$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/411e7baf-0d1b-401b-9610-0fef3616491c.roa File: 411e7baf-0d1b-401b-9610-0fef3616491c.roa (raw, json) Hash identifier: +bAfEaK4s7mYcpBlpDoU4n9Zw0t+S+uOh9SlxDCh868= Subject key identifier: F5:2B:1F:0F:BD:5C:76:0D:F1:15:C7:F7:DB:22:25:A0:E0:DE:41:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 517F9345148767633821E779684439552E67630D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/411e7baf-0d1b-401b-9610-0fef3616491c.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 35.34.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:7f:93:45:14:87:67:63:38:21:e7:79:68:44:39:55:2e:67:63:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=d68e08fc680e64f582aae33bdd74ae744cb70d193cad59ba6e6ff75558ca740e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d6:bf:b4:36:31:f9:57:60:f5:d8:8f:41:f2: 20:23:bd:9e:ef:41:5a:1d:53:95:bc:ad:4e:76:c0: 3b:54:5a:db:48:8c:3a:3e:38:88:73:14:f4:9d:6e: 08:b4:6f:32:ad:80:96:8e:8f:75:29:16:72:0f:84: 43:55:8f:24:1e:20:de:95:7a:fb:10:48:55:8c:73: 85:41:e7:bb:21:7d:a1:e0:ae:3b:ad:c4:98:17:dc: 03:f3:55:27:ad:6e:78:9c:65:1f:39:3f:64:00:a5: c5:05:cf:c8:db:9a:f5:71:a1:96:72:f2:ad:76:16: 65:a6:2e:8d:3d:31:1f:79:22:48:21:57:e9:61:39: 79:d8:0d:7c:f7:d7:d7:85:ca:4c:27:74:c1:b2:45: 26:50:6e:8d:b8:55:14:cf:dc:8f:28:a7:58:f3:8c: 6a:c1:0b:1c:21:b1:af:dd:c0:8d:24:7c:c6:fb:dc: 61:c1:2e:1f:b1:81:95:94:c4:c8:d0:32:bb:95:eb: 14:53:22:ff:e4:df:f1:1e:1d:26:80:35:19:6e:41: c7:f9:4d:fa:46:f5:d5:e1:23:89:63:44:db:22:ae: e3:b3:ec:96:67:7d:7e:33:7c:e3:ee:1c:4d:75:d7: 56:e9:ed:e1:e0:8f:9a:0d:89:98:16:0e:cd:65:cf: f4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:2B:1F:0F:BD:5C:76:0D:F1:15:C7:F7:DB:22:25:A0:E0:DE:41:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/411e7baf-0d1b-401b-9610-0fef3616491c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.34.80.0/20 Signature Algorithm: sha256WithRSAEncryption 6b:74:b9:23:8c:76:90:5b:33:be:79:87:be:09:b0:03:a9:42: 48:89:95:7e:bb:15:4c:8d:e5:da:cd:4a:4f:4c:bd:54:a2:19: 8d:a9:f7:51:a6:79:50:27:78:09:83:6f:a0:38:85:5b:31:61: 0b:45:5b:f9:5f:01:20:7b:c8:7d:78:b1:4e:27:f7:9a:67:69: 99:b9:ab:dd:a2:47:17:c8:e2:00:94:15:51:60:43:ea:7a:8f: 3d:c6:de:32:e4:de:d6:6a:01:1f:b8:a8:a8:c2:a6:2b:4f:c9: eb:87:89:76:9c:d3:25:64:4c:03:a2:bf:e9:cb:42:6c:d6:38: c8:ba:49:d4:ff:a9:76:06:1e:eb:55:44:cf:1c:cc:c0:74:c4: 8d:0b:b7:f5:a6:8c:96:1c:f1:43:c7:98:e3:33:fa:c2:0a:18: 08:c0:d7:b4:31:76:10:66:28:3a:a0:ec:98:29:df:1c:32:7a: f2:69:31:e8:29:c8:be:e8:a1:15:89:9d:35:23:06:d6:be:35: 38:4c:7b:40:41:fb:1b:7d:7c:96:fb:55:c2:94:9f:bc:4e:9b: cf:df:bb:60:40:30:59:6a:aa:2a:e6:a5:02:bd:b1:5c:2a:b9: c4:c3:cf:85:fc:95:67:30:c0:5a:2c:62:3e:9a:e2:05:5c:5a: 9d:f4:42:9b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUX+TRRSHZ2M4Ied5aEQ5VS5nYw0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjhlMDhmYzY4MGU2NGY1ODJhYWUzM2JkZDc0YWU3NDRj YjcwZDE5M2NhZDU5YmE2ZTZmZjc1NTU4Y2E3NDBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE1r+0NjH5V2D12I9B8iAjvZ7vQVodU5W8rU52wDtUWttI jDo+OIhzFPSdbgi0bzKtgJaOj3UpFnIPhENVjyQeIN6VevsQSFWMc4VB57shfaHg rjutxJgX3APzVSetbnicZR85P2QApcUFz8jbmvVxoZZy8q12FmWmLo09MR95Ikgh V+lhOXnYDXz319eFykwndMGyRSZQbo24VRTP3I8op1jzjGrBCxwhsa/dwI0kfMb7 3GHBLh+xgZWUxMjQMruV6xRTIv/k3/EeHSaANRluQcf5TfpG9dXhI4ljRNsiruOz 7JZnfX4zfOPuHE1111bp7eHgj5oNiZgWDs1lz/RLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9SsfD71cdg3xFcf32yIloODeQU4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxMWU3YmFmLTBkMWItNDAxYi05NjEwLTBmZWYzNjE2NDkxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjIlAwDQYJKoZIhvcNAQELBQADggEBAGt0uSOMdpBbM755h74JsAOpQkiJ lX67FUyN5drNSk9MvVSiGY2p91GmeVAneAmDb6A4hVsxYQtFW/lfASB7yH14sU4n 95pnaZm5q92iRxfI4gCUFVFgQ+p6jz3G3jLk3tZqAR+4qKjCpitPyeuHiXac0yVk TAOiv+nLQmzWOMi6SdT/qXYGHutVRM8czMB0xI0Lt/WmjJYc8UPHmOMz+sIKGAjA 17QxdhBmKDqg7Jgp3xwyevJpMegpyL7ooRWJnTUjBta+NThMe0BB+xt9fJb7VcKU n7xOm8/fu2BAMFlqqirmpQK9sVwqucTDz4X8lWcwwFosYj6a4gVcWp30Qps= -----END CERTIFICATE-----Generated at Wed May 1 22:06:32 2024 by rpki-client on console-fra.rpki-client.org