$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49d51f42-2ffc-4217-9e32-f46cec71a85a.roa File: 49d51f42-2ffc-4217-9e32-f46cec71a85a.roa (raw, json) Hash identifier: suwd4wnqJly8YbkVBubNxk2d+Em/bwog5qtKcKyS16I= Subject key identifier: 32:F0:6C:48:15:17:7F:0A:34:DD:DB:86:29:47:99:D4:87:2A:10:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0608E8D53E35BDC1F4C01A2341753F6A41B16E27 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49d51f42-2ffc-4217-9e32-f46cec71a85a.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.35.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:08:e8:d5:3e:35:bd:c1:f4:c0:1a:23:41:75:3f:6a:41:b1:6e:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=dae5d9d4c8c0b741d0daab045390b20a29e575cb42373c9804209fa005d0a3fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4e:85:16:f0:8f:44:6b:36:ea:1f:f7:af:56: 7a:0b:cb:15:83:a8:f0:c4:63:25:cb:a2:38:aa:25: be:14:d7:62:b2:e7:57:e0:7b:7b:b4:94:c9:32:3e: fc:42:41:59:15:d5:90:5a:1a:01:91:05:9a:c2:b6: 28:34:b0:97:aa:8a:05:99:ab:6c:93:34:61:09:d3: 70:5b:95:3c:d1:14:dc:b7:c2:e1:dc:fb:20:d3:23: 0d:6b:5c:6a:69:63:9a:fd:d3:4a:aa:da:79:ff:0a: 22:7a:c7:e4:06:6f:1d:7e:61:be:b7:22:4c:94:d4: df:db:60:90:c3:69:aa:84:c9:9b:3f:1f:19:84:44: 24:b4:3d:82:3c:ad:8c:7e:36:0f:78:1d:64:2f:ac: ea:27:cf:dc:a8:08:1e:7b:cf:d2:b8:a1:f9:65:03: 94:6c:ba:1a:3b:30:af:a9:c2:da:7a:e6:05:ce:f9: 0d:82:52:9a:49:cf:ab:a7:10:ba:47:d8:44:65:51: 49:a3:53:a2:bc:c6:dd:70:eb:e6:ed:c6:34:40:e4: 26:19:69:5b:5c:4a:85:26:b7:50:c0:65:79:83:43: d9:73:89:2d:57:6b:22:39:e7:bb:95:a4:19:f2:fa: a5:83:d2:8a:81:df:11:da:fd:b8:ff:35:7b:29:2b: 27:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F0:6C:48:15:17:7F:0A:34:DD:DB:86:29:47:99:D4:87:2A:10:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49d51f42-2ffc-4217-9e32-f46cec71a85a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.35.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4f:92:48:95:a6:61:81:bb:d4:03:d1:c7:21:29:38:1b:1e:6f: 9a:28:85:a9:ef:0c:d6:1e:26:8e:b9:35:08:5e:86:b8:67:ae: 7c:4e:cd:2b:68:f0:56:68:a1:93:a3:b0:dc:cf:8c:87:56:d4: ab:07:be:1a:9b:69:c7:70:d7:17:bb:06:64:b7:0d:41:94:05: ca:5f:c9:a6:5b:2b:3a:6e:c3:0e:61:8d:c3:15:a5:73:8b:3a: 14:c1:3f:eb:68:14:64:b0:7c:46:82:51:76:aa:9d:73:f8:cf: 02:0f:00:66:44:88:99:b7:b9:f2:01:81:ab:e9:a2:95:53:53: 13:f0:00:6f:0f:e4:d7:03:b8:f7:24:82:78:1d:de:94:69:df: 68:62:0b:e1:bd:42:7a:13:11:01:85:64:88:2a:57:b2:11:ef: b7:a1:06:ca:30:21:d4:57:bd:66:df:5e:a9:92:4a:ad:a5:03: be:0c:1f:b2:83:5e:7f:b4:dc:ec:01:0a:48:10:ea:7c:b1:3f: 3d:53:7f:9f:fd:7f:be:05:61:d4:76:fc:5f:8d:01:dc:24:6a: 2e:18:55:f8:36:8f:32:2a:6c:80:5b:70:47:a9:20:e2:56:43: 09:64:15:ba:93:c1:07:52:21:79:ed:0e:48:10:b5:81:5b:e3: 40:67:1e:ea -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBgjo1T41vcH0wBojQXU/akGxbicwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWU1ZDlkNGM4YzBiNzQxZDBkYWFiMDQ1MzkwYjIwYTI5 ZTU3NWNiNDIzNzNjOTgwNDIwOWZhMDA1ZDBhM2ZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsToUW8I9EazbqH/evVnoLyxWDqPDEYyXLojiqJb4U12Ky 51fge3u0lMkyPvxCQVkV1ZBaGgGRBZrCtig0sJeqigWZq2yTNGEJ03BblTzRFNy3 wuHc+yDTIw1rXGppY5r900qq2nn/CiJ6x+QGbx1+Yb63IkyU1N/bYJDDaaqEyZs/ HxmERCS0PYI8rYx+Ng94HWQvrOonz9yoCB57z9K4ofllA5Rsuho7MK+pwtp65gXO +Q2CUppJz6unELpH2ERlUUmjU6K8xt1w6+btxjRA5CYZaVtcSoUmt1DAZXmDQ9lz iS1XayI557uVpBny+qWD0oqB3xHa/bj/NXspKydpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUMvBsSBUXfwo03duGKUeZ1IcqEPQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5ZDUxZjQyLTJmZmMtNDIxNy05ZTMyLWY0NmNlYzcxYTg1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjIzANBgkqhkiG9w0BAQsFAAOCAQEAT5JIlaZhgbvUA9HHISk4Gx5vmiiF qe8M1h4mjrk1CF6GuGeufE7NK2jwVmihk6Ow3M+Mh1bUqwe+Gptpx3DXF7sGZLcN QZQFyl/JplsrOm7DDmGNwxWlc4s6FME/62gUZLB8RoJRdqqdc/jPAg8AZkSImbe5 8gGBq+milVNTE/AAbw/k1wO49ySCeB3elGnfaGIL4b1CehMRAYVkiCpXshHvt6EG yjAh1Fe9Zt9eqZJKraUDvgwfsoNef7Tc7AEKSBDqfLE/PVN/n/1/vgVh1Hb8X40B 3CRqLhhV+DaPMipsgFtwR6kg4lZDCWQVupPBB1Ihee0OSBC1gVvjQGce6g== -----END CERTIFICATE-----Generated at Thu May 2 17:41:08 2024 by rpki-client on console-fra.rpki-client.org