$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3aee134c-de10-432e-89ff-91c96e41b6d6.roa File: 3aee134c-de10-432e-89ff-91c96e41b6d6.roa (raw, json) Hash identifier: a4+snoYiKSNVbMjYpXyhx2pk+MpA+MWDF52RH+jklPM= Subject key identifier: 34:CB:BA:3B:D8:73:02:C7:E1:63:ED:8A:9A:F0:8C:98:D6:C7:98:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 69BA9012C322487A30A32D514CFA3FB369C492F5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3aee134c-de10-432e-89ff-91c96e41b6d6.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 54.26.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:ba:90:12:c3:22:48:7a:30:a3:2d:51:4c:fa:3f:b3:69:c4:92:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=52dc5edba987e43d7e713d0044432026d485d4b7ed0bdf445d24f6f5ddad6cd3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fb:04:68:98:d6:23:10:03:7c:3f:f1:b9:b4: e1:c8:3b:87:46:58:83:6f:12:a9:91:41:9d:75:fc: 5d:f6:c4:0b:c1:58:d3:ce:8a:ed:9c:94:81:c5:fb: 7a:24:61:48:e4:d2:ec:70:3b:05:43:03:c0:ad:4e: 6b:22:1d:eb:6a:35:ea:0b:0a:b1:e4:c1:d4:56:50: 10:91:b9:10:7d:d4:31:ad:0e:a7:8a:73:35:80:e6: 1d:7e:8b:88:39:5f:4e:53:d8:86:5e:f2:fe:c6:c2: 0b:4b:c3:e1:7e:7f:a0:5e:5c:7b:6e:e2:74:ca:3b: 82:4e:1e:fc:7e:28:1c:cd:dc:3c:68:cf:40:49:19: 3c:d0:e1:c7:21:ac:16:0c:59:38:2a:a0:02:b9:1c: 3c:00:25:c3:0e:e0:69:4c:88:1f:b9:91:0a:2d:e6: ef:9e:a6:f9:1f:26:b1:06:54:61:3b:a4:6a:f4:0b: 88:ee:b3:22:f5:96:e2:ac:09:a4:b7:b1:8d:c7:2d: 14:6a:c8:30:09:f6:66:29:a6:13:50:ae:d8:c4:e1: 41:28:b8:1f:22:46:58:05:18:83:41:71:00:fa:48: 75:c9:c0:3b:d8:8d:f1:fa:ac:45:7b:48:73:47:4f: a5:25:a3:47:b3:68:06:d8:53:b2:44:e9:21:b6:14: 89:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:CB:BA:3B:D8:73:02:C7:E1:63:ED:8A:9A:F0:8C:98:D6:C7:98:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3aee134c-de10-432e-89ff-91c96e41b6d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.26.0.0/16 Signature Algorithm: sha256WithRSAEncryption 48:69:54:cb:f1:85:df:27:45:ff:0a:70:a4:80:2e:48:5a:9c: 09:24:e2:05:05:19:7e:ff:a8:8a:d2:4b:15:c3:d6:96:98:d0: 1e:e1:87:b2:29:dd:39:8d:52:47:3e:e5:06:36:7d:a3:b0:f8: 74:2a:f2:8c:f7:f3:ff:2c:ed:51:93:c7:8f:f5:71:71:e1:86: e1:f6:a3:d3:93:b0:11:b7:a3:3a:a4:04:7a:7f:32:f5:27:c1: a0:e6:47:ac:fe:48:2b:25:8d:b9:a1:6e:c9:2a:a0:1c:3f:83: 4a:1e:3d:85:da:1a:9d:14:7d:73:95:26:ac:98:8b:47:be:d0: 34:5d:a8:03:3e:63:26:8d:ad:79:b5:e3:df:b6:47:92:da:f0: 9d:b2:00:cb:df:95:4c:a0:f9:01:cb:30:75:9d:3d:88:8d:7b: c1:a6:c1:f4:08:06:79:26:5f:10:ca:54:7b:bf:70:b3:43:13: 88:87:b1:75:5b:0d:b0:a3:9e:e7:19:de:7a:e9:1a:1f:96:c4: 77:77:dc:b1:ce:bd:4e:b9:1d:eb:1a:a3:80:a4:e5:9c:4c:bb: 9e:40:d3:9a:7e:45:b2:c8:67:8f:78:83:07:aa:04:76:6f:ee: b7:2c:b7:29:4e:80:09:90:7c:41:a3:e5:14:9f:99:97:19:77: fc:c8:fb:bf -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUabqQEsMiSHowoy1RTPo/s2nEkvUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmRjNWVkYmE5ODdlNDNkN2U3MTNkMDA0NDQzMjAyNmQ0 ODVkNGI3ZWQwYmRmNDQ1ZDI0ZjZmNWRkYWQ2Y2QzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK+wRomNYjEAN8P/G5tOHIO4dGWINvEqmRQZ11/F32xAvB WNPOiu2clIHF+3okYUjk0uxwOwVDA8CtTmsiHetqNeoLCrHkwdRWUBCRuRB91DGt DqeKczWA5h1+i4g5X05T2IZe8v7GwgtLw+F+f6BeXHtu4nTKO4JOHvx+KBzN3Dxo z0BJGTzQ4cchrBYMWTgqoAK5HDwAJcMO4GlMiB+5kQot5u+epvkfJrEGVGE7pGr0 C4jusyL1luKsCaS3sY3HLRRqyDAJ9mYpphNQrtjE4UEouB8iRlgFGINBcQD6SHXJ wDvYjfH6rEV7SHNHT6Ulo0ezaAbYU7JE6SG2FInXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNMu6O9hzAsfhY+2KmvCMmNbHmMYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNhZWUxMzRjLWRlMTAtNDMyZS04OWZmLTkxYzk2ZTQxYjZkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2GjANBgkqhkiG9w0BAQsFAAOCAQEASGlUy/GF3ydF/wpwpIAuSFqcCSTi BQUZfv+oitJLFcPWlpjQHuGHsindOY1SRz7lBjZ9o7D4dCryjPfz/yztUZPHj/Vx ceGG4faj05OwEbejOqQEen8y9SfBoOZHrP5IKyWNuaFuySqgHD+DSh49hdoanRR9 c5UmrJiLR77QNF2oAz5jJo2tebXj37ZHktrwnbIAy9+VTKD5AcswdZ09iI17wabB 9AgGeSZfEMpUe79ws0MTiIexdVsNsKOe5xneeukaH5bEd3fcsc69Trkd6xqjgKTl nEy7nkDTmn5Fsshnj3iDB6oEdm/utyy3KU6ACZB8QaPlFJ+Zlxl3/Mj7vw== -----END CERTIFICATE-----Generated at Wed May 1 20:47:56 2024 by rpki-client on console-ams.rpki-client.org