$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa File: ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa (raw, json) Hash identifier: PQ9ccvqGZhPnyVTbqwRmNdu2anTDO6xcWRgToTTvLP0= Subject key identifier: B0:67:E0:F4:05:0C:9D:32:F1:F1:7F:CD:4A:23:EE:A8:5B:71:4D:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 71DCC885E58049E94F6AC9E1B5B292AF162F389C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 32.172.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:dc:c8:85:e5:80:49:e9:4f:6a:c9:e1:b5:b2:92:af:16:2f:38:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=32bf7bdb6ecdec6a6947ebac41070834c33b9962b714720bf8cace5ac707975a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:85:d3:f3:64:8d:95:08:19:d5:c2:2c:6e:23: be:e3:1c:97:02:62:d6:cf:c0:ab:1e:1b:5b:4a:ef: bc:c5:55:6f:ac:23:a0:fe:8a:03:eb:0b:7c:39:b7: ab:f2:d3:e6:92:5a:0a:8c:72:cd:54:fb:fe:48:43: 59:24:12:24:05:09:78:45:82:66:ee:3c:c9:bb:08: 2e:16:b4:44:73:e6:fa:4b:0f:98:ca:91:91:d8:28: 84:dc:8d:0e:66:38:6c:ba:8f:ac:74:97:37:80:2e: 3b:ad:65:fb:f1:d2:bb:de:10:89:fb:1e:88:d9:f7: 3c:8f:7d:00:46:b8:35:34:d9:33:11:5b:ec:5f:78: 2b:65:8d:d7:7c:4a:a4:65:24:64:f0:4b:b7:b5:7b: ff:a1:83:4d:20:e7:17:cf:2f:9e:d4:72:6f:94:78: 08:1e:6b:57:d4:af:d9:6c:88:b4:1b:3e:93:54:70: 8a:03:db:9b:9a:81:65:81:44:c4:63:8b:7a:7c:b8: a3:f0:f7:a2:77:3e:7a:1d:68:b7:2f:9c:70:78:2c: 7f:51:57:0e:de:2d:b3:00:9b:d9:80:bb:58:43:af: 02:e7:cf:01:bd:49:ef:a1:4c:81:02:3c:fb:3d:e6: 11:07:1f:a0:20:8c:1b:41:38:3d:53:ea:3b:80:95: f8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:67:E0:F4:05:0C:9D:32:F1:F1:7F:CD:4A:23:EE:A8:5B:71:4D:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.172.0.0/14 Signature Algorithm: sha256WithRSAEncryption 43:0f:b3:c7:00:78:84:3a:cf:1c:0b:2d:2d:ad:e6:a5:4d:fc: 22:28:9a:bb:95:e4:4b:19:13:4d:af:2e:aa:f1:96:ed:90:f8: 6a:5b:2b:40:1c:91:de:0f:2e:2d:0d:db:d1:34:db:7c:97:c4: 71:48:a4:69:ba:19:66:e6:30:cf:2d:8a:b7:d3:d2:83:23:97: 34:14:07:87:e7:2a:4c:40:ed:5f:6d:86:37:b1:2e:12:7f:04: c8:80:1c:df:4b:1f:ea:35:08:cb:84:dc:48:9a:82:51:f2:d9: ed:f2:37:16:dd:df:ec:f8:5c:35:b7:4f:54:2b:35:15:4a:05: 0d:fd:1a:c1:d8:74:02:d5:4d:3c:b9:ad:13:11:82:87:b1:a5: 1f:84:d9:be:57:4e:8d:0a:3c:59:06:c8:13:ea:94:16:80:5d: 31:0f:66:30:09:1b:1e:2f:e6:94:af:ee:b4:3f:46:a2:cb:55: 6a:06:df:dc:36:65:0e:b9:86:d3:f9:69:16:43:44:66:af:28: 91:cc:97:64:6a:53:09:ba:51:bb:50:93:48:94:eb:0a:38:a7: 8f:4c:6a:38:08:3a:c7:83:3a:c9:9c:d4:3c:ec:6b:ee:a5:dd: cd:96:d5:a6:9b:7a:1d:f2:af:c5:8b:0d:c9:9c:d0:18:07:c2: b0:b7:39:a9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcdzIheWASelPasnhtbKSrxYvOJwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmJmN2JkYjZlY2RlYzZhNjk0N2ViYWM0MTA3MDgzNGMz M2I5OTYyYjcxNDcyMGJmOGNhY2U1YWM3MDc5NzVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCehdPzZI2VCBnVwixuI77jHJcCYtbPwKseG1tK77zFVW+s I6D+igPrC3w5t6vy0+aSWgqMcs1U+/5IQ1kkEiQFCXhFgmbuPMm7CC4WtERz5vpL D5jKkZHYKITcjQ5mOGy6j6x0lzeALjutZfvx0rveEIn7HojZ9zyPfQBGuDU02TMR W+xfeCtljdd8SqRlJGTwS7e1e/+hg00g5xfPL57Ucm+UeAgea1fUr9lsiLQbPpNU cIoD25uagWWBRMRji3p8uKPw96J3PnodaLcvnHB4LH9RVw7eLbMAm9mAu1hDrwLn zwG9Se+hTIECPPs95hEHH6AgjBtBOD1T6juAlfhbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsGfg9AUMnTLx8X/NSiPuqFtxTV0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZmODdlNTMwLTRjZTEtNGY2ZC1hM2JkLTE2MjgyY2ViMzkyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgrDANBgkqhkiG9w0BAQsFAAOCAQEAQw+zxwB4hDrPHAstLa3mpU38Iiia u5XkSxkTTa8uqvGW7ZD4alsrQByR3g8uLQ3b0TTbfJfEcUikaboZZuYwzy2Kt9PS gyOXNBQHh+cqTEDtX22GN7EuEn8EyIAc30sf6jUIy4TcSJqCUfLZ7fI3Ft3f7Phc NbdPVCs1FUoFDf0awdh0AtVNPLmtExGCh7GlH4TZvldOjQo8WQbIE+qUFoBdMQ9m MAkbHi/mlK/utD9GostVagbf3DZlDrmG0/lpFkNEZq8okcyXZGpTCbpRu1CTSJTr Cjinj0xqOAg6x4M6yZzUPOxr7qXdzZbVppt6HfKvxYsNyZzQGAfCsLc5qQ== -----END CERTIFICATE-----Generated at Tue Apr 23 18:30:54 2024 by rpki-client on console-fra.rpki-client.org