$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27257c18-14da-4c82-aed1-9f13431d1f7c.roa File: 27257c18-14da-4c82-aed1-9f13431d1f7c.roa (raw, json) Hash identifier: HLkh/is2lJXBCgUbSHrF2JodhY7tmfqAp/1EcP/Z7wY= Subject key identifier: 7C:5C:E4:D8:B9:52:28:A1:59:3B:8C:61:80:2B:48:AD:FB:DC:B5:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54E6263C350FD4AE80618841116BC823160F6270 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27257c18-14da-4c82-aed1-9f13431d1f7c.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 35.47.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e6:26:3c:35:0f:d4:ae:80:61:88:41:11:6b:c8:23:16:0f:62:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=eec56091d03aa4dc0cd6ef6f1e7bc0b61f6dcd5fb1cf74da2deef58b49c1d30b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:32:4a:a7:b7:3f:42:09:40:8a:75:b5:4a:87: eb:64:9c:a9:18:0b:da:b0:07:16:73:e4:c6:29:4b: 72:d7:19:0f:fa:09:a3:a0:84:74:9c:64:b6:9b:6c: 2c:91:f6:2d:8e:7c:6a:b8:1d:e7:bd:cb:90:68:7f: 78:f2:e5:c7:4d:84:b4:51:1e:d8:0f:51:d0:4c:ff: ba:ba:71:99:29:57:ec:c2:59:16:8d:e9:24:bd:24: 76:e0:70:a0:0b:5e:46:33:a0:ff:44:da:39:2c:4b: 4b:03:b5:7b:a0:72:26:06:8c:3b:e0:2a:cb:d0:a7: 6e:77:c1:cd:ca:09:66:9d:ed:4f:9a:37:f3:5c:63: 98:c8:3c:d7:31:0d:0a:24:1a:28:ea:af:1e:2f:dd: 51:2f:58:0f:30:d8:61:13:f4:ed:f3:0b:f0:00:3e: fe:f9:77:6b:dd:54:ae:1f:e5:b2:6b:93:66:b8:9d: 46:79:70:9e:50:8b:01:25:3a:71:af:f9:db:b2:24: fb:a2:5f:40:87:d5:ce:f9:2b:03:5e:ad:52:91:a8: 4e:38:e4:ee:35:5a:33:6d:09:3f:2a:92:9c:34:d9: fa:29:6a:ed:08:83:c2:93:4c:bd:fa:de:fa:59:51: 77:83:be:d4:62:98:bb:cf:88:34:97:6e:72:26:39: c5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:5C:E4:D8:B9:52:28:A1:59:3B:8C:61:80:2B:48:AD:FB:DC:B5:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27257c18-14da-4c82-aed1-9f13431d1f7c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.47.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9a:9d:b3:97:03:5c:90:c4:18:7a:e5:11:95:e3:88:17:c7:50: 38:c0:dd:b9:0f:aa:bd:ce:81:e7:6e:b9:50:1d:02:c3:5e:b2: 25:da:9d:57:4b:e2:8b:53:6a:62:eb:3b:d6:e8:22:f3:ff:c3: 10:6d:10:ce:a0:7d:b7:15:2e:5f:96:c8:eb:0e:d5:60:61:54: dd:33:d7:8d:9e:13:1b:f8:4c:1f:14:cb:8e:de:37:08:08:1f: 30:e8:92:fd:c2:03:b9:ab:41:89:14:b5:ef:9f:dd:f1:d4:28: 02:81:2d:15:23:25:8c:1f:9c:1f:54:4c:03:3b:5a:ac:82:9e: b7:e9:f4:db:6f:2d:e2:fb:d3:d3:48:a2:ff:46:32:49:38:13: 15:47:01:be:d5:8f:9c:75:75:94:61:24:5d:4e:03:b2:7b:00: 82:05:72:2e:e0:fd:5d:5e:7c:bc:e1:f9:a9:0d:4b:46:a7:34: 4e:a0:b8:0e:1c:ef:24:57:5d:20:eb:f5:05:71:fd:fd:b4:9a: 31:31:4a:a6:d0:44:8e:2f:81:6b:a9:50:9e:3a:2d:f7:51:56: 8d:e6:c8:b3:3b:46:27:94:b3:86:5f:b3:54:ea:e0:c4:15:a7: b7:d6:98:ac:5b:49:fe:94:7c:1e:1c:47:1b:bf:09:e4:67:41: ec:d8:18:03 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVOYmPDUP1K6AYYhBEWvIIxYPYnAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWM1NjA5MWQwM2FhNGRjMGNkNmVmNmYxZTdiYzBiNjFm NmRjZDVmYjFjZjc0ZGEyZGVlZjU4YjQ5YzFkMzBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfMkqntz9CCUCKdbVKh+tknKkYC9qwBxZz5MYpS3LXGQ/6 CaOghHScZLabbCyR9i2OfGq4Hee9y5Bof3jy5cdNhLRRHtgPUdBM/7q6cZkpV+zC WRaN6SS9JHbgcKALXkYzoP9E2jksS0sDtXugciYGjDvgKsvQp253wc3KCWad7U+a N/NcY5jIPNcxDQokGijqrx4v3VEvWA8w2GET9O3zC/AAPv75d2vdVK4f5bJrk2a4 nUZ5cJ5QiwElOnGv+duyJPuiX0CH1c75KwNerVKRqE445O41WjNtCT8qkpw02fop au0Ig8KTTL363vpZUXeDvtRimLvPiDSXbnImOcXzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfFzk2LlSKKFZO4xhgCtIrfvctUUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3MjU3YzE4LTE0ZGEtNGM4Mi1hZWQxLTlmMTM0MzFkMWY3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjLzANBgkqhkiG9w0BAQsFAAOCAQEAmp2zlwNckMQYeuURleOIF8dQOMDd uQ+qvc6B5265UB0Cw16yJdqdV0vii1NqYus71ugi8//DEG0QzqB9txUuX5bI6w7V YGFU3TPXjZ4TG/hMHxTLjt43CAgfMOiS/cIDuatBiRS175/d8dQoAoEtFSMljB+c H1RMAztarIKet+n0228t4vvT00ii/0YySTgTFUcBvtWPnHV1lGEkXU4DsnsAggVy LuD9XV58vOH5qQ1LRqc0TqC4DhzvJFddIOv1BXH9/bSaMTFKptBEji+Ba6lQnjot 91FWjebIsztGJ5Szhl+zVOrgxBWnt9aYrFtJ/pR8HhxHG78J5GdB7NgYAw== -----END CERTIFICATE-----Generated at Thu May 9 01:26:08 2024 by rpki-client on console-ams.rpki-client.org