$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ef164be-018b-431e-af2f-296c04ef8a8d.roa File: 2ef164be-018b-431e-af2f-296c04ef8a8d.roa (raw, json) Hash identifier: HdV1FWJcd3ZoIW21fgTBMe7LlEBoSlFWVX0U2f/HpZo= Subject key identifier: 82:7A:49:D0:1D:8D:AE:9B:71:05:86:8D:38:BA:A3:CB:41:0C:1F:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 463B1C1AE5843A2EA4D99995939BB9F19DDB14C8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ef164be-018b-431e-af2f-296c04ef8a8d.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 35.54.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:3b:1c:1a:e5:84:3a:2e:a4:d9:99:95:93:9b:b9:f1:9d:db:14:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=0fd52bc1be52b43ca72e5f0205253670ab1d82a24574fa74f88761f169aa8c2d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:89:46:db:e8:50:31:de:c7:89:14:6b:d5:d1: 7f:11:05:73:d5:64:ae:78:24:ff:1d:a4:23:6e:52: f8:d5:55:18:0f:3a:9f:62:47:92:a1:04:fe:fc:3e: 43:0d:d5:fd:b5:3c:7c:d8:27:e6:37:fa:38:5c:2a: 1d:2b:1e:d7:10:4d:a4:6d:23:07:a2:59:95:ec:8a: f3:c8:bc:19:12:d8:dd:90:9a:f2:f9:16:88:64:8b: 0b:3d:56:3b:5e:65:34:ed:20:40:7e:7e:79:32:03: d9:4e:ee:84:f5:73:65:75:1f:7f:1b:be:24:5f:c4: 94:67:cc:7c:fc:a5:66:e8:f9:f9:96:2a:24:3b:c4: 46:24:18:28:b1:c0:d5:b3:ec:96:c5:4f:b0:8f:4e: 2e:18:99:af:6a:36:8f:09:98:c8:56:fb:0b:2b:e5: 15:d3:41:a5:8d:c6:f8:f2:ff:68:ee:a0:97:d2:8d: 84:22:1d:ab:8b:1b:72:00:63:f4:39:d1:57:9b:54: 25:63:80:88:6b:17:45:02:44:e2:5b:94:42:48:e1: c4:13:ea:c5:76:bd:a7:48:64:a8:85:34:12:ab:4c: 67:e3:0f:64:c3:f7:cb:01:8e:4e:91:e7:3f:c0:43: e1:0d:bc:b2:43:30:b1:83:a4:cf:90:5a:68:9e:3a: 25:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7A:49:D0:1D:8D:AE:9B:71:05:86:8D:38:BA:A3:CB:41:0C:1F:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ef164be-018b-431e-af2f-296c04ef8a8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.32.0/19 Signature Algorithm: sha256WithRSAEncryption b2:03:8d:e2:7c:24:57:de:40:74:67:ba:b2:66:b3:84:9d:da: f4:42:39:2b:0f:47:1c:02:3c:db:ff:2e:6c:42:6a:92:99:e8: 0b:4c:4a:6b:54:79:ee:f9:85:bd:1f:4e:24:71:28:86:38:2b: 01:04:5b:b7:40:43:f6:ed:c8:e0:5c:6c:6d:43:21:6c:35:4e: ce:cd:22:0b:62:57:7f:a5:de:7e:ce:10:4c:e6:39:50:b4:5b: 36:06:ad:51:a5:ac:ff:e8:83:9c:e6:94:75:a6:a2:02:f5:84: 1a:35:8a:9e:7a:91:40:3e:56:2f:c9:23:82:15:f1:c3:4e:4f: ee:3f:86:84:6c:54:0e:ca:ba:6e:ec:2c:61:14:11:70:93:44: 96:a7:af:d9:23:2f:36:98:70:d4:81:cc:e7:59:1e:17:47:1b: e9:3d:b8:3d:48:83:0e:1c:11:5c:0b:45:ec:b4:e1:e7:9a:53: df:f7:46:70:0f:74:2b:e4:1e:53:4c:da:b3:d9:aa:92:fe:52: 87:7c:89:6b:34:04:60:dd:68:29:c1:fd:d4:75:a9:9a:b6:48: e2:46:d7:91:d0:87:e7:6b:ff:64:f9:63:6f:81:00:b5:57:57: bb:84:10:81:a0:54:14:65:dc:85:ee:cf:76:5f:04:36:f7:5d: 04:4d:4a:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURjscGuWEOi6k2ZmVk5u58Z3bFMgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZmQ1MmJjMWJlNTJiNDNjYTcyZTVmMDIwNTI1MzY3MGFi MWQ4MmEyNDU3NGZhNzRmODg3NjFmMTY5YWE4YzJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0iUbb6FAx3seJFGvV0X8RBXPVZK54JP8dpCNuUvjVVRgP Op9iR5KhBP78PkMN1f21PHzYJ+Y3+jhcKh0rHtcQTaRtIweiWZXsivPIvBkS2N2Q mvL5Fohkiws9VjteZTTtIEB+fnkyA9lO7oT1c2V1H38bviRfxJRnzHz8pWbo+fmW KiQ7xEYkGCixwNWz7JbFT7CPTi4Yma9qNo8JmMhW+wsr5RXTQaWNxvjy/2juoJfS jYQiHauLG3IAY/Q50VebVCVjgIhrF0UCROJblEJI4cQT6sV2vadIZKiFNBKrTGfj D2TD98sBjk6R5z/AQ+ENvLJDMLGDpM+QWmieOiX5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgnpJ0B2NrptxBYaNOLqjy0EMH4QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlZjE2NGJlLTAxOGItNDMxZS1hZjJmLTI5NmMwNGVmOGE4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUjNiAwDQYJKoZIhvcNAQELBQADggEBALIDjeJ8JFfeQHRnurJms4Sd2vRC OSsPRxwCPNv/LmxCapKZ6AtMSmtUee75hb0fTiRxKIY4KwEEW7dAQ/btyOBcbG1D IWw1Ts7NIgtiV3+l3n7OEEzmOVC0WzYGrVGlrP/og5zmlHWmogL1hBo1ip56kUA+ Vi/JI4IV8cNOT+4/hoRsVA7Kum7sLGEUEXCTRJanr9kjLzaYcNSBzOdZHhdHG+k9 uD1Igw4cEVwLRey04eeaU9/3RnAPdCvkHlNM2rPZqpL+Uod8iWs0BGDdaCnB/dR1 qZq2SOJG15HQh+dr/2T5Y2+BALVXV7uEEIGgVBRl3IXuz3ZfBDb3XQRNSow= -----END CERTIFICATE-----Generated at Thu May 2 11:33:12 2024 by rpki-client on console-fra.rpki-client.org