$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/511398d8-4b16-401f-b4eb-862b98bc0a55.roa File: 511398d8-4b16-401f-b4eb-862b98bc0a55.roa (raw, json) Hash identifier: 8PeoaIiDvwCgla0D5ZUacZ+bBaXhUD7PILE5gEHhW38= Subject key identifier: 14:BF:85:50:06:DA:37:10:F6:E5:C2:80:D8:90:AC:BD:6A:1B:3F:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A66631D6A5E0ABFFEE4BD76EE47AF547108A2AB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/511398d8-4b16-401f-b4eb-862b98bc0a55.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.58.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:66:63:1d:6a:5e:0a:bf:fe:e4:bd:76:ee:47:af:54:71:08:a2:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=f3c2aba11a062ff1e14b1990f1ef37a5a75016ba9c849ffaa53a8ca3906565a2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1c:c0:e6:b6:af:49:52:4b:cd:84:47:c2:18: 63:11:e4:61:44:55:88:dd:2d:76:36:d0:8d:75:a2: 65:ba:4b:0f:e8:86:8f:65:81:ce:a0:19:a6:6b:56: 03:1e:51:ae:85:45:7f:8b:ff:76:83:83:dd:79:c6: 6c:99:af:8f:b6:71:e0:e2:90:20:00:ca:f2:04:ed: bd:bf:e9:8a:4e:00:80:72:2e:fe:2d:d1:5a:8f:ea: 44:90:be:e6:ed:6b:84:1f:83:93:04:61:26:18:34: 4c:ac:2e:0e:0a:5d:00:73:88:e1:02:ff:18:6e:ea: 91:77:ef:30:9e:7b:86:e1:c7:36:e6:6f:2b:d4:d1: a6:1e:71:81:ad:e6:1e:19:be:e3:94:5c:ef:0f:9d: 63:6a:47:39:8b:6a:9d:68:3e:1b:17:a6:df:ea:5e: fa:57:60:78:90:03:26:1c:70:bc:0c:d2:cc:83:4a: f9:7a:3f:cb:48:5c:b7:fa:4d:92:b6:d5:ef:3f:bc: dd:b1:01:5c:ca:3d:7a:6a:ca:42:62:16:eb:da:d6: a7:42:fe:a1:c7:64:ed:ce:5c:13:9f:89:63:9b:0e: de:61:af:68:22:57:06:bf:32:8a:ab:59:5b:37:79: 3f:ec:7f:07:0f:56:0c:e8:9d:db:09:bb:fe:8f:c8: 20:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:BF:85:50:06:DA:37:10:F6:E5:C2:80:D8:90:AC:BD:6A:1B:3F:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/511398d8-4b16-401f-b4eb-862b98bc0a55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.58.0.0/16 Signature Algorithm: sha256WithRSAEncryption 83:cb:06:ed:c1:db:4b:38:ce:4d:b1:a3:0a:cb:ff:c8:4e:a9: 23:e6:22:63:25:b3:28:29:ab:03:91:08:02:c0:7d:a3:ae:0e: 40:ed:48:a6:bc:e3:9d:fd:cc:4a:99:0e:08:29:5d:04:72:8c: c2:86:30:ea:ea:39:7c:35:9d:ac:21:41:a3:d7:a2:87:2c:66: cb:89:f5:cb:fb:5a:f8:ed:51:1c:2d:10:fa:37:c4:af:6a:17: 81:e3:a2:b6:27:ae:25:08:3c:9c:da:fb:fd:86:bf:91:4d:23: 11:08:a8:5b:f8:fe:64:49:8b:90:8b:c3:c2:a4:28:44:20:87: 10:e2:e9:10:12:36:92:b1:5d:e7:3e:a1:1f:a2:21:d3:29:42: 20:5e:89:77:68:30:f8:87:f1:1d:c4:a3:97:4c:a0:8c:b2:11: ea:3a:2c:22:91:c5:11:0d:0f:93:56:d5:44:dd:b8:b0:ca:3b: e5:7f:63:18:0b:11:a0:d2:a7:b3:ff:f0:35:e9:90:f3:5e:7c: 96:9b:f4:59:53:47:6c:28:9e:a0:7f:78:93:45:6e:27:8b:ac: b0:aa:04:84:65:14:bd:90:fc:00:f6:c9:d2:5e:7b:8f:59:0d: ab:40:3e:77:b8:4c:e5:f9:cc:48:41:9b:49:eb:f3:71:e9:05: 46:8e:82:b1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCmZjHWpeCr/+5L127kevVHEIoqswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmM2MyYWJhMTFhMDYyZmYxZTE0YjE5OTBmMWVmMzdhNWE3 NTAxNmJhOWM4NDlmZmFhNTNhOGNhMzkwNjU2NWEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEHMDmtq9JUkvNhEfCGGMR5GFEVYjdLXY20I11omW6Sw/o ho9lgc6gGaZrVgMeUa6FRX+L/3aDg915xmyZr4+2ceDikCAAyvIE7b2/6YpOAIBy Lv4t0VqP6kSQvubta4Qfg5MEYSYYNEysLg4KXQBziOEC/xhu6pF37zCee4bhxzbm byvU0aYecYGt5h4ZvuOUXO8PnWNqRzmLap1oPhsXpt/qXvpXYHiQAyYccLwM0syD Svl6P8tIXLf6TZK21e8/vN2xAVzKPXpqykJiFuva1qdC/qHHZO3OXBOfiWObDt5h r2giVwa/MoqrWVs3eT/sfwcPVgzondsJu/6PyCBZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFL+FUAbaNxD25cKA2JCsvWobP6QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxMTM5OGQ4LTRiMTYtNDAxZi1iNGViLTg2MmI5OGJjMGE1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQOjANBgkqhkiG9w0BAQsFAAOCAQEAg8sG7cHbSzjOTbGjCsv/yE6pI+Yi YyWzKCmrA5EIAsB9o64OQO1Iprzjnf3MSpkOCCldBHKMwoYw6uo5fDWdrCFBo9ei hyxmy4n1y/ta+O1RHC0Q+jfEr2oXgeOitieuJQg8nNr7/Ya/kU0jEQioW/j+ZEmL kIvDwqQoRCCHEOLpEBI2krFd5z6hH6Ih0ylCIF6Jd2gw+IfxHcSjl0ygjLIR6jos IpHFEQ0Pk1bVRN24sMo75X9jGAsRoNKns//wNemQ8158lpv0WVNHbCieoH94k0Vu J4ussKoEhGUUvZD8APbJ0l57j1kNq0A+d7hM5fnMSEGbSevzcekFRo6CsQ== -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:17 2024 by rpki-client on console-fra.rpki-client.org