$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea060e9a-045e-45f5-a5af-c6d17b1c9251.roa File: ea060e9a-045e-45f5-a5af-c6d17b1c9251.roa (raw, json) Hash identifier: BiXeRg01Tj+Qrlb1T9a3cM336EIUZe1/ZyF8QSujQ6w= Subject key identifier: 12:4B:A9:67:81:B7:AE:F3:92:B1:C2:C7:A9:3D:69:3A:23:14:FE:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0EFEAB53AD0D0B9B8E1ED0328920042501B59423 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea060e9a-045e-45f5-a5af-c6d17b1c9251.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.235.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fe:ab:53:ad:0d:0b:9b:8e:1e:d0:32:89:20:04:25:01:b5:94:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=26135c302192449b9262a59d928368a348e4b0f8273e98676e1840063acb6911, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:70:82:49:e8:f4:9f:20:50:9f:76:4b:e6:ec: 02:f5:7e:c5:1e:d1:a8:58:5d:da:00:5a:b5:2d:18: d6:99:da:30:ce:90:a6:4a:05:0a:8e:c4:ac:fa:9a: 16:a9:fb:8e:f7:8d:58:31:13:0c:00:91:45:e8:04: 7b:d1:a0:f9:3b:34:51:64:86:a5:89:d0:2a:8f:33: 6c:bd:e4:fc:ac:3c:5f:ea:be:7a:37:70:d9:65:7d: 36:99:85:64:b7:bf:49:e3:f2:b8:51:35:5c:9a:7a: 33:83:17:76:b7:05:9e:4d:da:47:39:c1:db:d7:46: 6e:0a:3d:57:e3:f9:2d:87:4d:fd:ee:2d:65:7c:60: b4:9a:bc:6c:b1:52:94:30:97:33:38:43:f9:30:97: c5:c7:04:75:4d:86:25:1b:5c:c6:8e:4e:59:59:84: 7d:d5:3f:16:44:98:30:49:84:8a:e3:87:ca:2b:8c: 21:76:75:dd:78:66:1b:54:4c:4b:df:61:17:cd:9a: d4:26:db:78:d9:0c:8f:7e:a1:c9:64:c5:ca:5a:a7: 25:57:ff:c8:89:09:9e:44:fb:02:2f:6d:e8:9d:82: 45:0a:94:06:76:d2:14:74:68:87:c1:ef:93:8e:4f: 3d:72:a0:a8:53:08:3f:17:45:d0:73:c2:81:df:84: 9b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4B:A9:67:81:B7:AE:F3:92:B1:C2:C7:A9:3D:69:3A:23:14:FE:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea060e9a-045e-45f5-a5af-c6d17b1c9251.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.235.128.0/18 Signature Algorithm: sha256WithRSAEncryption d2:35:bb:04:8c:03:8f:d1:f9:c3:1d:d8:14:d6:c6:7a:1c:0d: 81:8c:69:a1:ef:46:15:60:32:f9:35:61:49:ce:e3:e8:66:5c: 45:fa:62:9e:96:3b:fa:a0:76:12:53:10:76:cb:de:0b:a5:4a: e5:b9:36:cb:25:da:0d:41:a5:10:5c:90:48:da:e4:4f:e1:26: d2:54:5f:1b:9d:7d:4d:d7:7c:c9:4f:b0:da:e4:9d:d4:1e:a8: 6b:86:d6:a0:81:52:43:94:0c:47:63:9d:e6:29:6e:19:ba:30: 4a:1e:98:36:e4:6d:f1:5a:9c:8e:37:d2:c9:54:2b:35:69:b0: 16:e0:00:3a:b2:5a:7b:75:e7:c8:a0:0f:03:52:a1:24:f7:c1: 28:fa:88:b3:84:7b:d8:f7:b3:3d:ee:d3:1e:28:4f:54:45:ff: 56:27:ab:03:3b:20:20:3f:0c:2d:47:2f:73:d2:39:92:d6:d1: a5:90:d4:cb:00:ff:41:7e:00:c5:40:51:d0:2a:e4:78:e4:b1: 7d:41:7f:c6:e2:d0:f0:08:54:58:aa:82:85:c3:7b:28:32:f0: d4:e9:18:1f:ff:71:cc:6c:af:4a:78:bf:81:8b:fa:82:f6:6b: f8:51:75:a5:90:33:27:a9:06:96:82:de:7b:5e:9a:1f:22:7b: 91:7f:0d:d3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDv6rU60NC5uOHtAyiSAEJQG1lCMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjEzNWMzMDIxOTI0NDliOTI2MmE1OWQ5MjgzNjhhMzQ4 ZTRiMGY4MjczZTk4Njc2ZTE4NDAwNjNhY2I2OTExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDucIJJ6PSfIFCfdkvm7AL1fsUe0ahYXdoAWrUtGNaZ2jDO kKZKBQqOxKz6mhap+473jVgxEwwAkUXoBHvRoPk7NFFkhqWJ0CqPM2y95PysPF/q vno3cNllfTaZhWS3v0nj8rhRNVyaejODF3a3BZ5N2kc5wdvXRm4KPVfj+S2HTf3u LWV8YLSavGyxUpQwlzM4Q/kwl8XHBHVNhiUbXMaOTllZhH3VPxZEmDBJhIrjh8or jCF2dd14ZhtUTEvfYRfNmtQm23jZDI9+oclkxcpapyVX/8iJCZ5E+wIvbeidgkUK lAZ20hR0aIfB75OOTz1yoKhTCD8XRdBzwoHfhJtpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEkupZ4G3rvOSscLHqT1pOiMU/iowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhMDYwZTlhLTA0NWUtNDVmNS1hNWFmLWM2ZDE3YjFjOTI1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYo64AwDQYJKoZIhvcNAQELBQADggEBANI1uwSMA4/R+cMd2BTWxnocDYGM aaHvRhVgMvk1YUnO4+hmXEX6Yp6WO/qgdhJTEHbL3gulSuW5Nssl2g1BpRBckEja 5E/hJtJUXxudfU3XfMlPsNrkndQeqGuG1qCBUkOUDEdjneYpbhm6MEoemDbkbfFa nI430slUKzVpsBbgADqyWnt158igDwNSoST3wSj6iLOEe9j3sz3u0x4oT1RF/1Yn qwM7ICA/DC1HL3PSOZLW0aWQ1MsA/0F+AMVAUdAq5HjksX1Bf8bi0PAIVFiqgoXD eygy8NTpGB//ccxsr0p4v4GL+oL2a/hRdaWQMyepBpaC3ntemh8ie5F/DdM= -----END CERTIFICATE-----Generated at Thu May 2 08:02:41 2024 by rpki-client on console-ams.rpki-client.org