$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa File: 59f5622d-1ca3-4310-a7bb-9aeda3799734.roa (raw, json) Hash identifier: ttVX1gTV3S4XXY85gH06gLkFqIAVCbnffSM22r+3Xos= Subject key identifier: 28:43:02:AE:E1:4E:36:5C:58:A8:65:65:E5:3B:11:EC:5B:6E:E0:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5EB1D852CD9B7CC03128BC8906A95E32EC71F01B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.189.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:b1:d8:52:cd:9b:7c:c0:31:28:bc:89:06:a9:5e:32:ec:71:f0:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=6e6f6a3c9ca0910790b76625efe5a396232301836e55aacf6914c7b6d64ad5fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3e:f5:0a:2a:b0:4a:9d:84:bb:26:c0:af:2a: a3:25:d3:7f:c8:fe:4e:45:29:b3:dc:97:79:3b:8a: 64:55:82:56:11:75:1c:d2:f7:1f:c0:91:d5:d4:93: 81:61:35:04:7c:73:ce:fe:ae:9b:0b:1d:6c:36:eb: f0:83:56:a3:d5:9a:2b:69:a5:c6:1c:3a:f4:16:3a: 79:82:1f:d6:55:9d:43:37:e0:49:31:aa:17:38:c3: 57:f8:d6:c0:61:05:01:a7:83:e0:98:d4:ed:94:3a: 8e:28:dd:b5:29:64:93:d5:a3:02:42:24:66:31:84: b2:8c:fd:eb:3c:00:ba:1d:99:d4:c9:bf:a1:77:3f: 09:49:37:35:19:21:28:4b:52:b9:1e:aa:0a:65:1e: cb:68:17:b3:83:9b:97:21:64:97:55:ad:29:71:94: 7e:63:8b:30:6c:f9:9b:ba:04:54:3b:dc:dc:0b:14: 1a:45:45:91:db:64:44:4b:b0:db:f8:e7:1a:42:86: 19:be:d7:9c:25:f0:1a:09:7d:cd:df:97:3c:17:ed: 11:4f:6a:67:c3:f9:be:da:91:75:bc:14:74:0d:28: 53:73:5a:60:36:9a:f8:61:fe:dd:02:64:d9:f3:cf: e6:d5:3b:a9:1d:66:fd:d9:73:01:90:0b:66:15:88: 2a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:43:02:AE:E1:4E:36:5C:58:A8:65:65:E5:3B:11:EC:5B:6E:E0:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.189.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:58:27:e8:4f:20:24:2c:ff:54:11:a9:1a:be:f1:68:b9:39: 91:ab:06:a0:23:88:e4:97:0a:7c:40:20:2e:de:fd:d5:db:24: 20:d3:00:1e:48:c3:a7:c5:74:b1:2c:42:8f:a5:67:9f:3d:0b: 1d:bc:33:3a:d1:83:cf:bb:b0:b6:4b:f2:b5:8f:4d:db:26:22: 80:c7:73:7d:b9:ea:b4:14:3e:c7:df:01:24:68:f8:8f:11:04: 81:5d:b2:26:9c:2b:ce:ba:3d:a3:80:78:8a:27:80:0f:de:9b: 1f:d1:f1:bc:4c:3f:ea:8f:63:95:4e:8c:a9:9a:07:f8:9e:f3: a0:23:fd:4a:23:8f:dc:35:26:66:3b:35:8d:6f:3f:9d:4e:a2: 4d:7d:a7:44:27:60:7a:f4:b5:f7:bb:39:ca:ba:ba:b9:00:43: 33:20:34:a5:2c:ea:11:96:0f:69:b5:2c:51:2e:60:9a:8f:f6: fe:dd:ca:07:9b:7f:c7:b4:1d:0e:0a:55:7b:f4:40:a5:1e:ce: 21:28:d8:f2:87:76:6f:c8:b4:2b:a0:9a:fc:57:9d:be:0c:7c: 60:05:93:65:31:2e:50:92:11:cd:d8:51:55:7a:a7:b1:78:ac: 1f:c6:9d:71:fc:38:1d:90:37:58:22:3b:54:f2:16:52:25:3c: f9:9e:57:05 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXrHYUs2bfMAxKLyJBqleMuxx8BswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTZmNmEzYzljYTA5MTA3OTBiNzY2MjVlZmU1YTM5NjIz MjMwMTgzNmU1NWFhY2Y2OTE0YzdiNmQ2NGFkNWZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/PvUKKrBKnYS7JsCvKqMl03/I/k5FKbPcl3k7imRVglYR dRzS9x/AkdXUk4FhNQR8c87+rpsLHWw26/CDVqPVmitppcYcOvQWOnmCH9ZVnUM3 4Ekxqhc4w1f41sBhBQGng+CY1O2UOo4o3bUpZJPVowJCJGYxhLKM/es8ALodmdTJ v6F3PwlJNzUZIShLUrkeqgplHstoF7ODm5chZJdVrSlxlH5jizBs+Zu6BFQ73NwL FBpFRZHbZERLsNv45xpChhm+15wl8BoJfc3flzwX7RFPamfD+b7akXW8FHQNKFNz WmA2mvhh/t0CZNnzz+bVO6kdZv3ZcwGQC2YViCrDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKEMCruFONlxYqGVl5TsR7Ftu4KkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5ZjU2MjJkLTFjYTMtNDMxMC1hN2JiLTlhZWRhMzc5OTczNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvTANBgkqhkiG9w0BAQsFAAOCAQEAflgn6E8gJCz/VBGpGr7xaLk5kasG oCOI5JcKfEAgLt791dskINMAHkjDp8V0sSxCj6Vnnz0LHbwzOtGDz7uwtkvytY9N 2yYigMdzfbnqtBQ+x98BJGj4jxEEgV2yJpwrzro9o4B4iieAD96bH9HxvEw/6o9j lU6MqZoH+J7zoCP9SiOP3DUmZjs1jW8/nU6iTX2nRCdgevS197s5yrq6uQBDMyA0 pSzqEZYPabUsUS5gmo/2/t3KB5t/x7QdDgpVe/RApR7OISjY8od2b8i0K6Ca/Fed vgx8YAWTZTEuUJIRzdhRVXqnsXisH8adcfw4HZA3WCI7VPIWUiU8+Z5XBQ== -----END CERTIFICATE-----Generated at Wed Apr 24 01:54:42 2024 by rpki-client on console-ams.rpki-client.org