$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59e261ac-4fa0-46a8-9673-10e12b07f88e.roa File: 59e261ac-4fa0-46a8-9673-10e12b07f88e.roa (raw, json) Hash identifier: wLbHEjBeGKf65oET3jtpkpkleymzwbRnG/wEWJss+1c= Subject key identifier: D3:93:37:8B:90:DC:D5:D4:B7:97:69:96:7F:BD:85:05:FC:42:B8:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34884CC21A4FC3924A89194D14B03F283BA84EC8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59e261ac-4fa0-46a8-9673-10e12b07f88e.roa Signing time: Wed 08 May 2024 00:00:00 +0000 ROA not before: Wed 08 May 2024 00:00:00 +0000 ROA not after: Wed 12 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 142.54.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 11 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:88:4c:c2:1a:4f:c3:92:4a:89:19:4d:14:b0:3f:28:3b:a8:4e:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 00:00:00 2024 GMT Not After : Jun 12 23:59:59 2024 GMT Subject: serialNumber=3cbd95fd264441acb90e570e69d78ebfa70c52d3a7d41f3fc94b2b44cca4203a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:aa:db:82:cf:9b:95:7c:1c:94:47:b9:40:b0: 7f:af:33:18:57:7b:01:06:94:86:fb:95:e7:3a:28: eb:dd:ff:a5:e1:51:48:8d:e1:bc:4a:9f:92:9f:0b: f1:7a:51:6e:ee:87:88:8e:94:46:4f:62:d5:0a:8b: e7:f4:48:0d:26:e8:cb:b4:48:2d:c1:e4:48:75:fc: e3:24:9e:9c:30:d6:7b:84:4e:fb:3a:33:c7:7f:2a: 82:00:a6:53:6d:f6:0c:07:5a:28:53:3d:6f:82:3e: fb:6d:2a:a1:84:77:d6:5c:80:93:27:ca:29:78:d9: b6:f1:8c:92:e6:00:31:38:97:b7:1d:e2:6f:5d:fe: 8c:53:9f:d1:5d:32:0c:18:7e:44:a7:18:3c:3a:4e: d5:67:88:f9:d3:8d:5a:62:6a:0e:ba:d9:ab:37:d9: 20:66:b6:75:c0:a4:20:6c:a9:11:91:25:d9:a2:a7: b6:b1:32:64:73:a2:8a:bb:50:77:21:7a:1c:e3:c0: 6c:2e:71:12:cb:ce:ca:f4:07:be:42:0c:ad:9c:86: 84:da:ed:c7:c4:1c:10:ae:e2:9b:21:aa:9d:b5:d2: 0a:5e:bd:63:5a:22:03:67:bf:2c:e3:4f:8f:a5:17: 3e:54:7d:01:62:51:0f:90:9c:3b:92:99:8b:e7:06: 5f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:93:37:8B:90:DC:D5:D4:B7:97:69:96:7F:BD:85:05:FC:42:B8:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59e261ac-4fa0-46a8-9673-10e12b07f88e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.54.128.0/19 Signature Algorithm: sha256WithRSAEncryption 8a:0c:b9:ca:08:95:6a:76:07:23:b7:0c:1b:15:8e:33:cb:a3: 26:51:05:ec:c4:92:ca:73:f3:b8:ca:36:7b:ec:0a:19:1f:2c: 1a:90:3a:11:57:f4:45:74:ac:cc:d6:71:bf:90:cc:8b:0f:62: 4e:46:9f:fd:94:be:5a:d9:f8:2c:0f:5e:7a:e8:bb:8d:60:ed: 2a:89:81:1d:4d:77:2c:76:8e:0a:21:1a:e0:13:48:c3:ee:50: f4:e4:cf:05:f1:d9:ec:d8:da:c3:df:f8:fb:ba:65:07:a2:92: 47:38:80:38:0e:1e:6e:57:6c:0c:ab:81:0a:86:93:c8:7c:ac: dc:27:f7:92:36:5c:97:92:27:78:2d:7d:a6:83:49:29:43:46: 66:35:25:b0:3c:b0:06:2f:cb:51:ba:c0:f6:81:17:55:48:fb: 5d:30:d0:aa:32:19:c9:0f:d0:7f:a6:95:78:7e:0a:66:0f:da: 79:c3:dc:78:c8:08:5f:7b:e0:7d:5f:e5:47:37:4a:6b:be:a0: be:68:7f:92:25:59:20:bb:e2:03:7b:71:ff:0d:0b:7e:88:18: a7:c0:43:71:08:4d:08:fc:df:b9:7f:ac:9a:89:f7:1e:2a:8e: 31:c4:ad:4b:d7:e3:dd:ad:a4:6a:91:04:ca:9e:f6:25:a6:0b: cc:cc:11:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNIhMwhpPw5JKiRlNFLA/KDuoTsgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA4MDAwMDAwWhcNMjQwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzY2JkOTVmZDI2NDQ0MWFjYjkwZTU3MGU2OWQ3OGViZmE3 MGM1MmQzYTdkNDFmM2ZjOTRiMmI0NGNjYTQyMDNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfqtuCz5uVfByUR7lAsH+vMxhXewEGlIb7lec6KOvd/6Xh UUiN4bxKn5KfC/F6UW7uh4iOlEZPYtUKi+f0SA0m6Mu0SC3B5Eh1/OMknpww1nuE Tvs6M8d/KoIAplNt9gwHWihTPW+CPvttKqGEd9ZcgJMnyil42bbxjJLmADE4l7cd 4m9d/oxTn9FdMgwYfkSnGDw6TtVniPnTjVpiag662as32SBmtnXApCBsqRGRJdmi p7axMmRzooq7UHchehzjwGwucRLLzsr0B75CDK2choTa7cfEHBCu4pshqp210gpe vWNaIgNnvyzjT4+lFz5UfQFiUQ+QnDuSmYvnBl/jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU05M3i5Dc1dS3l2mWf72FBfxCuK4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5ZTI2MWFjLTRmYTAtNDZhOC05NjczLTEwZTEyYjA3Zjg4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWONoAwDQYJKoZIhvcNAQELBQADggEBAIoMucoIlWp2ByO3DBsVjjPLoyZR BezEkspz87jKNnvsChkfLBqQOhFX9EV0rMzWcb+QzIsPYk5Gn/2UvlrZ+CwPXnro u41g7SqJgR1Ndyx2jgohGuATSMPuUPTkzwXx2ezY2sPf+Pu6ZQeikkc4gDgOHm5X bAyrgQqGk8h8rNwn95I2XJeSJ3gtfaaDSSlDRmY1JbA8sAYvy1G6wPaBF1VI+10w 0KoyGckP0H+mlXh+CmYP2nnD3HjICF974H1f5Uc3Smu+oL5of5IlWSC74gN7cf8N C36IGKfAQ3EITQj837l/rJqJ9x4qjjHErUvX492tpGqRBMqe9iWmC8zMEX8= -----END CERTIFICATE-----Generated at Thu May 9 17:46:46 2024 by rpki-client on console-ams.rpki-client.org