$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34413670-6903-4feb-9963-f609b3808dcf.roa File: 34413670-6903-4feb-9963-f609b3808dcf.roa (raw, json) Hash identifier: yS5AezJfQKnEyl1uW7GML4pBqIdP047RBNaWcef8Mig= Subject key identifier: 9A:53:13:D9:BC:D0:FD:F3:88:84:FB:3D:7B:64:73:78:F0:6F:15:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 18C24D3F145CBA726E06C2217CCDE5C48A82BAE2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34413670-6903-4feb-9963-f609b3808dcf.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.20.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:c2:4d:3f:14:5c:ba:72:6e:06:c2:21:7c:cd:e5:c4:8a:82:ba:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=dfeb24f699e7ebacef49706451a0c82415ed4d97d6092b47a01b11b983b7eba9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:eb:2a:06:45:0d:de:54:05:d7:1c:e5:76:d2: f1:47:7c:d3:78:62:33:7e:31:2e:69:0f:9c:17:75: 8b:39:74:fd:e4:68:e3:31:5d:03:95:20:52:bb:7b: bd:10:04:c3:3e:3b:85:d5:94:e0:4b:d3:dd:9b:06: 3b:3d:a3:7b:bc:4c:e7:ea:86:a6:b6:70:41:d1:92: 58:d4:42:7c:51:ce:c0:05:7b:ac:f8:b9:be:35:83: cc:33:d0:29:99:8d:c0:a4:05:a0:9b:72:32:33:fe: e4:1d:31:f7:28:8e:de:c8:67:48:e9:cd:ad:4f:8c: cc:8f:7a:ba:a0:47:91:20:74:85:36:8e:15:38:82: 07:68:d9:7a:aa:06:fe:24:5a:5b:87:cb:e1:56:da: d1:71:8f:51:05:b5:1e:8a:bb:f6:25:01:d7:62:2c: d2:c0:89:6d:74:23:32:9c:81:db:39:f4:3c:4e:eb: 0a:71:57:f3:a0:33:25:b3:c3:05:ef:f2:7d:12:ce: 73:5e:dc:c3:f4:99:8d:43:ed:a7:c8:4c:7f:eb:87: 58:47:6d:9a:cb:2f:e8:da:66:fc:80:fb:fa:e5:8a: 13:50:59:59:41:78:8c:7e:a3:18:ff:44:65:37:2d: e2:e2:5d:86:9f:c8:93:09:32:2b:93:8e:a1:9e:5a: b4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:53:13:D9:BC:D0:FD:F3:88:84:FB:3D:7B:64:73:78:F0:6F:15:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34413670-6903-4feb-9963-f609b3808dcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6f:91:fa:df:c8:00:bb:63:76:70:d2:e4:b5:f5:bc:0c:f1:d6: d4:29:d0:06:6e:96:a6:b3:83:1b:c7:76:95:15:65:b2:72:eb: 9a:f6:92:3a:33:37:06:14:a8:01:8c:46:c6:7f:c3:e2:c3:fb: 10:0a:1c:30:b1:8c:ff:70:84:79:f1:c4:c5:e9:9d:21:48:b2: b5:f8:4b:f3:f1:90:9e:60:cd:86:b3:f4:2c:07:67:ab:cc:75: 0d:2e:34:3a:95:fb:d8:1d:34:2f:4e:9f:de:21:74:ee:bd:a0: a6:0b:3d:68:04:ca:0d:6a:8e:bf:7a:b1:8d:8a:b6:71:c8:aa: 92:94:b6:18:8c:dc:1f:b1:d1:89:d3:d9:59:71:8e:98:32:2d: 44:39:ed:6e:11:08:ad:00:52:aa:63:1b:71:2e:41:04:6e:a0: 27:d7:d4:1c:64:43:db:a7:29:fd:4c:87:d1:9d:3d:24:17:8e: 58:e6:db:29:97:e8:b9:23:21:c6:10:bb:74:4d:4d:c0:b2:68: 32:fc:56:c3:67:df:eb:0b:c3:a1:c3:a4:ab:27:bd:88:25:bb: da:f8:2d:a0:29:c1:a8:77:6f:d0:8a:ea:d8:72:8f:19:33:80: c1:62:b3:0f:e1:78:c1:25:ac:b7:93:63:e2:17:4d:4e:06:43: 3b:5a:b1:b0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGMJNPxRcunJuBsIhfM3lxIqCuuIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZmViMjRmNjk5ZTdlYmFjZWY0OTcwNjQ1MWEwYzgyNDE1 ZWQ0ZDk3ZDYwOTJiNDdhMDFiMTFiOTgzYjdlYmE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCX6yoGRQ3eVAXXHOV20vFHfNN4YjN+MS5pD5wXdYs5dP3k aOMxXQOVIFK7e70QBMM+O4XVlOBL092bBjs9o3u8TOfqhqa2cEHRkljUQnxRzsAF e6z4ub41g8wz0CmZjcCkBaCbcjIz/uQdMfcojt7IZ0jpza1PjMyPerqgR5EgdIU2 jhU4ggdo2XqqBv4kWluHy+FW2tFxj1EFtR6Ku/YlAddiLNLAiW10IzKcgds59DxO 6wpxV/OgMyWzwwXv8n0SznNe3MP0mY1D7afITH/rh1hHbZrLL+jaZvyA+/rlihNQ WVlBeIx+oxj/RGU3LeLiXYafyJMJMiuTjqGeWrSbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmlMT2bzQ/fOIhPs9e2RzePBvFWQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM0NDEzNjcwLTY5MDMtNGZlYi05OTYzLWY2MDliMzgwOGRjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFDANBgkqhkiG9w0BAQsFAAOCAQEAb5H638gAu2N2cNLktfW8DPHW1CnQ Bm6WprODG8d2lRVlsnLrmvaSOjM3BhSoAYxGxn/D4sP7EAocMLGM/3CEefHExemd IUiytfhL8/GQnmDNhrP0LAdnq8x1DS40OpX72B00L06f3iF07r2gpgs9aATKDWqO v3qxjYq2cciqkpS2GIzcH7HRidPZWXGOmDItRDntbhEIrQBSqmMbcS5BBG6gJ9fU HGRD26cp/UyH0Z09JBeOWObbKZfouSMhxhC7dE1NwLJoMvxWw2ff6wvDocOkqye9 iCW72vgtoCnBqHdv0Irq2HKPGTOAwWKzD+F4wSWst5Nj4hdNTgZDO1qxsA== -----END CERTIFICATE-----Generated at Thu May 2 06:12:33 2024 by rpki-client on console-fra.rpki-client.org