$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb621f3e-df31-40a8-b591-c6ac46201eb3.roa File: eb621f3e-df31-40a8-b591-c6ac46201eb3.roa (raw, json) Hash identifier: khtB+1i2unaor6ySPDCnnU8qwbUInPDBmHHQBkcbKxI= Subject key identifier: F3:76:99:FD:CB:02:12:CB:78:4E:F4:8F:79:A9:D8:BD:33:AC:DC:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A303EB7F379ED3EC9E8719192738B1E38752139 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb621f3e-df31-40a8-b591-c6ac46201eb3.roa Signing time: Thu 18 Apr 2024 00:00:00 +0000 ROA not before: Thu 18 Apr 2024 00:00:00 +0000 ROA not after: Thu 23 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 216.175.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:30:3e:b7:f3:79:ed:3e:c9:e8:71:91:92:73:8b:1e:38:75:21:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:00:00 2024 GMT Not After : May 23 23:59:59 2024 GMT Subject: serialNumber=332982c8e49d9b15be6dfe06a4c2ce2f683553f3ed52212a4b02b3d5442119e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3e:77:80:ce:13:5e:1d:ea:42:44:27:49:95: bc:75:e8:96:0d:06:a2:66:b5:a3:d5:be:05:a1:a1: 1b:62:b3:bd:39:d1:3b:e7:c7:41:58:19:9c:21:b4: b8:84:53:8c:0c:57:35:8c:fd:5b:34:c4:f9:cb:ae: 96:71:a4:e6:41:d9:7a:f4:22:4d:20:8e:06:d7:98: 74:c1:2d:5f:d9:32:1f:fa:ca:1f:79:a2:c7:2d:09: 39:60:b2:41:b2:4e:44:16:94:91:5f:49:f2:45:55: e3:dd:27:79:9c:63:09:d8:c2:5f:d3:f7:65:d0:c5: fa:f7:40:34:e9:14:66:7e:5a:6e:a4:88:14:c6:5d: 43:f4:5c:57:73:84:4b:26:19:d2:71:c8:3d:bd:e5: c6:7c:36:de:e9:ae:48:b8:26:13:c3:b5:db:69:8e: 60:0e:4f:32:c6:a3:45:6a:0a:b2:27:2b:a0:e9:b1: ad:40:23:5d:4a:a6:c1:fc:4e:46:97:4e:2b:e7:02: e0:72:ba:d1:7f:16:a1:06:f9:2b:22:c7:21:61:0a: 80:80:6e:74:25:b2:27:17:ed:9c:02:f0:4b:e8:dd: bf:dc:d9:f0:31:8e:e4:f3:75:57:ca:25:c2:0d:32: 99:84:67:c6:6a:bf:cf:f5:fd:b0:d1:dc:23:a4:ab: fe:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:76:99:FD:CB:02:12:CB:78:4E:F4:8F:79:A9:D8:BD:33:AC:DC:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb621f3e-df31-40a8-b591-c6ac46201eb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.175.64.0/18 Signature Algorithm: sha256WithRSAEncryption 0a:fe:bf:de:f5:5d:ef:d2:57:9b:d7:74:18:87:a9:9f:03:07: a5:df:60:94:0b:8d:27:ed:53:93:bb:0a:38:88:95:48:a2:8b: 92:e8:40:cd:f1:02:b7:96:c4:02:d6:1a:1f:88:ac:29:a9:cf: 3e:21:aa:9a:3f:10:7f:df:40:6a:dc:8e:19:7c:90:90:6c:51: 0c:ea:f1:c7:8b:05:85:59:1f:fa:8f:91:19:e1:86:4d:e0:7a: 11:62:31:d8:e6:78:ac:02:67:84:e7:f5:d8:a0:89:a3:51:c0: ca:f7:b4:4c:93:27:f4:ef:1d:f3:dc:55:cc:24:d6:4c:4a:3e: 9e:34:99:36:ee:af:18:c7:72:5a:86:59:d6:97:28:a6:95:0f: 9d:52:00:45:b4:ff:17:10:7e:b6:09:c0:8b:66:3b:99:ee:3e: 9b:9d:05:2c:dc:ba:9a:fb:7e:a3:47:3c:56:ec:95:27:50:7c: 39:3c:6d:94:9f:70:4a:e3:35:f3:e0:10:c6:e5:67:20:b4:c9: 1a:0b:92:7b:ac:6c:56:85:59:a4:1f:71:d1:ca:54:44:e8:4c: 43:df:62:72:b3:d8:0a:70:0b:13:d0:7b:9b:db:ed:5f:7c:89: 19:7b:b0:33:c1:ff:57:dc:6b:57:69:c4:86:80:fd:52:b9:e6: 1d:4f:03:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWjA+t/N57T7J6HGRknOLHjh1ITkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE4MDAwMDAwWhcNMjQwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzI5ODJjOGU0OWQ5YjE1YmU2ZGZlMDZhNGMyY2UyZjY4 MzU1M2YzZWQ1MjIxMmE0YjAyYjNkNTQ0MjExOWU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUPneAzhNeHepCRCdJlbx16JYNBqJmtaPVvgWhoRtis705 0Tvnx0FYGZwhtLiEU4wMVzWM/Vs0xPnLrpZxpOZB2Xr0Ik0gjgbXmHTBLV/ZMh/6 yh95osctCTlgskGyTkQWlJFfSfJFVePdJ3mcYwnYwl/T92XQxfr3QDTpFGZ+Wm6k iBTGXUP0XFdzhEsmGdJxyD295cZ8Nt7prki4JhPDtdtpjmAOTzLGo0VqCrInK6Dp sa1AI11KpsH8TkaXTivnAuByutF/FqEG+SsixyFhCoCAbnQlsicX7ZwC8Evo3b/c 2fAxjuTzdVfKJcINMpmEZ8Zqv8/1/bDR3COkq/4nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU83aZ/csCEst4TvSPeanYvTOs3GAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ViNjIxZjNlLWRmMzEtNDBhOC1iNTkxLWM2YWM0NjIwMWViMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbYr0AwDQYJKoZIhvcNAQELBQADggEBAAr+v971Xe/SV5vXdBiHqZ8DB6Xf YJQLjSftU5O7CjiIlUiii5LoQM3xAreWxALWGh+IrCmpzz4hqpo/EH/fQGrcjhl8 kJBsUQzq8ceLBYVZH/qPkRnhhk3gehFiMdjmeKwCZ4Tn9digiaNRwMr3tEyTJ/Tv HfPcVcwk1kxKPp40mTburxjHclqGWdaXKKaVD51SAEW0/xcQfrYJwItmO5nuPpud BSzcupr7fqNHPFbslSdQfDk8bZSfcErjNfPgEMblZyC0yRoLknusbFaFWaQfcdHK VEToTEPfYnKz2ApwCxPQe5vb7V98iRl7sDPB/1fca1dpxIaA/VK55h1PA6A= -----END CERTIFICATE-----Generated at Thu May 2 17:41:21 2024 by rpki-client on console-fra.rpki-client.org