$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa File: d8fadca1-ece1-4fd9-8c0c-44964044b286.roa (raw, json) Hash identifier: Hql6HuqVWWh+7pzXvvotKcpVUYP4FNyXm5Zoa6EOSfc= Subject key identifier: 48:98:80:99:32:6D:66:C5:F9:EF:1F:3F:D8:70:93:05:E8:C8:75:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 71A672BFF4F072790C719FE5181ED678D483EAB3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa Signing time: Sat 13 Apr 2024 00:00:00 +0000 ROA not before: Sat 13 Apr 2024 00:00:00 +0000 ROA not after: Sat 18 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 142.54.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:a6:72:bf:f4:f0:72:79:0c:71:9f:e5:18:1e:d6:78:d4:83:ea:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 13 00:00:00 2024 GMT Not After : May 18 23:59:59 2024 GMT Subject: serialNumber=c52f03b67872ff6ab375680a220f86f8700588f276abef1058795c9a8c716a5c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4b:cb:5b:a6:c1:e2:61:c7:b2:10:67:cf:eb: 52:f4:49:c2:65:92:a6:aa:b1:63:da:9c:a4:74:4f: 1f:7a:61:ec:79:56:c3:af:c5:d6:11:f4:c5:49:b8: 3d:63:60:c1:60:71:fe:13:b7:2c:79:1f:4f:07:01: 0c:85:9e:72:08:c0:c9:1f:8b:b7:b2:75:1e:f5:ce: 91:21:30:fe:88:eb:0c:1b:b3:8e:15:6a:b9:cc:d4: 0f:16:3c:81:1e:1d:5e:40:f5:8f:95:70:e0:dd:f4: 37:2e:0f:72:51:48:6a:0d:32:5b:37:b6:bd:f9:24: 2e:67:f1:49:08:75:b6:8e:e1:c1:ac:20:7c:b2:b0: 4e:ae:a9:37:5a:8c:59:2a:cf:fb:10:7e:4a:1a:c3: 34:33:5f:78:c1:41:19:48:8e:30:07:c9:38:ed:e2: 0c:c8:6b:90:ae:49:20:15:5d:55:cb:37:d8:22:56: 8f:99:04:e0:a9:9b:5a:f8:89:7b:02:89:95:f2:91: 74:00:f1:f2:ce:cd:cf:d7:19:27:61:56:6c:0e:58: 82:59:81:01:c3:39:67:af:50:cc:98:bd:27:fd:74: 55:b5:a0:de:f5:b6:be:1f:04:9b:38:6b:82:b6:4a: 5e:88:1c:a4:21:ea:72:1c:eb:2d:44:80:10:b3:8d: 7a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:98:80:99:32:6D:66:C5:F9:EF:1F:3F:D8:70:93:05:E8:C8:75:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.54.128.0/19 Signature Algorithm: sha256WithRSAEncryption 86:b6:72:bb:5e:c5:ec:da:05:fd:45:d1:8d:ed:b8:cb:15:6f: 9f:75:32:56:62:af:36:9f:d5:0b:23:3f:73:9f:b0:92:1f:f7: d9:c6:d3:f5:f8:9f:4b:0c:75:72:73:1f:5e:5e:d5:8d:2e:ed: 21:15:6f:70:9e:49:23:4c:7c:32:9f:c5:0f:f1:b1:c1:bd:aa: 7e:23:13:16:6c:3b:2c:8e:55:1f:c7:22:85:03:7c:2e:df:73: dc:bf:c0:7d:99:b4:50:e6:8b:e0:a8:88:9a:3d:86:85:f8:ba: 63:78:16:1d:40:95:d9:19:20:c7:61:41:82:bc:56:34:69:70: 13:99:9b:33:3f:30:d8:03:89:79:d8:ba:62:1c:eb:cf:71:f6: 73:b9:fc:2e:c4:e3:2c:fb:81:fa:3c:ba:a0:41:35:5c:72:70: 7c:8e:29:b7:0e:e6:24:98:23:85:e2:18:7f:8d:82:22:cf:1c: 44:f8:ec:23:9a:6f:b2:09:bf:7a:3f:f4:46:5b:49:10:58:a7: 8e:39:2c:df:21:21:e0:d3:ce:e4:c7:6e:2b:f2:12:61:89:24: f9:b1:3a:b0:5b:ef:31:97:8f:7a:55:0f:8f:f5:12:1f:9b:6a: 01:1d:4c:2c:f5:84:7b:59:82:41:e0:9a:d3:90:2e:98:e9:ae: f8:8f:90:2e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcaZyv/TwcnkMcZ/lGB7WeNSD6rMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEzMDAwMDAwWhcNMjQwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTJmMDNiNjc4NzJmZjZhYjM3NTY4MGEyMjBmODZmODcw MDU4OGYyNzZhYmVmMTA1ODc5NWM5YThjNzE2YTVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXS8tbpsHiYceyEGfP61L0ScJlkqaqsWPanKR0Tx96Yex5 VsOvxdYR9MVJuD1jYMFgcf4Ttyx5H08HAQyFnnIIwMkfi7eydR71zpEhMP6I6wwb s44VarnM1A8WPIEeHV5A9Y+VcODd9DcuD3JRSGoNMls3tr35JC5n8UkIdbaO4cGs IHyysE6uqTdajFkqz/sQfkoawzQzX3jBQRlIjjAHyTjt4gzIa5CuSSAVXVXLN9gi Vo+ZBOCpm1r4iXsCiZXykXQA8fLOzc/XGSdhVmwOWIJZgQHDOWevUMyYvSf9dFW1 oN71tr4fBJs4a4K2Sl6IHKQh6nIc6y1EgBCzjXqrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSJiAmTJtZsX57x8/2HCTBejIdaMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4ZmFkY2ExLWVjZTEtNGZkOS04YzBjLTQ0OTY0MDQ0YjI4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWONoAwDQYJKoZIhvcNAQELBQADggEBAIa2crtexezaBf1F0Y3tuMsVb591 MlZirzaf1QsjP3OfsJIf99nG0/X4n0sMdXJzH15e1Y0u7SEVb3CeSSNMfDKfxQ/x scG9qn4jExZsOyyOVR/HIoUDfC7fc9y/wH2ZtFDmi+CoiJo9hoX4umN4Fh1AldkZ IMdhQYK8VjRpcBOZmzM/MNgDiXnYumIc689x9nO5/C7E4yz7gfo8uqBBNVxycHyO KbcO5iSYI4XiGH+NgiLPHET47COab7IJv3o/9EZbSRBYp445LN8hIeDTzuTHbivy EmGJJPmxOrBb7zGXj3pVD4/1Eh+bagEdTCz1hHtZgkHgmtOQLpjprviPkC4= -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:57 2024 by rpki-client on console-fra.rpki-client.org