$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f75c42b-9f10-4da6-b769-48930153d900.roa File: 3f75c42b-9f10-4da6-b769-48930153d900.roa (raw, json) Hash identifier: 33pRYCrMM6Svfz/7fyXIVqBI1yvTtaO2mSZ56aF9v1o= Subject key identifier: 38:FD:F5:8A:A5:12:28:EB:38:24:35:93:FA:48:EA:DF:5E:CD:4A:C1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19502C9C4AA55B2ADCC1F669675432372541C512 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f75c42b-9f10-4da6-b769-48930153d900.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:50:2c:9c:4a:a5:5b:2a:dc:c1:f6:69:67:54:32:37:25:41:c5:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=e74e5da011f24592594cb57756520b176b5d675aadeef057504a6cdf40c76196, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f1:55:8f:94:9c:82:71:33:75:b0:42:2d:bf: ae:a5:f0:c7:8b:54:a3:93:08:73:0b:9c:90:4e:55: 75:a5:4b:00:2f:e2:a5:4e:fd:07:8f:8b:56:02:35: 57:1f:38:39:08:6f:86:33:3b:9b:ac:92:23:87:37: e0:6e:56:a0:43:29:65:6d:11:b5:09:0c:5f:8e:4f: 73:0a:54:a4:2f:ae:9e:23:a4:6f:7a:bc:7c:98:97: 64:01:dc:91:d3:69:e4:73:f9:72:d8:1b:c9:a9:d4: 27:c8:69:80:2f:55:a9:da:3d:0f:bf:04:67:fd:2a: cd:54:90:4e:60:b4:f7:67:20:94:06:ee:1b:59:65: d1:2c:a4:fa:75:65:27:6e:91:bb:4c:df:37:52:67: 02:b7:ac:40:c9:f4:8e:9b:4c:a3:4a:b9:6b:cd:5d: ed:b4:d9:9d:08:d6:6c:33:99:6c:5a:8b:04:a7:12: 46:a2:c3:b9:1f:8c:f2:e5:ef:ec:31:a2:ae:b8:0c: 46:89:3f:02:d8:f2:db:6f:e2:86:ca:8a:6f:78:89: fc:95:be:5f:6e:e6:53:d2:78:8f:61:4d:12:31:ca: 10:57:24:a2:61:07:e2:1b:e8:61:02:a3:d7:c1:10: 27:6c:a6:9e:e5:7e:1c:bc:92:bd:79:8a:05:f9:b8: 5f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:FD:F5:8A:A5:12:28:EB:38:24:35:93:FA:48:EA:DF:5E:CD:4A:C1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f75c42b-9f10-4da6-b769-48930153d900.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.52.0/22 Signature Algorithm: sha256WithRSAEncryption 36:d0:e2:75:5e:ba:97:b4:da:15:3b:91:46:30:7d:9f:f4:ef: 0f:44:f6:a7:61:d7:15:e9:c0:fd:cc:bd:10:9a:4c:b4:f6:ab: de:a5:b0:17:51:b8:ff:3a:42:0c:6c:81:27:b7:a8:c1:d4:d6: 84:5c:61:39:7b:c3:2e:e4:5a:d6:f2:1f:6c:ca:26:fa:c2:58: 37:0e:7b:e7:90:b6:fe:23:a4:e4:d6:43:ca:2e:53:eb:cc:22: 7e:84:bd:6c:a9:24:f4:2b:b3:d0:e3:ab:ba:c5:23:d6:4f:1e: d5:e9:a2:c5:27:35:6e:79:1c:d4:9a:e2:83:cd:56:b8:1a:05: 09:a9:90:a3:bc:3f:ec:1d:8b:63:6a:6b:9e:8a:8e:bb:59:75: ef:02:46:3a:de:ba:9a:e9:f8:bf:62:60:d2:3b:89:d0:e5:e4: f6:b9:31:dd:af:c1:72:70:4b:af:55:47:01:d8:2f:dd:0f:2c: cb:57:20:ac:da:37:2d:2a:0d:9a:4d:14:ba:5a:7c:de:6f:3f: 38:5b:54:49:ce:0d:32:93:a6:62:fb:e9:47:1a:50:90:10:92: ba:18:fc:a7:7c:d8:dd:e1:46:69:6a:e8:f5:06:6a:10:62:2b: 4d:51:84:d5:05:8a:aa:33:2f:e0:8d:60:e9:70:92:90:9b:b2: 27:b8:5e:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGVAsnEqlWyrcwfZpZ1QyNyVBxRIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzRlNWRhMDExZjI0NTkyNTk0Y2I1Nzc1NjUyMGIxNzZi NWQ2NzVhYWRlZWYwNTc1MDRhNmNkZjQwYzc2MTk2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV8VWPlJyCcTN1sEItv66l8MeLVKOTCHMLnJBOVXWlSwAv 4qVO/QePi1YCNVcfODkIb4YzO5uskiOHN+BuVqBDKWVtEbUJDF+OT3MKVKQvrp4j pG96vHyYl2QB3JHTaeRz+XLYG8mp1CfIaYAvVanaPQ+/BGf9Ks1UkE5gtPdnIJQG 7htZZdEspPp1ZSdukbtM3zdSZwK3rEDJ9I6bTKNKuWvNXe202Z0I1mwzmWxaiwSn Ekaiw7kfjPLl7+wxoq64DEaJPwLY8ttv4obKim94ifyVvl9u5lPSeI9hTRIxyhBX JKJhB+Ib6GECo9fBECdspp7lfhy8kr15igX5uF8jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOP31iqUSKOs4JDWT+kjq317NSsEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNmNzVjNDJiLTlmMTAtNGRhNi1iNzY5LTQ4OTMwMTUzZDkwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKIEjQwDQYJKoZIhvcNAQELBQADggEBADbQ4nVeupe02hU7kUYwfZ/07w9E 9qdh1xXpwP3MvRCaTLT2q96lsBdRuP86QgxsgSe3qMHU1oRcYTl7wy7kWtbyH2zK JvrCWDcOe+eQtv4jpOTWQ8ouU+vMIn6EvWypJPQrs9Djq7rFI9ZPHtXposUnNW55 HNSa4oPNVrgaBQmpkKO8P+wdi2Nqa56KjrtZde8CRjreuprp+L9iYNI7idDl5Pa5 Md2vwXJwS69VRwHYL90PLMtXIKzaNy0qDZpNFLpafN5vPzhbVEnODTKTpmL76Uca UJAQkroY/Kd82N3hRmlq6PUGahBiK01RhNUFiqozL+CNYOlwkpCbsie4Xtk= -----END CERTIFICATE-----Generated at Wed May 1 20:47:56 2024 by rpki-client on console-ams.rpki-client.org