$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/df2bbec5-2a0a-4fce-b92a-c11585f2f6d2.roa File: df2bbec5-2a0a-4fce-b92a-c11585f2f6d2.roa (raw, json) Hash identifier: 0/n+mMLnwtMeolM3Y/CsfzKRCRIDWbF3gLmRIns4vp4= Subject key identifier: 58:A6:1C:10:1E:D7:86:A6:EA:F9:A1:9C:37:55:B7:33:1E:23:A5:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31E6E8602655375BF0DE4FD256AF1FF9934BF6F1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/df2bbec5-2a0a-4fce-b92a-c11585f2f6d2.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.252.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:e6:e8:60:26:55:37:5b:f0:de:4f:d2:56:af:1f:f9:93:4b:f6:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=5ca81437b6f12971a65093068709057507f0719b314f291c8079b7cd161135cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:61:77:62:b0:71:43:ad:20:b8:8f:e9:cb:a2: 8f:24:59:a1:d8:54:58:9f:fa:67:a2:97:4a:73:f4: e4:ff:84:c0:9b:5a:7c:ca:80:89:ca:67:aa:09:fb: 02:57:1d:7d:b7:ad:40:ae:5f:fb:8f:3a:95:be:a7: 0b:62:35:b2:fe:7d:ef:3f:cb:55:84:d0:72:b0:ca: a4:c1:ba:a1:04:39:7f:0e:1d:e0:a3:90:04:61:52: 49:42:95:52:85:ee:eb:32:fb:77:13:01:97:96:b9: 34:9c:99:44:cf:73:75:68:70:51:43:b2:0e:7c:0f: a7:a6:37:10:72:e1:65:51:4c:69:03:43:18:ca:1a: 40:c3:91:14:2d:4c:fa:38:c1:b1:e7:6f:d8:e5:0b: 82:d3:e2:df:d9:36:35:56:58:9a:d3:6f:88:69:ab: 83:52:af:29:0b:fb:08:f4:76:60:81:c3:7d:b2:ae: 03:90:d5:a7:55:f6:0e:ab:ad:6b:86:47:96:3f:e6: 12:d0:2f:e0:98:39:a1:44:98:8f:a0:16:1d:24:dc: b8:de:c8:36:b4:78:43:c7:e9:67:dc:c0:e7:b9:f1: be:0d:81:58:dc:bc:10:c9:af:9e:7b:52:22:ea:79: 0e:09:55:e4:6b:69:6c:a0:e4:85:7e:70:86:9f:a5: 3e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A6:1C:10:1E:D7:86:A6:EA:F9:A1:9C:37:55:B7:33:1E:23:A5:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/df2bbec5-2a0a-4fce-b92a-c11585f2f6d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.252.0.0/16 Signature Algorithm: sha256WithRSAEncryption a2:d4:28:be:f2:2e:18:5f:9a:b0:a0:9a:7e:d7:e7:5e:42:4b: 55:2a:ca:c5:99:90:78:3c:e8:6d:93:77:4f:5c:37:52:aa:f9: 70:2b:72:d1:7f:a3:16:51:3c:bf:7e:24:b1:5b:52:31:df:10: f3:a5:12:43:ff:7b:9e:21:a3:d7:c7:6f:4f:71:40:94:ed:83: 3d:c1:3f:e3:1c:69:5b:ef:47:52:8e:61:ef:46:b2:ae:6a:19: 35:f4:d0:d3:b6:3a:25:3a:b9:3a:f4:d0:0c:f4:cd:9a:b8:fa: 60:83:16:d8:2b:ff:da:c2:21:e5:9e:cf:4f:47:f8:90:dd:73: 86:02:33:67:ef:64:5f:e5:09:1e:d7:51:41:8a:f6:61:ff:52: 08:a9:60:05:21:de:02:a2:7b:45:b5:6c:1a:19:21:1a:10:c8: 65:28:19:24:7d:ac:c0:57:4a:c5:e6:c0:52:23:79:ee:a3:01: 90:13:43:2d:a7:a4:96:da:3d:09:7d:0d:eb:e5:c1:7b:05:1e: c4:93:b8:70:f1:10:4e:6f:ea:9c:28:43:c6:22:9e:c8:96:4a: c1:5d:11:01:d7:d5:14:d9:b4:61:ae:cd:fa:96:db:38:56:e9: b4:01:41:16:a6:40:85:10:85:1e:07:b9:02:d2:c4:1b:8f:2d: 9a:9b:ff:e7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMeboYCZVN1vw3k/SVq8f+ZNL9vEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2E4MTQzN2I2ZjEyOTcxYTY1MDkzMDY4NzA5MDU3NTA3 ZjA3MTliMzE0ZjI5MWM4MDc5YjdjZDE2MTEzNWNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8YXdisHFDrSC4j+nLoo8kWaHYVFif+meil0pz9OT/hMCb WnzKgInKZ6oJ+wJXHX23rUCuX/uPOpW+pwtiNbL+fe8/y1WE0HKwyqTBuqEEOX8O HeCjkARhUklClVKF7usy+3cTAZeWuTScmUTPc3VocFFDsg58D6emNxBy4WVRTGkD QxjKGkDDkRQtTPo4wbHnb9jlC4LT4t/ZNjVWWJrTb4hpq4NSrykL+wj0dmCBw32y rgOQ1adV9g6rrWuGR5Y/5hLQL+CYOaFEmI+gFh0k3LjeyDa0eEPH6WfcwOe58b4N gVjcvBDJr557UiLqeQ4JVeRraWyg5IV+cIafpT55AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWKYcEB7Xhqbq+aGcN1W3Mx4jpTwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmMmJiZWM1LTJhMGEtNGZjZS1iOTJhLWMxMTU4NWYyZjZkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4/DANBgkqhkiG9w0BAQsFAAOCAQEAotQovvIuGF+asKCaftfnXkJLVSrK xZmQeDzobZN3T1w3Uqr5cCty0X+jFlE8v34ksVtSMd8Q86USQ/97niGj18dvT3FA lO2DPcE/4xxpW+9HUo5h70ayrmoZNfTQ07Y6JTq5OvTQDPTNmrj6YIMW2Cv/2sIh 5Z7PT0f4kN1zhgIzZ+9kX+UJHtdRQYr2Yf9SCKlgBSHeAqJ7RbVsGhkhGhDIZSgZ JH2swFdKxebAUiN57qMBkBNDLaeklto9CX0N6+XBewUexJO4cPEQTm/qnChDxiKe yJZKwV0RAdfVFNm0Ya7N+pbbOFbptAFBFqZAhRCFHge5AtLEG48tmpv/5w== -----END CERTIFICATE-----Generated at Thu May 2 11:33:25 2024 by rpki-client on console-fra.rpki-client.org