$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034fa7d9-0528-43be-aaae-5ce923ce3a91.roa File: 034fa7d9-0528-43be-aaae-5ce923ce3a91.roa (raw, json) Hash identifier: EA5TbWWNDR6thbvUaeIhg+37rRi0+nsgI5ACUPxv4po= Subject key identifier: E3:A5:FB:CE:C9:80:7C:18:E7:F8:1E:8E:67:85:E6:19:9B:53:1E:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AB925B536F20DDBE6C8262568FE90B58092E6CB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034fa7d9-0528-43be-aaae-5ce923ce3a91.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:b9:25:b5:36:f2:0d:db:e6:c8:26:25:68:fe:90:b5:80:92:e6:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=1a94982a26838732fad0ab6531c0c57aace3ca27e0728dd9e9b40d21e7f9d735, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7a:f8:dc:f4:75:22:90:cc:d1:13:ef:77:68: 89:d1:08:e3:46:2d:4b:66:56:e1:59:61:bb:7b:ce: 4c:aa:da:a6:ca:73:19:27:bc:d9:2f:16:16:b9:3d: 61:2d:db:5e:90:16:73:06:11:7c:e5:fb:08:8e:20: ca:02:d7:5e:e5:f3:ef:18:e6:1b:32:c4:f7:7d:6e: de:37:5d:3b:1e:55:e7:0f:2d:1f:ac:11:cb:f5:a6: 2b:e3:fe:20:06:d6:f9:7b:a1:ff:f4:e8:f3:b9:f6: 27:87:fc:7f:71:b7:ca:d8:88:08:98:e9:ae:64:ab: 5b:1e:99:13:09:5b:44:24:c4:55:bd:56:d7:31:b8: 09:54:1a:d5:47:1b:e4:e1:65:22:8d:f6:90:3d:d1: 4a:7a:a2:64:91:f6:c8:be:70:84:a8:b2:d3:fd:39: 2e:9b:e7:c0:db:a7:96:74:06:a3:06:75:d4:b5:b3: c7:5c:f1:83:54:04:48:6c:c7:ea:7f:66:97:67:f2: c1:f3:cd:cc:9e:e4:99:ea:c8:2b:3e:d9:15:45:1f: 49:43:29:2e:be:82:a0:79:d6:c4:1b:dc:0c:be:63: 6f:51:a9:f8:6f:cf:48:bd:db:ff:9e:87:dc:e5:ad: a3:6b:19:26:05:fb:c3:84:12:84:f0:07:81:cf:d0: 00:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A5:FB:CE:C9:80:7C:18:E7:F8:1E:8E:67:85:E6:19:9B:53:1E:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034fa7d9-0528-43be-aaae-5ce923ce3a91.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5d:0c:e8:9f:ab:3e:b2:5b:8e:64:4f:b2:a1:e3:10:6a:ac:1e: c2:8b:98:3c:26:ef:9c:f3:d7:5d:90:0c:a6:1c:f0:14:7b:28: 74:af:24:f4:a6:98:9c:c6:59:46:df:27:19:7e:36:df:7f:d4: 2a:72:28:26:b3:08:72:6e:e9:f6:9c:d8:3e:2a:a8:11:d7:43: f0:9e:74:65:2c:a2:b6:6a:53:94:e9:41:85:bf:5e:7f:64:cd: fc:75:b3:1c:45:7e:1d:d6:e0:f7:d5:6e:92:a9:0a:cf:29:4e: 8f:2f:33:d6:83:bc:f5:6e:16:2f:15:86:48:43:a8:d3:ba:02: 0e:38:37:6e:58:e1:69:f7:93:b9:69:35:65:56:e0:66:27:a8: 57:d7:a0:99:4c:71:7f:f4:fc:65:d7:b6:27:75:18:78:93:9d: f7:92:3b:fa:fa:74:9a:07:5d:b5:fc:d1:91:d0:cc:3a:7f:ea: 72:0c:ad:fe:c8:c5:a8:f4:9f:c5:3b:7c:6b:b7:24:bb:81:83: 5d:29:2b:16:22:3e:44:66:d2:ad:df:a5:5f:92:42:87:cc:af: 83:54:2e:30:51:c6:b0:93:fd:27:50:a5:d0:33:bf:d5:3b:40: 8b:94:68:a0:00:b9:94:d8:a6:e5:9b:bb:d1:b2:d9:c1:bc:af: 23:56:fc:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOrkltTbyDdvmyCYlaP6QtYCS5sswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTk0OTgyYTI2ODM4NzMyZmFkMGFiNjUzMWMwYzU3YWFj ZTNjYTI3ZTA3MjhkZDllOWI0MGQyMWU3ZjlkNzM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClevjc9HUikMzRE+93aInRCONGLUtmVuFZYbt7zkyq2qbK cxknvNkvFha5PWEt216QFnMGEXzl+wiOIMoC117l8+8Y5hsyxPd9bt43XTseVecP LR+sEcv1pivj/iAG1vl7of/06PO59ieH/H9xt8rYiAiY6a5kq1semRMJW0QkxFW9 VtcxuAlUGtVHG+ThZSKN9pA90Up6omSR9si+cISostP9OS6b58Dbp5Z0BqMGddS1 s8dc8YNUBEhsx+p/Zpdn8sHzzcye5JnqyCs+2RVFH0lDKS6+gqB51sQb3Ay+Y29R qfhvz0i92/+eh9zlraNrGSYF+8OEEoTwB4HP0ADlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU46X7zsmAfBjn+B6OZ4XmGZtTHsQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzNGZhN2Q5LTA1MjgtNDNiZS1hYWFlLTVjZTkyM2NlM2E5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4KzANBgkqhkiG9w0BAQsFAAOCAQEAXQzon6s+sluOZE+yoeMQaqwewouY PCbvnPPXXZAMphzwFHsodK8k9KaYnMZZRt8nGX4233/UKnIoJrMIcm7p9pzYPiqo EddD8J50ZSyitmpTlOlBhb9ef2TN/HWzHEV+Hdbg99VukqkKzylOjy8z1oO89W4W LxWGSEOo07oCDjg3bljhafeTuWk1ZVbgZieoV9egmUxxf/T8Zde2J3UYeJOd95I7 +vp0mgddtfzRkdDMOn/qcgyt/sjFqPSfxTt8a7cku4GDXSkrFiI+RGbSrd+lX5JC h8yvg1QuMFHGsJP9J1Cl0DO/1TtAi5RooAC5lNim5Zu70bLZwbyvI1b8QQ== -----END CERTIFICATE-----Generated at Thu May 9 01:26:04 2024 by rpki-client on console-ams.rpki-client.org