$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa File: 4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa (raw, json) Hash identifier: ICTrl2kdvdatWpNq0ZgOKhKBbkhAcYJ6wtBBWWFToVA= Subject key identifier: E9:E1:09:FC:23:62:4E:3A:A4:68:B0:A5:31:CD:2D:57:6B:A7:3E:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 328D3D3FD88EECD875151D3872C7D32B387B528C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:8d:3d:3f:d8:8e:ec:d8:75:15:1d:38:72:c7:d3:2b:38:7b:52:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=05d690363e5b75299af124368965de2563a3b17dc87cec4ec9e110c251d2d43e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d3:4d:a4:34:34:ca:20:d0:85:d2:df:00:58: 13:f1:e4:17:34:29:8e:f2:cd:e7:94:b6:4f:dc:82: 14:a0:94:05:4a:8a:d2:61:ef:73:64:5b:ec:b5:37: bd:10:d5:6a:f2:35:b3:ce:d0:4e:ad:79:69:89:37: 9d:7c:3f:87:84:42:0a:75:8b:56:75:fb:16:e6:b8: 3d:2f:62:50:9d:f9:bd:02:c2:06:43:25:aa:dd:2f: a7:82:40:dd:86:d7:b2:5e:e5:f8:54:5a:4d:5d:9d: ca:e4:3d:8c:50:e9:98:49:db:c2:c3:b9:fb:6a:40: 6f:c5:b0:3d:db:04:f2:20:5d:5e:9c:59:8d:06:ff: 61:c2:92:f0:69:b1:67:60:4f:32:48:2a:fb:4e:87: e9:f3:7c:48:f7:59:52:e4:81:75:22:bc:5c:19:ac: 53:c6:cb:6d:43:32:2d:0c:a3:08:4b:d9:b5:3a:a9: a9:3c:e0:d9:80:34:24:2d:cd:2b:8b:9e:80:b3:3f: 76:c3:37:fc:0b:b5:32:fc:ae:5b:ef:b2:04:59:24: c3:80:5a:79:ba:a2:a4:3c:f4:65:8c:eb:bb:38:16: 4f:2d:15:20:a9:e5:0e:f8:83:be:56:cb:b4:1a:2f: 72:e0:de:3b:b0:48:05:fc:4e:0c:f5:b0:79:56:4c: a4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E1:09:FC:23:62:4E:3A:A4:68:B0:A5:31:CD:2D:57:6B:A7:3E:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption d3:08:f6:68:30:29:40:49:84:52:13:1b:49:3c:a4:5a:0d:da: 0e:1b:88:74:dc:99:22:43:88:63:8e:e3:ca:4e:4b:31:d1:fa: 70:d4:ce:d1:3e:3b:cd:82:0c:5c:3e:2f:5d:c9:3f:b5:92:63: 24:88:0f:7b:19:17:69:18:6e:d3:94:5c:c8:81:11:01:a4:c7: 95:b5:d9:57:01:02:c8:53:cb:58:a4:bb:56:5d:10:69:15:1a: b6:7d:c3:6a:fc:3a:a2:b5:62:b4:7f:e2:93:86:71:2d:ab:b7: 52:7c:07:95:c0:59:88:20:80:fe:2a:9a:57:1c:c7:d2:de:00: 6d:95:32:9b:fe:78:c9:dd:7b:da:62:5a:93:a3:bb:d9:eb:20: 94:7b:c7:3a:59:ff:9f:8d:54:cb:0d:e5:8a:1b:18:d1:59:42: 94:98:a2:75:f6:79:7c:44:00:85:8f:ba:39:c5:ac:a6:eb:56: 7f:14:68:81:55:3b:df:65:10:9f:5b:e9:3a:2e:99:58:3a:97: 36:ef:44:10:36:e4:7d:0c:65:ef:aa:54:3e:e7:1b:c2:f6:11: 47:d4:0a:b5:34:a2:0c:ad:f1:09:70:d2:6e:4f:e2:75:9a:e9: 26:b5:53:62:aa:9c:d4:02:13:43:6d:38:04:00:45:f9:12:8b: 19:1a:d6:a9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMo09P9iO7Nh1FR04csfTKzh7UowwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWQ2OTAzNjNlNWI3NTI5OWFmMTI0MzY4OTY1ZGUyNTYz YTNiMTdkYzg3Y2VjNGVjOWUxMTBjMjUxZDJkNDNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8002kNDTKINCF0t8AWBPx5Bc0KY7yzeeUtk/cghSglAVK itJh73NkW+y1N70Q1WryNbPO0E6teWmJN518P4eEQgp1i1Z1+xbmuD0vYlCd+b0C wgZDJardL6eCQN2G17Je5fhUWk1dncrkPYxQ6ZhJ28LDuftqQG/FsD3bBPIgXV6c WY0G/2HCkvBpsWdgTzJIKvtOh+nzfEj3WVLkgXUivFwZrFPGy21DMi0MowhL2bU6 qak84NmANCQtzSuLnoCzP3bDN/wLtTL8rlvvsgRZJMOAWnm6oqQ89GWM67s4Fk8t FSCp5Q74g75Wy7QaL3Lg3juwSAX8Tgz1sHlWTKQ3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6eEJ/CNiTjqkaLClMc0tV2unPvIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhMTc1OGZjLWQ1MzgtNGMyMC04OTg4LWY3ZjFkY2YyZTYzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQpjANBgkqhkiG9w0BAQsFAAOCAQEA0wj2aDApQEmEUhMbSTykWg3aDhuI dNyZIkOIY47jyk5LMdH6cNTO0T47zYIMXD4vXck/tZJjJIgPexkXaRhu05RcyIER AaTHlbXZVwECyFPLWKS7Vl0QaRUatn3Davw6orVitH/ik4ZxLau3UnwHlcBZiCCA /iqaVxzH0t4AbZUym/54yd172mJak6O72esglHvHOln/n41Uyw3lihsY0VlClJii dfZ5fEQAhY+6OcWsputWfxRogVU732UQn1vpOi6ZWDqXNu9EEDbkfQxl76pUPucb wvYRR9QKtTSiDK3xCXDSbk/idZrpJrVTYqqc1AITQ204BABF+RKLGRrWqQ== -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:12 2024 by rpki-client on console-fra.rpki-client.org