$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daef5106-8adc-44c0-83f2-4951f4c42325.roa File: daef5106-8adc-44c0-83f2-4951f4c42325.roa (raw, json) Hash identifier: i3pRPzvKP2jWG+wY+wUUOQUQEg/jrCoH0W+fBhpoZUQ= Subject key identifier: 77:3E:41:C4:29:A4:96:3A:65:02:3B:2D:F1:B1:A5:05:82:3D:97:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 719C16473D186AFD7F47E5DC067B4909A40118EA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daef5106-8adc-44c0-83f2-4951f4c42325.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 56.107.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:9c:16:47:3d:18:6a:fd:7f:47:e5:dc:06:7b:49:09:a4:01:18:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=7a1199f9e285c12a0480017c1ba447ac1c0e4b86e07127ee05a71d613c7209e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3f:d8:0c:f7:ad:1f:36:96:d4:6e:d4:93:77: 8b:1c:7c:c3:bf:41:7c:9c:6b:47:0e:e0:e5:32:81: 04:bf:03:77:28:4f:11:5c:64:d7:47:51:84:de:92: 21:7f:57:78:e1:6a:9c:3a:e7:bd:64:21:72:b1:4b: 00:31:d9:58:2d:12:3f:a5:4a:58:48:4d:87:a2:74: 28:dc:6f:d3:e1:ca:76:66:40:dd:38:f0:e8:d4:96: dd:99:d3:3c:5d:a5:0d:e7:00:1f:49:40:d7:f4:3c: 3a:a8:55:ec:dd:4a:77:ec:eb:02:82:c6:62:1c:6e: f6:d1:fc:0c:b3:84:f7:cc:28:fe:ab:79:2e:bc:40: 49:ca:05:4d:01:7b:6c:19:11:5e:c8:8f:4e:c6:ff: 8a:18:2a:07:40:da:82:43:f4:cd:a4:59:39:e6:60: e2:e1:2a:e3:67:18:9a:10:fd:7e:c2:cf:f8:67:43: fc:bb:10:f5:40:dc:c4:c6:c4:f6:52:36:1c:70:99: 66:2f:59:e6:b4:88:be:8e:70:c8:3c:e6:3c:6a:cb: 2f:60:8d:2e:e5:99:be:3c:15:ce:d9:69:ec:23:8e: d6:92:fd:dc:67:ef:49:ba:0f:dc:9e:2f:06:64:a8: ea:f3:04:81:36:ed:24:f9:c2:84:62:10:ba:7a:54: 42:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:3E:41:C4:29:A4:96:3A:65:02:3B:2D:F1:B1:A5:05:82:3D:97:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daef5106-8adc-44c0-83f2-4951f4c42325.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.107.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:4c:4e:17:92:59:17:b5:33:f5:36:ca:57:d9:12:14:17:74: 5d:c3:41:b1:cb:a6:26:c0:e2:f2:0b:0f:16:1f:48:11:5f:80: 06:b6:49:9e:0b:95:bb:88:b1:84:91:69:e8:0d:c7:7d:40:c3: 96:ce:1a:67:86:a0:f3:aa:10:c2:93:c7:94:0a:03:d8:fe:6c: a7:56:10:32:68:fa:81:9c:d7:b9:c8:de:f0:93:21:cb:20:59: 21:f8:2e:3f:c1:ba:06:84:90:cd:06:6b:27:7f:a3:9a:b9:29: 2f:0d:12:72:91:59:04:80:64:de:28:b2:34:44:c0:30:ae:71: fd:7b:b1:39:dc:a9:20:db:b3:97:b8:fc:e4:dc:21:fc:fc:6b: df:30:28:96:01:aa:7f:8c:b1:85:40:a0:cd:ae:dd:a5:8d:7c: 6d:95:bb:a2:1b:8b:2e:24:f6:e1:53:08:7e:0d:96:18:f9:a6: 9c:c8:4e:2f:2c:a3:17:68:16:e8:a8:17:e0:51:4e:49:9f:a3: 50:df:77:90:3f:60:bf:84:30:15:8f:86:e0:49:45:f1:bd:45: 90:f8:f5:b8:f4:15:7b:7d:96:8c:c6:7c:2e:37:e8:60:d0:79: 2f:ab:4f:9d:6a:85:ff:0c:c6:63:19:11:50:e9:11:e4:fa:fe: 22:01:dc:74 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcZwWRz0Yav1/R+XcBntJCaQBGOowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTExOTlmOWUyODVjMTJhMDQ4MDAxN2MxYmE0NDdhYzFj MGU0Yjg2ZTA3MTI3ZWUwNWE3MWQ2MTNjNzIwOWU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwP9gM960fNpbUbtSTd4scfMO/QXyca0cO4OUygQS/A3co TxFcZNdHUYTekiF/V3jhapw6571kIXKxSwAx2VgtEj+lSlhITYeidCjcb9PhynZm QN048OjUlt2Z0zxdpQ3nAB9JQNf0PDqoVezdSnfs6wKCxmIcbvbR/AyzhPfMKP6r eS68QEnKBU0Be2wZEV7Ij07G/4oYKgdA2oJD9M2kWTnmYOLhKuNnGJoQ/X7Cz/hn Q/y7EPVA3MTGxPZSNhxwmWYvWea0iL6OcMg85jxqyy9gjS7lmb48Fc7ZaewjjtaS /dxn70m6D9yeLwZkqOrzBIE27ST5woRiELp6VEJfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdz5BxCmkljplAjst8bGlBYI9l/8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhZWY1MTA2LThhZGMtNDRjMC04M2YyLTQ5NTFmNGM0MjMyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4azANBgkqhkiG9w0BAQsFAAOCAQEAHExOF5JZF7Uz9TbKV9kSFBd0XcNB scumJsDi8gsPFh9IEV+ABrZJnguVu4ixhJFp6A3HfUDDls4aZ4ag86oQwpPHlAoD 2P5sp1YQMmj6gZzXucje8JMhyyBZIfguP8G6BoSQzQZrJ3+jmrkpLw0ScpFZBIBk 3iiyNETAMK5x/XuxOdypINuzl7j85Nwh/Pxr3zAolgGqf4yxhUCgza7dpY18bZW7 ohuLLiT24VMIfg2WGPmmnMhOLyyjF2gW6KgX4FFOSZ+jUN93kD9gv4QwFY+G4ElF 8b1FkPj1uPQVe32WjMZ8LjfoYNB5L6tPnWqF/wzGYxkRUOkR5Pr+IgHcdA== -----END CERTIFICATE-----Generated at Wed May 1 22:06:44 2024 by rpki-client on console-fra.rpki-client.org