$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da37b88f-f8e8-4601-b9f8-7396c546a739.roa File: da37b88f-f8e8-4601-b9f8-7396c546a739.roa (raw, json) Hash identifier: 0sD7sTO45CvqpdsdJdlQnkevWgGmlTEAyig2NunxwXQ= Subject key identifier: 9F:0D:00:CF:CE:47:0C:B9:96:5D:DA:AD:8C:1A:DA:0D:6B:30:01:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77162F4EA3094185D297E72C522DAE858C52B2ED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da37b88f-f8e8-4601-b9f8-7396c546a739.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 45.57.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:16:2f:4e:a3:09:41:85:d2:97:e7:2c:52:2d:ae:85:8c:52:b2:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=6658595efc37c47b89d32df0a1e5f85ede762bbd1fba1cce33fa17427b39b023, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:72:f5:54:2e:33:a2:eb:e4:73:67:21:1c:1e: 24:57:e9:ee:c0:2f:08:6b:ae:69:49:b4:ca:f5:de: e9:af:be:c4:2b:c9:b9:ba:71:2c:4b:41:f5:c7:02: f3:4a:58:f4:83:cd:88:f2:1e:ba:9d:3a:57:ad:16: e8:f7:e5:c1:61:a7:56:4c:f4:39:06:6f:a0:f5:30: ef:f8:8c:7a:93:31:50:6e:03:84:fd:bb:9f:f4:50: 1f:0a:4e:0c:2f:fa:ab:a7:1a:b0:47:6e:70:c9:0a: 98:e5:00:29:2c:50:b7:12:d2:2b:16:c1:fe:5b:e6: 82:9d:67:da:ce:7d:55:bf:5c:f5:c1:d7:00:6b:68: ef:e5:dd:58:c3:89:b3:fb:9d:51:d7:8c:d7:aa:93: 73:9c:78:4e:0f:63:4d:70:6a:9f:9f:9d:01:44:d8: e8:b4:0d:b6:1f:6e:e4:bb:ca:06:c1:35:d5:88:b6: 90:e6:bb:9f:3f:47:bf:db:20:20:9c:fd:dc:4f:f0: d2:a5:9d:b3:c5:7b:87:a8:ed:d5:a8:4c:c6:21:89: 3c:4c:87:b2:63:ad:17:d2:16:54:3b:15:42:c1:b3: bb:f1:82:e8:49:e6:f9:b6:56:c4:4b:c3:6b:62:d7: 17:d8:35:06:d5:65:ec:87:41:6d:4c:72:d6:c3:2e: 99:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:0D:00:CF:CE:47:0C:B9:96:5D:DA:AD:8C:1A:DA:0D:6B:30:01:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da37b88f-f8e8-4601-b9f8-7396c546a739.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.57.128.0/17 Signature Algorithm: sha256WithRSAEncryption 5c:89:76:1e:68:7a:93:9f:d0:89:02:8b:3d:44:ae:c3:b7:07: 24:bd:e2:a7:3c:61:05:48:72:59:f3:22:17:52:49:fe:45:6f: db:e3:17:bd:30:dc:42:95:49:09:7d:5c:5c:43:f0:6e:81:b5: 53:64:da:b1:3c:f6:91:4e:a3:68:1a:72:88:c2:27:f2:32:7b: e1:bc:11:c5:2b:fe:a2:7f:7d:a7:05:06:fc:12:52:1f:40:b2: f4:91:c9:6c:32:19:85:01:90:96:4f:82:ed:1a:03:dd:38:48: b5:02:33:be:7e:25:71:92:b8:96:c0:85:66:d3:b3:4e:3d:cf: 9e:26:e7:21:59:84:32:43:bf:af:38:98:9b:90:ea:37:df:56: 75:6c:15:77:66:d8:92:64:dd:80:e2:29:24:4f:08:bd:2f:f2: 08:74:2d:9e:4f:32:38:f1:5f:93:9d:a5:74:66:56:98:62:23: 0c:4b:d7:c7:08:57:bd:b9:4d:01:05:57:77:71:0c:fa:99:84: 1a:f4:5b:77:7d:dc:02:be:b7:36:de:b2:72:ff:8c:dd:c2:a5: 31:a5:02:f0:4e:3c:dd:99:a3:fd:d4:4f:50:c3:7f:26:47:2f: c4:e4:5a:be:7f:87:a2:89:25:c8:0a:2a:82:6a:12:0e:58:11: 4b:1c:ac:38 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdxYvTqMJQYXSl+csUi2uhYxSsu0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NjU4NTk1ZWZjMzdjNDdiODlkMzJkZjBhMWU1Zjg1ZWRl NzYyYmJkMWZiYTFjY2UzM2ZhMTc0MjdiMzliMDIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCacvVULjOi6+RzZyEcHiRX6e7ALwhrrmlJtMr13umvvsQr ybm6cSxLQfXHAvNKWPSDzYjyHrqdOletFuj35cFhp1ZM9DkGb6D1MO/4jHqTMVBu A4T9u5/0UB8KTgwv+qunGrBHbnDJCpjlACksULcS0isWwf5b5oKdZ9rOfVW/XPXB 1wBraO/l3VjDibP7nVHXjNeqk3OceE4PY01wap+fnQFE2Oi0DbYfbuS7ygbBNdWI tpDmu58/R7/bICCc/dxP8NKlnbPFe4eo7dWoTMYhiTxMh7JjrRfSFlQ7FULBs7vx guhJ5vm2VsRLw2ti1xfYNQbVZeyHQW1MctbDLpkTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnw0Az85HDLmWXdqtjBraDWswAWIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhMzdiODhmLWY4ZTgtNDYwMS1iOWY4LTczOTZjNTQ2YTczOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBActOYAwDQYJKoZIhvcNAQELBQADggEBAFyJdh5oepOf0IkCiz1ErsO3ByS9 4qc8YQVIclnzIhdSSf5Fb9vjF70w3EKVSQl9XFxD8G6BtVNk2rE89pFOo2gacojC J/Iye+G8EcUr/qJ/facFBvwSUh9AsvSRyWwyGYUBkJZPgu0aA904SLUCM75+JXGS uJbAhWbTs049z54m5yFZhDJDv684mJuQ6jffVnVsFXdm2JJk3YDiKSRPCL0v8gh0 LZ5PMjjxX5OdpXRmVphiIwxL18cIV725TQEFV3dxDPqZhBr0W3d93AK+tzbesnL/ jN3CpTGlAvBOPN2Zo/3UT1DDfyZHL8TkWr5/h6KJJcgKKoJqEg5YEUscrDg= -----END CERTIFICATE-----Generated at Thu May 9 01:25:49 2024 by rpki-client on console-fra.rpki-client.org