$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05767c0c-a51a-4724-8188-24d099c58bd8.roa File: 05767c0c-a51a-4724-8188-24d099c58bd8.roa (raw, json) Hash identifier: uCjFBlghpRe1wbeh0PW1ySFC/zXn3b3az3G2STTFwDg= Subject key identifier: 7C:AD:49:FD:B8:DA:42:D3:DA:EB:AA:0B:3C:71:83:2C:54:F5:20:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58AB2A30F7F2FEC01476ECFA06A07A76FFFC21B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05767c0c-a51a-4724-8188-24d099c58bd8.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.190.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:ab:2a:30:f7:f2:fe:c0:14:76:ec:fa:06:a0:7a:76:ff:fc:21:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=c1c4c8f4231ed3b27c55b804df19730b3db831fba6e25ca384479e1761fafdd8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:01:ae:bc:0e:89:85:6e:ec:01:42:11:72:48: 7c:17:ae:65:e7:8c:eb:5b:fd:92:8b:22:14:c3:56: 1c:fa:93:94:1a:2e:c1:f8:82:96:ee:60:a2:98:69: a2:af:1f:11:17:5e:5a:5d:e1:7b:c9:81:82:f5:63: fc:57:b2:12:59:36:f0:ea:be:96:e1:f6:f6:1f:dc: 20:33:43:27:8f:f4:a2:1b:d3:04:ac:98:11:4f:bb: c5:5c:9b:7a:23:db:d4:99:53:0f:e7:7d:45:71:33: 40:43:5f:39:53:e5:af:bb:24:13:9e:d6:52:6f:44: ef:73:3e:d8:e3:0c:3d:6e:2e:3a:a6:0f:66:b3:c1: 69:28:0c:66:8c:02:55:ca:d2:b1:89:74:1c:ea:37: 3e:49:f4:bf:d4:23:83:d7:09:2e:c7:f4:40:43:58: 40:be:69:4d:f9:c8:58:47:7f:de:fd:7a:8f:96:db: 06:df:cf:4c:bd:8e:94:01:da:a3:4d:ba:93:fa:11: 28:4e:80:55:9e:82:9c:47:1a:16:c6:2c:aa:23:0a: 87:bd:89:77:ae:67:79:f8:fb:8c:53:e5:7e:20:a1: 73:83:b4:d9:31:60:8c:6d:c7:c9:38:b6:b6:35:43: fe:40:5d:9d:b7:f5:b3:c8:a5:01:92:5a:ad:99:13: b2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AD:49:FD:B8:DA:42:D3:DA:EB:AA:0B:3C:71:83:2C:54:F5:20:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05767c0c-a51a-4724-8188-24d099c58bd8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.190.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:4d:9c:6f:d2:82:22:d7:3a:e8:46:b2:69:3d:90:15:a2:4a: 31:b6:31:da:51:d7:c2:51:6f:10:7d:95:4a:9e:ae:6f:04:95: a1:bf:c5:36:7b:41:6e:e7:0d:f6:18:00:d1:49:35:3b:77:44: e2:fa:c9:f1:7c:a8:00:2c:e1:1c:79:1d:ad:c3:b7:c2:ac:30: 11:35:6f:70:da:a8:42:ee:87:32:7b:02:da:37:1f:90:d7:4c: 36:60:94:05:16:0a:4f:98:f6:95:10:79:69:06:3e:1a:49:fa: 45:a5:1c:93:7c:fe:3e:93:24:ce:39:5d:6e:a7:3c:f7:27:94: ba:9e:a2:fa:b7:fa:81:b3:db:bc:20:65:7e:39:a8:3b:eb:7a: 09:f1:6f:a5:3f:3a:db:ad:ed:d2:1e:57:63:49:e0:28:31:e0: 8c:27:e1:6a:bc:f4:37:07:4f:ad:c3:8a:40:09:a0:24:4c:46: a9:7e:fa:d9:b4:ab:6a:ce:95:dd:d0:5d:f5:c3:28:fe:2a:eb: e5:23:24:4c:91:82:cd:59:d1:93:7b:a1:93:4a:bf:4d:8b:4c: 19:d6:a8:a0:b8:ce:e5:90:b9:0b:be:82:b4:34:d2:16:f8:64: b1:12:fb:0a:95:93:5b:1d:fb:da:f6:8d:42:9f:c0:f7:d5:0a: e5:34:c8:6f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWKsqMPfy/sAUduz6BqB6dv/8IbYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWM0YzhmNDIzMWVkM2IyN2M1NWI4MDRkZjE5NzMwYjNk YjgzMWZiYTZlMjVjYTM4NDQ3OWUxNzYxZmFmZGQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZAa68DomFbuwBQhFySHwXrmXnjOtb/ZKLIhTDVhz6k5Qa LsH4gpbuYKKYaaKvHxEXXlpd4XvJgYL1Y/xXshJZNvDqvpbh9vYf3CAzQyeP9KIb 0wSsmBFPu8Vcm3oj29SZUw/nfUVxM0BDXzlT5a+7JBOe1lJvRO9zPtjjDD1uLjqm D2azwWkoDGaMAlXK0rGJdBzqNz5J9L/UI4PXCS7H9EBDWEC+aU35yFhHf979eo+W 2wbfz0y9jpQB2qNNupP6EShOgFWegpxHGhbGLKojCoe9iXeuZ3n4+4xT5X4goXOD tNkxYIxtx8k4trY1Q/5AXZ239bPIpQGSWq2ZE7KlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfK1J/bjaQtPa66oLPHGDLFT1IP8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1NzY3YzBjLWE1MWEtNDcyNC04MTg4LTI0ZDA5OWM1OGJkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvjANBgkqhkiG9w0BAQsFAAOCAQEAFU2cb9KCItc66EayaT2QFaJKMbYx 2lHXwlFvEH2VSp6ubwSVob/FNntBbucN9hgA0Uk1O3dE4vrJ8XyoACzhHHkdrcO3 wqwwETVvcNqoQu6HMnsC2jcfkNdMNmCUBRYKT5j2lRB5aQY+Gkn6RaUck3z+PpMk zjldbqc89yeUup6i+rf6gbPbvCBlfjmoO+t6CfFvpT86263t0h5XY0ngKDHgjCfh arz0NwdPrcOKQAmgJExGqX762bSras6V3dBd9cMo/irr5SMkTJGCzVnRk3uhk0q/ TYtMGdaooLjO5ZC5C76CtDTSFvhksRL7CpWTWx372vaNQp/A99UK5TTIbw== -----END CERTIFICATE-----Generated at Thu Apr 18 23:54:00 2024 by rpki-client on console-fra.rpki-client.org