE-----Generated at Thu May 9 01:25:48 2024 by rpki-client on console-fra.rpki-client.org