$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba621db-d295-4f28-9765-ac207449dddc.roa File: 6ba621db-d295-4f28-9765-ac207449dddc.roa (raw, json) Hash identifier: VaVsZZaPNKhR7dAc2JxzMDprESeVET/F/T6xFAn+fD0= Subject key identifier: 9B:F1:6A:92:06:1A:2F:7E:1F:87:02:E3:58:0B:80:0A:55:8E:E2:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08FDCDDDCBF929623A62474B83DE7A5076D1AE0D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba621db-d295-4f28-9765-ac207449dddc.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 35.128.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:fd:cd:dd:cb:f9:29:62:3a:62:47:4b:83:de:7a:50:76:d1:ae:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=b93d3702249c1ea995442a8728df22fec2b6f87fd4cdcd2cf00ca77f49ebf860, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b1:4e:da:02:4e:7e:3e:7a:cb:4a:31:0c:2c: 85:bd:a6:44:67:82:61:1a:ac:12:fe:e0:ed:a4:da: 3a:7e:91:27:d9:80:c5:a1:76:08:d7:48:06:ac:18: 8f:6e:04:a1:0d:b1:f2:90:54:09:a9:ab:b0:c5:40: db:b2:9e:cd:d2:63:99:f4:e0:30:d2:e8:f3:b6:16: fd:fd:18:ad:b2:17:0f:b1:ca:95:b8:58:23:c6:ea: 60:09:44:ee:a4:6f:ba:00:80:58:09:d1:2f:0f:55: 4a:3f:1a:c1:ca:6c:0d:bb:55:1b:2f:52:3e:3f:26: 56:0d:14:03:c7:0b:bd:02:8c:d7:b9:ed:ff:1a:bc: 37:a9:1a:46:f9:9e:e7:b9:2d:1d:db:f1:28:cf:48: e7:f0:50:42:f2:0e:fb:df:41:52:11:cb:1c:21:b2: 97:3b:73:dd:26:30:de:38:16:8b:fc:f5:ba:62:37: ce:b9:ce:7e:76:f5:ba:40:cb:da:4a:d5:2d:12:bb: 81:29:ed:af:eb:61:da:86:cd:83:0a:31:dc:fb:d7: ea:3f:e8:4a:94:f7:76:33:cc:73:c1:2a:89:8b:80: 56:58:36:96:2a:fa:54:15:d4:50:45:74:4f:71:e6: cf:c7:9c:02:73:b4:d9:35:a2:53:ac:31:9e:26:6a: e9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F1:6A:92:06:1A:2F:7E:1F:87:02:E3:58:0B:80:0A:55:8E:E2:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba621db-d295-4f28-9765-ac207449dddc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.128.128.0/18 Signature Algorithm: sha256WithRSAEncryption bd:f5:9e:41:b9:c7:ec:11:36:63:71:0c:a9:60:c3:df:9a:6c: c4:36:39:12:70:0b:ec:06:c7:8a:2c:56:57:35:cf:42:ec:b9: f4:10:ee:9c:3c:a6:8a:c3:62:4c:00:dd:5c:c7:c4:c5:08:95: 39:f4:a9:66:0c:af:d2:1c:cf:2c:0b:e5:0f:66:eb:a1:73:79: 73:2c:74:92:61:5b:fd:6b:b3:72:57:66:0e:6c:25:9d:69:8e: a0:1b:62:47:aa:49:2e:fa:48:b8:20:c9:8f:4b:68:70:ed:1c: 32:c9:71:81:b1:6e:06:59:45:a9:4f:18:6f:6c:40:48:52:4f: 11:ac:43:a2:bf:d2:fd:c7:bc:8a:4a:dc:aa:70:07:ca:06:b6: 4f:29:2d:3d:ab:bc:cd:6b:4b:e3:23:f7:5f:bb:ce:17:4f:de: c5:4f:c6:41:f1:58:e4:cd:34:8a:d8:ad:39:d5:e2:a3:96:f3: 79:8f:02:b8:39:10:16:37:36:e9:37:dc:d2:ea:65:51:b2:77: 4f:fd:1a:fd:a9:f7:3c:c3:02:9e:1a:aa:e6:f8:64:e0:92:57: 32:7e:dc:c3:8a:33:83:7f:4f:19:c8:3d:84:de:c6:36:e6:b5: e3:29:82:de:8f:dd:cd:56:20:b8:1a:d6:b3:24:4a:31:b0:56: 02:09:84:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCP3N3cv5KWI6YkdLg956UHbRrg0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTNkMzcwMjI0OWMxZWE5OTU0NDJhODcyOGRmMjJmZWMy YjZmODdmZDRjZGNkMmNmMDBjYTc3ZjQ5ZWJmODYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4sU7aAk5+PnrLSjEMLIW9pkRngmEarBL+4O2k2jp+kSfZ gMWhdgjXSAasGI9uBKENsfKQVAmpq7DFQNuyns3SY5n04DDS6PO2Fv39GK2yFw+x ypW4WCPG6mAJRO6kb7oAgFgJ0S8PVUo/GsHKbA27VRsvUj4/JlYNFAPHC70CjNe5 7f8avDepGkb5nue5LR3b8SjPSOfwUELyDvvfQVIRyxwhspc7c90mMN44Fov89bpi N865zn529bpAy9pK1S0Su4Ep7a/rYdqGzYMKMdz71+o/6EqU93YzzHPBKomLgFZY NpYq+lQV1FBFdE9x5s/HnAJztNk1olOsMZ4maum5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm/FqkgYaL34fhwLjWAuAClWO4jEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiYTYyMWRiLWQyOTUtNGYyOC05NzY1LWFjMjA3NDQ5ZGRkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYjgIAwDQYJKoZIhvcNAQELBQADggEBAL31nkG5x+wRNmNxDKlgw9+abMQ2 ORJwC+wGx4osVlc1z0LsufQQ7pw8porDYkwA3VzHxMUIlTn0qWYMr9IczywL5Q9m 66FzeXMsdJJhW/1rs3JXZg5sJZ1pjqAbYkeqSS76SLggyY9LaHDtHDLJcYGxbgZZ RalPGG9sQEhSTxGsQ6K/0v3HvIpK3KpwB8oGtk8pLT2rvM1rS+Mj91+7zhdP3sVP xkHxWOTNNIrYrTnV4qOW83mPArg5EBY3Nuk33NLqZVGyd0/9Gv2p9zzDAp4aqub4 ZOCSVzJ+3MOKM4N/TxnIPYTexjbmteMpgt6P3c1WILga1rMkSjGwVgIJhBQ= -----END CERTIFICATE-----Generated at Thu May 9 01:25:33 2024 by rpki-client on console-fra.rpki-client.org