$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2a754c4-0b3d-441b-81c9-2750f00e6d7e.roa File: f2a754c4-0b3d-441b-81c9-2750f00e6d7e.roa (raw, json) Hash identifier: ACgjFIxb7oeJBOLlCu34uHYFk6WVUhsrhv/a74Jx8qQ= Subject key identifier: 87:D6:CF:D7:0A:F4:B9:C9:5F:71:87:82:4E:76:56:F4:CD:E5:97:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F26E6C4797CDC606DBDD78B0C96035482B19779 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2a754c4-0b3d-441b-81c9-2750f00e6d7e.roa Signing time: Fri 10 May 2024 00:00:00 +0000 ROA not before: Fri 10 May 2024 00:00:00 +0000 ROA not after: Fri 14 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 12 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:26:e6:c4:79:7c:dc:60:6d:bd:d7:8b:0c:96:03:54:82:b1:97:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:00:00 2024 GMT Not After : Jun 14 23:59:59 2024 GMT Subject: serialNumber=8514d94e6f82a10297bfdb7f3abb9b14a7cf99696f95f06277bcdb9b1d47f00a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:da:99:f5:86:2b:36:85:e4:e6:57:9d:ca:87: f8:7a:a3:78:f9:06:a9:09:7e:d3:18:4c:ab:ee:62: 64:31:f2:31:4a:ad:0a:b3:1d:b6:66:07:a4:20:6d: fd:b2:11:e1:d7:53:78:6f:5e:b3:f2:54:28:27:c3: b9:e1:02:d4:f4:6a:a1:ca:cc:4b:54:a8:90:0d:3d: 6a:dc:ff:36:65:97:2d:4e:4b:63:cd:07:dd:12:51: 36:f0:94:17:76:42:87:7c:e6:73:e8:27:c8:82:84: f5:44:4c:ac:d6:d7:03:92:05:1b:3d:8c:d4:69:be: 43:79:e2:8e:d6:e4:83:24:ac:98:30:95:5b:1b:23: 28:83:ca:ae:31:ef:39:53:81:c8:51:59:1e:0b:3d: ed:4f:23:da:6e:0d:5a:0d:1d:b4:74:41:87:e8:a3: a8:b6:e7:bd:d5:27:39:ce:3a:e4:b1:ef:bf:95:d1: a5:f4:70:41:a0:5e:1a:30:35:84:c2:31:48:f3:fb: e8:a3:f0:50:6e:e0:5c:ba:91:06:1c:22:49:2b:f8: 18:9e:12:a2:23:a8:7d:23:b0:52:f7:e8:af:8f:cc: d5:4a:ef:32:1e:25:92:c6:d8:6c:75:8a:2d:bc:7c: af:55:c8:0a:ce:cf:d2:af:de:6f:fd:63:61:56:6c: b2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:D6:CF:D7:0A:F4:B9:C9:5F:71:87:82:4E:76:56:F4:CD:E5:97:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2a754c4-0b3d-441b-81c9-2750f00e6d7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.56.0/22 Signature Algorithm: sha256WithRSAEncryption 93:30:c0:b0:65:58:c9:51:f6:10:d7:f5:18:93:5c:d2:a1:5d: f0:ba:0d:05:cc:47:cb:97:5d:dd:88:b0:53:2b:6c:90:43:da: 7a:ce:c0:c2:03:2e:f3:9d:bd:35:ac:05:42:fa:f6:5a:8c:7a: 3e:1c:a4:c9:8a:9a:b2:4e:6c:85:2d:6b:11:14:fa:01:d9:19: c6:34:1b:3f:ac:34:e9:e6:9b:d1:3f:c3:ea:9f:13:2b:1d:d9: f0:64:ef:55:97:2d:49:e5:eb:5a:c3:1f:f9:ac:cb:7e:6e:03: 21:d1:34:cc:6f:a4:00:3c:8a:87:8c:21:32:65:44:68:ca:52: 3d:57:db:38:8f:29:5d:2d:da:e1:cf:e3:9b:b6:31:c1:32:a0: 2e:38:8a:7d:50:57:76:f6:4b:7b:e0:9d:76:3f:ba:3c:83:1c: cb:1b:5f:aa:cb:4c:c1:9a:c1:fc:fd:97:a0:83:bb:bb:80:43: 2d:30:80:55:26:95:e2:c0:ab:1b:93:80:d4:b2:75:5a:eb:f8: 7b:b9:e3:4c:de:9c:ca:7f:36:45:d8:b6:7f:e7:d6:c5:6f:5f: 19:ac:d2:e6:69:fe:f5:ae:2d:67:66:88:a0:18:70:e1:e8:66: eb:a3:9e:44:da:0b:91:02:32:45:a9:e2:a3:80:98:c5:66:91: ee:25:fa:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHybmxHl83GBtvdeLDJYDVIKxl3kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTEwMDAwMDAwWhcNMjQwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTE0ZDk0ZTZmODJhMTAyOTdiZmRiN2YzYWJiOWIxNGE3 Y2Y5OTY5NmY5NWYwNjI3N2JjZGI5YjFkNDdmMDBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCN2pn1his2heTmV53Kh/h6o3j5BqkJftMYTKvuYmQx8jFK rQqzHbZmB6Qgbf2yEeHXU3hvXrPyVCgnw7nhAtT0aqHKzEtUqJANPWrc/zZlly1O S2PNB90SUTbwlBd2Qod85nPoJ8iChPVETKzW1wOSBRs9jNRpvkN54o7W5IMkrJgw lVsbIyiDyq4x7zlTgchRWR4LPe1PI9puDVoNHbR0QYfoo6i2573VJznOOuSx77+V 0aX0cEGgXhowNYTCMUjz++ij8FBu4Fy6kQYcIkkr+BieEqIjqH0jsFL36K+PzNVK 7zIeJZLG2Gx1ii28fK9VyArOz9Kv3m/9Y2FWbLJJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUh9bP1wr0uclfcYeCTnZW9M3ll74wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyYTc1NGM0LTBiM2QtNDQxYi04MWM5LTI3NTBmMDBlNmQ3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgADgwDQYJKoZIhvcNAQELBQADggEBAJMwwLBlWMlR9hDX9RiTXNKhXfC6 DQXMR8uXXd2IsFMrbJBD2nrOwMIDLvOdvTWsBUL69lqMej4cpMmKmrJObIUtaxEU +gHZGcY0Gz+sNOnmm9E/w+qfEysd2fBk71WXLUnl61rDH/msy35uAyHRNMxvpAA8 ioeMITJlRGjKUj1X2ziPKV0t2uHP45u2McEyoC44in1QV3b2S3vgnXY/ujyDHMsb X6rLTMGawfz9l6CDu7uAQy0wgFUmleLAqxuTgNSydVrr+Hu540zenMp/NkXYtn/n 1sVvXxms0uZp/vWuLWdmiKAYcOHoZuujnkTaC5ECMkWp4qOAmMVmke4l+gs= -----END CERTIFICATE-----Generated at Sat May 11 02:37:16 2024 by rpki-client on console-fra.rpki-client.org