$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/735b18b1-7bb9-4007-926a-d1af3130164e.roa File: 735b18b1-7bb9-4007-926a-d1af3130164e.roa (raw, json) Hash identifier: ORbSbbKjX8rD7CFOrVCHe5LAHJ+E2lLamGCtTvvWHKo= Subject key identifier: B3:F0:7E:53:99:3F:B6:4E:6A:31:23:78:3F:51:B7:68:51:B9:E3:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26EE957E2FB19D15D578CFA3867DE0ED5CA1A67E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/735b18b1-7bb9-4007-926a-d1af3130164e.roa Signing time: Thu 18 Apr 2024 00:00:00 +0000 ROA not before: Thu 18 Apr 2024 00:00:00 +0000 ROA not after: Thu 23 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 72.21.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:ee:95:7e:2f:b1:9d:15:d5:78:cf:a3:86:7d:e0:ed:5c:a1:a6:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:00:00 2024 GMT Not After : May 23 23:59:59 2024 GMT Subject: serialNumber=03ac7d28cf454b26982e3348d159f8dfa706063abfa299ad4335a13f6be382fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5e:cf:ac:c8:14:09:52:91:0c:d7:36:de:38: 10:15:2e:b5:c4:f9:c1:df:2b:00:a6:9e:f1:d5:8b: a2:55:2a:f8:fa:18:8c:25:c2:9c:a7:78:56:e9:6e: 33:75:c1:30:15:87:62:cb:7b:e9:e1:de:6a:fe:99: 11:2b:be:bf:19:21:c4:04:f7:61:97:a0:49:92:f0: 77:da:c4:09:3a:0e:df:20:dc:5e:28:e3:66:e4:3b: 66:1b:c5:56:ac:12:72:07:5f:ff:4a:7c:8e:58:4b: a1:bd:39:b2:ed:ec:6e:f5:9d:80:25:0f:e7:87:8f: d2:3d:4b:53:58:2d:c6:3d:ad:75:ab:5b:82:44:36: 25:09:d8:c2:b4:5f:2c:b7:22:33:a2:49:95:ab:c4: e8:88:62:5d:f0:a1:a6:a7:a5:26:c7:15:fb:a1:7f: e2:1e:51:43:72:d5:83:63:d8:bf:e9:cf:94:14:08: 72:f4:a8:93:f0:bd:e5:f4:01:d7:9f:44:10:b8:30: 87:b5:64:17:6a:20:ce:f0:19:0e:6c:08:a1:e6:95: 3b:cd:63:d8:e0:2f:d1:f3:e8:1a:4f:34:d3:46:a3: 9b:34:af:bd:a9:03:da:10:73:7c:48:88:15:d2:03: 3b:f7:1a:0d:75:0b:bb:50:a9:40:29:e3:51:77:38: b5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F0:7E:53:99:3F:B6:4E:6A:31:23:78:3F:51:B7:68:51:B9:E3:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/735b18b1-7bb9-4007-926a-d1af3130164e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.21.128.0/19 Signature Algorithm: sha256WithRSAEncryption 78:f6:8d:e3:01:c2:fc:0a:07:ff:84:7b:75:f7:28:93:b4:14: b2:26:6c:99:00:9e:b6:8f:d6:5e:23:e5:4a:d3:5e:d8:bb:23: 9e:e5:86:22:65:d6:93:f6:df:c1:48:4e:99:62:f8:eb:ae:8f: ab:69:de:0d:69:09:2d:c0:88:d0:20:b7:6b:66:aa:c3:20:63: 4b:5a:0d:5c:85:d3:5b:39:9f:b8:3b:e1:54:39:e9:62:23:aa: 2c:d5:99:11:0d:01:82:66:7d:1a:15:22:89:94:07:bc:64:48: 04:dd:84:ae:e5:2d:1f:cf:90:74:2e:51:43:ac:7f:68:98:86: 58:96:81:b2:92:8a:11:a8:86:29:6b:e8:44:b7:8d:30:6b:12: bf:42:96:36:2e:1d:e0:16:a2:f0:6d:70:bb:96:a3:36:60:b3: 28:9a:5a:07:8c:b3:87:b5:be:97:e8:08:d8:44:ed:d4:ee:29: 35:d9:b3:27:30:e6:8f:97:08:e4:4c:15:b9:70:f8:74:4e:41: ff:c7:e9:83:5f:cb:ea:93:f1:d4:4c:6f:9a:5b:54:71:68:d2: 43:4c:d5:6f:b7:51:32:55:fe:bf:7c:8b:3c:51:1d:97:4d:b6: 97:d9:ab:c8:32:20:71:79:1e:5f:64:dd:0f:64:be:ad:22:a2: 9d:07:b5:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJu6Vfi+xnRXVeM+jhn3g7Vyhpn4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE4MDAwMDAwWhcNMjQwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2FjN2QyOGNmNDU0YjI2OTgyZTMzNDhkMTU5ZjhkZmE3 MDYwNjNhYmZhMjk5YWQ0MzM1YTEzZjZiZTM4MmZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6Xs+syBQJUpEM1zbeOBAVLrXE+cHfKwCmnvHVi6JVKvj6 GIwlwpyneFbpbjN1wTAVh2LLe+nh3mr+mRErvr8ZIcQE92GXoEmS8HfaxAk6Dt8g 3F4o42bkO2YbxVasEnIHX/9KfI5YS6G9ObLt7G71nYAlD+eHj9I9S1NYLcY9rXWr W4JENiUJ2MK0Xyy3IjOiSZWrxOiIYl3woaanpSbHFfuhf+IeUUNy1YNj2L/pz5QU CHL0qJPwveX0AdefRBC4MIe1ZBdqIM7wGQ5sCKHmlTvNY9jgL9Hz6BpPNNNGo5s0 r72pA9oQc3xIiBXSAzv3Gg11C7tQqUAp41F3OLUXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUs/B+U5k/tk5qMSN4P1G3aFG54wMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzczNWIxOGIxLTdiYjktNDAwNy05MjZhLWQxYWYzMTMwMTY0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVIFYAwDQYJKoZIhvcNAQELBQADggEBAHj2jeMBwvwKB/+Ee3X3KJO0FLIm bJkAnraP1l4j5UrTXti7I57lhiJl1pP238FITpli+Ouuj6tp3g1pCS3AiNAgt2tm qsMgY0taDVyF01s5n7g74VQ56WIjqizVmRENAYJmfRoVIomUB7xkSATdhK7lLR/P kHQuUUOsf2iYhliWgbKSihGohilr6ES3jTBrEr9CljYuHeAWovBtcLuWozZgsyia WgeMs4e1vpfoCNhE7dTuKTXZsycw5o+XCORMFblw+HROQf/H6YNfy+qT8dRMb5pb VHFo0kNM1W+3UTJV/r98izxRHZdNtpfZq8gyIHF5Hl9k3Q9kvq0iop0Htag= -----END CERTIFICATE-----Generated at Thu May 2 12:23:07 2024 by rpki-client on console-ams.rpki-client.org