$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35a6a2c9-4d48-4973-97b1-ba232f5b0434.roa File: 35a6a2c9-4d48-4973-97b1-ba232f5b0434.roa (raw, json) Hash identifier: Edle5xGUjLey2Rs83mMuqmamWmeWPRBt52YI9JookGI= Subject key identifier: 44:2F:05:2D:FD:11:29:A2:11:2D:1B:4D:9D:20:A1:39:5C:3D:2B:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1608D0DB850F7C6F0A100A6318E53B9233C8B0B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35a6a2c9-4d48-4973-97b1-ba232f5b0434.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 159.180.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:08:d0:db:85:0f:7c:6f:0a:10:0a:63:18:e5:3b:92:33:c8:b0:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=d1fc434afe4192bb755b1f4d941f49babd6ff4bf38ad7f3d398dbfbb543cc113, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0d:d6:a0:dc:cc:63:3d:7b:0f:e3:e6:d8:5c: bf:4a:54:3b:90:3b:0a:f3:7b:ba:e9:20:da:81:e9: 90:e7:f6:45:a0:4d:20:5e:d4:da:f1:51:9c:fc:e7: 62:a2:ee:4e:a4:16:3a:d0:2b:82:39:7a:62:b7:1f: 82:a8:a7:ca:9a:98:de:9e:40:72:83:97:61:e3:b4: c8:c0:4e:ad:07:bc:97:29:38:bb:9d:c0:81:06:de: 03:ff:66:77:04:a8:09:32:ae:b2:27:04:75:71:e1: 35:ec:33:40:ce:6f:ec:e5:ff:5d:33:c5:4e:af:ad: df:2f:43:c8:e7:08:b8:9e:f2:78:8a:2a:3c:0e:9b: 85:2f:d1:c9:7c:82:72:e3:82:0c:c2:9a:ac:43:41: 7f:b5:6e:97:b1:3d:fc:44:0a:9d:d3:28:11:38:1d: e1:92:ec:ad:27:9d:53:ea:82:ac:d7:3f:95:11:a1: 34:18:80:12:bf:68:8d:99:05:58:e6:8d:3b:62:77: 38:e9:7f:2d:64:67:17:8a:10:3f:2f:3f:fe:67:7f: e7:b2:75:d3:a9:ff:7f:52:46:d5:a1:2d:fe:00:9d: e9:ca:de:d6:05:f6:4f:0c:c6:d9:16:94:8f:65:bd: 97:f3:01:b3:a3:48:0c:63:87:58:56:30:b3:e5:bc: d7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:2F:05:2D:FD:11:29:A2:11:2D:1B:4D:9D:20:A1:39:5C:3D:2B:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35a6a2c9-4d48-4973-97b1-ba232f5b0434.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.180.0.0/18 Signature Algorithm: sha256WithRSAEncryption 00:df:21:f0:dc:e8:91:df:c6:5e:f2:6b:00:44:3f:d9:81:82: 11:ad:8a:5e:d5:13:52:26:42:b1:a8:b4:bc:ce:7a:c2:be:4e: 03:5a:83:e0:1a:1b:05:f4:e1:5a:98:32:92:df:6d:a7:e0:40: 4c:85:d8:35:b8:ff:e3:06:dc:af:4d:7b:68:aa:c3:a0:7e:81: 73:d1:48:89:61:db:d2:0e:ac:45:4e:0b:e1:ba:45:21:a9:1f: 95:19:d1:56:00:56:df:0f:4e:a1:be:c1:9f:0a:6c:22:3f:f2: 3e:c7:d3:dc:6e:03:da:3d:93:05:4c:5e:27:da:b0:f8:7f:28: 0c:8f:a4:1e:68:91:3d:6c:6f:f1:d8:a5:73:b8:0e:33:26:71: f3:ce:ad:55:50:c4:7c:f5:71:e2:8d:95:4f:71:23:a4:f6:3e: 82:fc:53:f6:26:0b:b7:a9:da:99:f2:86:1a:0e:0c:1f:ff:ad: 2f:78:0b:ac:00:8c:c4:01:ae:e7:f0:28:0a:0d:2f:1b:58:bc: 47:c6:10:0e:23:cd:00:b2:36:5d:a1:c0:e1:fe:0d:8b:d4:de: 6a:af:55:fb:7e:cf:07:00:d7:e2:52:6f:84:e0:9f:01:fe:8e: 8a:a6:da:76:b9:84:08:a0:32:33:db:3e:e6:47:06:04:40:5d: a5:8b:31:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFgjQ24UPfG8KEApjGOU7kjPIsLYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWZjNDM0YWZlNDE5MmJiNzU1YjFmNGQ5NDFmNDliYWJk NmZmNGJmMzhhZDdmM2QzOThkYmZiYjU0M2NjMTEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDADdag3MxjPXsP4+bYXL9KVDuQOwrze7rpINqB6ZDn9kWg TSBe1NrxUZz852Ki7k6kFjrQK4I5emK3H4Kop8qamN6eQHKDl2HjtMjATq0HvJcp OLudwIEG3gP/ZncEqAkyrrInBHVx4TXsM0DOb+zl/10zxU6vrd8vQ8jnCLie8niK KjwOm4Uv0cl8gnLjggzCmqxDQX+1bpexPfxECp3TKBE4HeGS7K0nnVPqgqzXP5UR oTQYgBK/aI2ZBVjmjTtidzjpfy1kZxeKED8vP/5nf+eyddOp/39SRtWhLf4AnenK 3tYF9k8MxtkWlI9lvZfzAbOjSAxjh1hWMLPlvNcTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURC8FLf0RKaIRLRtNnSChOVw9K+swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1YTZhMmM5LTRkNDgtNDk3My05N2IxLWJhMjMyZjViMDQzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaftAAwDQYJKoZIhvcNAQELBQADggEBAADfIfDc6JHfxl7yawBEP9mBghGt il7VE1ImQrGotLzOesK+TgNag+AaGwX04VqYMpLfbafgQEyF2DW4/+MG3K9Ne2iq w6B+gXPRSIlh29IOrEVOC+G6RSGpH5UZ0VYAVt8PTqG+wZ8KbCI/8j7H09xuA9o9 kwVMXifasPh/KAyPpB5okT1sb/HYpXO4DjMmcfPOrVVQxHz1ceKNlU9xI6T2PoL8 U/YmC7ep2pnyhhoODB//rS94C6wAjMQBrufwKAoNLxtYvEfGEA4jzQCyNl2hwOH+ DYvU3mqvVft+zwcA1+JSb4TgnwH+joqm2na5hAigMjPbPuZHBgRAXaWLMWU= -----END CERTIFICATE-----Generated at Wed May 1 22:06:31 2024 by rpki-client on console-fra.rpki-client.org