$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/336c7abe-8413-4e9d-88b2-9a0b9840219c.roa File: 336c7abe-8413-4e9d-88b2-9a0b9840219c.roa (raw, json) Hash identifier: 2tAfKfnyYB3mSceQMnsL9/tMUVNGo7pQIkI/3/6XGbk= Subject key identifier: CA:14:F2:27:7E:BD:F3:2C:BB:55:60:D9:0F:F8:7A:D2:F2:70:4E:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E0F23780FE47F878639CBDDF05BD61BE6C72455 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/336c7abe-8413-4e9d-88b2-9a0b9840219c.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.20.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:0f:23:78:0f:e4:7f:87:86:39:cb:dd:f0:5b:d6:1b:e6:c7:24:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=2463e8261f55351eb6ffea228c8818a029956df7da786d9cdfa5d5bca7214bdf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:90:ea:40:4c:8c:42:ff:39:3b:dc:be:39:21: b7:11:84:59:cc:6c:25:71:b6:40:2d:67:49:ee:81: c8:78:a8:7c:94:92:9e:24:b1:f6:cc:a8:73:63:e3: 5f:90:02:0b:a1:3b:84:3a:e9:ee:85:f6:9f:7e:d0: c5:4b:2b:ec:5b:4d:c2:6c:1a:50:91:0b:91:9a:b1: d1:e3:4c:2d:3d:7e:c8:f4:6a:31:1b:c5:f3:a6:78: 19:7e:c0:2e:97:b9:4b:2d:40:2a:fb:52:bd:2f:5b: b2:42:03:28:ba:29:34:54:60:73:b8:be:0a:1e:bf: 2a:64:8e:c2:06:3f:34:fb:d4:b6:c6:ac:f6:21:32: 4e:6a:8e:97:b6:8d:87:c8:3a:43:46:83:76:27:4f: c6:7a:c2:f3:32:06:0b:93:54:e0:cc:44:b1:a4:ae: 82:fc:98:73:f1:67:00:7f:be:92:96:b0:a9:92:9c: 54:09:f9:7a:6f:4b:d8:1f:ed:1c:7c:d8:37:ac:75: 2e:48:d3:c4:58:47:91:1a:b5:b3:3d:a1:f0:83:7a: 27:7e:9f:49:4c:c1:3a:38:c2:08:3a:f3:22:49:72: 47:57:ae:c9:c1:a0:19:96:09:3b:be:17:70:ab:2a: a0:18:ae:8d:31:99:14:4f:83:79:d9:b5:23:cf:17: 98:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:14:F2:27:7E:BD:F3:2C:BB:55:60:D9:0F:F8:7A:D2:F2:70:4E:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/336c7abe-8413-4e9d-88b2-9a0b9840219c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.244.0/22 Signature Algorithm: sha256WithRSAEncryption d1:61:82:ee:29:c6:b0:36:63:ce:eb:ea:64:5c:55:5c:4d:8e: f9:22:af:e1:e0:75:df:0d:63:5a:b9:9f:63:47:26:a3:cb:3d: 0b:83:3c:c1:f7:14:c5:dd:b1:e8:9c:41:2a:1d:14:94:b9:6b: 2e:84:4e:a2:55:99:57:d4:58:cb:f1:05:7f:9b:1b:1a:e1:ca: 9b:c4:9f:db:8c:d0:83:f3:29:54:45:85:5d:36:cf:94:93:97: fd:77:d9:df:a0:09:e3:72:49:8e:64:80:03:97:1c:92:db:c5: 5d:cb:73:24:99:07:8f:cf:00:3c:89:e4:a7:f9:5c:07:09:ee: a0:1d:db:df:77:0d:82:d8:09:9f:52:c8:8b:f3:2a:af:01:b6: 84:42:62:e3:7b:4f:c7:0d:17:8d:1d:4f:58:cb:ba:2e:26:dd: 24:57:65:83:c3:d9:ec:80:79:fd:ec:ae:0a:9c:b6:38:1c:9a: 57:fe:1a:2b:a4:67:d2:b9:a0:fd:9f:85:b5:67:12:be:2e:e2: c6:63:78:68:9a:eb:07:b2:4d:80:fa:4c:fc:42:6c:8e:c2:48: 8e:aa:b7:ef:52:a1:4a:55:8c:a2:d5:50:04:8d:e1:fb:66:69: 20:a3:50:8a:6e:cd:57:69:2e:78:e1:c7:13:82:e1:fa:65:93: 34:89:67:3e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULg8jeA/kf4eGOcvd8FvWG+bHJFUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDYzZTgyNjFmNTUzNTFlYjZmZmVhMjI4Yzg4MThhMDI5 OTU2ZGY3ZGE3ODZkOWNkZmE1ZDViY2E3MjE0YmRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1kOpATIxC/zk73L45IbcRhFnMbCVxtkAtZ0nugch4qHyU kp4ksfbMqHNj41+QAguhO4Q66e6F9p9+0MVLK+xbTcJsGlCRC5GasdHjTC09fsj0 ajEbxfOmeBl+wC6XuUstQCr7Ur0vW7JCAyi6KTRUYHO4vgoevypkjsIGPzT71LbG rPYhMk5qjpe2jYfIOkNGg3YnT8Z6wvMyBguTVODMRLGkroL8mHPxZwB/vpKWsKmS nFQJ+XpvS9gf7Rx82DesdS5I08RYR5EatbM9ofCDeid+n0lMwTo4wgg68yJJckdX rsnBoBmWCTu+F3CrKqAYro0xmRRPg3nZtSPPF5iPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyhTyJ3698yy7VWDZD/h60vJwTnYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzNmM3YWJlLTg0MTMtNGU5ZC04OGIyLTlhMGI5ODQwMjE5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIQFPQwDQYJKoZIhvcNAQELBQADggEBANFhgu4pxrA2Y87r6mRcVVxNjvki r+Hgdd8NY1q5n2NHJqPLPQuDPMH3FMXdseicQSodFJS5ay6ETqJVmVfUWMvxBX+b GxrhypvEn9uM0IPzKVRFhV02z5STl/132d+gCeNySY5kgAOXHJLbxV3LcySZB4/P ADyJ5Kf5XAcJ7qAd2993DYLYCZ9SyIvzKq8BtoRCYuN7T8cNF40dT1jLui4m3SRX ZYPD2eyAef3srgqctjgcmlf+GiukZ9K5oP2fhbVnEr4u4sZjeGia6weyTYD6TPxC bI7CSI6qt+9SoUpVjKLVUASN4ftmaSCjUIpuzVdpLnjhxxOC4fplkzSJZz4= -----END CERTIFICATE-----Generated at Fri May 3 01:27:52 2024 by rpki-client on console-fra.rpki-client.org