$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1894177-207c-42a2-a307-84b3c6d74032.roa File: e1894177-207c-42a2-a307-84b3c6d74032.roa (raw, json) Hash identifier: wuLYQS2cbUFsdoWpvATuk7ctuBEDaafDk0OlzTmQ/C8= Subject key identifier: FE:6E:2E:FF:2E:50:66:06:32:6E:38:49:EC:24:7E:92:DA:76:3F:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BB280D8696DB657DDC7B4D90E8C3C1E8080D047 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1894177-207c-42a2-a307-84b3c6d74032.roa Signing time: Fri 03 May 2024 00:00:00 +0000 ROA not before: Fri 03 May 2024 00:00:00 +0000 ROA not after: Fri 07 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.73.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:b2:80:d8:69:6d:b6:57:dd:c7:b4:d9:0e:8c:3c:1e:80:80:d0:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:00:00 2024 GMT Not After : Jun 7 23:59:59 2024 GMT Subject: serialNumber=4bf7c2b0f13afcaee0955c4f0a6ade08ddc999db6c12d7cb04b94770687d52db, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e9:c1:c0:9e:52:3a:b4:58:53:83:2e:10:98: 0e:3c:2a:64:65:9d:fd:4c:61:d6:58:da:bc:69:04: fc:25:57:69:a6:13:ad:61:c0:9b:36:06:5b:44:6a: fc:4b:69:1f:ab:54:09:74:cf:aa:f9:98:d2:d7:2b: 18:72:05:ec:b4:6e:a4:5f:2c:7c:bf:b6:d9:f9:d9: ac:f4:11:54:9e:8a:62:08:58:d1:64:3f:db:49:36: 82:2f:58:f6:63:25:1c:98:7b:4d:8c:27:44:fe:8d: 81:a4:f5:c7:dc:3c:65:27:51:56:bd:be:ed:b5:9d: a8:e3:ff:60:36:e9:95:b2:69:8b:56:32:a2:4d:1d: d9:3f:83:c7:82:21:25:95:44:34:cf:c7:98:19:f8: b9:61:40:0e:07:46:05:e5:97:de:88:dc:31:59:ea: 0b:82:95:d8:96:f8:9c:41:67:ec:90:1b:e7:8c:77: fb:3f:c0:c9:c8:3c:5f:42:7c:b1:fb:73:68:4a:80: 74:46:25:18:d8:28:0f:58:50:f9:47:20:87:9f:91: bc:42:f1:ce:32:be:6d:12:c6:61:12:36:a4:36:87: 56:43:a1:9f:96:de:68:01:7b:84:86:0d:ba:04:ee: cb:21:be:70:a0:f7:4b:09:f2:4f:22:96:fe:06:46: 5e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6E:2E:FF:2E:50:66:06:32:6E:38:49:EC:24:7E:92:DA:76:3F:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1894177-207c-42a2-a307-84b3c6d74032.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption a0:19:ad:4b:07:24:cd:a4:61:25:fb:02:3f:3c:e3:4e:d3:62: 2e:15:cd:24:d7:52:9a:08:9b:c6:ba:db:87:d3:3e:8c:84:92: 5e:3e:c3:82:e0:76:dc:3a:37:71:1f:1a:cc:3c:f2:08:79:0e: a7:70:cf:d5:63:7a:69:60:dd:d1:bf:5a:0f:82:d6:7e:3c:9d: ed:55:a6:c6:e9:ae:90:6d:84:cc:a8:eb:cf:56:59:21:b2:62: 2e:e4:33:66:43:8c:f7:44:4c:e7:ff:07:31:0c:5a:4d:df:21: e1:17:32:49:2e:9e:45:32:21:74:9f:f6:c9:bd:58:3f:b5:93: a7:ce:90:74:e0:e4:48:28:f9:43:40:b6:87:5a:82:37:ad:bc: 2d:ab:5c:4b:ca:6d:1e:0e:b2:03:ff:58:db:da:4b:46:59:0a: f7:3f:9f:8a:d4:68:08:e2:1c:79:33:74:a0:0a:7e:4c:cf:a4: e1:d4:70:bc:2f:26:34:c8:a7:8a:b3:9f:9e:0d:04:01:24:f7: a6:b2:1c:4d:83:1b:af:72:c9:02:6b:36:b1:81:82:b9:bc:a7: 32:c5:b1:ff:8b:9c:10:76:f0:48:c2:71:22:0c:aa:aa:d9:80: 80:30:81:14:46:73:78:6a:c1:c0:9e:e0:8f:3c:24:73:f1:8f: b3:05:d3:9d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUe7KA2Glttlfdx7TZDow8HoCA0EcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTAzMDAwMDAwWhcNMjQwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YmY3YzJiMGYxM2FmY2FlZTA5NTVjNGYwYTZhZGUwOGRk Yzk5OWRiNmMxMmQ3Y2IwNGI5NDc3MDY4N2Q1MmRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCg6cHAnlI6tFhTgy4QmA48KmRlnf1MYdZY2rxpBPwlV2mm E61hwJs2BltEavxLaR+rVAl0z6r5mNLXKxhyBey0bqRfLHy/ttn52az0EVSeimII WNFkP9tJNoIvWPZjJRyYe02MJ0T+jYGk9cfcPGUnUVa9vu21najj/2A26ZWyaYtW MqJNHdk/g8eCISWVRDTPx5gZ+LlhQA4HRgXll96I3DFZ6guCldiW+JxBZ+yQG+eM d/s/wMnIPF9CfLH7c2hKgHRGJRjYKA9YUPlHIIefkbxC8c4yvm0SxmESNqQ2h1ZD oZ+W3mgBe4SGDboE7sshvnCg90sJ8k8ilv4GRl4XAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/m4u/y5QZgYybjhJ7CR+ktp2PxYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxODk0MTc3LTIwN2MtNDJhMi1hMzA3LTg0YjNjNmQ3NDAzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4STANBgkqhkiG9w0BAQsFAAOCAQEAoBmtSwckzaRhJfsCPzzjTtNiLhXN JNdSmgibxrrbh9M+jISSXj7DguB23Do3cR8azDzyCHkOp3DP1WN6aWDd0b9aD4LW fjyd7VWmxumukG2EzKjrz1ZZIbJiLuQzZkOM90RM5/8HMQxaTd8h4RcySS6eRTIh dJ/2yb1YP7WTp86QdODkSCj5Q0C2h1qCN628LatcS8ptHg6yA/9Y29pLRlkK9z+f itRoCOIceTN0oAp+TM+k4dRwvC8mNMinirOfng0EAST3prIcTYMbr3LJAms2sYGC ubynMsWx/4ucEHbwSMJxIgyqqtmAgDCBFEZzeGrBwJ7gjzwkc/GPswXTnQ== -----END CERTIFICATE-----Generated at Thu May 9 01:25:50 2024 by rpki-client on console-fra.rpki-client.org