$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0589bc1-dada-4627-8535-78658bd02252.roa File: f0589bc1-dada-4627-8535-78658bd02252.roa (raw, json) Hash identifier: bMDdGeOLNzOHa/qMTPLQymQPF+MDD7whP2v4spzdaGs= Subject key identifier: 8B:82:4C:A3:13:91:38:A5:F6:BB:7D:82:44:1E:6E:71:FB:46:32:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2406AC20A54DF0847FA0B1DC176725E6649DA721 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0589bc1-dada-4627-8535-78658bd02252.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 56.249.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:06:ac:20:a5:4d:f0:84:7f:a0:b1:dc:17:67:25:e6:64:9d:a7:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=684f6fbed89e0fb987cdad0d4774104d855e46ac55ba636f8206018af5b8cf09, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:24:73:80:00:7f:94:98:12:24:4b:9a:2d:3f: 15:ca:db:ef:05:0f:9f:39:a0:32:6e:dc:6e:81:86: c1:79:f1:cb:4f:f2:24:19:df:92:a0:a9:99:6e:0b: cc:1d:c6:95:55:e8:9d:c8:7c:12:e5:bd:f6:d3:d3: 8f:87:f3:68:28:1c:92:83:a4:d2:8b:8e:12:44:d9: 65:d1:bf:df:25:b0:7c:37:b5:c8:17:78:94:d4:42: a2:42:c5:47:a5:11:ac:b7:f2:d3:ab:1b:4f:f8:fa: 44:f1:1b:1e:8e:9c:b4:a7:bc:0f:91:a4:13:79:1d: 9d:bd:c6:77:7e:41:6b:25:0a:b2:65:de:dc:cc:c8: 14:42:0d:67:91:6c:9f:c3:ac:18:7b:f0:3f:50:b8: 68:ff:cc:6a:cc:17:e1:25:13:1d:58:27:bf:54:13: b6:ce:93:33:10:70:3e:10:40:67:04:6a:b9:d6:d6: ec:04:e9:42:94:3d:cc:e4:86:9a:42:e8:c3:9d:72: 84:91:8d:1a:17:f5:b9:ba:14:9b:33:19:0c:ca:20: ec:ab:55:51:ac:80:8a:c8:50:74:f7:7d:6f:a6:c4: d7:39:26:18:38:df:92:55:96:95:c1:47:42:40:75: c4:b7:84:bc:18:0e:c2:46:cb:cf:ba:9a:96:af:45: 83:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:82:4C:A3:13:91:38:A5:F6:BB:7D:82:44:1E:6E:71:FB:46:32:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0589bc1-dada-4627-8535-78658bd02252.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.249.0.0/16 Signature Algorithm: sha256WithRSAEncryption 83:f5:2b:fa:3e:ae:03:f1:fc:a0:36:33:fa:6a:08:a4:21:0e: 42:26:cf:cd:85:67:5f:8d:6f:f5:45:fc:02:fc:97:82:ed:a3: cc:8a:ac:14:11:55:7f:d9:c7:ed:5f:3d:58:b2:4e:31:fa:b6: f2:8e:6a:91:3b:5c:2c:d0:f9:89:20:f6:c9:f9:88:f2:91:e1: b7:ec:58:03:e7:64:b4:c8:06:ce:e8:d4:a0:d6:8b:a4:00:5d: 5b:ba:76:9d:e5:ac:46:7d:70:b1:cd:52:d8:02:fe:f5:a6:60: 9d:d4:74:0f:0f:0e:57:2c:b8:0d:b2:c0:34:d5:b7:1f:bc:93: 41:1f:be:60:f9:bc:b3:a2:ef:6b:c5:35:8d:84:3a:44:1e:a5: 72:19:41:2b:8c:ec:cc:dd:7f:85:ba:f3:78:12:a9:4a:84:bf: 19:66:cd:a0:d1:f6:ff:5c:96:0b:f0:e5:91:48:35:28:04:c8: 8f:8e:ff:fc:a8:09:fc:64:e5:5f:bf:44:1c:ca:f1:ec:5e:12: fc:cf:0b:fe:34:9f:6d:57:e2:8c:a5:0b:3a:d3:8e:b2:9b:99: 45:32:6a:e4:a4:1d:ba:df:a2:ce:27:ee:db:fd:a3:56:4f:e8: 3e:1f:e1:8e:7f:04:0c:62:41:8a:f7:eb:1a:85:24:65:f3:f5: 70:b7:d1:9d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJAasIKVN8IR/oLHcF2cl5mSdpyEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODRmNmZiZWQ4OWUwZmI5ODdjZGFkMGQ0Nzc0MTA0ZDg1 NWU0NmFjNTViYTYzNmY4MjA2MDE4YWY1YjhjZjA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCJHOAAH+UmBIkS5otPxXK2+8FD585oDJu3G6BhsF58ctP 8iQZ35KgqZluC8wdxpVV6J3IfBLlvfbT04+H82goHJKDpNKLjhJE2WXRv98lsHw3 tcgXeJTUQqJCxUelEay38tOrG0/4+kTxGx6OnLSnvA+RpBN5HZ29xnd+QWslCrJl 3tzMyBRCDWeRbJ/DrBh78D9QuGj/zGrMF+ElEx1YJ79UE7bOkzMQcD4QQGcEarnW 1uwE6UKUPczkhppC6MOdcoSRjRoX9bm6FJszGQzKIOyrVVGsgIrIUHT3fW+mxNc5 Jhg435JVlpXBR0JAdcS3hLwYDsJGy8+6mpavRYPpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUi4JMoxOROKX2u32CRB5ucftGMicwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwNTg5YmMxLWRhZGEtNDYyNy04NTM1LTc4NjU4YmQwMjI1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4+TANBgkqhkiG9w0BAQsFAAOCAQEAg/Ur+j6uA/H8oDYz+moIpCEOQibP zYVnX41v9UX8AvyXgu2jzIqsFBFVf9nH7V89WLJOMfq28o5qkTtcLND5iSD2yfmI 8pHht+xYA+dktMgGzujUoNaLpABdW7p2neWsRn1wsc1S2AL+9aZgndR0Dw8OVyy4 DbLANNW3H7yTQR++YPm8s6Lva8U1jYQ6RB6lchlBK4zszN1/hbrzeBKpSoS/GWbN oNH2/1yWC/DlkUg1KATIj47//KgJ/GTlX79EHMrx7F4S/M8L/jSfbVfijKULOtOO spuZRTJq5KQdut+izifu2/2jVk/oPh/hjn8EDGJBivfrGoUkZfP1cLfRnQ== -----END CERTIFICATE-----Generated at Thu May 2 04:02:45 2024 by rpki-client on console-fra.rpki-client.org