$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa File: 16b78eb9-3900-423b-9232-5f508710c51b.roa (raw, json) Hash identifier: OiX4GJwdGysSmDAyvJKWs7iKB39k2cXOb63KEJRIK2I= Subject key identifier: 48:5D:7E:D4:4E:B6:D0:C0:C5:83:BE:F2:3E:FF:A4:E5:AA:64:A5:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6145DA21DA32E2038E74FE8296B4BC014BD10666 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa Signing time: Fri 07 Jun 2024 00:00:00 +0000 ROA not before: Fri 07 Jun 2024 00:00:00 +0000 ROA not after: Fri 12 Jul 2024 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 27 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:45:da:21:da:32:e2:03:8e:74:fe:82:96:b4:bc:01:4b:d1:06:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 7 00:00:00 2024 GMT Not After : Jul 12 23:59:59 2024 GMT Subject: serialNumber=ff7e065df4dc922d99c5408616499150db95496146d43070934f4a60501ce9f6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f6:26:bd:a7:1a:70:b4:49:cc:e6:e7:f3:b1: de:a2:9f:ef:9f:21:20:93:d8:d0:da:ee:de:3f:55: 19:c4:6e:fe:92:bf:4e:c4:94:f5:f7:5c:4d:f6:dd: 8d:53:07:7c:c3:6e:ba:42:da:11:ed:bc:f7:85:18: 89:45:98:1e:ec:72:8c:38:fe:d1:a0:62:6c:71:e4: 04:80:8c:bc:bf:4a:dc:ea:84:7c:a9:6f:b8:05:92: f7:80:67:a3:30:64:0a:d1:e0:1d:b0:76:d2:a5:8c: 1d:37:16:30:3d:8d:36:e1:5c:c0:05:18:77:f4:3c: cd:27:42:02:36:f0:35:57:27:71:c9:4c:f4:62:5a: 72:3a:0f:94:b6:55:8c:ec:34:8c:37:95:c0:8c:27: 0f:f4:b8:2f:aa:e2:06:2d:75:d4:0f:61:d2:f2:b5: 4d:b2:02:ab:0c:c1:f8:5d:e1:6a:1d:ae:6e:97:52: 80:e2:f4:86:d8:13:27:c3:6f:3e:2f:61:80:ec:f4: 9f:d5:b7:db:b7:e6:ca:f0:7f:33:45:09:51:77:90: d6:ed:ee:38:1e:69:82:a1:db:a8:e3:58:bc:ac:d0: 82:c3:3e:38:2d:57:73:e3:2f:bb:89:4b:22:c6:1c: 6a:5a:08:2a:fd:a1:f3:67:f4:d6:b1:44:ca:ea:ce: 47:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:5D:7E:D4:4E:B6:D0:C0:C5:83:BE:F2:3E:FF:A4:E5:AA:64:A5:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.107.0/24 Signature Algorithm: sha256WithRSAEncryption 47:de:b6:16:40:1f:68:f3:70:3f:6d:ab:f2:46:52:0d:fe:80: b5:e9:db:1a:20:1b:8a:70:bf:ac:99:eb:3c:72:28:9d:44:c3: e7:fe:7b:1b:cb:92:c4:f3:92:c6:dd:3b:da:4a:99:8f:84:09: e6:60:c3:68:f9:63:f9:2d:51:68:82:d6:c5:0e:40:30:fb:3a: ac:92:e7:56:a3:26:1c:4f:dc:3d:4e:7e:bf:b3:86:e7:e3:f7: 47:7c:53:31:e8:33:76:d9:6c:15:1a:c4:6b:4d:56:1f:7b:2d: 72:ba:13:66:d4:26:dc:55:71:dc:24:59:9a:60:ee:56:95:da: 04:6c:79:7b:97:13:92:16:d9:60:ea:53:d9:d0:5b:eb:07:d1: 39:4b:e5:f3:01:b2:55:5d:0c:f7:0d:22:25:78:af:ec:25:75: 2c:7b:ac:df:2b:e7:0b:9f:8d:33:6d:91:6b:c2:2a:c0:72:2c: 53:35:7d:27:ed:2f:68:68:eb:a7:4b:4e:84:d9:d6:e6:5b:51: 46:eb:54:89:66:28:f9:12:6c:80:b8:4b:01:57:2d:9b:93:3d: 15:0f:5f:85:ce:5c:c0:90:f8:30:40:16:ef:81:e2:5e:16:94: 28:a3:ca:7f:24:34:90:45:86:19:91:6d:d0:9c:9f:f5:44:4a: c2:59:54:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYUXaIdoy4gOOdP6ClrS8AUvRBmYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNjA3MDAwMDAwWhcNMjQwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjdlMDY1ZGY0ZGM5MjJkOTljNTQwODYxNjQ5OTE1MGRi OTU0OTYxNDZkNDMwNzA5MzRmNGE2MDUwMWNlOWY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv9ia9pxpwtEnM5ufzsd6in++fISCT2NDa7t4/VRnEbv6S v07ElPX3XE323Y1TB3zDbrpC2hHtvPeFGIlFmB7scow4/tGgYmxx5ASAjLy/Stzq hHypb7gFkveAZ6MwZArR4B2wdtKljB03FjA9jTbhXMAFGHf0PM0nQgI28DVXJ3HJ TPRiWnI6D5S2VYzsNIw3lcCMJw/0uC+q4gYtddQPYdLytU2yAqsMwfhd4Wodrm6X UoDi9IbYEyfDbz4vYYDs9J/Vt9u35srwfzNFCVF3kNbt7jgeaYKh26jjWLys0ILD PjgtV3PjL7uJSyLGHGpaCCr9ofNn9NaxRMrqzkcZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSF1+1E620MDFg77yPv+k5apkpYMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2Yjc4ZWI5LTM5MDAtNDIzYi05MjMyLTVmNTA4NzEwYzUxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GswDQYJKoZIhvcNAQELBQADggEBAEfethZAH2jzcD9tq/JGUg3+gLXp 2xogG4pwv6yZ6zxyKJ1Ew+f+exvLksTzksbdO9pKmY+ECeZgw2j5Y/ktUWiC1sUO QDD7OqyS51ajJhxP3D1Ofr+zhufj90d8UzHoM3bZbBUaxGtNVh97LXK6E2bUJtxV cdwkWZpg7laV2gRseXuXE5IW2WDqU9nQW+sH0TlL5fMBslVdDPcNIiV4r+wldSx7 rN8r5wufjTNtkWvCKsByLFM1fSftL2ho66dLToTZ1uZbUUbrVIlmKPkSbIC4SwFX LZuTPRUPX4XOXMCQ+DBAFu+B4l4WlCijyn8kNJBFhhmRbdCcn/VESsJZVNI= -----END CERTIFICATE-----Generated at Wed Jun 26 02:44:03 2024 by rpki-client on console-fra.rpki-client.org