$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa10e99e-b251-4ef5-8380-32d45bcf8286.roa File: aa10e99e-b251-4ef5-8380-32d45bcf8286.roa (raw, json) Hash identifier: Oan8QlL+RkkZP71L06SnnW7yCiRLHYe/7Qpwk97NHUc= Subject key identifier: A1:81:2B:7B:CF:F0:38:88:62:02:47:1A:B6:7E:36:09:11:0B:51:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3473D923BC2A860646BDE5F816D104BC4B7E7DEE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa10e99e-b251-4ef5-8380-32d45bcf8286.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 35.54.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:73:d9:23:bc:2a:86:06:46:bd:e5:f8:16:d1:04:bc:4b:7e:7d:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=1ea802bc0e66c5690465e9e819bb5b600dd49a784ce00062ef2f86bd7a76c868, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e3:9c:1f:c0:e9:ff:3b:27:5e:f4:bf:f9:94: 57:3d:34:de:41:82:18:72:1e:ee:50:9f:2c:07:88: 6b:19:cc:87:56:32:c5:20:8f:46:cc:4c:fc:90:a0: f9:92:95:0d:f0:f2:99:ab:c0:11:60:a8:21:5c:12: c1:b0:b6:a1:22:cc:35:43:26:7e:57:f8:82:d4:38: 75:5a:6e:a8:f1:86:9c:6c:62:7f:8a:ef:7d:ae:ca: 41:95:bd:93:92:29:17:f1:e2:32:65:7e:ac:60:c6: 8c:82:90:8a:7e:4d:53:39:b8:8e:95:1a:aa:9e:00: 90:ff:16:15:d3:c4:76:e3:4d:db:39:7e:5f:4f:e5: 34:04:71:3c:41:6c:68:49:34:4b:c3:3c:62:0b:92: 7c:0a:d1:81:81:a2:cd:90:b2:d3:02:0e:4c:0e:ec: 6c:d9:ef:ba:7c:71:1a:0b:a5:b1:97:6d:d8:5b:5d: d7:56:34:74:c8:00:90:30:1e:7c:9f:fe:d2:b2:b9: 5c:6d:fb:55:cc:96:74:7d:8d:9f:28:ca:b0:64:d2: c7:2b:43:c0:8c:ec:53:55:b2:22:17:ff:df:ee:4e: bc:9c:d5:77:d6:fc:be:81:6f:9a:8a:b5:36:cd:4a: 18:46:55:e0:82:69:71:97:07:b2:98:21:95:42:f5: 58:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:81:2B:7B:CF:F0:38:88:62:02:47:1A:B6:7E:36:09:11:0B:51:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa10e99e-b251-4ef5-8380-32d45bcf8286.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.32.0/19 Signature Algorithm: sha256WithRSAEncryption a4:99:d2:e2:fc:3d:7b:b7:19:43:ea:87:ef:29:2a:ce:b8:66: 98:58:c6:bb:94:1f:8a:4b:de:47:a2:a2:80:56:61:cd:55:0f: ca:4c:45:c4:18:ba:2a:0a:f0:6a:ca:af:9a:a3:cc:48:fc:46: a6:e3:a6:b4:bd:22:a3:00:f2:91:5f:a8:55:4c:ff:15:8b:e8: 7b:f4:1b:fd:41:b8:4e:95:56:a9:aa:75:0a:d9:4f:91:8b:67: 4b:46:07:87:4a:03:ca:82:b1:4d:ab:33:96:f8:36:f5:c0:80: b6:6e:2d:82:96:89:08:b6:69:db:cc:26:5b:52:57:18:99:81: 5c:3e:21:fe:7e:bb:1d:4f:5e:b2:8e:2b:17:04:75:84:78:4d: 2e:e4:a9:be:9e:f6:ef:c4:66:6c:55:6d:c6:96:42:41:2a:80: 2a:95:d3:8c:f0:89:d2:f1:7e:05:ec:5e:26:bd:e3:47:20:f8: b4:f8:7c:c2:f4:f3:a8:1d:82:fa:07:e8:c8:60:ea:f4:bf:84: 69:14:9a:eb:20:b9:3e:55:f8:5e:4d:7c:da:72:bc:61:7f:11: 96:6a:ac:d6:ce:4e:f2:05:49:27:a5:29:b8:46:d5:9e:56:10: 53:cc:58:f9:3c:95:f6:b8:f1:c6:ca:68:a4:58:6c:72:0c:68: 04:c6:45:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNHPZI7wqhgZGveX4FtEEvEt+fe4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWE4MDJiYzBlNjZjNTY5MDQ2NWU5ZTgxOWJiNWI2MDBk ZDQ5YTc4NGNlMDAwNjJlZjJmODZiZDdhNzZjODY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ45wfwOn/Oyde9L/5lFc9NN5BghhyHu5QnywHiGsZzIdW MsUgj0bMTPyQoPmSlQ3w8pmrwBFgqCFcEsGwtqEizDVDJn5X+ILUOHVabqjxhpxs Yn+K732uykGVvZOSKRfx4jJlfqxgxoyCkIp+TVM5uI6VGqqeAJD/FhXTxHbjTds5 fl9P5TQEcTxBbGhJNEvDPGILknwK0YGBos2QstMCDkwO7GzZ77p8cRoLpbGXbdhb XddWNHTIAJAwHnyf/tKyuVxt+1XMlnR9jZ8oyrBk0scrQ8CM7FNVsiIX/9/uTryc 1XfW/L6Bb5qKtTbNShhGVeCCaXGXB7KYIZVC9VjVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoYEre8/wOIhiAkcatn42CRELUfcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhMTBlOTllLWIyNTEtNGVmNS04MzgwLTMyZDQ1YmNmODI4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUjNiAwDQYJKoZIhvcNAQELBQADggEBAKSZ0uL8PXu3GUPqh+8pKs64ZphY xruUH4pL3keiooBWYc1VD8pMRcQYuioK8GrKr5qjzEj8RqbjprS9IqMA8pFfqFVM /xWL6Hv0G/1BuE6VVqmqdQrZT5GLZ0tGB4dKA8qCsU2rM5b4NvXAgLZuLYKWiQi2 advMJltSVxiZgVw+If5+ux1PXrKOKxcEdYR4TS7kqb6e9u/EZmxVbcaWQkEqgCqV 04zwidLxfgXsXia940cg+LT4fML086gdgvoH6Mhg6vS/hGkUmusguT5V+F5NfNpy vGF/EZZqrNbOTvIFSSelKbhG1Z5WEFPMWPk8lfa48cbKaKRYbHIMaATGRX8= -----END CERTIFICATE-----Generated at Thu May 9 01:25:42 2024 by rpki-client on console-fra.rpki-client.org