$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530e2a2b-5bed-4da2-b97f-94f805d7cb4b.roa File: 530e2a2b-5bed-4da2-b97f-94f805d7cb4b.roa (raw, json) Hash identifier: eOIlhE+pnfCCzs/kvJG9m997Brk9Dbb/2YFYcaG1Bj8= Subject key identifier: 6D:45:98:45:59:86:F6:4E:87:D9:68:F1:07:2B:D2:B4:14:C7:C5:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3937E9591AD89749E79188F1682154A207C9C367 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530e2a2b-5bed-4da2-b97f-94f805d7cb4b.roa Signing time: Thu 18 Apr 2024 00:00:00 +0000 ROA not before: Thu 18 Apr 2024 00:00:00 +0000 ROA not after: Thu 23 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 65.37.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:37:e9:59:1a:d8:97:49:e7:91:88:f1:68:21:54:a2:07:c9:c3:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:00:00 2024 GMT Not After : May 23 23:59:59 2024 GMT Subject: serialNumber=250928116057c0c600dc10e5051942c669c2aa49658d11f99a649c3f256937d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e3:3d:9a:0f:c7:74:d8:43:91:fd:31:14:30: df:ed:51:a0:25:d0:56:9d:bf:42:5a:84:e5:b1:d1: af:b3:2c:43:aa:5b:95:60:ba:fb:16:36:71:a2:09: ec:f2:50:67:ba:13:4b:05:4c:9f:f7:ef:03:fa:12: 8a:28:e1:18:00:61:67:a4:8f:85:a3:3e:75:8b:68: 17:30:eb:03:dc:04:2c:87:b6:7d:97:f2:73:c7:da: 28:79:25:a9:d5:38:3a:5e:3c:83:39:9a:ff:d8:16: e1:19:0a:e9:98:67:23:8c:d6:d9:47:b4:ae:1f:df: cc:3a:49:9d:8f:b3:b4:49:8a:b7:a7:18:dc:98:be: 64:d7:71:e1:c7:9f:2e:42:67:54:41:95:c9:6e:e7: af:32:f6:cd:6b:94:61:bb:1d:ce:92:44:e9:29:c3: 0c:59:91:4c:55:a5:35:49:c8:d0:40:50:42:4c:38: e4:f4:d6:38:5d:ff:e4:1d:7b:38:1a:e7:92:75:ab: b9:f6:0f:ed:c3:4d:cd:f1:ef:7e:4d:7a:39:68:05: 14:b8:e1:33:67:57:01:e3:a2:f2:d7:1d:c9:e9:1c: 67:d0:27:1f:19:b5:69:d6:65:f0:d3:61:be:6d:9c: 8c:29:85:eb:fc:3a:2e:15:ac:92:83:b8:fc:1f:c9: e1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:45:98:45:59:86:F6:4E:87:D9:68:F1:07:2B:D2:B4:14:C7:C5:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530e2a2b-5bed-4da2-b97f-94f805d7cb4b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.37.128.0/18 Signature Algorithm: sha256WithRSAEncryption 29:53:59:4c:be:56:5f:d5:f6:60:e3:f3:4a:b7:16:bf:61:b7: a5:b6:f9:c0:0b:df:84:c4:1a:b1:0b:86:9e:da:07:74:5c:68: 36:18:cb:e4:eb:aa:71:76:a9:eb:12:19:cb:8d:a8:f2:ee:45: ea:46:44:5c:03:2a:52:ec:7c:a4:48:dc:86:6e:2a:fe:aa:5a: dd:39:76:5a:4a:66:3a:88:52:77:a4:c4:a3:ab:a6:49:bf:0b: bd:f4:59:f4:e3:a0:66:72:d5:71:fe:df:4d:a9:12:92:96:d1: 63:0a:d6:ba:9e:e4:41:be:4c:ee:3d:ba:2a:4c:a6:b1:7f:a6: 39:4b:5d:68:ba:a2:f5:95:6f:71:a9:ef:e5:55:d3:82:bd:eb: 88:6c:43:cf:28:40:e4:4f:8c:89:56:a6:aa:ae:b9:b2:0e:0a: fd:05:50:fc:b9:91:0d:ff:32:1e:bd:d5:0b:56:dd:48:23:17: 1d:a0:4c:31:fd:6d:c1:53:ff:80:92:bc:0b:ec:f2:07:6b:29: 46:e6:e7:e8:92:7f:3d:01:43:4b:ea:cf:ab:0b:ec:d9:9a:6f: c9:30:3b:cb:6f:a7:4a:e6:34:cb:f3:c4:93:56:76:9e:33:c5: 1b:a4:0c:08:d6:b7:c5:1c:24:b9:5e:6e:43:1f:57:86:55:bf: b4:5f:9d:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOTfpWRrYl0nnkYjxaCFUogfJw2cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE4MDAwMDAwWhcNMjQwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTA5MjgxMTYwNTdjMGM2MDBkYzEwZTUwNTE5NDJjNjY5 YzJhYTQ5NjU4ZDExZjk5YTY0OWMzZjI1NjkzN2QwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt4z2aD8d02EOR/TEUMN/tUaAl0Fadv0JahOWx0a+zLEOq W5VguvsWNnGiCezyUGe6E0sFTJ/37wP6Eooo4RgAYWekj4WjPnWLaBcw6wPcBCyH tn2X8nPH2ih5JanVODpePIM5mv/YFuEZCumYZyOM1tlHtK4f38w6SZ2Ps7RJiren GNyYvmTXceHHny5CZ1RBlclu568y9s1rlGG7Hc6SROkpwwxZkUxVpTVJyNBAUEJM OOT01jhd/+Qdezga55J1q7n2D+3DTc3x735NejloBRS44TNnVwHjovLXHcnpHGfQ Jx8ZtWnWZfDTYb5tnIwphev8Oi4VrJKDuPwfyeENAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbUWYRVmG9k6H2WjxByvStBTHxRMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMGUyYTJiLTViZWQtNGRhMi1iOTdmLTk0ZjgwNWQ3Y2I0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZBJYAwDQYJKoZIhvcNAQELBQADggEBAClTWUy+Vl/V9mDj80q3Fr9ht6W2 +cAL34TEGrELhp7aB3RcaDYYy+TrqnF2qesSGcuNqPLuRepGRFwDKlLsfKRI3IZu Kv6qWt05dlpKZjqIUnekxKOrpkm/C730WfTjoGZy1XH+302pEpKW0WMK1rqe5EG+ TO49uipMprF/pjlLXWi6ovWVb3Gp7+VV04K964hsQ88oQORPjIlWpqquubIOCv0F UPy5kQ3/Mh691QtW3UgjFx2gTDH9bcFT/4CSvAvs8gdrKUbm5+iSfz0BQ0vqz6sL 7Nmab8kwO8tvp0rmNMvzxJNWdp4zxRukDAjWt8UcJLlebkMfV4ZVv7Rfnco= -----END CERTIFICATE-----Generated at Thu May 9 01:26:13 2024 by rpki-client on console-ams.rpki-client.org