$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0baf80ff-e191-4ac2-b6aa-a2a534082994.roa File: 0baf80ff-e191-4ac2-b6aa-a2a534082994.roa (raw, json) Hash identifier: 9CjAqkLsjhwOyJcn5NTZUsjd640z+cnAvXSfDD4Y7ug= Subject key identifier: EC:5A:22:0B:76:0A:B0:62:01:16:03:01:4C:4C:54:5F:38:77:3C:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 230B1D00B3CAB8997194966B9C80D892277663D3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0baf80ff-e191-4ac2-b6aa-a2a534082994.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.190.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:0b:1d:00:b3:ca:b8:99:71:94:96:6b:9c:80:d8:92:27:76:63:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=cc2a9b8c82da173b34a4616609337ac8f2e8a7a72addebd226f1aa2a478396eb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f6:6f:b6:47:69:19:46:0f:d3:e6:b7:b0:54: f0:ec:e5:e5:56:3c:10:a9:00:cf:c6:25:43:6b:2d: 7f:ae:cc:e8:82:12:c1:84:af:6f:ed:80:c0:0a:e4: e8:85:d4:68:f4:a2:3d:72:76:92:2e:47:bc:dd:01: 9d:5a:1b:40:f0:a1:9e:dd:0d:03:36:51:da:7b:93: 7f:af:e7:52:d3:21:a3:c4:ff:33:ec:fe:cf:0c:bd: d2:29:b8:31:45:f3:ca:60:3b:15:17:6f:73:b4:c5: 1b:5d:4f:e4:f9:57:87:b8:f4:1b:1d:4b:67:0a:a1: 65:0d:09:f0:8a:b4:49:52:da:bf:79:47:cc:18:ca: 1f:49:17:18:86:7b:1c:8b:c1:d8:63:44:09:93:f3: f8:b9:f5:f7:8d:58:f5:76:05:e9:2c:4a:5f:2e:29: e2:4c:1b:b7:1b:e5:d6:66:e6:07:e0:8b:aa:aa:5b: 4f:3d:f3:0f:fa:9d:64:a9:c6:24:7d:af:8d:78:9d: 0b:3b:b6:ce:2d:71:d4:bd:09:28:6c:25:ea:ec:bf: b7:e1:95:a3:c2:2a:6e:24:da:70:1c:50:ee:f5:24: 1d:80:55:52:ab:fd:c1:42:a9:7a:40:30:6d:68:b9: d4:7a:11:d5:ed:0c:d1:d6:c3:87:2b:43:47:60:70: f2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5A:22:0B:76:0A:B0:62:01:16:03:01:4C:4C:54:5F:38:77:3C:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0baf80ff-e191-4ac2-b6aa-a2a534082994.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.190.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9a:78:79:f3:33:36:be:1d:09:3b:77:54:09:11:5b:50:f6:a1: 77:b9:58:1b:d7:fe:c1:67:53:bf:3c:bc:e9:8d:d3:15:d9:d2: 70:6f:05:17:2b:b1:33:c0:b6:27:25:ec:93:8e:53:e4:ce:df: 4f:f4:6f:24:e8:52:a6:d9:1f:67:3c:5f:35:d0:65:5b:2d:f3: 04:8d:0e:1c:57:c7:28:16:48:9b:9a:c9:2f:48:7e:c9:31:0b: 38:02:91:78:5c:f3:43:30:ee:9d:13:f3:bc:6c:1c:8f:fa:4c: dc:5d:a9:37:b1:a0:be:09:61:51:8f:3e:00:f8:fb:8a:3d:39: a1:c2:38:ac:d0:02:43:7c:8d:93:57:c0:28:87:5c:ea:3f:f5: 8f:c2:99:53:e7:65:3d:06:5f:c3:8d:e5:51:02:3f:06:76:52: 2b:b0:ac:aa:c3:0e:f6:e5:38:c1:9f:79:fc:69:4e:80:3f:1d: 59:23:da:ef:3b:93:aa:6e:a0:bd:e5:e6:6a:c7:d0:b3:0f:70: e6:25:09:33:8b:2f:24:ab:e5:8a:50:5f:bf:de:8b:1b:66:0b: 24:7d:5a:0e:56:f0:09:42:21:4f:97:1b:df:1a:e7:26:90:f7: 68:99:f1:31:01:68:8f:02:bc:91:3e:1d:aa:a8:16:ba:5a:4e: 97:71:8b:46 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIwsdALPKuJlxlJZrnIDYkid2Y9MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzJhOWI4YzgyZGExNzNiMzRhNDYxNjYwOTMzN2FjOGYy ZThhN2E3MmFkZGViZDIyNmYxYWEyYTQ3ODM5NmViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC39m+2R2kZRg/T5rewVPDs5eVWPBCpAM/GJUNrLX+uzOiC EsGEr2/tgMAK5OiF1Gj0oj1ydpIuR7zdAZ1aG0DwoZ7dDQM2Udp7k3+v51LTIaPE /zPs/s8MvdIpuDFF88pgOxUXb3O0xRtdT+T5V4e49BsdS2cKoWUNCfCKtElS2r95 R8wYyh9JFxiGexyLwdhjRAmT8/i59feNWPV2BeksSl8uKeJMG7cb5dZm5gfgi6qq W0898w/6nWSpxiR9r414nQs7ts4tcdS9CShsJersv7fhlaPCKm4k2nAcUO71JB2A VVKr/cFCqXpAMG1oudR6EdXtDNHWw4crQ0dgcPJRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU7FoiC3YKsGIBFgMBTExUXzh3PKIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBiYWY4MGZmLWUxOTEtNGFjMi1iNmFhLWEyYTUzNDA4Mjk5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvjANBgkqhkiG9w0BAQsFAAOCAQEAmnh58zM2vh0JO3dUCRFbUPahd7lY G9f+wWdTvzy86Y3TFdnScG8FFyuxM8C2JyXsk45T5M7fT/RvJOhSptkfZzxfNdBl Wy3zBI0OHFfHKBZIm5rJL0h+yTELOAKReFzzQzDunRPzvGwcj/pM3F2pN7Ggvglh UY8+APj7ij05ocI4rNACQ3yNk1fAKIdc6j/1j8KZU+dlPQZfw43lUQI/BnZSK7Cs qsMO9uU4wZ95/GlOgD8dWSPa7zuTqm6gveXmasfQsw9w5iUJM4svJKvlilBfv96L G2YLJH1aDlbwCUIhT5cb3xrnJpD3aJnxMQFojwK8kT4dqqgWulpOl3GLRg== -----END CERTIFICATE-----Generated at Thu May 9 01:26:05 2024 by rpki-client on console-ams.rpki-client.org