$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb380ed-b38c-4bbe-b2c1-4f0e602093da.roa File: feb380ed-b38c-4bbe-b2c1-4f0e602093da.roa (raw, json) Hash identifier: m2CTsRiDxUsN2pCOjwpg9GB0faeTe/v/AVMPL/RMwfs= Subject key identifier: 4B:69:F2:84:66:03:9F:EA:59:27:E7:C5:46:52:BB:EA:E0:F0:27:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 517BA3660D33B4FF53C89ECAE5D95C44B1773B02 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb380ed-b38c-4bbe-b2c1-4f0e602093da.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 204.39.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:7b:a3:66:0d:33:b4:ff:53:c8:9e:ca:e5:d9:5c:44:b1:77:3b:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=bf2ea7996692e23a90c2662e0d2c57ec7923539ede27dc12ddfb88acd7bdfc59, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2d:d1:00:4b:21:ae:88:e9:c9:c9:43:81:8d: 41:62:05:01:91:25:2d:c1:59:aa:2c:02:08:a3:c6: 2b:5e:c1:5b:0d:e2:8d:da:ba:78:cb:e9:03:80:02: 51:a0:b3:57:43:ca:05:95:0e:29:64:04:a6:1e:b4: 56:97:6e:09:ae:52:60:77:73:8a:c7:d0:9e:db:7e: 13:d9:03:4d:16:c4:01:22:a7:ff:12:bd:46:28:95: a2:db:b5:d9:5d:ae:3c:7b:39:f7:8e:89:d5:a1:7e: a9:7c:df:71:cf:f3:da:f3:d5:87:d0:b2:15:cd:44: 3b:37:4c:40:91:b5:3e:22:ff:44:91:f6:f4:16:34: be:9d:45:46:c3:68:15:6b:36:98:fb:81:82:69:90: fe:15:3b:06:15:06:3c:db:f0:e5:a2:a2:c2:15:4c: 3d:8c:a3:52:0c:b8:6f:12:de:44:98:17:78:ee:ca: 41:ca:db:15:7e:09:14:36:a0:98:87:cb:99:f5:f9: 7b:d4:6f:b9:f5:dc:9f:a5:c8:1d:8c:ac:63:5c:46: 89:27:1e:e8:9a:5a:55:f3:8b:86:54:96:22:d7:ed: fe:0d:67:89:4e:28:a5:20:de:c0:ef:5a:ff:5c:b0: d7:c2:55:1f:bb:75:25:01:5a:b9:ea:30:24:40:06: de:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:69:F2:84:66:03:9F:EA:59:27:E7:C5:46:52:BB:EA:E0:F0:27:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb380ed-b38c-4bbe-b2c1-4f0e602093da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.39.0.0/17 Signature Algorithm: sha256WithRSAEncryption 22:75:7d:3a:29:ee:9d:04:9a:d1:cc:9a:ae:6f:ad:2d:92:90: f4:83:54:61:e7:96:de:12:ee:6a:42:6d:85:c4:c0:15:64:f1: 9a:fd:c9:91:67:54:02:32:c5:4c:e9:6d:53:1a:dd:c4:83:36: ac:34:ab:e7:91:04:d6:7d:18:d7:8e:b2:f1:6a:55:5f:eb:b8: 15:a2:eb:a3:aa:45:77:27:74:26:bc:05:53:0f:5a:14:e9:c0: c4:80:a0:58:15:67:be:65:7b:1e:ee:1a:2d:c4:ea:42:0f:60: 20:53:d1:31:7d:34:4f:b4:5f:cc:82:28:8c:60:b0:01:af:07: 82:c1:4a:0c:4b:3c:b8:8f:cc:82:9e:a2:80:72:4f:4a:b2:b4: d6:fe:60:53:8b:b4:41:e7:5d:2b:6f:ad:6e:dc:47:c6:5f:d2: 81:bd:cf:32:5d:f2:ff:ae:ff:b2:1e:25:e8:1d:7d:8b:1c:00: 94:e8:a5:e7:77:f4:89:a3:0e:b1:5d:20:d1:38:83:c4:8b:b0: bc:c4:55:8c:ad:a1:3e:ae:30:9f:ca:82:1b:e2:9c:c6:78:71: af:89:47:ee:06:27:ab:0e:37:a1:e9:d4:f5:b5:79:a8:14:d2: 17:35:c8:1f:a3:10:54:78:93:b4:37:5d:d9:ea:29:8b:ac:e3: 57:a0:dd:8e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUXujZg0ztP9TyJ7K5dlcRLF3OwIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjJlYTc5OTY2OTJlMjNhOTBjMjY2MmUwZDJjNTdlYzc5 MjM1MzllZGUyN2RjMTJkZGZiODhhY2Q3YmRmYzU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNLdEASyGuiOnJyUOBjUFiBQGRJS3BWaosAgijxitewVsN 4o3aunjL6QOAAlGgs1dDygWVDilkBKYetFaXbgmuUmB3c4rH0J7bfhPZA00WxAEi p/8SvUYolaLbtdldrjx7OfeOidWhfql833HP89rz1YfQshXNRDs3TECRtT4i/0SR 9vQWNL6dRUbDaBVrNpj7gYJpkP4VOwYVBjzb8OWiosIVTD2Mo1IMuG8S3kSYF3ju ykHK2xV+CRQ2oJiHy5n1+XvUb7n13J+lyB2MrGNcRoknHuiaWlXzi4ZUliLX7f4N Z4lOKKUg3sDvWv9csNfCVR+7dSUBWrnqMCRABt6ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS2nyhGYDn+pZJ+fFRlK76uDwJ0cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlYjM4MGVkLWIzOGMtNGJiZS1iMmMxLTRmMGU2MDIwOTNkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfMJwAwDQYJKoZIhvcNAQELBQADggEBACJ1fTop7p0EmtHMmq5vrS2SkPSD VGHnlt4S7mpCbYXEwBVk8Zr9yZFnVAIyxUzpbVMa3cSDNqw0q+eRBNZ9GNeOsvFq VV/ruBWi66OqRXcndCa8BVMPWhTpwMSAoFgVZ75lex7uGi3E6kIPYCBT0TF9NE+0 X8yCKIxgsAGvB4LBSgxLPLiPzIKeooByT0qytNb+YFOLtEHnXStvrW7cR8Zf0oG9 zzJd8v+u/7IeJegdfYscAJToped39ImjDrFdINE4g8SLsLzEVYytoT6uMJ/Kghvi nMZ4ca+JR+4GJ6sON6Hp1PW1eagU0hc1yB+jEFR4k7Q3XdnqKYus41eg3Y4= -----END CERTIFICATE-----Generated at Thu May 9 15:20:02 2024 by rpki-client on console-fra.rpki-client.org