$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb84443e-6393-43c5-8053-c16873c52b3c.roa File: fb84443e-6393-43c5-8053-c16873c52b3c.roa (raw, json) Hash identifier: BThMdG+caqqhXiRSvmibkbliBYUFYaYKJNhogWNYrxc= Subject key identifier: 08:CC:43:E6:3C:F4:64:15:CC:9A:F8:8A:EB:54:74:DD:26:E8:E2:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4358072D28C8313BEB70D229940D5E8AF8488A48 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb84443e-6393-43c5-8053-c16873c52b3c.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:58:07:2d:28:c8:31:3b:eb:70:d2:29:94:0d:5e:8a:f8:48:8a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=db923b288669d075cd8839f9fb3ae2e657f34a0ca8c6a75273a9e1a8941f3b8d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5c:78:84:04:cf:a9:5f:f9:a4:f0:75:1c:66: b5:53:10:68:88:82:6a:b7:d8:82:f1:25:8d:07:52: fc:ba:2c:55:ed:fa:3a:0a:2f:d3:29:c9:44:24:a1: e1:68:bc:1f:dc:c6:2f:ba:2f:e9:e3:52:0a:54:5f: 9b:a6:95:2a:c7:10:92:f7:37:6d:7e:a2:91:56:f0: fd:ff:47:59:ad:1b:30:47:f9:12:95:4d:8e:f8:28: d7:2a:59:4f:db:14:64:5c:40:8f:ca:93:a2:c2:4a: a9:a2:4c:7f:41:7e:14:9a:8b:97:50:9b:5d:f8:b8: 2d:1e:83:84:aa:99:af:98:62:14:b5:81:d8:90:f1: 4e:c0:74:ae:ab:a9:09:6d:dc:e3:91:be:5f:54:f5: d8:3e:57:a6:85:1e:b5:5a:32:54:38:1c:58:fe:ba: 8b:0c:4e:23:3b:bc:fb:7f:a8:88:6d:14:fd:ce:31: 48:1c:96:fa:83:af:08:53:15:ae:a8:d1:c4:12:9d: c2:2b:72:1a:3c:9c:2e:be:15:c5:56:d6:69:11:20: 65:12:33:63:7e:5d:47:da:94:6d:bd:b5:95:43:b2: 17:35:14:85:bc:91:9d:b6:2b:2e:dd:27:7c:72:21: 2f:f2:ae:da:4c:b7:a8:8a:48:e8:f6:61:c7:77:f7: 4e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CC:43:E6:3C:F4:64:15:CC:9A:F8:8A:EB:54:74:DD:26:E8:E2:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb84443e-6393-43c5-8053-c16873c52b3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.0.0/17 Signature Algorithm: sha256WithRSAEncryption 57:6f:d2:9c:3e:55:e5:b0:b5:1c:2e:ec:02:ac:c1:c8:c8:ea: 89:47:c0:8b:3d:f8:50:a2:1d:0b:d1:ce:e1:f1:6c:83:48:89: 85:2e:8d:df:7b:7f:d2:b6:e0:46:3f:4f:a6:b5:43:2a:31:70: 3d:15:8a:f0:8a:6c:19:5f:71:ea:6c:ff:35:68:8f:d8:0d:89: 69:e9:0f:a2:19:a2:dd:3f:2d:3d:8f:3a:1a:4d:ee:28:50:4d: 22:29:be:7f:bc:0d:bb:9c:89:18:80:e9:31:35:72:70:0e:73: 98:2c:2d:3a:26:a4:09:6d:cb:23:7a:75:25:88:e8:8f:f7:8e: e5:89:dd:5a:6f:34:ae:e7:20:c5:32:cc:c9:ce:a1:7a:6d:4b: f9:ec:2c:a7:e8:12:98:b4:ec:16:0c:3a:1f:82:10:e2:3d:c3: 18:17:da:02:3b:dc:88:e6:21:92:58:97:e0:83:0d:1a:10:88: 09:8d:77:a5:cf:b1:ed:aa:51:cd:84:d5:25:1d:3e:a1:c5:a2: 1e:2f:56:0e:01:61:00:fb:21:ff:be:1d:7b:dc:57:3e:75:54: fb:e8:c9:34:3b:bd:0c:65:26:52:cb:a9:f8:6c:c9:89:92:4c: 4a:bb:65:5c:c5:32:6f:72:e6:21:10:b6:9f:df:be:67:40:48: c3:c2:c1:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ1gHLSjIMTvrcNIplA1eivhIikgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjkyM2IyODg2NjlkMDc1Y2Q4ODM5ZjlmYjNhZTJlNjU3 ZjM0YTBjYThjNmE3NTI3M2E5ZTFhODk0MWYzYjhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1XHiEBM+pX/mk8HUcZrVTEGiIgmq32ILxJY0HUvy6LFXt +joKL9MpyUQkoeFovB/cxi+6L+njUgpUX5umlSrHEJL3N21+opFW8P3/R1mtGzBH +RKVTY74KNcqWU/bFGRcQI/Kk6LCSqmiTH9BfhSai5dQm134uC0eg4Sqma+YYhS1 gdiQ8U7AdK6rqQlt3OORvl9U9dg+V6aFHrVaMlQ4HFj+uosMTiM7vPt/qIhtFP3O MUgclvqDrwhTFa6o0cQSncIrcho8nC6+FcVW1mkRIGUSM2N+XUfalG29tZVDshc1 FIW8kZ22Ky7dJ3xyIS/yrtpMt6iKSOj2Ycd3904/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCMxD5jz0ZBXMmviK61R03Sbo4uAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiODQ0NDNlLTYzOTMtNDNjNS04MDUzLWMxNjg3M2M1MmIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdHmAAwDQYJKoZIhvcNAQELBQADggEBAFdv0pw+VeWwtRwu7AKswcjI6olH wIs9+FCiHQvRzuHxbINIiYUujd97f9K24EY/T6a1QyoxcD0VivCKbBlfceps/zVo j9gNiWnpD6IZot0/LT2POhpN7ihQTSIpvn+8DbuciRiA6TE1cnAOc5gsLTompAlt yyN6dSWI6I/3juWJ3VpvNK7nIMUyzMnOoXptS/nsLKfoEpi07BYMOh+CEOI9wxgX 2gI73IjmIZJYl+CDDRoQiAmNd6XPse2qUc2E1SUdPqHFoh4vVg4BYQD7If++HXvc Vz51VPvoyTQ7vQxlJlLLqfhsyYmSTEq7ZVzFMm9y5iEQtp/fvmdASMPCwdI= -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:28 2024 by rpki-client on console-fra.rpki-client.org