$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a52e7aa4-e000-4192-b992-596e524ca11b.roa File: a52e7aa4-e000-4192-b992-596e524ca11b.roa (raw, json) Hash identifier: b834clVlaQoDR9h+kQNmv8NUFxMhEVEojo1olwo6bzI= Subject key identifier: 50:8C:94:90:8F:25:6B:F4:80:8E:0F:62:B1:83:73:5C:4F:E8:CA:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E60A362BC52E78F667FB3B04AE62F2FF8080FE7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a52e7aa4-e000-4192-b992-596e524ca11b.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 64.252.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:60:a3:62:bc:52:e7:8f:66:7f:b3:b0:4a:e6:2f:2f:f8:08:0f:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=95e827834dd8fa491f13041a570b637aabf80063c208fc94b3b0e8c39dd07d1d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a2:99:4a:1d:38:ec:8f:44:7b:f7:79:b9:72: 37:0b:21:90:2e:c4:96:0a:04:a3:20:df:bc:74:21: 22:16:d2:f3:89:80:db:e8:76:67:94:4a:42:02:e8: 5c:2d:87:6e:5d:64:d1:a8:c7:e1:ca:dc:83:fa:28: f7:dd:01:fd:c6:b6:d5:c9:b4:ff:4a:b1:78:30:c2: f3:76:0c:6e:e0:78:ca:62:e8:06:10:f9:00:88:bd: d5:59:29:b4:01:49:41:47:b3:56:c1:b2:cd:1d:f1: 12:6b:59:ba:af:7b:a8:e6:4d:d5:72:5d:95:87:a9: a3:5f:fd:89:c2:b1:ac:80:a3:c3:c0:bd:b0:6a:e4: 12:6f:7b:95:d2:38:45:87:d2:b9:24:81:13:af:2d: a1:20:56:27:5f:b5:64:97:4d:12:55:48:98:45:16: 9b:79:64:7a:90:d2:c5:d2:77:b5:9e:73:2e:78:51: 31:ef:b8:13:7f:6c:65:62:df:cc:17:2c:d5:a7:91: 43:a5:80:a4:ae:ad:5a:e4:20:e4:6e:97:d3:02:60: 18:79:43:50:25:64:9a:f9:fa:10:95:74:78:1e:2e: f4:f7:7b:93:e0:82:0f:d6:4e:58:3c:4a:7e:f9:8f: 51:be:a5:f8:f6:1e:04:ac:8d:72:24:85:36:93:69: 89:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:8C:94:90:8F:25:6B:F4:80:8E:0F:62:B1:83:73:5C:4F:E8:CA:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a52e7aa4-e000-4192-b992-596e524ca11b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.128.0/18 Signature Algorithm: sha256WithRSAEncryption 42:b6:61:ba:b6:c6:46:31:39:60:ae:be:88:a3:4b:8f:b1:f7: 80:02:3a:ae:4e:02:d1:e5:3f:67:14:48:f5:ef:61:3f:64:90: 85:c9:43:14:d6:ac:24:6b:79:a7:7d:85:53:1f:14:81:af:c4: ef:4a:dc:7b:47:d4:4b:a1:97:ab:bd:02:37:a0:ee:b7:b6:91: 5c:ba:5a:cc:c5:b1:5a:5c:6a:1c:bb:6b:d9:f0:39:5a:bd:cc: 9f:fe:6f:71:04:79:f5:8b:11:89:1d:d2:73:c0:84:46:7f:3a: 64:46:34:7c:ad:60:4b:de:ea:50:81:68:87:1c:c5:24:a8:02: 49:20:5f:3c:b8:c8:53:22:66:97:6e:91:28:d2:b6:10:0a:c9: ff:55:98:b0:34:3f:c0:b5:ca:32:ee:28:b6:4f:fd:81:31:be: ad:0a:1a:b1:84:b1:99:0f:42:00:e2:49:dc:bf:72:58:55:53: b4:10:ba:79:a9:5a:db:ea:89:38:a4:4b:0d:89:55:a3:91:14: 77:6a:23:3a:0a:9a:18:39:10:ef:13:ba:ac:ee:2c:d9:a6:fb: 95:cc:e6:4e:25:ea:5e:51:5a:32:25:60:cf:74:22:98:b1:45: 4f:c3:1e:9c:41:80:9f:a5:39:81:1b:3a:24:e4:ee:8a:f1:91: 54:d4:86:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTmCjYrxS549mf7OwSuYvL/gID+cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWU4Mjc4MzRkZDhmYTQ5MWYxMzA0MWE1NzBiNjM3YWFi ZjgwMDYzYzIwOGZjOTRiM2IwZThjMzlkZDA3ZDFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6oplKHTjsj0R793m5cjcLIZAuxJYKBKMg37x0ISIW0vOJ gNvodmeUSkIC6Fwth25dZNGox+HK3IP6KPfdAf3GttXJtP9KsXgwwvN2DG7geMpi 6AYQ+QCIvdVZKbQBSUFHs1bBss0d8RJrWbqve6jmTdVyXZWHqaNf/YnCsayAo8PA vbBq5BJve5XSOEWH0rkkgROvLaEgVidftWSXTRJVSJhFFpt5ZHqQ0sXSd7Wecy54 UTHvuBN/bGVi38wXLNWnkUOlgKSurVrkIORul9MCYBh5Q1AlZJr5+hCVdHgeLvT3 e5Pggg/WTlg8Sn75j1G+pfj2HgSsjXIkhTaTaYnnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUIyUkI8la/SAjg9isYNzXE/oyn0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1MmU3YWE0LWUwMDAtNDE5Mi1iOTkyLTU5NmU1MjRjYTExYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZA/IAwDQYJKoZIhvcNAQELBQADggEBAEK2Ybq2xkYxOWCuvoijS4+x94AC Oq5OAtHlP2cUSPXvYT9kkIXJQxTWrCRread9hVMfFIGvxO9K3HtH1Euhl6u9Ajeg 7re2kVy6WszFsVpcahy7a9nwOVq9zJ/+b3EEefWLEYkd0nPAhEZ/OmRGNHytYEve 6lCBaIccxSSoAkkgXzy4yFMiZpdukSjSthAKyf9VmLA0P8C1yjLuKLZP/YExvq0K GrGEsZkPQgDiSdy/clhVU7QQunmpWtvqiTikSw2JVaORFHdqIzoKmhg5EO8Tuqzu LNmm+5XM5k4l6l5RWjIlYM90IpixRU/DHpxBgJ+lOYEbOiTk7orxkVTUhrA= -----END CERTIFICATE-----Generated at Thu May 9 01:26:21 2024 by rpki-client on console-ams.rpki-client.org