$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc8ac674-f789-44ae-ab29-ca7b6b740da7.roa File: fc8ac674-f789-44ae-ab29-ca7b6b740da7.roa (raw, json) Hash identifier: p6tRlLOb9e3qk/M9YFORbgg1pgxivG3Z0GH1kF+7CE4= Subject key identifier: 35:82:D1:3A:D1:56:D0:30:59:8C:AA:48:B6:2F:3D:AD:B9:DE:5A:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D1C88FABA8AD8501DEABD14416A767E0D76C51A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc8ac674-f789-44ae-ab29-ca7b6b740da7.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 71.141.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1c:88:fa:ba:8a:d8:50:1d:ea:bd:14:41:6a:76:7e:0d:76:c5:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=ee0128d0a76e05fea6756aaeb590e867e72555634921cf9bcd8a8dff4d682667, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:31:aa:70:fa:d3:c9:c5:97:9d:aa:de:46:cb: ee:9b:b3:26:a2:ef:29:c4:df:81:bd:59:b4:3d:be: 08:96:de:2c:17:1a:b9:22:1c:1d:79:b2:c6:00:0d: b1:a5:7f:74:2c:48:4f:10:ae:1b:2e:4c:55:21:96: 26:3d:6f:cc:b4:51:51:f0:fb:05:f0:d0:7c:cc:de: f3:db:7c:93:cb:3e:95:f7:4b:3c:d3:c9:06:f3:38: f1:6d:4a:45:87:09:17:89:bc:f9:e5:a9:bb:6a:e3: ee:4a:d1:ec:a8:81:59:da:49:d4:d7:48:ff:a9:22: 6a:dd:c7:0e:03:e7:d4:51:44:40:3b:bd:8b:30:19: 65:5b:63:59:89:19:c1:41:0f:98:e2:ec:54:4f:a0: 76:28:a0:81:23:f1:49:1f:51:18:15:25:8a:cd:58: c8:4c:6a:6e:97:8c:61:66:90:bf:a0:45:45:40:fe: bd:84:f2:af:6a:1a:23:80:d8:73:d3:18:81:08:b3: 42:45:26:d1:3e:ee:b5:21:0d:a5:37:2e:e5:11:d9: e2:6c:f5:96:bb:e6:d5:df:d8:06:ef:b1:1a:f4:fb: b2:5a:31:84:28:3a:5d:a2:70:27:41:e8:c8:56:24: 49:71:3c:77:3d:b8:3d:17:d4:55:bd:5c:32:87:87: e2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:82:D1:3A:D1:56:D0:30:59:8C:AA:48:B6:2F:3D:AD:B9:DE:5A:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc8ac674-f789-44ae-ab29-ca7b6b740da7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.141.128.0/18 Signature Algorithm: sha256WithRSAEncryption 84:ad:a7:87:99:34:fc:46:49:5a:f2:ff:29:58:54:78:d4:3b: e1:53:65:57:92:83:3d:b9:31:a1:af:9f:ab:b8:d0:2b:51:28: 51:e5:3d:dd:6f:b8:d6:7d:62:16:8d:1c:79:58:98:55:d2:19: 5e:9b:61:55:d0:b4:c6:61:38:51:ba:9f:ee:b4:8f:30:ca:4a: 63:a9:5b:ac:d3:22:85:9d:47:79:72:9f:f2:5d:cf:86:86:7d: 98:e9:25:bc:c9:64:3a:26:79:ba:ef:26:70:eb:d3:76:72:a7: ba:ee:15:03:47:22:58:13:cf:e6:86:89:49:43:bc:c6:f8:cd: 29:41:50:2c:f5:9e:32:fb:a6:19:77:0e:ed:5a:f9:49:95:aa: 9e:49:44:21:b3:94:46:b9:3f:c6:04:8b:55:45:fb:40:a2:28: fc:9d:8c:e2:f1:78:fb:9f:0e:68:95:7f:e4:fd:6a:3f:b4:bc: d6:7e:2e:48:48:54:af:da:75:7d:0c:04:ff:4e:93:09:e4:d0: a9:91:b0:d4:09:f2:1e:c8:5d:19:4f:a1:6b:69:68:7c:41:d4: b6:e8:10:99:9a:f8:f0:63:08:56:ec:57:10:02:7e:16:60:04: d3:4d:68:44:42:b7:ff:35:fb:2c:28:5d:d3:97:db:f5:5a:32: 05:a8:b5:a9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbRyI+rqK2FAd6r0UQWp2fg12xRowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTAxMjhkMGE3NmUwNWZlYTY3NTZhYWViNTkwZTg2N2U3 MjU1NTYzNDkyMWNmOWJjZDhhOGRmZjRkNjgyNjY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+Mapw+tPJxZedqt5Gy+6bsyai7ynE34G9WbQ9vgiW3iwX GrkiHB15ssYADbGlf3QsSE8QrhsuTFUhliY9b8y0UVHw+wXw0HzM3vPbfJPLPpX3 SzzTyQbzOPFtSkWHCReJvPnlqbtq4+5K0eyogVnaSdTXSP+pImrdxw4D59RRREA7 vYswGWVbY1mJGcFBD5ji7FRPoHYooIEj8UkfURgVJYrNWMhMam6XjGFmkL+gRUVA /r2E8q9qGiOA2HPTGIEIs0JFJtE+7rUhDaU3LuUR2eJs9Za75tXf2AbvsRr0+7Ja MYQoOl2icCdB6MhWJElxPHc9uD0X1FW9XDKHh+INAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNYLROtFW0DBZjKpIti89rbneWqwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZjOGFjNjc0LWY3ODktNDRhZS1hYjI5LWNhN2I2Yjc0MGRhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZHjYAwDQYJKoZIhvcNAQELBQADggEBAIStp4eZNPxGSVry/ylYVHjUO+FT ZVeSgz25MaGvn6u40CtRKFHlPd1vuNZ9YhaNHHlYmFXSGV6bYVXQtMZhOFG6n+60 jzDKSmOpW6zTIoWdR3lyn/Jdz4aGfZjpJbzJZDomebrvJnDr03Zyp7ruFQNHIlgT z+aGiUlDvMb4zSlBUCz1njL7phl3Du1a+UmVqp5JRCGzlEa5P8YEi1VF+0CiKPyd jOLxePufDmiVf+T9aj+0vNZ+LkhIVK/adX0MBP9Okwnk0KmRsNQJ8h7IXRlPoWtp aHxB1LboEJma+PBjCFbsVxACfhZgBNNNaERCt/81+ywoXdOX2/VaMgWotak= -----END CERTIFICATE-----Generated at Thu May 9 01:25:54 2024 by rpki-client on console-fra.rpki-client.org