$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c707dd-6163-4dce-bd57-52cde399da8e.roa File: 27c707dd-6163-4dce-bd57-52cde399da8e.roa (raw, json) Hash identifier: JDdDCgryIUmvTsxVYrPRu9j13ua3tJtn59fz8xTwKU0= Subject key identifier: D1:5A:F2:26:0A:28:52:05:24:52:EC:54:9C:15:69:19:42:B1:EB:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 345E9AFF46BE236109A020F1234670254FF9471B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c707dd-6163-4dce-bd57-52cde399da8e.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.90.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:5e:9a:ff:46:be:23:61:09:a0:20:f1:23:46:70:25:4f:f9:47:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=e9b5fea39298e282be84502c80f71e039365433f151c711f6636507f8d1d4516, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d3:68:bb:01:11:b4:b0:63:c8:d5:e7:f9:98: f6:81:15:72:3d:1c:ab:11:af:19:07:69:06:5f:ed: 88:88:03:b4:35:08:75:25:94:95:52:92:4c:57:cd: 2f:f7:1f:4d:34:4f:4f:7f:2d:fd:90:b9:87:5f:cc: 36:2a:3c:e5:74:be:ae:d1:59:7b:1e:9e:3b:5e:fd: 27:ba:08:68:86:37:15:18:8f:85:a0:16:a9:41:aa: 28:3a:94:50:ed:da:97:a2:ee:38:fa:5c:60:4e:70: 47:66:19:28:dd:7f:45:85:3a:e5:51:d8:4f:c6:ab: 8b:ce:e8:f7:0d:8d:92:26:6d:d7:16:1b:75:bc:ca: 4b:56:fe:6c:c2:ee:a6:c8:b2:7f:55:81:ca:99:52: 5b:dd:0e:58:39:72:4f:1a:d8:16:20:8f:a8:52:8e: dd:1e:10:e0:d7:6f:0a:4a:5d:d8:27:a2:31:05:33: cc:73:81:36:cb:a6:cf:32:88:45:ab:23:ab:2a:06: 9b:71:f8:52:af:cb:e1:e9:48:53:56:72:cb:de:55: 2d:38:68:46:25:b9:17:4d:fc:c1:19:6f:39:36:9a: 31:4f:10:73:72:1c:4e:5c:f2:f6:62:ba:3f:a3:87: ce:f3:c7:24:30:03:c3:65:80:a1:9f:4c:52:65:c1: c2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:5A:F2:26:0A:28:52:05:24:52:EC:54:9C:15:69:19:42:B1:EB:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c707dd-6163-4dce-bd57-52cde399da8e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.90.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2a:14:dd:b0:fd:7c:84:3a:b1:c1:1f:4e:b0:ec:af:fe:67:b8: 86:d1:17:b2:f5:54:89:15:f0:52:c0:bc:43:53:25:31:c8:17: 4f:10:16:2d:41:64:a1:b2:20:1b:92:71:92:a3:01:5b:f8:fd: da:c4:ba:2b:10:a5:e5:3e:34:f1:a4:cc:f4:07:26:25:84:64: 8d:92:05:e4:54:7e:f5:17:74:ba:02:3d:99:a4:3f:11:9e:b2: 6d:45:de:fa:20:78:87:08:98:d3:90:20:72:5b:5f:10:ca:1c: a0:47:80:06:58:4d:7c:59:d9:95:7a:99:60:10:4e:94:fc:97: 7d:4a:fa:86:3d:44:b1:3e:65:19:6f:cb:26:cb:67:86:3d:c4: e8:35:b8:92:3b:4a:9b:a7:18:72:72:e8:7f:2b:d0:79:41:fa: 34:e2:9d:ab:80:5a:10:47:3f:c1:98:fe:f9:10:c1:79:dd:05: 49:39:32:04:6d:fd:ae:0a:f7:59:19:94:48:6c:3c:d8:c4:71: 2d:34:b0:7b:c0:7c:a7:ed:95:82:63:5f:8a:04:e8:58:12:7b: 3f:c0:72:e2:ed:53:a0:24:36:c3:90:d5:c5:ff:a7:7b:ca:42: d3:e5:f3:57:b6:f2:99:4c:68:9a:4d:4e:58:83:df:21:3e:c9: 16:ea:2b:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNF6a/0a+I2EJoCDxI0ZwJU/5RxswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWI1ZmVhMzkyOThlMjgyYmU4NDUwMmM4MGY3MWUwMzkz NjU0MzNmMTUxYzcxMWY2NjM2NTA3ZjhkMWQ0NTE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDe02i7ARG0sGPI1ef5mPaBFXI9HKsRrxkHaQZf7YiIA7Q1 CHUllJVSkkxXzS/3H000T09/Lf2QuYdfzDYqPOV0vq7RWXsenjte/Se6CGiGNxUY j4WgFqlBqig6lFDt2pei7jj6XGBOcEdmGSjdf0WFOuVR2E/Gq4vO6PcNjZImbdcW G3W8yktW/mzC7qbIsn9VgcqZUlvdDlg5ck8a2BYgj6hSjt0eEODXbwpKXdgnojEF M8xzgTbLps8yiEWrI6sqBptx+FKvy+HpSFNWcsveVS04aEYluRdN/MEZbzk2mjFP EHNyHE5c8vZiuj+jh87zxyQwA8NlgKGfTFJlwcITAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0VryJgooUgUkUuxUnBVpGUKx6wkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3YzcwN2RkLTYxNjMtNGRjZS1iZDU3LTUyY2RlMzk5ZGE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQWjANBgkqhkiG9w0BAQsFAAOCAQEAKhTdsP18hDqxwR9OsOyv/me4htEX svVUiRXwUsC8Q1MlMcgXTxAWLUFkobIgG5JxkqMBW/j92sS6KxCl5T408aTM9Acm JYRkjZIF5FR+9Rd0ugI9maQ/EZ6ybUXe+iB4hwiY05AgcltfEMocoEeABlhNfFnZ lXqZYBBOlPyXfUr6hj1EsT5lGW/LJstnhj3E6DW4kjtKm6cYcnLofyvQeUH6NOKd q4BaEEc/wZj++RDBed0FSTkyBG39rgr3WRmUSGw82MRxLTSwe8B8p+2VgmNfigTo WBJ7P8By4u1ToCQ2w5DVxf+ne8pC0+XzV7bymUxomk1OWIPfIT7JFuoraQ== -----END CERTIFICATE-----Generated at Sat Apr 20 05:34:32 2024 by rpki-client on console-ams.rpki-client.org