$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eac672f7-9965-4a49-bc3b-231aecd7767e.roa File: eac672f7-9965-4a49-bc3b-231aecd7767e.roa (raw, json) Hash identifier: c6UlaGHSwNnNVjQDYnJJGnFas59519uhUrlB3QxE3uo= Subject key identifier: 92:1E:80:90:92:D8:B7:7C:8F:7C:0F:9C:32:26:11:D8:DB:8C:0C:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14B51A7EC258AC5B4750B824B67E01964F9A7B98 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eac672f7-9965-4a49-bc3b-231aecd7767e.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 164.178.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:b5:1a:7e:c2:58:ac:5b:47:50:b8:24:b6:7e:01:96:4f:9a:7b:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=5a22afe67bebac4ae936c373dd857cfa4ae72212b1a544ad5a98eaf4c6b566b2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b1:9e:90:38:d3:6e:51:d7:bc:d8:03:26:66: 72:e0:72:92:a3:ea:3b:d9:7a:e4:05:ad:cf:1c:bd: 97:f1:c6:af:0c:0f:04:19:6b:af:52:60:09:a8:6f: 9b:bd:e5:bf:bc:70:7b:8b:cc:72:80:ef:dd:fd:b2: 1a:b1:67:d3:83:2f:83:ea:6c:a9:b1:d9:3d:34:ed: 1f:34:2e:6a:06:ab:c3:5f:f9:21:9c:5d:d3:26:e9: c3:30:f6:80:e8:9d:25:a4:c6:da:70:89:de:7d:53: 23:ec:52:26:06:dc:50:ca:4b:39:87:20:6e:fe:44: 20:39:08:9f:83:9e:b7:e2:23:62:9b:af:7c:ef:87: 4e:20:1a:e1:2a:51:10:40:0c:1d:21:c9:61:55:62: c3:78:f1:49:04:1b:f0:38:68:10:d7:9c:48:48:14: 96:49:cd:60:5b:18:54:de:38:bd:15:3b:b7:20:83: e6:ef:03:0f:92:0a:e8:8a:3d:c1:40:56:a1:ee:c7: 56:09:85:3e:a6:70:59:9d:0b:77:aa:d2:4e:12:4a: 06:60:a1:e3:c3:d3:4b:67:2f:a2:9c:38:6b:14:3a: 33:bf:43:51:6e:00:95:d5:e1:da:ad:fc:75:57:a7: 33:5e:94:51:19:68:f8:3b:cd:e7:9e:43:fb:80:be: 73:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:1E:80:90:92:D8:B7:7C:8F:7C:0F:9C:32:26:11:D8:DB:8C:0C:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eac672f7-9965-4a49-bc3b-231aecd7767e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.178.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0d:a5:9d:12:a7:97:c7:af:8f:8e:d2:13:7f:70:c6:eb:dd:26: 2a:68:1b:bd:87:1f:31:13:62:89:bb:5b:6d:c3:24:d6:be:d3: 25:cd:e3:40:3c:c3:db:08:6c:52:fa:2c:8c:ea:1b:be:8c:76: e7:ff:95:d0:19:c2:37:d3:b4:89:b2:5c:6c:76:3e:f1:0c:0e: 45:b7:4b:35:23:64:c1:2e:57:ba:45:f5:8e:cf:6d:d7:f0:37: 4f:ac:83:f3:d0:c3:91:55:ff:3f:0d:bb:fe:e1:6c:46:65:7d: 51:8c:10:3a:de:e7:e6:0d:04:6c:e2:2e:f2:68:a2:a6:07:13: ba:e0:42:15:f9:50:b2:92:20:66:4b:d1:ab:4a:6c:e0:ba:f7: 7c:b6:87:7d:15:2a:60:d2:05:1d:2e:69:8e:b7:9e:98:c1:1f: 6a:d8:20:6a:74:3f:cb:2d:54:f1:0c:61:90:83:45:9f:a6:db: a4:42:cf:2a:c7:aa:6e:2e:7e:e8:fc:62:13:fa:5b:14:bd:82: 21:58:cd:d0:8e:34:a7:d9:9c:0c:e1:69:df:b3:29:1f:16:b7: 7d:9c:76:19:52:39:42:3b:6d:a9:f6:c7:ad:ad:9f:72:d5:a3: fa:6d:3f:3f:1a:25:95:ea:6f:2b:54:13:1c:e7:84:00:3e:74: af:9f:be:c8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFLUafsJYrFtHULgktn4Blk+ae5gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTIyYWZlNjdiZWJhYzRhZTkzNmMzNzNkZDg1N2NmYTRh ZTcyMjEyYjFhNTQ0YWQ1YTk4ZWFmNGM2YjU2NmIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChsZ6QONNuUde82AMmZnLgcpKj6jvZeuQFrc8cvZfxxq8M DwQZa69SYAmob5u95b+8cHuLzHKA7939shqxZ9ODL4PqbKmx2T007R80LmoGq8Nf +SGcXdMm6cMw9oDonSWkxtpwid59UyPsUiYG3FDKSzmHIG7+RCA5CJ+DnrfiI2Kb r3zvh04gGuEqURBADB0hyWFVYsN48UkEG/A4aBDXnEhIFJZJzWBbGFTeOL0VO7cg g+bvAw+SCuiKPcFAVqHux1YJhT6mcFmdC3eq0k4SSgZgoePD00tnL6KcOGsUOjO/ Q1FuAJXV4dqt/HVXpzNelFEZaPg7zeeeQ/uAvnNVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkh6AkJLYt3yPfA+cMiYR2NuMDGswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhYzY3MmY3LTk5NjUtNGE0OS1iYzNiLTIzMWFlY2Q3NzY3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCksjANBgkqhkiG9w0BAQsFAAOCAQEADaWdEqeXx6+PjtITf3DG690mKmgb vYcfMRNiibtbbcMk1r7TJc3jQDzD2whsUvosjOobvox25/+V0BnCN9O0ibJcbHY+ 8QwORbdLNSNkwS5XukX1js9t1/A3T6yD89DDkVX/Pw27/uFsRmV9UYwQOt7n5g0E bOIu8miipgcTuuBCFflQspIgZkvRq0ps4Lr3fLaHfRUqYNIFHS5pjreemMEfatgg anQ/yy1U8QxhkINFn6bbpELPKseqbi5+6PxiE/pbFL2CIVjN0I40p9mcDOFp37Mp Hxa3fZx2GVI5QjttqfbHra2fctWj+m0/PxollepvK1QTHOeEAD50r5++yA== -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:57 2024 by rpki-client on console-fra.rpki-client.org