$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/922e3d80-97a4-46a8-b2e2-ee722cdf3fc7.roa File: 922e3d80-97a4-46a8-b2e2-ee722cdf3fc7.roa (raw, json) Hash identifier: 2oJzAcFE1LquwZfjViLKrq9fLuW8zaVS/fA6CrRj8OI= Subject key identifier: 46:E0:66:AB:71:8A:F4:F3:63:23:90:78:2A:80:4B:94:93:B1:CB:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CCB297FD00E8794D2020666C0520685B4A23408 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/922e3d80-97a4-46a8-b2e2-ee722cdf3fc7.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 35.128.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:cb:29:7f:d0:0e:87:94:d2:02:06:66:c0:52:06:85:b4:a2:34:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=3ad455aba8f9cc7871569b1cce138961653746cc5886875e7b328e8e34d81b2e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d1:d0:54:43:18:df:a2:b2:10:ea:9f:30:81: cb:2d:ab:ff:29:25:ed:b1:2e:4e:54:4e:4e:14:7b: 1b:38:02:0e:64:7f:e7:a8:70:0f:54:1e:6d:67:39: ab:58:76:0c:a0:e1:89:d9:1e:0a:57:67:fb:45:52: d1:dc:96:98:08:9a:1a:e8:81:e5:a2:10:a6:be:20: f4:23:96:16:9b:ff:06:d3:d6:73:e4:f0:67:86:37: 87:21:27:13:ea:cd:90:2e:f5:be:c8:44:ad:01:be: e1:53:36:48:51:4e:1e:7d:26:e6:d5:ab:10:56:46: 9f:49:67:d8:d2:ba:77:fd:f9:17:c8:ac:2a:4d:b2: 91:2e:2b:57:b8:e3:c0:de:3e:b5:9b:2d:4f:ef:e3: dd:31:40:4e:eb:59:ce:72:ef:b5:b9:77:55:89:0f: e1:1b:28:5e:7b:db:28:06:c9:7f:8f:e0:8c:fd:00: 0c:f9:74:65:cb:08:d9:6a:64:5e:bf:e4:0e:77:1b: c8:89:a6:8f:7d:cf:a1:68:b4:74:b9:0a:18:84:8d: ac:15:be:69:75:81:20:7d:ce:07:a8:0c:a4:cc:60: 9f:be:f1:02:fe:45:0d:a6:db:48:1c:64:74:20:97: 70:f1:45:50:a7:42:2b:12:66:eb:36:dd:e1:31:56: f1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E0:66:AB:71:8A:F4:F3:63:23:90:78:2A:80:4B:94:93:B1:CB:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/922e3d80-97a4-46a8-b2e2-ee722cdf3fc7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.128.128.0/18 Signature Algorithm: sha256WithRSAEncryption 65:35:f1:72:90:1f:22:73:59:47:58:74:f4:f7:e5:cf:32:c3: 93:41:bf:97:73:3e:b1:61:15:28:d5:6a:95:af:65:57:9e:0f: 6d:a2:19:15:4f:56:c1:8a:45:b2:4e:19:e7:4f:bf:8a:be:cd: e2:ab:93:c5:2f:ee:88:e4:96:b3:ea:61:00:3e:5d:d1:56:9b: 37:a8:d1:cd:1e:d3:39:2d:a3:78:5e:15:94:81:f9:da:84:f8: 1d:8c:c1:02:09:10:96:0d:63:1d:e4:b3:92:5d:8f:f1:70:29: e9:23:07:50:8d:df:40:0a:e6:57:52:f9:3d:ff:a8:6e:b9:50: c5:b3:e2:92:ab:04:42:69:9b:3f:6c:63:24:8c:64:5b:e7:83: 94:3b:61:ba:31:04:23:8e:65:09:d4:2a:9a:a7:97:fe:e9:e2: 44:c6:98:58:df:19:a0:68:90:00:3f:96:11:cf:c5:c6:3e:33: 45:03:6b:2b:d4:30:82:4a:2d:52:12:09:9c:4b:c6:6c:fd:56: e7:c8:28:8a:62:6b:a7:28:18:d6:69:9c:14:15:0c:42:72:b6: 70:6f:8a:01:fa:eb:d3:69:62:fe:a0:24:54:29:67:92:a2:e0: bc:cd:e0:ff:55:f0:fe:ad:0d:e4:46:bc:ae:fa:f3:9e:1d:9b: 1c:b5:28:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPMspf9AOh5TSAgZmwFIGhbSiNAgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYWQ0NTVhYmE4ZjljYzc4NzE1NjliMWNjZTEzODk2MTY1 Mzc0NmNjNTg4Njg3NWU3YjMyOGU4ZTM0ZDgxYjJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDf0dBUQxjforIQ6p8wgcstq/8pJe2xLk5UTk4Uexs4Ag5k f+eocA9UHm1nOatYdgyg4YnZHgpXZ/tFUtHclpgImhrogeWiEKa+IPQjlhab/wbT 1nPk8GeGN4chJxPqzZAu9b7IRK0BvuFTNkhRTh59JubVqxBWRp9JZ9jSunf9+RfI rCpNspEuK1e448DePrWbLU/v490xQE7rWc5y77W5d1WJD+EbKF572ygGyX+P4Iz9 AAz5dGXLCNlqZF6/5A53G8iJpo99z6FotHS5ChiEjawVvml1gSB9zgeoDKTMYJ++ 8QL+RQ2m20gcZHQgl3DxRVCnQisSZus23eExVvFzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURuBmq3GK9PNjI5B4KoBLlJOxyzAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyMmUzZDgwLTk3YTQtNDZhOC1iMmUyLWVlNzIyY2RmM2ZjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYjgIAwDQYJKoZIhvcNAQELBQADggEBAGU18XKQHyJzWUdYdPT35c8yw5NB v5dzPrFhFSjVapWvZVeeD22iGRVPVsGKRbJOGedPv4q+zeKrk8Uv7ojklrPqYQA+ XdFWmzeo0c0e0zkto3heFZSB+dqE+B2MwQIJEJYNYx3ks5Jdj/FwKekjB1CN30AK 5ldS+T3/qG65UMWz4pKrBEJpmz9sYySMZFvng5Q7YboxBCOOZQnUKpqnl/7p4kTG mFjfGaBokAA/lhHPxcY+M0UDayvUMIJKLVISCZxLxmz9VufIKIpia6coGNZpnBQV DEJytnBvigH669NpYv6gJFQpZ5Ki4LzN4P9V8P6tDeRGvK76854dmxy1KDA= -----END CERTIFICATE-----Generated at Thu May 2 01:05:37 2024 by rpki-client on console-fra.rpki-client.org