$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c035706f-a735-4261-afd0-cab138d21d5a.roa File: c035706f-a735-4261-afd0-cab138d21d5a.roa (raw, json) Hash identifier: 9Fsp0+5uH9W4c7etaIRvGlJTPjLDPqX+msMjU8w+7f0= Subject key identifier: 0E:DF:F6:32:05:4F:78:A0:FF:A1:A0:91:96:35:45:73:43:64:98:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C23F64DA485C558B055AD2259DBF65BB3565872 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c035706f-a735-4261-afd0-cab138d21d5a.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 216.182.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:23:f6:4d:a4:85:c5:58:b0:55:ad:22:59:db:f6:5b:b3:56:58:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=2835dcc79c95be1f32c7264ee74440fb9e09cd115834136ded7edeb59aa23a15, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ce:aa:38:b4:2b:32:61:71:80:da:53:af:73: 3b:fc:7e:d2:72:ea:fb:be:69:57:f8:38:c5:a7:b4: 3c:32:c6:a0:7c:32:78:6e:6d:fd:fc:ca:1c:5e:74: de:d3:7f:82:ab:b0:96:a6:99:b1:9b:67:32:e2:ab: 1f:66:fe:0f:0d:2b:4b:0a:ad:16:cc:31:97:cd:47: 9a:c4:b0:49:02:d0:e3:86:84:6e:8e:59:1f:b9:42: 5a:0f:ed:8f:89:67:81:b9:a0:41:d4:5e:9c:2f:10: 5a:cb:a4:92:fa:46:ef:ba:c4:f7:96:e7:a4:f2:2f: 05:95:44:86:d0:a9:b7:07:fe:db:06:be:72:88:99: e8:6d:18:41:a9:05:38:32:76:23:16:33:e6:d9:50: 53:33:eb:b3:46:dd:5b:ea:b7:bb:de:f3:3c:f5:e2: 45:b4:15:aa:43:84:5d:4b:b1:c8:8e:9d:f3:08:d3: 04:58:16:1f:65:f0:f2:c7:20:da:0a:5b:bf:08:33: 5b:93:55:ab:52:02:2a:74:75:a2:59:22:e9:c8:e7: 75:ee:39:00:0e:06:ef:bd:fd:cc:8a:00:63:6f:0c: 9a:08:24:e3:2a:2f:12:ab:70:14:ce:5f:4e:76:5d: 88:f6:44:f8:9c:46:f0:21:d4:51:b8:8d:90:22:5a: de:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:DF:F6:32:05:4F:78:A0:FF:A1:A0:91:96:35:45:73:43:64:98:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c035706f-a735-4261-afd0-cab138d21d5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.182.224.0/20 Signature Algorithm: sha256WithRSAEncryption 95:17:9c:dc:d9:1d:53:72:d5:a0:b8:a5:19:70:c7:37:34:05: 85:ba:7d:24:f1:e5:6a:bf:cc:10:d1:88:1b:5f:87:a4:40:6a: 3f:bd:a8:d1:21:d2:6e:3f:50:e4:4d:42:c3:8b:ca:5a:22:a0: c7:eb:48:bf:d2:14:99:6c:13:37:84:8f:39:04:0f:72:d6:f2: 19:7f:f7:69:cc:96:ab:3a:a0:12:59:9a:3a:65:df:84:d6:ba: e2:6f:80:ba:62:00:d3:78:62:e6:5e:ee:5e:1e:32:47:aa:b9: 11:61:e0:93:7e:54:c3:70:ae:b9:ab:b2:c4:90:58:47:1d:da: 18:b1:c7:9c:d2:1e:85:81:21:e1:95:ce:1b:87:c5:41:43:87: 7e:89:68:ae:98:2d:9b:8a:45:65:98:18:33:c0:ee:43:c6:0e: 59:b7:48:43:23:46:98:c3:ae:91:4e:2a:4f:ce:16:e6:d6:2b: 95:6f:bd:8e:60:72:1c:d9:48:36:21:76:c0:ad:1f:3c:01:41: f5:3c:f4:72:1f:e6:83:9c:30:48:f7:95:6d:13:d2:57:4f:ef: a2:f3:86:cb:05:40:96:2a:e1:5c:36:55:f1:61:b6:59:49:4a: da:a6:25:35:33:85:fc:c4:cc:3d:8a:42:71:ec:a8:d1:73:c2: 3e:18:16:2e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULCP2TaSFxViwVa0iWdv2W7NWWHIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyODM1ZGNjNzljOTViZTFmMzJjNzI2NGVlNzQ0NDBmYjll MDljZDExNTgzNDEzNmRlZDdlZGViNTlhYTIzYTE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFzqo4tCsyYXGA2lOvczv8ftJy6vu+aVf4OMWntDwyxqB8 Mnhubf38yhxedN7Tf4KrsJammbGbZzLiqx9m/g8NK0sKrRbMMZfNR5rEsEkC0OOG hG6OWR+5QloP7Y+JZ4G5oEHUXpwvEFrLpJL6Ru+6xPeW56TyLwWVRIbQqbcH/tsG vnKImehtGEGpBTgydiMWM+bZUFMz67NG3Vvqt7ve8zz14kW0FapDhF1LsciOnfMI 0wRYFh9l8PLHINoKW78IM1uTVatSAip0daJZIunI53XuOQAOBu+9/cyKAGNvDJoI JOMqLxKrcBTOX052XYj2RPicRvAh1FG4jZAiWt4FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDt/2MgVPeKD/oaCRljVFc0NkmAUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwMzU3MDZmLWE3MzUtNDI2MS1hZmQwLWNhYjEzOGQyMWQ1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATYtuAwDQYJKoZIhvcNAQELBQADggEBAJUXnNzZHVNy1aC4pRlwxzc0BYW6 fSTx5Wq/zBDRiBtfh6RAaj+9qNEh0m4/UORNQsOLyloioMfrSL/SFJlsEzeEjzkE D3LW8hl/92nMlqs6oBJZmjpl34TWuuJvgLpiANN4YuZe7l4eMkequRFh4JN+VMNw rrmrssSQWEcd2hixx5zSHoWBIeGVzhuHxUFDh36JaK6YLZuKRWWYGDPA7kPGDlm3 SEMjRpjDrpFOKk/OFubWK5VvvY5gchzZSDYhdsCtHzwBQfU89HIf5oOcMEj3lW0T 0ldP76LzhssFQJYq4Vw2VfFhtllJStqmJTUzhfzEzD2KQnHsqNFzwj4YFi4= -----END CERTIFICATE-----Generated at Thu May 2 08:02:39 2024 by rpki-client on console-ams.rpki-client.org