$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa File: 0f893b02-709b-4a20-ab74-f859a710b1be.roa (raw, json) Hash identifier: pVIhJNHz+rcX9i7Iu9OgsOc5pz1NiGI5PziI2TnPTts= Subject key identifier: 92:E0:3C:4C:60:3F:78:C2:94:E0:7B:7F:5B:CB:C0:DE:C7:7E:40:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E3A1D6F51DB577B1FF006A8A99CD8103F70B7F6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.128.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:3a:1d:6f:51:db:57:7b:1f:f0:06:a8:a9:9c:d8:10:3f:70:b7:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=d3881d42e31f0732c72a680e0628c5ad6f3173a691b41b5096aef3944991dd19, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:9b:1d:5e:26:98:69:40:95:e2:bf:cf:00:67: 54:fb:d2:4b:7b:77:e9:42:ee:e0:42:54:7a:db:49: 55:d6:5f:32:8e:f9:d7:db:72:c4:4a:74:b8:ed:00: 79:9d:27:f0:b0:37:2d:cb:97:11:81:fb:39:88:ef: 12:c4:33:e9:57:df:cb:81:33:88:8d:bf:4c:e9:62: c0:cf:fb:4f:89:80:48:0e:c2:ba:82:35:97:33:21: e4:58:6a:d8:94:ac:47:40:85:79:5e:2f:77:a5:32: 44:38:46:96:f0:c8:0b:5d:5f:b3:d0:74:30:21:5a: b5:a9:c4:0b:c0:8b:9b:57:19:0a:8b:96:57:fc:1c: ce:8c:5e:d4:09:67:cc:b1:95:cb:f2:ee:47:62:ab: a2:d7:2d:07:d2:38:5b:49:4b:8e:1f:63:bc:3c:35: e1:c2:70:76:de:b4:1d:80:54:25:2f:07:62:4c:49: 9c:5e:23:58:6c:5b:0b:b8:f4:28:8f:15:2f:42:6f: 7d:52:01:e8:b3:c4:30:65:cc:9c:b9:fd:72:aa:fe: 90:5f:55:69:2b:6a:a5:68:71:b2:38:ec:85:9b:41: 41:a3:fa:93:c3:cf:5a:3e:59:46:3f:22:4b:cf:27: 66:ee:58:c8:1c:5f:23:bf:1a:7f:d4:bd:d5:82:08: 6f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E0:3C:4C:60:3F:78:C2:94:E0:7B:7F:5B:CB:C0:DE:C7:7E:40:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.128.64.0/18 Signature Algorithm: sha256WithRSAEncryption 82:09:61:41:7e:b1:68:6d:bf:44:87:17:1e:54:dd:46:7f:ca: c8:0f:9e:16:2a:bf:aa:5d:d8:f8:9e:be:68:ef:d3:54:fd:37: ee:93:e4:49:22:3d:31:d7:08:70:76:73:5c:29:0b:f5:8e:c9: 6d:72:06:32:e2:a5:e0:51:7e:7f:d0:08:0d:8e:97:13:07:59: 0f:e1:4a:c9:b2:71:2f:e2:a5:59:97:8a:c0:a5:80:5b:c7:82: 20:66:5c:68:42:87:44:c5:77:d7:12:21:37:38:70:ec:fe:69: 05:77:5f:af:cf:fc:d1:0c:6f:b8:72:5f:b4:d9:bd:a8:f9:e0: d6:9c:6b:7e:75:06:b7:9e:86:a1:1a:c5:1b:83:9e:00:7e:fc: d7:43:d0:f9:cc:e9:14:36:bb:75:e1:f0:52:57:2c:f2:e8:8d: 95:93:2b:c1:5b:88:04:56:4d:de:87:89:51:14:78:39:0f:78: cc:fc:e8:51:73:0f:58:b7:40:3c:bb:8b:f9:80:cf:82:43:8c: 1b:bb:db:3f:b3:f2:a6:50:90:b3:d7:fb:0f:f9:b4:91:aa:f4: 36:44:7d:98:ec:29:36:45:17:54:b6:5e:5a:ae:7a:62:30:98: 14:51:99:ff:90:e4:cc:76:f2:e6:ed:c8:9d:59:65:3f:8f:dc: 95:dd:e2:1a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHjodb1HbV3sf8AaoqZzYED9wt/YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzg4MWQ0MmUzMWYwNzMyYzcyYTY4MGUwNjI4YzVhZDZm MzE3M2E2OTFiNDFiNTA5NmFlZjM5NDQ5OTFkZDE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0mx1eJphpQJXiv88AZ1T70kt7d+lC7uBCVHrbSVXWXzKO +dfbcsRKdLjtAHmdJ/CwNy3LlxGB+zmI7xLEM+lX38uBM4iNv0zpYsDP+0+JgEgO wrqCNZczIeRYatiUrEdAhXleL3elMkQ4RpbwyAtdX7PQdDAhWrWpxAvAi5tXGQqL llf8HM6MXtQJZ8yxlcvy7kdiq6LXLQfSOFtJS44fY7w8NeHCcHbetB2AVCUvB2JM SZxeI1hsWwu49CiPFS9Cb31SAeizxDBlzJy5/XKq/pBfVWkraqVocbI47IWbQUGj +pPDz1o+WUY/IkvPJ2buWMgcXyO/Gn/UvdWCCG+7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkuA8TGA/eMKU4Ht/W8vA3sd+QCIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmODkzYjAyLTcwOWItNGEyMC1hYjc0LWY4NTlhNzEwYjFiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYjgEAwDQYJKoZIhvcNAQELBQADggEBAIIJYUF+sWhtv0SHFx5U3UZ/ysgP nhYqv6pd2Pievmjv01T9N+6T5EkiPTHXCHB2c1wpC/WOyW1yBjLipeBRfn/QCA2O lxMHWQ/hSsmycS/ipVmXisClgFvHgiBmXGhCh0TFd9cSITc4cOz+aQV3X6/P/NEM b7hyX7TZvaj54Naca351BreehqEaxRuDngB+/NdD0PnM6RQ2u3Xh8FJXLPLojZWT K8FbiARWTd6HiVEUeDkPeMz86FFzD1i3QDy7i/mAz4JDjBu72z+z8qZQkLPX+w/5 tJGq9DZEfZjsKTZFF1S2XlquemIwmBRRmf+Q5Mx28ubtyJ1ZZT+P3JXd4ho= -----END CERTIFICATE-----Generated at Thu May 2 11:33:09 2024 by rpki-client on console-fra.rpki-client.org