$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa File: 16b78eb9-3900-423b-9232-5f508710c51b.roa (raw, json) Hash identifier: 6CmsXBN3BI79H9+GUz72NxC5H29piWj/n0ZFTwmQk0w= Subject key identifier: DD:E8:74:B5:84:65:0E:B5:26:CA:72:7C:02:0C:E0:CD:DE:0B:3F:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 392B95828F63D2B1AE175F224AD4F7E37F18402B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:2b:95:82:8f:63:d2:b1:ae:17:5f:22:4a:d4:f7:e3:7f:18:40:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=f9fa454309089988bcb9d2e614de57bf71d4414bc071bc702f0babffe43e9f97, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:16:df:3e:45:cf:fe:f0:50:f2:3d:c6:1d:49: d0:61:0d:61:38:6e:c6:f2:5d:a8:09:76:ff:e4:59: bd:75:73:42:5c:e5:03:61:94:f3:8a:22:a6:a4:f8: d4:5d:fd:8b:f1:c2:bd:9c:6b:81:ba:fc:73:a4:da: a8:ca:94:99:86:3b:8d:83:50:06:1c:b2:36:b5:58: aa:b0:b0:08:32:2c:56:e1:3f:4b:6f:22:d5:8d:0b: 51:af:3d:aa:17:f9:a3:b7:93:f5:91:3b:66:77:06: 7d:e0:c7:5c:76:8d:63:c2:c5:f7:72:30:50:ee:fa: 89:53:d9:1f:9f:a9:92:6a:12:5d:bd:a4:2f:fe:20: eb:4f:03:31:5c:7b:dc:94:07:f1:22:e2:57:61:1f: 7e:42:b0:3c:c9:24:fc:17:90:ad:d7:04:83:ca:55: 98:ec:c9:72:96:c7:21:fc:62:80:39:f7:0d:d8:41: 78:67:c0:92:1c:88:a0:5d:e0:2d:00:27:30:d1:ad: 82:a0:0e:1e:95:9b:8b:2d:da:17:11:a6:6d:86:97: f0:50:a8:d5:df:21:12:b1:d6:87:ff:85:de:03:80: 95:9b:e8:0d:36:91:b8:4c:ec:e6:77:cc:fe:51:0a: 48:cd:f3:40:32:8e:e1:3c:4a:5d:95:11:8f:c0:01: d2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E8:74:B5:84:65:0E:B5:26:CA:72:7C:02:0C:E0:CD:DE:0B:3F:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.107.0/24 Signature Algorithm: sha256WithRSAEncryption 42:3f:86:18:b1:22:21:63:ff:4e:90:07:e6:12:10:3f:65:b5: be:88:0c:6f:31:8a:3e:90:38:67:02:79:43:7c:2e:6b:55:6f: 8a:4e:58:82:78:be:aa:5d:95:2e:63:18:b4:18:84:95:74:3f: 1b:e8:76:b6:4d:7e:2a:07:09:42:c8:45:c4:e7:90:5e:c9:38: 07:b2:f1:39:78:32:d9:ab:1e:fe:ff:ec:d9:22:4c:17:33:43: 34:04:cb:6d:05:92:d5:2e:31:5b:56:ea:bf:fd:94:8e:f4:9a: bb:1e:ef:1e:11:12:c2:33:8e:18:8c:ed:f0:4e:b4:e1:e8:db: d4:bd:c0:1a:9c:fe:28:a8:38:44:7c:61:c6:96:65:19:fe:01: c4:f0:d1:43:1b:7a:08:46:7b:f9:42:86:0d:a0:a3:0b:c0:b1: 11:3c:98:cb:5e:2b:7b:48:b5:1e:1e:e6:b7:ae:82:1e:84:52: 08:5e:38:1c:60:d4:82:61:7a:8d:dd:fc:32:cd:a7:96:c6:b0: b7:a6:d8:11:67:7c:79:1c:81:e7:d9:53:83:58:75:2c:fb:36: 23:e3:7c:e5:29:db:42:06:6e:45:c6:e6:1c:21:e7:ff:fe:3b: 18:af:50:f4:ba:d9:94:3b:98:e8:af:ac:6d:b7:5b:d2:11:4d: 0f:ec:c8:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOSuVgo9j0rGuF18iStT3438YQCswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOWZhNDU0MzA5MDg5OTg4YmNiOWQyZTYxNGRlNTdiZjcx ZDQ0MTRiYzA3MWJjNzAyZjBiYWJmZmU0M2U5Zjk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCIFt8+Rc/+8FDyPcYdSdBhDWE4bsbyXagJdv/kWb11c0Jc 5QNhlPOKIqak+NRd/Yvxwr2ca4G6/HOk2qjKlJmGO42DUAYcsja1WKqwsAgyLFbh P0tvItWNC1GvPaoX+aO3k/WRO2Z3Bn3gx1x2jWPCxfdyMFDu+olT2R+fqZJqEl29 pC/+IOtPAzFce9yUB/Ei4ldhH35CsDzJJPwXkK3XBIPKVZjsyXKWxyH8YoA59w3Y QXhnwJIciKBd4C0AJzDRrYKgDh6Vm4st2hcRpm2Gl/BQqNXfIRKx1of/hd4DgJWb 6A02kbhM7OZ3zP5RCkjN80AyjuE8Sl2VEY/AAdKxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3eh0tYRlDrUmynJ8Agzgzd4LP7UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2Yjc4ZWI5LTM5MDAtNDIzYi05MjMyLTVmNTA4NzEwYzUxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GswDQYJKoZIhvcNAQELBQADggEBAEI/hhixIiFj/06QB+YSED9ltb6I DG8xij6QOGcCeUN8LmtVb4pOWIJ4vqpdlS5jGLQYhJV0PxvodrZNfioHCULIRcTn kF7JOAey8Tl4MtmrHv7/7NkiTBczQzQEy20FktUuMVtW6r/9lI70mrse7x4REsIz jhiM7fBOtOHo29S9wBqc/iioOER8YcaWZRn+AcTw0UMbeghGe/lChg2gowvAsRE8 mMteK3tItR4e5reugh6EUgheOBxg1IJheo3d/DLNp5bGsLem2BFnfHkcgefZU4NY dSz7NiPjfOUp20IGbkXG5hwh5//+OxivUPS62ZQ7mOivrG23W9IRTQ/syCo= -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:46 2024 by rpki-client on console-fra.rpki-client.org