$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/835cffdf-1f3d-4b3f-8c14-514a36373177.roa File: 835cffdf-1f3d-4b3f-8c14-514a36373177.roa (raw, json) Hash identifier: 8Sdynu72unuFaWCdS9CnfXLE73BaEa56i38383qYDjI= Subject key identifier: 95:59:1A:6C:F5:58:85:2A:D4:7D:A8:DC:99:5D:1A:14:E2:F6:DF:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 156C6B5C13C7F3130AC709EC7868733AA8CED0A4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/835cffdf-1f3d-4b3f-8c14-514a36373177.roa Signing time: Fri 03 May 2024 00:00:00 +0000 ROA not before: Fri 03 May 2024 00:00:00 +0000 ROA not after: Fri 07 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 147.106.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:6c:6b:5c:13:c7:f3:13:0a:c7:09:ec:78:68:73:3a:a8:ce:d0:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:00:00 2024 GMT Not After : Jun 7 23:59:59 2024 GMT Subject: serialNumber=9af1638c5cc88b493f6b8c55fa2d606f1d11e0ac418db25534164c560f8b9136, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e4:a3:6c:95:ed:80:35:25:99:eb:e4:16:e6: 73:dc:f7:df:3a:4d:04:a5:c0:4b:9f:36:16:0a:e5: de:04:3d:cb:3e:8b:d2:a2:37:bf:df:1d:d6:34:87: cc:2d:f1:58:6a:c0:76:62:ff:15:b7:43:0b:d9:b7: 41:30:ab:85:77:5f:20:cb:81:e7:45:51:1d:51:91: 11:32:97:d3:60:20:78:62:21:80:1c:09:7a:08:09: 22:6d:58:3e:83:68:b3:e0:2a:92:30:b0:27:7b:88: 7a:90:75:08:cd:e6:7b:f4:a7:d2:6e:c6:81:d4:71: 07:aa:37:bc:0d:0d:36:ad:2e:35:40:c3:7a:88:ca: 41:1c:7f:d6:3b:1d:43:e5:7c:79:9f:d7:78:61:3c: f7:32:4f:d2:7f:1b:56:05:8e:70:82:c4:db:f7:79: 9a:0b:61:36:9d:b3:97:27:53:aa:de:60:68:b2:e7: 84:b3:d9:88:c8:f8:38:c0:fe:23:91:26:44:b2:07: b0:97:31:2e:3c:b9:2c:4d:f5:59:d7:b5:19:78:10: 17:c5:ee:1f:39:71:b0:9a:da:8f:b0:ac:dc:01:1e: 51:d1:a5:06:cb:ea:37:b6:1a:ef:e1:67:43:09:aa: 8e:a5:2f:59:e3:25:1a:43:e3:64:1a:40:dd:1d:7d: 8d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:59:1A:6C:F5:58:85:2A:D4:7D:A8:DC:99:5D:1A:14:E2:F6:DF:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/835cffdf-1f3d-4b3f-8c14-514a36373177.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.106.128.0/18 Signature Algorithm: sha256WithRSAEncryption 84:5e:8d:ec:28:ce:b6:93:c3:96:2e:99:88:72:c1:94:4a:8c: 43:5c:2e:46:27:09:ae:a8:02:47:67:78:be:59:5b:94:bf:9b: bc:e0:f2:e7:7f:67:f8:2f:b6:5e:e3:60:5a:78:a1:3a:8d:84: ca:44:74:6c:95:4e:cb:05:3c:07:4d:75:a8:c4:a0:3f:10:0f: 9e:c4:83:84:85:02:de:0b:b0:56:57:a0:1b:af:7e:e1:a1:21: bb:9c:f0:e5:85:22:4e:bf:28:9f:19:b1:e7:df:3b:29:13:d4: fd:7f:70:58:a5:63:a4:47:5c:c8:9c:00:06:27:69:3f:5d:6a: df:2b:ad:88:6d:9d:44:62:1d:2c:40:1b:f2:37:2e:b7:2e:97: e5:30:5a:69:8e:a9:16:5b:c3:83:92:b6:db:42:cd:f1:d2:ed: 57:2d:99:db:63:3b:de:0b:80:03:86:5b:e4:70:36:f0:ec:dc: 5c:c2:8e:5a:42:9d:a8:2f:87:52:86:06:22:6e:36:dd:34:f9: 82:73:4a:5b:70:76:4f:fb:c0:65:6c:75:ec:f5:f2:62:27:9d: 30:6f:92:96:ef:7c:ff:20:40:63:22:e1:db:da:59:3a:37:52: 0a:92:68:b6:01:ec:99:d9:17:6e:ca:37:05:0c:50:9c:ac:1c: d3:2c:7c:0c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFWxrXBPH8xMKxwnseGhzOqjO0KQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTAzMDAwMDAwWhcNMjQwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWYxNjM4YzVjYzg4YjQ5M2Y2YjhjNTVmYTJkNjA2ZjFk MTFlMGFjNDE4ZGIyNTUzNDE2NGM1NjBmOGI5MTM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi5KNsle2ANSWZ6+QW5nPc9986TQSlwEufNhYK5d4EPcs+ i9KiN7/fHdY0h8wt8VhqwHZi/xW3QwvZt0Ewq4V3XyDLgedFUR1RkREyl9NgIHhi IYAcCXoICSJtWD6DaLPgKpIwsCd7iHqQdQjN5nv0p9JuxoHUcQeqN7wNDTatLjVA w3qIykEcf9Y7HUPlfHmf13hhPPcyT9J/G1YFjnCCxNv3eZoLYTads5cnU6reYGiy 54Sz2YjI+DjA/iORJkSyB7CXMS48uSxN9VnXtRl4EBfF7h85cbCa2o+wrNwBHlHR pQbL6je2Gu/hZ0MJqo6lL1njJRpD42QaQN0dfY3NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlVkabPVYhSrUfajcmV0aFOL231kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgzNWNmZmRmLTFmM2QtNGIzZi04YzE0LTUxNGEzNjM3MzE3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaTaoAwDQYJKoZIhvcNAQELBQADggEBAIRejewozraTw5YumYhywZRKjENc LkYnCa6oAkdneL5ZW5S/m7zg8ud/Z/gvtl7jYFp4oTqNhMpEdGyVTssFPAdNdajE oD8QD57Eg4SFAt4LsFZXoBuvfuGhIbuc8OWFIk6/KJ8ZseffOykT1P1/cFilY6RH XMicAAYnaT9dat8rrYhtnURiHSxAG/I3Lrcul+UwWmmOqRZbw4OStttCzfHS7Vct mdtjO94LgAOGW+RwNvDs3FzCjlpCnagvh1KGBiJuNt00+YJzSltwdk/7wGVsdez1 8mInnTBvkpbvfP8gQGMi4dvaWTo3UgqSaLYB7JnZF27KNwUMUJysHNMsfAw= -----END CERTIFICATE-----Generated at Thu May 9 01:26:18 2024 by rpki-client on console-ams.rpki-client.org