$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e9138670-341a-4bc8-ae48-88bf97f61f5e.roa File: e9138670-341a-4bc8-ae48-88bf97f61f5e.roa (raw, json) Hash identifier: UPNcCExCKGTqbuu3+mYGmgaKK23ETP3VXhZSXWdS+fM= Subject key identifier: 68:01:45:E8:64:AC:1F:21:DC:4B:71:F6:2E:87:DD:D6:26:03:C0:32 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 03C0DA9B98EF3F6534EE36EC93E9EF824AB3F0BF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e9138670-341a-4bc8-ae48-88bf97f61f5e.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 02 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:c0:da:9b:98:ef:3f:65:34:ee:36:ec:93:e9:ef:82:4a:b3:f0:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=4836169ca000f608c26e4a2f412e401947db91d2651c33d05a3f3ef8d637beda, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5b:42:eb:af:10:91:fc:a4:14:74:65:ba:05: d6:4a:bb:26:4b:04:34:06:c5:62:3a:41:5f:6d:29: 53:be:52:fe:4c:78:16:ef:70:85:e9:ec:3f:1d:e1: f3:ed:91:de:d6:d8:37:8e:59:ab:7f:e8:fc:5b:40: d7:0c:87:7e:a9:db:48:42:ed:ef:f7:30:32:24:b6: ca:a0:16:21:ec:48:c1:f3:5c:fc:08:11:18:4e:6f: 77:10:ea:5c:5f:9a:7b:b2:ea:bb:f9:2f:42:54:eb: 76:7c:1e:5b:7d:18:ac:d4:09:d2:d2:06:4f:bf:d2: 27:f3:1d:66:94:a4:4e:c4:4b:a2:f5:e1:a6:31:49: 20:ec:85:d5:1c:3b:90:80:fd:57:f6:6e:de:33:d7: 33:d9:09:a8:30:20:89:ec:94:f8:12:d2:97:1b:98: c1:5e:14:6d:29:68:85:bf:d8:c8:30:50:38:d5:b0: 0e:2f:10:ac:82:f4:7d:a0:bc:b1:2f:e4:36:8f:09: 78:2a:4a:f7:62:52:bc:db:38:5b:85:4a:57:b5:8d: e8:c4:58:c8:5e:36:93:d2:06:05:8b:0d:02:d7:98: 79:bc:ba:e7:4a:3f:e1:cb:b1:54:b5:74:c0:80:e0: 9e:a9:e9:2c:d0:36:c4:17:70:b3:63:63:d9:1d:86: 76:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:01:45:E8:64:AC:1F:21:DC:4B:71:F6:2E:87:DD:D6:26:03:C0:32 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e9138670-341a-4bc8-ae48-88bf97f61f5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.0.0/12 Signature Algorithm: sha256WithRSAEncryption 42:06:ce:64:b8:2f:dd:13:57:f3:6e:7e:3e:90:93:8f:f5:6c: d1:16:23:2e:fb:e7:be:71:51:92:17:ee:8c:11:d4:30:b8:1d: 7f:c2:b1:74:96:d2:a4:cd:24:52:4e:bc:21:a9:59:68:ec:05: 8b:f5:58:93:da:5f:aa:b4:32:f9:7c:19:0d:23:4e:a5:49:dd: a4:40:2c:8e:9e:21:38:28:af:fe:98:18:14:b0:73:e8:57:6c: 82:d9:d0:b5:76:b8:6e:20:ed:4d:94:ee:d9:ab:83:60:9b:fd: 9a:5a:2f:7b:be:d8:f1:01:90:90:6d:81:03:e7:86:4d:56:7b: 42:44:dc:3a:4a:be:94:8d:40:54:18:6f:70:5b:ac:5a:97:42: d9:ac:88:a5:5b:3b:43:fb:03:53:b8:ed:df:3c:b7:a9:9d:da: 05:0e:25:6c:d9:31:dc:99:e1:d1:7e:83:09:54:58:f7:ae:fd: 43:69:96:b7:84:d0:26:59:e4:8e:7e:9d:b1:fb:ff:9d:13:ac: fa:f3:e9:8c:19:46:b2:0c:cf:96:89:8f:52:62:be:2e:b1:58: 48:b8:1c:02:f7:14:a9:9e:a4:f1:aa:c3:6b:52:ad:d4:47:86: 68:6e:16:ea:2c:91:6f:ac:9d:67:fd:af:3f:53:65:26:08:92: c8:08:7a:a5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA8Dam5jvP2U07jbsk+nvgkqz8L8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODM2MTY5Y2EwMDBmNjA4YzI2ZTRhMmY0MTJlNDAxOTQ3 ZGI5MWQyNjUxYzMzZDA1YTNmM2VmOGQ2MzdiZWRhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiW0LrrxCR/KQUdGW6BdZKuyZLBDQGxWI6QV9tKVO+Uv5M eBbvcIXp7D8d4fPtkd7W2DeOWat/6PxbQNcMh36p20hC7e/3MDIktsqgFiHsSMHz XPwIERhOb3cQ6lxfmnuy6rv5L0JU63Z8Hlt9GKzUCdLSBk+/0ifzHWaUpE7ES6L1 4aYxSSDshdUcO5CA/Vf2bt4z1zPZCagwIInslPgS0pcbmMFeFG0paIW/2MgwUDjV sA4vEKyC9H2gvLEv5DaPCXgqSvdiUrzbOFuFSle1jejEWMheNpPSBgWLDQLXmHm8 uudKP+HLsVS1dMCA4J6p6SzQNsQXcLNjY9kdhnb9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUaAFF6GSsHyHcS3H2Lofd1iYDwDIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U5MTM4NjcwLTM0MWEtNGJjOC1hZTQ4LTg4YmY5N2Y2MWY1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQjYDANBgkqhkiG9w0BAQsFAAOCAQEAQgbOZLgv3RNX825+PpCTj/Vs0RYj LvvnvnFRkhfujBHUMLgdf8KxdJbSpM0kUk68IalZaOwFi/VYk9pfqrQy+XwZDSNO pUndpEAsjp4hOCiv/pgYFLBz6FdsgtnQtXa4biDtTZTu2auDYJv9mlove77Y8QGQ kG2BA+eGTVZ7QkTcOkq+lI1AVBhvcFusWpdC2ayIpVs7Q/sDU7jt3zy3qZ3aBQ4l bNkx3Jnh0X6DCVRY9679Q2mWt4TQJlnkjn6dsfv/nROs+vPpjBlGsgzPlomPUmK+ LrFYSLgcAvcUqZ6k8arDa1Kt1EeGaG4W6iyRb6ydZ/2vP1NlJgiSyAh6pQ== -----END CERTIFICATE-----Generated at Wed May 1 00:35:47 2024 by rpki-client on console-ams.rpki-client.org