$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/418913b6-8fdd-4eed-b48f-c7d30c9877a1.roa File: 418913b6-8fdd-4eed-b48f-c7d30c9877a1.roa (raw, json) Hash identifier: CrskQssVcHdBUihkSZ6dnLtHYF8zwd40sWiV93fu+20= Subject key identifier: 05:C8:B8:16:8D:AB:35:B9:8D:E9:46:FF:3F:23:81:31:3B:60:66:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 435D1F49CD698E02B4D5F8835BEF1015C9CE4404 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/418913b6-8fdd-4eed-b48f-c7d30c9877a1.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.119.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:5d:1f:49:cd:69:8e:02:b4:d5:f8:83:5b:ef:10:15:c9:ce:44:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=1edf31296c1fc2e4bb3ed58d808e2ecb7a4ad86ffe85af78e6f163900f8e9dfc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:49:bb:3b:52:dc:0f:e0:a4:0e:ce:f4:82:b1: 33:df:7d:2e:82:49:a7:65:b9:be:c2:81:0f:0f:b2: 5c:93:53:c8:b6:a3:7a:35:d0:8f:15:f3:c3:e8:66: 9a:1d:57:fd:84:fd:78:6d:b9:eb:da:33:ad:b5:dc: da:4c:cf:4a:dd:28:6d:f3:77:8e:01:2d:a1:3a:ca: 8e:c2:b3:49:ff:7f:f3:eb:0e:98:81:5c:cf:c4:85: 41:c4:ad:8d:8d:bc:7e:3f:b0:5e:c9:60:52:fd:99: 3e:04:8a:fb:d6:a9:d9:fd:3c:76:95:da:2d:57:12: bd:d9:65:02:80:07:f2:f1:4d:e0:95:c5:ab:96:c5: 2a:24:e0:44:3c:a4:06:96:1d:b4:4b:51:60:2d:7e: 12:41:f5:dc:99:12:23:7f:e3:84:4c:de:94:86:bb: 25:2c:f7:ce:47:8e:fd:b7:a4:d1:2e:06:d4:fc:2f: 96:94:a8:49:ec:50:89:16:af:63:27:35:67:ea:fa: 85:1b:07:25:7e:6d:5b:72:dd:4a:d9:30:95:56:8e: 5a:6a:c8:5e:d5:b1:70:f7:c2:28:fd:c4:ae:e8:47: b2:f6:f9:54:36:72:fa:b8:05:fe:b9:90:3c:f7:eb: b4:03:ae:26:d6:2b:c2:b9:90:8c:62:08:a9:f9:d2: 01:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C8:B8:16:8D:AB:35:B9:8D:E9:46:FF:3F:23:81:31:3B:60:66:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/418913b6-8fdd-4eed-b48f-c7d30c9877a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.119.0.0/16 Signature Algorithm: sha256WithRSAEncryption 77:52:c2:19:28:0a:8d:f4:0a:fd:5f:12:3e:fd:d4:d5:15:c1: 7c:5a:c1:64:46:76:05:99:e3:30:b2:38:4a:d0:8d:87:9e:5b: f6:74:1c:8d:55:1d:a8:14:34:b2:24:b7:c8:65:88:e1:f5:d5: 3d:cd:02:1a:b7:cb:76:3c:71:56:5e:a5:c8:7e:ef:2e:57:32: 8a:4c:5a:19:3b:a9:d9:88:47:41:b4:77:3c:99:97:ac:48:36: d6:8c:ba:6e:71:bd:31:69:56:4d:94:77:7a:80:c4:67:12:53: 70:30:12:14:6d:43:4e:ee:e9:94:5d:77:83:c8:6f:8b:56:a5: e0:43:75:03:ec:30:ed:c3:38:b3:33:f6:37:9e:36:cd:0d:ae: d0:d2:19:3e:9a:90:89:99:1c:6e:89:0c:62:6f:f8:df:43:d1: 05:70:9a:f9:62:1c:2e:2c:07:14:a9:28:6b:db:8e:1c:7d:26: 34:48:3d:8a:8d:3a:4d:61:1d:db:b4:81:62:18:79:b0:d3:4e: 45:42:a0:6a:06:a3:cb:5d:ee:cd:a4:ae:1b:c5:e9:4f:50:98: 7a:b8:d4:fe:50:30:15:c1:46:7b:75:84:5c:61:25:36:49:77: 0b:87:0f:98:c7:d1:04:b1:22:19:ba:75:f2:47:2d:53:8f:89: 68:db:fa:6d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQ10fSc1pjgK01fiDW+8QFcnORAQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWRmMzEyOTZjMWZjMmU0YmIzZWQ1OGQ4MDhlMmVjYjdh NGFkODZmZmU4NWFmNzhlNmYxNjM5MDBmOGU5ZGZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1Sbs7UtwP4KQOzvSCsTPffS6CSadlub7CgQ8PslyTU8i2 o3o10I8V88PoZpodV/2E/XhtuevaM6213NpMz0rdKG3zd44BLaE6yo7Cs0n/f/Pr DpiBXM/EhUHErY2NvH4/sF7JYFL9mT4EivvWqdn9PHaV2i1XEr3ZZQKAB/LxTeCV xauWxSok4EQ8pAaWHbRLUWAtfhJB9dyZEiN/44RM3pSGuyUs985Hjv23pNEuBtT8 L5aUqEnsUIkWr2MnNWfq+oUbByV+bVty3UrZMJVWjlpqyF7VsXD3wij9xK7oR7L2 +VQ2cvq4Bf65kDz367QDribWK8K5kIxiCKn50gFfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBci4Fo2rNbmN6Ub/PyOBMTtgZoswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxODkxM2I2LThmZGQtNGVlZC1iNDhmLWM3ZDMwYzk4NzdhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQdzANBgkqhkiG9w0BAQsFAAOCAQEAd1LCGSgKjfQK/V8SPv3U1RXBfFrB ZEZ2BZnjMLI4StCNh55b9nQcjVUdqBQ0siS3yGWI4fXVPc0CGrfLdjxxVl6lyH7v LlcyikxaGTup2YhHQbR3PJmXrEg21oy6bnG9MWlWTZR3eoDEZxJTcDASFG1DTu7p lF13g8hvi1al4EN1A+ww7cM4szP2N542zQ2u0NIZPpqQiZkcbokMYm/430PRBXCa +WIcLiwHFKkoa9uOHH0mNEg9io06TWEd27SBYhh5sNNORUKgagajy13uzaSuG8Xp T1CYerjU/lAwFcFGe3WEXGElNkl3C4cPmMfRBLEiGbp18kctU4+JaNv6bQ== -----END CERTIFICATE-----Generated at Thu May 9 01:26:11 2024 by rpki-client on console-ams.rpki-client.org