$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa File: e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa (raw, json) Hash identifier: fXbmy8vUAwgCnZ2e2Ip/zD+oGDnd26Ajhy75WPeYi6g= Subject key identifier: 86:AF:1F:4D:7B:B9:36:E6:B6:2B:EA:5E:23:2C:22:77:6F:05:A1:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C9B73311F5118F2054FD4C420DCFEF0EA85D3D1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.41.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:9b:73:31:1f:51:18:f2:05:4f:d4:c4:20:dc:fe:f0:ea:85:d3:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=5c3b4d884795bcd8014bf5345976c1592f2deca42ba08224d408fddd92b4077c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a7:07:55:fd:76:52:a5:38:84:9d:70:a6:2e: b0:79:5f:6b:92:5b:bb:20:91:52:c5:2e:51:3d:3b: d4:f9:63:60:71:93:57:9d:55:87:f8:65:13:b8:bb: cc:42:03:85:3f:19:98:e3:db:48:79:0d:5b:9c:0e: 51:99:1d:15:4a:75:06:2f:20:79:f6:01:d4:ee:e2: bc:0e:10:a6:0a:b0:ae:49:c9:19:1b:b2:33:f3:66: ee:b1:60:b9:e9:07:e6:d0:cf:bc:a8:ac:86:f9:06: f7:7d:b9:8f:90:1c:f7:96:08:7e:a0:a5:7d:21:af: 4e:38:4f:4d:86:eb:70:a5:89:18:fc:5d:0a:79:80: 94:0d:93:23:72:57:d8:f4:41:96:20:9b:60:56:08: d8:2b:b3:17:ee:7b:2b:cb:5d:55:65:f1:0f:b9:69: c2:28:ed:55:30:16:ed:7b:73:5a:d6:1f:56:b5:47: d3:ae:92:d1:e0:92:db:4b:ee:73:ad:43:c9:f1:98: 12:e9:3d:87:cc:c7:1c:66:c8:f9:38:f8:17:5b:da: 46:4f:ed:cb:f0:29:e5:8c:41:39:91:1a:d7:da:e2: 1d:5e:45:7c:6d:c9:a6:f8:fd:4c:ab:dd:f4:a5:90: 71:f0:e2:2e:c3:56:bc:72:cd:3a:fe:f7:66:ab:9e: 0c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:AF:1F:4D:7B:B9:36:E6:B6:2B:EA:5E:23:2C:22:77:6F:05:A1:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.41.0.0/16 Signature Algorithm: sha256WithRSAEncryption a4:b8:8c:e3:5f:dc:f9:9c:1b:33:5d:4f:65:89:3a:da:0f:9f: 5d:c3:98:0d:3e:93:e2:6e:c7:31:6c:a0:6c:52:70:2c:24:f6: 90:55:4e:66:e5:69:af:8a:6e:b2:6e:c2:25:f0:1a:65:f3:44: 3d:89:27:c9:68:09:15:59:52:19:bf:6e:6b:3f:0a:87:db:eb: d5:0e:39:aa:7a:4f:aa:08:1d:15:7e:de:87:46:54:11:b0:1d: 72:22:3a:62:25:96:e7:fe:ed:df:c5:56:d8:79:e1:ac:d0:e4: 13:26:a9:15:51:17:82:f4:d5:d0:83:cc:82:b0:f8:b0:f8:62: bc:ad:c5:70:8c:58:31:f7:80:d3:93:87:ac:aa:73:c6:e5:ed: bd:1b:17:bb:cf:2f:3a:35:35:19:12:db:7d:79:72:03:be:2d: e5:91:b4:69:b8:31:2a:e7:d4:18:e6:df:93:00:68:6a:8a:14: 1d:dd:07:14:8d:d5:60:83:5b:10:60:c3:6f:a1:7a:65:29:83: 55:fc:b7:78:b2:55:53:54:f3:a3:12:47:53:bd:64:13:76:c3: 54:db:96:d5:af:ab:21:7c:a2:f3:66:e2:cc:aa:32:f6:39:61: e1:63:04:64:99:cc:80:16:b4:a8:11:04:b4:32:40:2f:ad:e2: 20:4d:ea:c6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHJtzMR9RGPIFT9TEINz+8OqF09EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzNiNGQ4ODQ3OTViY2Q4MDE0YmY1MzQ1OTc2YzE1OTJm MmRlY2E0MmJhMDgyMjRkNDA4ZmRkZDkyYjQwNzdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0pwdV/XZSpTiEnXCmLrB5X2uSW7sgkVLFLlE9O9T5Y2Bx k1edVYf4ZRO4u8xCA4U/GZjj20h5DVucDlGZHRVKdQYvIHn2AdTu4rwOEKYKsK5J yRkbsjPzZu6xYLnpB+bQz7yorIb5Bvd9uY+QHPeWCH6gpX0hr044T02G63CliRj8 XQp5gJQNkyNyV9j0QZYgm2BWCNgrsxfueyvLXVVl8Q+5acIo7VUwFu17c1rWH1a1 R9OuktHgkttL7nOtQ8nxmBLpPYfMxxxmyPk4+Bdb2kZP7cvwKeWMQTmRGtfa4h1e RXxtyab4/Uyr3fSlkHHw4i7DVrxyzTr+92arngwPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhq8fTXu5Nua2K+peIywid28FoacwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5OTgwMWViLTJhZDYtNDhlYS04ODI3LTBmMmFkYTA3YjBiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjKTANBgkqhkiG9w0BAQsFAAOCAQEApLiM41/c+ZwbM11PZYk62g+fXcOY DT6T4m7HMWygbFJwLCT2kFVOZuVpr4pusm7CJfAaZfNEPYknyWgJFVlSGb9uaz8K h9vr1Q45qnpPqggdFX7eh0ZUEbAdciI6YiWW5/7t38VW2HnhrNDkEyapFVEXgvTV 0IPMgrD4sPhivK3FcIxYMfeA05OHrKpzxuXtvRsXu88vOjU1GRLbfXlyA74t5ZG0 abgxKufUGObfkwBoaooUHd0HFI3VYINbEGDDb6F6ZSmDVfy3eLJVU1TzoxJHU71k E3bDVNuW1a+rIXyi82bizKoy9jlh4WMEZJnMgBa0qBEEtDJAL63iIE3qxg== -----END CERTIFICATE-----Generated at Thu May 2 22:12:20 2024 by rpki-client on console-fra.rpki-client.org