$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f15c63ff-e71d-4619-bf60-70d656a3d2ef.roa File: f15c63ff-e71d-4619-bf60-70d656a3d2ef.roa (raw, json) Hash identifier: fHe1i/mo5dG+rZGDbwXS/4k2EW0L96CgrWM6pe6Hsz8= Subject key identifier: 7D:CC:1D:02:BB:DF:90:F8:B1:0A:95:D6:52:09:89:F8:67:9E:33:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CA26DA6BC4DC689DF940226086B5FE051256FB0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f15c63ff-e71d-4619-bf60-70d656a3d2ef.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 35.54.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:a2:6d:a6:bc:4d:c6:89:df:94:02:26:08:6b:5f:e0:51:25:6f:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=e30026e8d525e175d94b35dcc1361b9f6f03c36e1f534070071d53b69d1088de, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:e8:83:d5:54:18:18:7b:ca:3f:bb:05:1c: e6:bb:ad:0e:0b:ba:ab:56:fb:27:f2:20:dd:72:77: 7f:cf:92:fc:6c:d4:7a:6f:8e:71:3b:4a:fa:2d:e4: 71:88:3e:85:7a:ac:5e:d1:53:ad:fe:9e:93:bf:77: cb:b4:92:31:f0:47:a6:f3:6d:47:06:69:30:c1:55: aa:38:d4:fb:a1:9b:20:94:d7:24:eb:9a:e8:65:86: 71:ab:71:40:09:ff:f4:12:5c:de:f4:fa:12:75:38: 36:c2:7d:8d:e4:ce:aa:d8:8f:96:0d:f1:a2:13:d5: a8:ee:37:db:4b:70:e6:5d:3b:1e:37:50:c4:d3:f2: 6a:8d:f4:a0:e1:51:30:be:41:d4:95:0e:be:59:43: 1a:33:4b:37:9c:c7:da:c4:70:45:c0:84:22:f2:9e: 6f:45:7b:94:40:bc:4d:6c:0c:4c:1f:84:af:d3:b6: a5:cf:9f:61:90:2c:1a:0d:9e:37:5b:0e:6b:d7:95: 4e:14:82:2a:be:d7:cb:af:d7:0c:6a:4d:11:95:ba: d3:a5:74:76:96:3c:be:33:92:b5:5f:dc:6a:4e:c4: 10:92:00:b5:22:87:69:94:2a:aa:56:4b:a2:63:1c: 09:13:83:06:6f:81:9b:a3:91:60:ae:c2:25:60:33: eb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CC:1D:02:BB:DF:90:F8:B1:0A:95:D6:52:09:89:F8:67:9E:33:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f15c63ff-e71d-4619-bf60-70d656a3d2ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.64.0/18 Signature Algorithm: sha256WithRSAEncryption bf:4e:1d:34:9e:c6:3c:05:03:e0:90:82:d0:de:7c:09:3a:1d: 72:9d:7f:98:f5:dc:d5:2c:5c:bb:38:8d:e9:6f:0a:00:66:5c: 1e:ef:d2:4c:83:30:67:45:69:2d:a1:e0:1f:49:e2:0e:c2:4a: c1:01:b9:f3:e3:95:2e:c0:61:31:3f:e8:5b:00:31:4d:c4:cd: ee:7d:33:2f:8c:3a:16:69:63:f2:af:e8:c2:8d:65:b5:e5:63: 03:46:77:44:fb:0d:16:89:8f:04:b9:88:af:56:af:80:fd:38: 08:9f:bf:16:fc:4e:5d:df:9c:31:71:e7:a4:6a:b0:7d:19:5c: 85:c5:7d:4d:e9:82:13:90:5d:30:db:48:64:a9:ff:43:da:f6: 2a:51:d9:d7:c2:9e:77:1d:e9:f6:d1:c0:14:a7:4c:cd:2a:f5: dd:73:e9:0a:f5:aa:7c:69:81:50:bd:a1:2d:69:77:4c:73:85: 32:04:39:b9:ec:98:17:f5:8f:38:04:5f:bc:c2:1a:83:fd:bb: bf:9b:1c:41:fd:cd:0d:b1:85:96:07:50:ca:98:6c:ed:7d:40: c9:80:ac:65:6e:6f:2a:45:ae:ce:48:b3:b1:c6:81:2e:1d:e0: 43:e0:26:47:6a:8e:ba:75:3e:0c:0e:58:3e:b8:5f:e9:88:68: 3d:7f:a6:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPKJtprxNxonflAImCGtf4FElb7AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzAwMjZlOGQ1MjVlMTc1ZDk0YjM1ZGNjMTM2MWI5ZjZm MDNjMzZlMWY1MzQwNzAwNzFkNTNiNjlkMTA4OGRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG1eiD1VQYGHvKP7sFHOa7rQ4LuqtW+yfyIN1yd3/Pkvxs 1HpvjnE7Svot5HGIPoV6rF7RU63+npO/d8u0kjHwR6bzbUcGaTDBVao41PuhmyCU 1yTrmuhlhnGrcUAJ//QSXN70+hJ1ODbCfY3kzqrYj5YN8aIT1ajuN9tLcOZdOx43 UMTT8mqN9KDhUTC+QdSVDr5ZQxozSzecx9rEcEXAhCLynm9Fe5RAvE1sDEwfhK/T tqXPn2GQLBoNnjdbDmvXlU4Ugiq+18uv1wxqTRGVutOldHaWPL4zkrVf3GpOxBCS ALUih2mUKqpWS6JjHAkTgwZvgZujkWCuwiVgM+vzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfcwdArvfkPixCpXWUgmJ+GeeM8gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxNWM2M2ZmLWU3MWQtNDYxOS1iZjYwLTcwZDY1NmEzZDJlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYjNkAwDQYJKoZIhvcNAQELBQADggEBAL9OHTSexjwFA+CQgtDefAk6HXKd f5j13NUsXLs4jelvCgBmXB7v0kyDMGdFaS2h4B9J4g7CSsEBufPjlS7AYTE/6FsA MU3Eze59My+MOhZpY/Kv6MKNZbXlYwNGd0T7DRaJjwS5iK9Wr4D9OAifvxb8Tl3f nDFx56RqsH0ZXIXFfU3pghOQXTDbSGSp/0Pa9ipR2dfCnncd6fbRwBSnTM0q9d1z 6Qr1qnxpgVC9oS1pd0xzhTIEObnsmBf1jzgEX7zCGoP9u7+bHEH9zQ2xhZYHUMqY bO19QMmArGVubypFrs5Is7HGgS4d4EPgJkdqjrp1PgwOWD64X+mIaD1/poE= -----END CERTIFICATE-----Generated at Thu May 9 01:26:28 2024 by rpki-client on console-ams.rpki-client.org