$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fc910ad-b261-4cd1-9244-c19f365423e3.roa File: 5fc910ad-b261-4cd1-9244-c19f365423e3.roa (raw, json) Hash identifier: 7UN+B3v3MQiue3GRjUgJ4hxbcrVQ8sW27bYEXPpdLTY= Subject key identifier: 44:EB:C6:64:A1:D9:93:AE:76:7B:FF:66:72:F8:7B:7A:83:01:BC:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23AEA357A85A85B89B09560474D174B21EDD566F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fc910ad-b261-4cd1-9244-c19f365423e3.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 35.42.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:ae:a3:57:a8:5a:85:b8:9b:09:56:04:74:d1:74:b2:1e:dd:56:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=9375565244f60bbd82dce876c56bc0e36c993b84da686e5a7300a4c508e83664, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:dc:54:17:51:6a:25:b1:05:fc:66:ef:aa:9b: 4d:a0:76:5f:91:da:df:1d:09:bb:5c:36:51:89:13: 49:85:e7:24:82:02:dd:15:94:41:1f:1d:d2:43:d4: 97:c5:9c:c2:b8:87:ff:25:8f:e6:f5:d1:00:ab:22: e5:8d:42:ae:81:e0:a7:f5:de:ac:1f:61:cd:48:b6: 8e:a7:6e:d6:ed:b6:88:65:7b:7a:d9:b8:2b:9e:82: 1f:22:f8:a1:2f:a7:c0:0b:7f:ec:d8:b4:5b:d1:36: 23:38:3d:b7:c5:04:24:c4:ef:06:e4:b8:6c:aa:7a: 1e:34:2d:a7:94:5c:eb:bf:72:cd:12:c0:c6:7d:5d: f2:3d:c9:32:5f:99:9b:31:1e:07:cc:e6:81:1c:32: 5b:39:38:fa:aa:22:f2:09:17:9f:5d:7d:d1:9d:96: d5:c1:ec:60:0b:34:b4:13:70:e3:66:27:d1:2d:11: d6:18:c7:70:ca:90:6c:79:64:6e:89:3b:7f:46:32: f1:d8:0b:3c:85:83:63:7a:92:9d:dc:c6:f0:11:52: 82:4b:57:f1:2f:98:35:3d:41:f9:7a:f9:97:44:32: 65:14:71:06:7d:bf:05:01:13:f3:9b:2b:45:60:ba: 55:77:a8:b0:a5:54:ad:c3:e3:22:54:75:eb:a5:58: c6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:EB:C6:64:A1:D9:93:AE:76:7B:FF:66:72:F8:7B:7A:83:01:BC:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fc910ad-b261-4cd1-9244-c19f365423e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.42.0.0/16 Signature Algorithm: sha256WithRSAEncryption 12:9a:82:7c:52:4e:13:b1:3e:b2:e5:f5:b7:44:79:8a:b6:13: 93:24:e3:0b:a1:2e:d5:a6:09:58:81:16:a8:ac:38:16:68:d7: e2:87:f3:cf:dd:1c:af:b7:f6:50:4d:b2:b7:14:7c:9e:15:1d: 8a:8a:b0:64:a4:de:17:d3:0a:98:aa:9d:75:a8:58:d2:ec:e3: 41:41:b4:bf:24:6f:8d:ff:ba:b6:8c:57:ad:2b:f7:ca:b5:28: c3:4d:a4:37:20:80:d1:a7:d9:39:ab:cb:38:b4:24:c8:45:1b: f5:ac:ee:63:39:84:64:4f:90:63:ad:35:14:60:7d:2c:a6:80: 28:ca:57:ee:93:8e:98:e1:1a:e3:db:8c:2c:4f:2d:ec:00:84: 47:eb:8f:9e:d0:14:93:2f:fb:e7:96:d9:5d:00:77:6c:15:b3: ab:cd:ac:5d:98:f7:ee:dc:84:ac:58:e5:85:46:54:e7:05:b7: 7a:41:0b:96:a2:f7:93:94:b2:75:a8:68:7a:64:ca:ef:b9:e4: ab:21:00:4d:cf:6c:b7:fb:f0:06:58:2c:7d:a7:e6:c4:dc:2e: fc:0e:b7:67:fa:02:2f:29:26:02:06:72:9f:9a:26:66:c7:7d: df:7e:08:47:1d:52:a3:b3:8b:14:42:37:31:3c:00:61:cb:d2: 2b:df:28:b3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI66jV6hahbibCVYEdNF0sh7dVm8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A5Mzc1NTY1MjQ0ZjYwYmJkODJkY2U4NzZjNTZiYzBlMzZj OTkzYjg0ZGE2ODZlNWE3MzAwYTRjNTA4ZTgzNjY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCj3FQXUWolsQX8Zu+qm02gdl+R2t8dCbtcNlGJE0mF5ySC At0VlEEfHdJD1JfFnMK4h/8lj+b10QCrIuWNQq6B4Kf13qwfYc1Ito6nbtbttohl e3rZuCuegh8i+KEvp8ALf+zYtFvRNiM4PbfFBCTE7wbkuGyqeh40LaeUXOu/cs0S wMZ9XfI9yTJfmZsxHgfM5oEcMls5OPqqIvIJF59dfdGdltXB7GALNLQTcONmJ9Et EdYYx3DKkGx5ZG6JO39GMvHYCzyFg2N6kp3cxvARUoJLV/EvmDU9Qfl6+ZdEMmUU cQZ9vwUBE/ObK0VgulV3qLClVK3D4yJUdeulWMbnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUROvGZKHZk652e/9mcvh7eoMBvCowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVmYzkxMGFkLWIyNjEtNGNkMS05MjQ0LWMxOWYzNjU0MjNlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjKjANBgkqhkiG9w0BAQsFAAOCAQEAEpqCfFJOE7E+suX1t0R5irYTkyTj C6Eu1aYJWIEWqKw4FmjX4ofzz90cr7f2UE2ytxR8nhUdioqwZKTeF9MKmKqddahY 0uzjQUG0vyRvjf+6toxXrSv3yrUow02kNyCA0afZOavLOLQkyEUb9azuYzmEZE+Q Y601FGB9LKaAKMpX7pOOmOEa49uMLE8t7ACER+uPntAUky/755bZXQB3bBWzq82s XZj37tyErFjlhUZU5wW3ekELlqL3k5SydahoemTK77nkqyEATc9st/vwBlgsfafm xNwu/A63Z/oCLykmAgZyn5omZsd9334IRx1So7OLFEI3MTwAYcvSK98osw== -----END CERTIFICATE-----Generated at Thu May 9 01:26:14 2024 by rpki-client on console-ams.rpki-client.org