$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e02a595-7697-4c66-b83b-c7ec1f66968d.roa File: 1e02a595-7697-4c66-b83b-c7ec1f66968d.roa (raw, json) Hash identifier: IqWfa4YUhtGnpLHMI+5nYNNi5tmIqBER8gRooLn8j7c= Subject key identifier: 92:C3:A9:D4:74:53:D6:02:02:74:2B:F0:5D:90:6F:50:E2:D1:3C:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E7D0FB3DEE205EC403C77767D12B5149042B52A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e02a595-7697-4c66-b83b-c7ec1f66968d.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.23.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:7d:0f:b3:de:e2:05:ec:40:3c:77:76:7d:12:b5:14:90:42:b5:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=092099ee0415523a18620ff2b2f6dd0c2c1c33704eb668f7fc826a70920f0536, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:51:8a:8c:04:58:50:6e:bc:73:c4:39:8f:ab: c6:6a:a2:7e:55:87:2f:9f:a8:d3:36:81:29:f2:93: 1f:8b:68:40:78:47:13:f3:83:9c:bb:93:03:96:60: 3e:73:b7:fe:99:23:19:0f:9c:d7:fe:bb:fa:6d:97: 6e:77:26:af:64:2c:72:90:8d:a3:43:a0:5c:aa:57: ec:e1:3e:31:ec:18:da:6d:ab:f9:4f:51:e1:fc:83: 6e:ad:fb:ed:b4:0b:a9:40:b6:de:50:bc:79:80:3a: 39:26:22:f9:4a:3d:a4:d5:9e:c9:3e:c4:d9:bc:e3: ae:3e:0f:4d:2a:69:72:25:9f:55:1d:92:19:fb:67: 13:71:f0:16:41:a4:68:36:c5:8e:c7:8b:8d:c0:ec: 11:c0:8b:41:ed:63:8c:c3:92:99:36:7a:af:84:d1: a4:7c:56:21:f9:59:63:a6:83:1f:a6:3d:1f:6f:8f: 5f:c5:68:38:bd:84:44:00:d5:a0:44:e4:72:6e:84: cd:d7:bf:23:3e:e7:20:de:da:87:ed:01:aa:e8:2b: 37:75:de:d6:97:91:32:5f:51:f3:d6:96:be:b0:c0: 3d:9b:73:66:e6:80:ec:55:99:15:c2:a0:c9:4d:01: b7:d5:49:fe:57:1a:54:99:6d:ec:dd:19:96:3d:c6: 76:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C3:A9:D4:74:53:D6:02:02:74:2B:F0:5D:90:6F:50:E2:D1:3C:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e02a595-7697-4c66-b83b-c7ec1f66968d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.23.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:c7:c6:a5:79:97:3b:80:5c:11:6c:6d:71:67:2c:cd:9e:a8: ca:ab:a8:4f:e6:53:ab:5b:13:59:72:f3:91:05:e1:b3:ce:37: 2c:c7:d0:be:ba:c0:01:19:43:53:8c:75:26:d2:5b:1c:ed:6f: c8:c5:62:69:28:f5:59:02:f1:8f:6a:2e:4f:8a:87:97:c8:95: f9:be:67:9d:6f:38:ef:d2:35:70:5f:d2:ee:79:b5:ab:36:9b: 4c:69:ce:a4:b4:7b:1a:d6:4b:60:bf:75:cb:55:5f:b5:37:fa: 5a:6f:1b:bd:01:ec:33:ed:c7:c4:27:39:c5:23:0d:bc:56:1e: f9:bb:c1:ea:b6:56:95:72:f9:eb:f4:31:d3:d2:59:ec:a8:fb: b6:88:11:dc:fd:b0:47:d3:69:a6:59:18:37:e7:20:3d:75:25: 33:04:c7:a3:1d:ce:f8:cb:24:16:c0:81:7e:50:d3:74:d8:bb: 7d:f8:50:6a:fd:b7:3e:ac:87:20:a4:53:9b:c7:e0:9a:88:4d: 2b:56:51:3b:e0:bc:cd:e9:4e:f6:76:d0:9b:21:60:d7:dc:43: c4:b2:d8:18:e2:fc:f2:b6:0e:02:96:db:26:8b:e1:af:59:d5: 96:73:c2:a1:97:d7:44:29:1d:e7:81:a4:08:f0:dc:3c:71:c5: ff:15:35:18 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTn0Ps97iBexAPHd2fRK1FJBCtSowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTIwOTllZTA0MTU1MjNhMTg2MjBmZjJiMmY2ZGQwYzJj MWMzMzcwNGViNjY4ZjdmYzgyNmE3MDkyMGYwNTM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeUYqMBFhQbrxzxDmPq8Zqon5Vhy+fqNM2gSnykx+LaEB4 RxPzg5y7kwOWYD5zt/6ZIxkPnNf+u/ptl253Jq9kLHKQjaNDoFyqV+zhPjHsGNpt q/lPUeH8g26t++20C6lAtt5QvHmAOjkmIvlKPaTVnsk+xNm8464+D00qaXIln1Ud khn7ZxNx8BZBpGg2xY7Hi43A7BHAi0HtY4zDkpk2eq+E0aR8ViH5WWOmgx+mPR9v j1/FaDi9hEQA1aBE5HJuhM3XvyM+5yDe2oftAaroKzd13taXkTJfUfPWlr6wwD2b c2bmgOxVmRXCoMlNAbfVSf5XGlSZbezdGZY9xnaBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUksOp1HRT1gICdCvwXZBvUOLRPLUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlMDJhNTk1LTc2OTctNGM2Ni1iODNiLWM3ZWMxZjY2OTY4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFzANBgkqhkiG9w0BAQsFAAOCAQEAjcfGpXmXO4BcEWxtcWcszZ6oyquo T+ZTq1sTWXLzkQXhs843LMfQvrrAARlDU4x1JtJbHO1vyMViaSj1WQLxj2ouT4qH l8iV+b5nnW8479I1cF/S7nm1qzabTGnOpLR7GtZLYL91y1VftTf6Wm8bvQHsM+3H xCc5xSMNvFYe+bvB6rZWlXL56/Qx09JZ7Kj7togR3P2wR9NpplkYN+cgPXUlMwTH ox3O+MskFsCBflDTdNi7ffhQav23PqyHIKRTm8fgmohNK1ZRO+C8zelO9nbQmyFg 19xDxLLYGOL88rYOApbbJovhr1nVlnPCoZfXRCkd54GkCPDcPHHF/xU1GA== -----END CERTIFICATE-----Generated at Thu May 9 01:25:22 2024 by rpki-client on console-fra.rpki-client.org