$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35191810-3318-4db7-b030-1383a99d9d38.roa File: 35191810-3318-4db7-b030-1383a99d9d38.roa (raw, json) Hash identifier: JCAQVyGdWJXExSOutn4W1M+Z85bn7MUTvJ5sxNN6IcE= Subject key identifier: 86:0C:4F:63:BD:57:27:EF:30:B8:4F:B9:4A:8A:51:2A:1C:BD:1C:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3378C490137630093360D1E6EB783945E37A4A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35191810-3318-4db7-b030-1383a99d9d38.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:78:c4:90:13:76:30:09:33:60:d1:e6:eb:78:39:45:e3:7a:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=0e581d3a1d1e15c69b20689a5cbcb2c65b4a8df8ab9a763327ae105cfcfed0f7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:08:2c:12:8e:b2:75:98:05:f9:48:47:16:fe: 65:c3:25:dc:21:0b:f6:87:d8:ea:1a:38:8d:82:4e: ad:41:01:d6:f2:6f:54:f0:4b:31:70:3c:12:dc:bf: 25:7d:3e:02:b1:04:59:b6:fd:49:7a:3d:aa:64:3a: d7:cd:d2:67:fc:2f:9a:7e:d7:eb:93:0e:36:1f:b9: 85:a2:f5:f6:cd:5c:ed:6b:ab:35:a6:98:83:f9:60: fb:4b:13:51:5f:25:80:f1:55:06:8b:65:9a:d2:10: e7:8f:57:24:38:8a:7a:b3:4d:98:45:cf:8a:0b:bd: a5:2e:d2:f2:f8:10:36:0d:49:69:57:a0:40:b3:6f: 18:f7:31:f1:d9:76:1c:01:91:eb:ec:d6:a0:84:3d: 7c:57:e0:50:65:7b:81:7c:b8:e4:cc:e3:f0:22:b5: 2c:b3:90:85:6b:b3:24:72:ca:f0:33:c7:ca:68:9a: 0c:42:af:0f:cd:25:25:59:6a:cf:b1:57:3a:19:18: 00:ab:ac:cd:a3:83:dd:6e:b6:e3:09:ce:f1:c3:8b: 76:b4:5c:fd:7f:92:74:91:98:0c:55:91:77:aa:90: 0b:dd:35:48:1e:e3:6e:99:c3:84:50:18:a5:fd:e2: 3c:75:0d:80:5e:aa:b9:08:58:bc:a3:c0:63:a6:3d: 82:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:0C:4F:63:BD:57:27:EF:30:B8:4F:B9:4A:8A:51:2A:1C:BD:1C:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35191810-3318-4db7-b030-1383a99d9d38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption a6:f7:94:43:1c:08:e0:b8:9b:d5:c2:8c:ef:61:94:6e:90:46: 35:71:13:cc:2c:05:7e:f2:db:55:f8:ab:53:54:ad:33:98:fa: dd:5e:dd:29:31:ae:d7:47:b2:df:d6:66:41:c5:6d:81:de:2c: c8:f6:35:2a:2a:a0:73:b6:3e:a0:c7:91:f5:5d:cd:7f:ec:a5: 26:9a:b4:cb:76:e8:4a:3d:cd:9c:c3:8f:31:b0:46:4f:31:c4: eb:f7:d1:2c:a5:ae:0f:5f:44:96:5e:11:0a:a6:99:a2:6d:6e: 19:df:fb:cf:3b:8c:b8:fc:53:ec:fe:de:d6:a4:43:13:3c:5a: eb:f1:20:99:b0:fd:e5:68:02:58:6f:e3:4d:a0:4d:71:15:9b: cf:08:31:ec:dc:4a:71:65:15:31:e3:69:8e:78:7f:7e:94:31: d1:9d:9b:06:ea:30:cf:2f:98:48:45:ed:05:b6:b7:f4:c5:9d: 34:b4:d4:23:dd:76:29:12:e3:1d:de:dc:bf:63:a6:f8:66:60: 65:ee:ee:70:58:e6:ef:b5:37:d3:c2:9a:8b:bd:e2:bc:28:34: 55:a0:b0:55:79:57:96:61:5e:30:23:30:b0:97:6a:4d:e9:92: 1f:33:bf:38:47:84:3b:06:4f:95:53:58:fd:17:30:f6:a1:a5: cb:19:7b:d1 -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITM3jEkBN2MAkzYNHm63g5ReN6SjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDA0MTYwMDAwMDBaFw0yNDA1MjEyMzU5NTla MHoxSTBHBgNVBAUTQDBlNTgxZDNhMWQxZTE1YzY5YjIwNjg5YTVjYmNiMmM2NWI0 YThkZjhhYjlhNzYzMzI3YWUxMDVjZmNmZWQwZjcxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALcILBKOsnWYBflIRxb+ZcMl3CEL9ofY6ho4jYJOrUEB1vJv VPBLMXA8Ety/JX0+ArEEWbb9SXo9qmQ6183SZ/wvmn7X65MONh+5haL19s1c7Wur NaaYg/lg+0sTUV8lgPFVBotlmtIQ549XJDiKerNNmEXPigu9pS7S8vgQNg1JaVeg QLNvGPcx8dl2HAGR6+zWoIQ9fFfgUGV7gXy45Mzj8CK1LLOQhWuzJHLK8DPHymia DEKvD80lJVlqz7FXOhkYAKuszaOD3W624wnO8cOLdrRc/X+SdJGYDFWRd6qQC901 SB7jbpnDhFAYpf3iPHUNgF6quQhYvKPAY6Y9gq0CAwEAAaOCArAwggKsMB0GA1Ud DgQWBBSGDE9jvVcn7zC4T7lKilEqHL0c3jAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMzUxOTE4MTAtMzMxOC00ZGI3LWIwMzAtMTM4M2E5OWQ5ZDM4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDABBWMA0GCSqGSIb3DQEBCwUAA4IBAQCm95RDHAjguJvVwozvYZRukEY1cRPM LAV+8ttV+KtTVK0zmPrdXt0pMa7XR7Lf1mZBxW2B3izI9jUqKqBztj6gx5H1Xc1/ 7KUmmrTLduhKPc2cw48xsEZPMcTr99Espa4PX0SWXhEKppmibW4Z3/vPO4y4/FPs /t7WpEMTPFrr8SCZsP3laAJYb+NNoE1xFZvPCDHs3EpxZRUx42mOeH9+lDHRnZsG 6jDPL5hIRe0Ftrf0xZ00tNQj3XYpEuMd3ty/Y6b4ZmBl7u5wWObvtTfTwpqLveK8 KDRVoLBVeVeWYV4wIzCwl2pN6ZIfM784R4Q7Bk+VU1j9FzD2oaXLGXvR -----END CERTIFICATE-----Generated at Thu May 2 00:52:02 2024 by rpki-client on console-ams.rpki-client.org