$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a029632-5153-421f-8163-5d2fe6018358.roa File: 4a029632-5153-421f-8163-5d2fe6018358.roa (raw, json) Hash identifier: PCxvgKxxHBmnhA5AF5loB0vF+FBaMZ7e0SpqPK1i/zw= Subject key identifier: 60:7D:FA:55:B0:01:F2:CC:B0:BD:F4:38:5A:D7:29:67:D6:58:12:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41821C290293F666C595BE12153A3D82A5FAC7F9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a029632-5153-421f-8163-5d2fe6018358.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.18.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:82:1c:29:02:93:f6:66:c5:95:be:12:15:3a:3d:82:a5:fa:c7:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=9a0383f2b6969366d8acee2dee24de03e7d294c7ec5b5de8d012cc690e5ccf01, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9c:3f:51:cb:f2:26:5e:7f:13:2e:4e:7c:a8: 40:88:1a:f4:57:52:6f:77:0e:29:c2:cd:d6:2e:c6: 76:0d:0f:d7:e3:7d:bb:7c:3a:dd:d5:f0:b3:62:e5: b2:96:ef:d4:c4:a1:2a:2b:08:4e:e2:7a:67:c0:c0: 9d:3f:f5:ed:39:3b:67:16:ae:c2:87:b5:aa:d6:da: e2:12:e9:29:7e:39:ea:6e:34:d7:e6:26:1f:ca:c0: 5b:06:c0:5d:8b:95:f2:51:d7:bf:df:e8:69:26:b1: b4:87:13:63:a0:23:3f:11:42:57:4c:e6:00:b0:e8: 6a:8f:a7:8d:db:ee:65:53:4b:e0:ad:ad:4c:17:85: a0:79:e7:bc:4c:8e:28:84:6c:fa:f7:6b:fa:97:79: 27:27:9d:09:df:a5:0c:80:72:b8:41:85:85:d2:a2: b4:14:af:59:2a:96:05:38:02:a8:e1:9f:bf:0e:f4: 00:e3:db:fa:df:1b:f3:27:37:67:9e:69:cf:ab:d2: e2:97:99:c4:f2:91:01:f0:08:af:ac:36:eb:37:39: 1c:9e:a5:70:8e:8c:bf:65:c8:5d:8d:8f:1a:27:d3: a1:8a:21:ab:0b:d7:57:cb:98:38:92:63:37:7b:a2: 4a:47:1d:4f:b3:8b:41:fb:53:8a:03:d7:e5:97:a4: 0c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:7D:FA:55:B0:01:F2:CC:B0:BD:F4:38:5A:D7:29:67:D6:58:12:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a029632-5153-421f-8163-5d2fe6018358.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.18.0.0/16 Signature Algorithm: sha256WithRSAEncryption a2:cd:bd:4f:64:07:fe:00:5c:01:d3:e9:18:b2:c1:80:bc:10: 4f:78:72:46:8d:90:6f:55:61:81:07:84:77:a7:0a:b5:a3:8d: 58:96:09:cf:49:75:93:a7:fd:81:2b:f2:33:1c:c0:6b:7e:1e: fb:2a:19:df:98:0a:e3:4f:2b:eb:79:fa:ba:53:1c:78:3c:d0: 3a:71:43:07:b1:1d:6c:fb:41:72:92:95:c5:e1:75:78:35:f7: b7:52:72:9f:46:13:2a:fb:ae:a9:66:6c:87:78:0b:ce:9e:d5: 2b:be:6f:46:ad:b8:2a:2e:1f:a7:2d:98:09:31:38:e6:f8:f4: 08:47:54:53:15:84:44:4b:51:5d:fc:0a:fa:dc:68:bc:86:49: 55:97:74:88:4d:78:c3:fe:47:6f:e0:3b:d0:a3:65:cc:dd:31: a0:3b:83:dd:b9:8e:ea:7a:1f:34:a2:47:5b:9a:be:c6:33:5d: 59:30:eb:76:32:5e:36:8d:6e:eb:6c:9e:0c:ca:57:d3:3c:4f: 7f:c7:22:a1:d4:40:e7:f3:7a:af:c9:09:aa:96:2e:62:0d:09: 0e:7f:4a:b4:d2:ae:d4:b2:46:ba:f3:bf:96:6b:78:c5:07:ce: e7:ef:d9:29:63:95:05:df:ae:49:50:fc:04:cb:b5:98:2d:f1: 6e:e3:87:80 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQYIcKQKT9mbFlb4SFTo9gqX6x/kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTAzODNmMmI2OTY5MzY2ZDhhY2VlMmRlZTI0ZGUwM2U3 ZDI5NGM3ZWM1YjVkZThkMDEyY2M2OTBlNWNjZjAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLnD9Ry/ImXn8TLk58qECIGvRXUm93DinCzdYuxnYND9fj fbt8Ot3V8LNi5bKW79TEoSorCE7iemfAwJ0/9e05O2cWrsKHtarW2uIS6Sl+Oepu NNfmJh/KwFsGwF2LlfJR17/f6GkmsbSHE2OgIz8RQldM5gCw6GqPp43b7mVTS+Ct rUwXhaB557xMjiiEbPr3a/qXeScnnQnfpQyAcrhBhYXSorQUr1kqlgU4Aqjhn78O 9ADj2/rfG/MnN2eeac+r0uKXmcTykQHwCK+sNus3ORyepXCOjL9lyF2Njxon06GK IasL11fLmDiSYzd7okpHHU+zi0H7U4oD1+WXpAybAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYH36VbAB8sywvfQ4WtcpZ9ZYEkwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhMDI5NjMyLTUxNTMtNDIxZi04MTYzLTVkMmZlNjAxODM1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQEjANBgkqhkiG9w0BAQsFAAOCAQEAos29T2QH/gBcAdPpGLLBgLwQT3hy Ro2Qb1VhgQeEd6cKtaONWJYJz0l1k6f9gSvyMxzAa34e+yoZ35gK408r63n6ulMc eDzQOnFDB7EdbPtBcpKVxeF1eDX3t1Jyn0YTKvuuqWZsh3gLzp7VK75vRq24Ki4f py2YCTE45vj0CEdUUxWEREtRXfwK+txovIZJVZd0iE14w/5Hb+A70KNlzN0xoDuD 3bmO6nofNKJHW5q+xjNdWTDrdjJeNo1u62yeDMpX0zxPf8ciodRA5/N6r8kJqpYu Yg0JDn9KtNKu1LJGuvO/lmt4xQfO5+/ZKWOVBd+uSVD8BMu1mC3xbuOHgA== -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:17 2024 by rpki-client on console-fra.rpki-client.org