$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/749fc126-a0b5-4964-9a0a-0dc5319ce477.roa File: 749fc126-a0b5-4964-9a0a-0dc5319ce477.roa (raw, json) Hash identifier: LfBk7fDyxxnhqJ8q91ni5hY42eCNgITQje4j23aqd3Q= Subject key identifier: 3E:E0:6B:40:81:5C:3F:D6:82:EE:7F:BC:5F:FD:CB:3D:EB:15:51:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51250B4193C40C7556E6222F37A8F4C3CA2D2830 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/749fc126-a0b5-4964-9a0a-0dc5319ce477.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 35.52.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:25:0b:41:93:c4:0c:75:56:e6:22:2f:37:a8:f4:c3:ca:2d:28:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=0d0145d39e998d8a9817ee5d47013ee9cfc71233618f3514f2e4f3896bfb7a83, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1c:79:1d:3c:68:6f:61:73:39:d0:68:3a:a0: 80:48:c6:63:fc:4e:bd:c9:f3:fc:69:c4:34:63:69: 58:57:5e:b7:9e:c6:6c:e6:b7:6c:ea:c7:61:bc:93: cc:ef:2b:a3:e2:1a:99:14:d0:ee:8f:94:a5:88:2a: 9e:f6:47:5a:1c:97:5b:e8:49:dd:72:a5:45:a5:0c: 03:84:b3:df:0f:91:53:59:29:44:22:89:58:0f:b5: 57:37:35:0c:41:4b:0e:9c:7b:f5:d6:13:80:c8:79: 3f:e0:29:f6:6e:a2:c9:0e:c9:98:9b:99:30:21:29: 8e:4b:e7:79:b7:37:b7:e0:6e:0d:5a:fe:82:dc:4e: 08:aa:75:50:ee:81:01:79:d9:aa:48:5b:18:a9:13: d4:a5:d5:bc:43:80:dd:c1:bb:d8:90:ba:74:e2:7f: c2:a7:49:f0:b7:2a:ce:6e:5b:25:28:38:aa:79:0b: ca:c7:45:0f:56:2b:c3:a4:70:b6:3c:0f:45:46:e8: ff:12:05:b6:7e:f1:39:cd:94:70:8f:10:27:63:0f: 08:54:02:0b:32:68:b1:03:2d:9a:69:37:99:15:10: ed:b8:67:48:6c:0b:6b:a2:c2:b6:54:a1:72:86:2d: 64:89:b0:24:f7:bf:67:04:68:ff:ce:8e:7c:bd:d6: b4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E0:6B:40:81:5C:3F:D6:82:EE:7F:BC:5F:FD:CB:3D:EB:15:51:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/749fc126-a0b5-4964-9a0a-0dc5319ce477.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.52.0.0/15 Signature Algorithm: sha256WithRSAEncryption a3:40:cd:91:43:45:cb:60:4f:ab:1b:cb:f2:ad:cc:45:f5:84: 7a:17:d3:3f:10:81:55:cb:60:79:36:3d:1b:8e:94:77:24:6c: c3:68:0a:40:8d:74:b9:d2:6e:d0:dd:8a:44:4a:a5:b9:e6:1f: c9:9a:9d:fb:06:69:02:2a:a3:a2:34:e3:ab:a7:f8:4e:d0:86: 56:e5:22:7d:d5:69:12:01:fb:a7:bf:68:bf:d1:f6:96:c7:39: ce:0b:13:91:54:e4:21:ee:3c:e9:94:9e:67:ba:7c:ca:2a:1d: 39:a8:2a:f9:d3:b7:26:39:85:46:b0:d7:8f:f9:b6:da:3c:7d: ed:df:f1:9f:84:d7:c0:ed:8b:a8:ef:da:0b:8a:49:e1:99:b6: 49:18:65:e7:5b:47:4a:52:64:9f:1f:d8:74:a7:34:60:5c:9e: 9d:91:b5:a0:7e:0e:2d:d8:65:0a:dc:3f:c8:9b:9b:ee:5d:8e: f1:65:1c:b4:c6:90:1a:03:1c:77:4a:af:11:6d:57:17:8d:c8: 07:39:d2:bd:e4:9c:f9:c7:d9:1b:01:d6:d2:4c:24:12:03:9c: 5c:c7:ca:12:e1:e7:ca:fc:5b:72:4f:0f:2d:55:b1:1f:d3:bb: 93:ae:52:53:60:28:35:9d:a0:2f:bb:e6:bc:2c:90:b3:fb:db: eb:48:89:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUSULQZPEDHVW5iIvN6j0w8otKDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDAxNDVkMzllOTk4ZDhhOTgxN2VlNWQ0NzAxM2VlOWNm YzcxMjMzNjE4ZjM1MTRmMmU0ZjM4OTZiZmI3YTgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMHHkdPGhvYXM50Gg6oIBIxmP8Tr3J8/xpxDRjaVhXXree xmzmt2zqx2G8k8zvK6PiGpkU0O6PlKWIKp72R1ocl1voSd1ypUWlDAOEs98PkVNZ KUQiiVgPtVc3NQxBSw6ce/XWE4DIeT/gKfZuoskOyZibmTAhKY5L53m3N7fgbg1a /oLcTgiqdVDugQF52apIWxipE9Sl1bxDgN3Bu9iQunTif8KnSfC3Ks5uWyUoOKp5 C8rHRQ9WK8OkcLY8D0VG6P8SBbZ+8TnNlHCPECdjDwhUAgsyaLEDLZppN5kVEO24 Z0hsC2uiwrZUoXKGLWSJsCT3v2cEaP/Ojny91rQZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPuBrQIFcP9aC7n+8X/3LPesVUfAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0OWZjMTI2LWEwYjUtNDk2NC05YTBhLTBkYzUzMTljZTQ3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjNDANBgkqhkiG9w0BAQsFAAOCAQEAo0DNkUNFy2BPqxvL8q3MRfWEehfT PxCBVctgeTY9G46UdyRsw2gKQI10udJu0N2KREqlueYfyZqd+wZpAiqjojTjq6f4 TtCGVuUifdVpEgH7p79ov9H2lsc5zgsTkVTkIe486ZSeZ7p8yiodOagq+dO3JjmF RrDXj/m22jx97d/xn4TXwO2LqO/aC4pJ4Zm2SRhl51tHSlJknx/YdKc0YFyenZG1 oH4OLdhlCtw/yJub7l2O8WUctMaQGgMcd0qvEW1XF43IBznSveSc+cfZGwHW0kwk EgOcXMfKEuHnyvxbck8PLVWxH9O7k65SU2AoNZ2gL7vmvCyQs/vb60iJaQ== -----END CERTIFICATE-----Generated at Thu May 2 03:11:33 2024 by rpki-client on console-ams.rpki-client.org