$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b9e4cb-8682-4399-aa8c-3acf5f23f06f.roa File: 16b9e4cb-8682-4399-aa8c-3acf5f23f06f.roa (raw, json) Hash identifier: jPKJCfILU1EczKK3qHp0paYO8Hs1AEDNPaHrPbg7mVo= Subject key identifier: 34:57:1C:0B:16:3A:0C:7C:2E:0E:71:DD:9E:F5:42:08:E3:30:94:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 10AFF3A3B199D52E41E156F2AF0ACE35248D0AF3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b9e4cb-8682-4399-aa8c-3acf5f23f06f.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.23.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:af:f3:a3:b1:99:d5:2e:41:e1:56:f2:af:0a:ce:35:24:8d:0a:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=08aa6e7fa1e421a84688844f199abdd1b8c6b7d5ff7ffa23d18eec37a0a26f53, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a9:a0:b7:a3:ea:c7:cc:84:71:94:44:2d:34: 05:6d:e6:ce:a6:2f:7f:87:96:97:1b:53:99:19:a5: d0:28:9d:85:a4:2b:e7:43:6d:ed:44:fb:39:08:b1: 74:aa:8a:4f:11:5e:4b:3b:58:3d:7e:22:f0:c2:0e: 20:86:9b:b1:eb:46:d4:48:0d:89:f0:c3:d6:d2:c9: 3b:8e:76:9d:e7:41:10:77:fd:27:fa:86:60:6c:bc: a4:4b:33:24:50:ad:d2:e3:c8:e2:aa:1c:b9:bf:c6: 84:7e:8d:fb:44:b7:88:d1:9d:78:e4:12:32:a1:38: 58:4f:c9:b8:ce:1d:01:e3:44:d0:b2:79:86:c5:fb: 4e:3e:fe:b9:b1:90:1d:04:f0:e7:bb:cc:d3:cc:d0: 83:9d:da:42:37:c5:dd:76:73:a5:d3:5b:77:cb:f0: 58:84:1f:3b:ef:af:7d:08:55:71:8e:b6:e3:f0:8f: 73:51:ed:de:4a:34:67:99:f8:db:5d:0f:24:c3:e2: 78:3e:99:94:c6:c2:9d:8d:df:01:00:0a:cd:4d:a3: 55:5a:5d:23:b9:3e:11:b0:e9:65:8d:1f:45:f2:eb: 22:2b:8c:d2:1f:fa:3d:81:d5:71:6b:28:c2:60:ca: 77:1f:df:e5:d0:54:cc:f8:34:2b:2a:02:28:0e:22: e3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:57:1C:0B:16:3A:0C:7C:2E:0E:71:DD:9E:F5:42:08:E3:30:94:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b9e4cb-8682-4399-aa8c-3acf5f23f06f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.23.0.0/16 Signature Algorithm: sha256WithRSAEncryption 41:98:75:12:4c:b3:8b:a9:86:a3:5a:0c:f2:a8:ec:99:6e:ff: b8:b7:39:ad:c3:9c:00:ac:46:d8:16:30:93:ce:17:3c:bc:7c: d9:c9:68:0d:c5:dd:f7:f6:f1:17:7b:17:9c:08:16:74:c4:4c: 16:6c:a9:89:e3:fb:48:78:c6:1e:46:85:fa:f9:3e:c3:d5:ad: 91:65:4b:3a:00:3f:98:72:2a:aa:18:a2:5c:ac:5d:75:1f:0c: 6f:2a:38:ec:2c:30:8f:81:1e:31:c1:0b:4c:21:35:96:f5:f4: dc:79:04:b3:2e:f5:fc:84:ab:2d:f3:de:a2:b1:a0:16:62:e3: a9:c3:b5:95:da:d5:4a:1e:82:c2:46:f1:5f:c4:0f:71:73:a2: e7:dd:bc:65:7b:6e:a4:8b:2a:40:b4:78:05:be:fe:dc:b3:89: fb:d0:19:e0:6e:de:76:31:aa:8f:a3:f0:26:b7:78:f1:fd:08: 41:1d:1f:e8:08:ec:2f:ca:63:7b:24:a0:ab:03:16:9d:ee:bb: cf:dc:95:01:4c:45:fd:c8:6b:55:f2:3b:25:cf:00:1e:d5:8e: 7f:62:2d:11:99:b0:a4:2f:9e:73:7d:cf:03:68:00:02:e4:44: 36:50:33:12:8e:ba:7c:f0:cf:41:f9:ee:d1:48:e6:4d:dd:e1: de:da:f2:de -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEK/zo7GZ1S5B4VbyrwrONSSNCvMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGFhNmU3ZmExZTQyMWE4NDY4ODg0NGYxOTlhYmRkMWI4 YzZiN2Q1ZmY3ZmZhMjNkMThlZWMzN2EwYTI2ZjUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVqaC3o+rHzIRxlEQtNAVt5s6mL3+HlpcbU5kZpdAonYWk K+dDbe1E+zkIsXSqik8RXks7WD1+IvDCDiCGm7HrRtRIDYnww9bSyTuOdp3nQRB3 /Sf6hmBsvKRLMyRQrdLjyOKqHLm/xoR+jftEt4jRnXjkEjKhOFhPybjOHQHjRNCy eYbF+04+/rmxkB0E8Oe7zNPM0IOd2kI3xd12c6XTW3fL8FiEHzvvr30IVXGOtuPw j3NR7d5KNGeZ+NtdDyTD4ng+mZTGwp2N3wEACs1No1VaXSO5PhGw6WWNH0Xy6yIr jNIf+j2B1XFrKMJgyncf3+XQVMz4NCsqAigOIuNRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNFccCxY6DHwuDnHdnvVCCOMwlFswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2YjllNGNiLTg2ODItNDM5OS1hYThjLTNhY2Y1ZjIzZjA2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFzANBgkqhkiG9w0BAQsFAAOCAQEAQZh1Ekyzi6mGo1oM8qjsmW7/uLc5 rcOcAKxG2BYwk84XPLx82cloDcXd9/bxF3sXnAgWdMRMFmypieP7SHjGHkaF+vk+ w9WtkWVLOgA/mHIqqhiiXKxddR8Mbyo47Cwwj4EeMcELTCE1lvX03HkEsy71/ISr LfPeorGgFmLjqcO1ldrVSh6CwkbxX8QPcXOi5928ZXtupIsqQLR4Bb7+3LOJ+9AZ 4G7edjGqj6PwJrd48f0IQR0f6AjsL8pjeySgqwMWne67z9yVAUxF/chrVfI7Jc8A HtWOf2ItEZmwpC+ec33PA2gAAuRENlAzEo66fPDPQfnu0UjmTd3h3try3g== -----END CERTIFICATE-----Generated at Thu May 2 01:05:26 2024 by rpki-client on console-fra.rpki-client.org