$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37b51b2d-ea43-4ed7-aaee-15df6401c168.roa File: 37b51b2d-ea43-4ed7-aaee-15df6401c168.roa (raw, json) Hash identifier: GMwv+z8nAwULIGcLUDfs4yRii3cX9rSgUtoAoEsR4dw= Subject key identifier: 25:D8:41:8F:EB:EE:46:E0:F7:EB:9B:F2:F2:FB:FD:50:22:25:E7:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F60BF343E9D028FD04418C55BC5AD86B1F4E51C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37b51b2d-ea43-4ed7-aaee-15df6401c168.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.123.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:60:bf:34:3e:9d:02:8f:d0:44:18:c5:5b:c5:ad:86:b1:f4:e5:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=3d342e3e3042b7993c1d0a6217dab6a7ad99419c105ccd711e7902d61a9b9a12, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6b:98:fa:20:f1:0e:cc:b8:f4:51:e0:de:27: 54:30:58:0d:36:5e:01:a1:61:c1:87:19:0c:13:3a: 1f:8d:b7:18:75:9b:4a:9c:01:17:06:38:b2:5a:25: c8:1c:52:91:9c:3a:5b:7a:0b:ed:ab:e6:7d:67:e8: 0f:b4:98:8a:9c:71:48:1f:a1:57:3a:d9:cb:d6:b2: fb:69:b0:22:91:05:11:83:24:2e:dc:71:ca:3f:62: 3e:8e:96:24:ca:d0:bf:57:b9:43:eb:1a:92:d4:53: 89:37:31:9f:b2:c9:58:07:be:8b:e3:84:73:4b:3f: de:27:1f:a4:79:d6:13:53:aa:c2:40:bf:70:f3:4e: 05:84:ff:d0:2d:4a:35:84:e2:75:72:75:a0:26:3a: 47:55:a8:4a:9f:5e:e2:01:91:98:fb:05:cd:b8:4e: d6:cc:31:b9:5b:2a:37:7c:bd:07:7d:32:f8:ca:03: 64:8e:20:c5:11:84:69:48:8b:76:e3:1f:fb:9f:6c: e5:15:53:4f:62:fb:d1:d0:12:67:2e:fc:7e:b5:06: d3:10:d6:4d:e7:f5:a0:a6:12:0f:c0:4a:65:1a:b2: f6:08:04:a5:2b:c2:a4:56:9b:01:9f:f0:9c:ad:8c: 14:45:ce:db:e0:d5:96:cb:d1:2c:e1:16:a1:7b:fe: 29:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D8:41:8F:EB:EE:46:E0:F7:EB:9B:F2:F2:FB:FD:50:22:25:E7:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37b51b2d-ea43-4ed7-aaee-15df6401c168.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.123.0.0/16 Signature Algorithm: sha256WithRSAEncryption be:91:b1:f8:35:33:9c:d9:0c:15:6f:57:f6:5a:1b:55:d0:f1: 3e:eb:b1:63:25:82:b2:c8:69:5a:a5:9e:b7:a6:d3:5d:84:70: d2:d8:73:78:3f:89:dc:15:fa:63:d0:1a:5d:f0:03:df:ae:7d: bc:65:39:9f:bf:87:6f:dc:0c:93:47:b8:01:9f:f2:b0:d0:65: 1e:b9:ba:c4:d4:90:df:3f:fe:9b:be:67:c9:66:ea:f4:c5:b2: 98:24:a7:0e:05:b6:30:48:3d:e3:2b:7e:a1:58:60:ef:09:56: 64:fa:22:a0:2d:40:f6:1d:71:21:43:68:37:a2:d5:23:2e:7a: ca:b4:e7:7f:89:96:74:43:88:d7:68:09:e8:bd:d6:86:59:b0: fa:80:44:c6:b3:52:d4:c0:90:44:3e:64:b9:c5:de:49:09:55: ba:8d:41:09:9e:8b:ce:bc:fc:e8:4e:05:42:60:a9:b7:10:0d: c7:4f:89:0a:c4:b6:fd:7b:a9:bc:62:d5:f9:fe:5d:47:ad:91: 33:2b:61:91:04:17:9d:b1:e4:af:ed:da:89:4d:09:fe:00:ba: db:b4:e3:48:6a:ea:1e:d8:d6:a6:58:46:44:4c:7d:f7:25:18: ae:0c:8e:df:73:f2:b8:2f:0b:af:88:d8:0c:4d:4f:df:dd:77: fb:46:c0:1d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT2C/ND6dAo/QRBjFW8WthrH05RwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDM0MmUzZTMwNDJiNzk5M2MxZDBhNjIxN2RhYjZhN2Fk OTk0MTljMTA1Y2NkNzExZTc5MDJkNjFhOWI5YTEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQa5j6IPEOzLj0UeDeJ1QwWA02XgGhYcGHGQwTOh+Ntxh1 m0qcARcGOLJaJcgcUpGcOlt6C+2r5n1n6A+0mIqccUgfoVc62cvWsvtpsCKRBRGD JC7ccco/Yj6OliTK0L9XuUPrGpLUU4k3MZ+yyVgHvovjhHNLP94nH6R51hNTqsJA v3DzTgWE/9AtSjWE4nVydaAmOkdVqEqfXuIBkZj7Bc24TtbMMblbKjd8vQd9MvjK A2SOIMURhGlIi3bjH/ufbOUVU09i+9HQEmcu/H61BtMQ1k3n9aCmEg/ASmUasvYI BKUrwqRWmwGf8JytjBRFztvg1ZbL0SzhFqF7/ik9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJdhBj+vuRuD365vy8vv9UCIl56cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3YjUxYjJkLWVhNDMtNGVkNy1hYWVlLTE1ZGY2NDAxYzE2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQezANBgkqhkiG9w0BAQsFAAOCAQEAvpGx+DUznNkMFW9X9lobVdDxPuux YyWCsshpWqWet6bTXYRw0thzeD+J3BX6Y9AaXfAD3659vGU5n7+Hb9wMk0e4AZ/y sNBlHrm6xNSQ3z/+m75nyWbq9MWymCSnDgW2MEg94yt+oVhg7wlWZPoioC1A9h1x IUNoN6LVIy56yrTnf4mWdEOI12gJ6L3Whlmw+oBExrNS1MCQRD5kucXeSQlVuo1B CZ6Lzrz86E4FQmCptxANx0+JCsS2/XupvGLV+f5dR62RMythkQQXnbHkr+3aiU0J /gC627TjSGrqHtjWplhGREx99yUYrgyO33PyuC8Lr4jYDE1P3913+0bAHQ== -----END CERTIFICATE-----Generated at Thu May 2 08:02:28 2024 by rpki-client on console-ams.rpki-client.org