$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc776f6a-0058-4758-afbd-1ac00571a86f.roa File: dc776f6a-0058-4758-afbd-1ac00571a86f.roa (raw, json) Hash identifier: 7brpceewZZWAb/yo0FL8xqVpe/W9Oq6vO52/3+SUOzA= Subject key identifier: 29:B0:B3:2C:7A:65:EF:CB:96:8F:65:CB:80:C9:61:6A:5C:73:7B:8D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 748044D13CD444C051185151754250D5DEEADBF0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc776f6a-0058-4758-afbd-1ac00571a86f.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 70.237.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:80:44:d1:3c:d4:44:c0:51:18:51:51:75:42:50:d5:de:ea:db:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=87ed46f3a6585d62a9252c772ad1337cc1281160471dfa2e66a43bf53f4e40cd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:36:61:8f:85:10:77:39:f5:a0:81:7c:c8:c1: 9c:92:94:6f:5d:e7:3e:ab:ba:82:99:53:10:52:e5: 79:d0:1c:51:33:fd:49:fc:11:42:f2:1b:7f:09:4e: fb:d2:3d:72:98:20:8a:38:2f:d9:7e:9f:07:f9:fb: 71:5c:6f:80:19:ef:96:e6:03:c6:c7:fa:5d:fc:65: 35:92:60:cf:ee:df:1d:33:c3:bb:8f:40:d7:e0:ad: cf:10:f0:df:1d:5a:9a:5c:2d:78:d3:0c:d3:45:99: 7b:f3:da:a3:68:5e:82:cd:82:77:f8:9b:14:f1:4b: 3f:81:25:36:64:eb:7e:8d:67:68:5b:8c:19:64:e7: a0:8d:0e:4b:97:a7:58:1a:9b:b7:9b:dc:a0:e3:c1: 3a:d7:12:5b:0b:0d:5a:88:39:4b:9b:92:1f:52:8e: 91:54:46:49:20:16:ff:3f:b3:0e:29:e7:86:8b:ac: b3:40:9a:3b:a9:bc:82:5f:99:05:7c:aa:a7:e6:b8: 5d:18:f9:89:a6:f5:8d:15:5f:7f:4c:27:12:fe:1f: 32:7c:5d:b2:43:e8:f5:30:0d:82:12:ef:35:ba:e4: 82:74:15:bb:e7:2e:75:22:d5:d7:01:6d:50:56:3d: 74:82:21:f9:32:41:85:a0:b4:e5:47:63:4a:35:96: 95:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B0:B3:2C:7A:65:EF:CB:96:8F:65:CB:80:C9:61:6A:5C:73:7B:8D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc776f6a-0058-4758-afbd-1ac00571a86f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.237.192.0/18 Signature Algorithm: sha256WithRSAEncryption 78:03:fc:10:75:f9:bb:ab:7d:f3:89:5d:e1:28:0d:76:85:50: be:0c:08:cd:13:43:a7:08:53:f3:4e:d9:21:3f:78:97:85:1d: 01:a1:b8:e1:91:00:38:e3:ae:50:4a:eb:6e:34:c6:ed:50:70: 0c:5e:d5:4c:09:03:35:8e:d6:c8:3f:6a:5b:b1:16:70:8a:cf: e5:b4:d3:da:ea:9b:84:30:73:30:ef:8d:36:ee:51:a6:19:41: 78:8b:b6:90:75:6b:ca:fa:35:c5:15:1d:af:fa:5c:c8:4f:1c: ae:3a:8b:6a:97:ff:56:eb:5c:ab:80:50:7d:df:6c:c9:de:0c: 90:0e:e6:85:f7:6a:fc:0a:c9:c3:8d:ff:e1:9f:bd:57:97:63: d6:8e:86:d1:54:a4:da:4a:30:bc:07:5f:fe:f0:16:89:9a:7c: bc:47:fd:68:12:32:f7:06:ac:ed:89:8e:89:38:b9:a9:4d:3d: b2:b2:b0:0e:a9:47:ec:bc:90:02:54:6b:c9:ee:4a:d1:3e:42: ac:49:25:c9:88:b5:1f:a4:8d:70:c5:cd:16:87:3b:c9:be:b3: 26:03:56:a1:16:f1:67:fc:1b:98:69:89:a3:f4:f2:0e:13:cd: a6:50:0d:00:3a:3c:92:cf:47:06:f3:8a:ab:68:fb:02:72:4d: 26:f5:e8:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdIBE0TzURMBRGFFRdUJQ1d7q2/AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4N2VkNDZmM2E2NTg1ZDYyYTkyNTJjNzcyYWQxMzM3Y2Mx MjgxMTYwNDcxZGZhMmU2NmE0M2JmNTNmNGU0MGNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5NmGPhRB3OfWggXzIwZySlG9d5z6ruoKZUxBS5XnQHFEz /Un8EULyG38JTvvSPXKYIIo4L9l+nwf5+3Fcb4AZ75bmA8bH+l38ZTWSYM/u3x0z w7uPQNfgrc8Q8N8dWppcLXjTDNNFmXvz2qNoXoLNgnf4mxTxSz+BJTZk636NZ2hb jBlk56CNDkuXp1gam7eb3KDjwTrXElsLDVqIOUubkh9SjpFURkkgFv8/sw4p54aL rLNAmjupvIJfmQV8qqfmuF0Y+Ymm9Y0VX39MJxL+HzJ8XbJD6PUwDYIS7zW65IJ0 FbvnLnUi1dcBbVBWPXSCIfkyQYWgtOVHY0o1lpXfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKbCzLHpl78uWj2XLgMlhalxze40wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RjNzc2ZjZhLTAwNTgtNDc1OC1hZmJkLTFhYzAwNTcxYTg2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZG7cAwDQYJKoZIhvcNAQELBQADggEBAHgD/BB1+burffOJXeEoDXaFUL4M CM0TQ6cIU/NO2SE/eJeFHQGhuOGRADjjrlBK6240xu1QcAxe1UwJAzWO1sg/alux FnCKz+W009rqm4QwczDvjTbuUaYZQXiLtpB1a8r6NcUVHa/6XMhPHK46i2qX/1br XKuAUH3fbMneDJAO5oX3avwKycON/+GfvVeXY9aOhtFUpNpKMLwHX/7wFomafLxH /WgSMvcGrO2Jjok4ualNPbKysA6pR+y8kAJUa8nuStE+QqxJJcmItR+kjXDFzRaH O8m+syYDVqEW8Wf8G5hpiaP08g4TzaZQDQA6PJLPRwbziqto+wJyTSb16D8= -----END CERTIFICATE-----Generated at Thu May 2 01:05:44 2024 by rpki-client on console-fra.rpki-client.org