$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e218b04-dfaf-4fdb-9e82-bad8d7e36def.roa File: 5e218b04-dfaf-4fdb-9e82-bad8d7e36def.roa (raw, json) Hash identifier: Ms0fCHGmMA2TwqYLSCNRQHd/aKo7BE7sSKfd8vWci0c= Subject key identifier: 4A:43:65:35:12:B0:85:3A:C0:88:A9:AD:F4:CF:BB:E2:36:3E:EC:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43B5E037B20E934A8108A19E98533CA31F9A96A7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e218b04-dfaf-4fdb-9e82-bad8d7e36def.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.206.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:b5:e0:37:b2:0e:93:4a:81:08:a1:9e:98:53:3c:a3:1f:9a:96:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=19a4ac95f1f0e06dd194c4735ecf738e2e8363ca6f9adb36167d58eaebd9e79e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:79:e7:e8:36:c7:5b:60:4d:ea:32:69:57:d2: 16:79:ce:62:d2:68:7f:54:87:3e:37:b3:45:33:14: 84:65:b9:84:3c:a4:75:b0:ce:96:24:18:3b:53:15: a6:a2:4e:c4:c3:5c:e9:26:56:6c:09:27:b3:ed:66: 42:c6:00:df:ea:b6:cd:d8:97:c2:87:fa:51:df:d1: f8:e7:49:ab:12:0a:f7:40:9f:e1:73:07:6f:05:4c: cb:9e:f0:92:16:70:1f:c0:6e:f4:a3:3a:5f:2b:51: 89:f2:4c:54:72:7c:da:8d:6e:05:5f:a0:82:99:e2: 10:98:f6:ea:f1:46:2e:83:be:ed:da:9f:9c:63:c8: 20:4e:c4:46:cb:ff:59:0a:87:4f:2c:a2:8c:b3:b6: d1:61:15:e6:ca:b1:21:1e:6f:aa:96:c6:03:f8:d0: 27:24:86:f8:c9:fc:9a:70:f2:53:f7:c0:b5:29:5c: 98:7a:80:e1:b4:12:93:4e:23:d8:19:64:60:d3:99: b2:ad:b1:e7:34:88:66:a1:6c:d0:fd:e1:46:3c:54: 25:99:73:5c:5c:e9:cf:ad:13:16:9b:54:c5:3d:2c: ea:27:12:4d:37:13:ce:ec:79:cc:aa:18:a8:48:29: 26:f8:c1:eb:d8:4b:75:03:b8:e5:5d:58:9e:e6:92: ee:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:43:65:35:12:B0:85:3A:C0:88:A9:AD:F4:CF:BB:E2:36:3E:EC:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e218b04-dfaf-4fdb-9e82-bad8d7e36def.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.206.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6e:1c:c7:7d:71:d1:55:ec:d8:50:75:5a:33:20:c7:f0:e0:cc: d9:ef:a7:88:ff:db:e6:32:0a:a9:ec:9d:39:33:c1:14:58:5c: 97:81:ab:da:96:28:d5:7f:c8:ec:8b:8c:f6:55:93:ae:c2:d8: 3f:db:95:c0:ac:74:e5:d5:5a:5e:86:30:7a:1a:5e:0b:e8:4e: 03:d6:69:60:62:f4:86:19:ab:94:67:b2:9c:49:75:3f:1c:3f: 1e:2c:0b:40:be:7f:96:c8:d7:d6:44:23:49:97:c3:1a:f6:fe: 27:53:84:e0:8d:f9:f4:4c:1c:c1:85:a9:2c:6f:ff:81:41:38: 6f:5e:8b:8c:51:df:55:a4:f0:81:97:01:e9:44:9e:29:85:49: 22:bb:53:db:fa:7e:05:19:cf:c6:59:06:ab:71:1f:b1:96:2e: 45:3c:12:b6:38:6b:b3:84:b5:90:bb:15:47:cd:bc:f0:0a:39: 33:d3:02:d0:36:ff:de:12:4e:b0:e7:77:a5:c8:02:62:c1:bf: 58:f1:99:8e:48:47:7d:2c:f3:df:d4:cf:b3:75:58:39:7e:8f: d8:f5:4f:bf:88:7f:12:d4:65:32:ee:e3:f9:6c:14:16:c1:22: 39:6d:6b:59:0a:8e:4f:6d:2d:fb:f1:72:ca:4c:35:21:64:8b: 5f:27:66:86 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQ7XgN7IOk0qBCKGemFM8ox+alqcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOWE0YWM5NWYxZjBlMDZkZDE5NGM0NzM1ZWNmNzM4ZTJl ODM2M2NhNmY5YWRiMzYxNjdkNThlYWViZDllNzllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmeefoNsdbYE3qMmlX0hZ5zmLSaH9Uhz43s0UzFIRluYQ8 pHWwzpYkGDtTFaaiTsTDXOkmVmwJJ7PtZkLGAN/qts3Yl8KH+lHf0fjnSasSCvdA n+FzB28FTMue8JIWcB/AbvSjOl8rUYnyTFRyfNqNbgVfoIKZ4hCY9urxRi6Dvu3a n5xjyCBOxEbL/1kKh08sooyzttFhFebKsSEeb6qWxgP40CckhvjJ/Jpw8lP3wLUp XJh6gOG0EpNOI9gZZGDTmbKtsec0iGahbND94UY8VCWZc1xc6c+tExabVMU9LOon Ek03E87secyqGKhIKSb4wevYS3UDuOVdWJ7mku47AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSkNlNRKwhTrAiKmt9M+74jY+7BwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlMjE4YjA0LWRmYWYtNGZkYi05ZTgyLWJhZDhkN2UzNmRlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQzjANBgkqhkiG9w0BAQsFAAOCAQEAbhzHfXHRVezYUHVaMyDH8ODM2e+n iP/b5jIKqeydOTPBFFhcl4Gr2pYo1X/I7IuM9lWTrsLYP9uVwKx05dVaXoYwehpe C+hOA9ZpYGL0hhmrlGeynEl1Pxw/HiwLQL5/lsjX1kQjSZfDGvb+J1OE4I359Ewc wYWpLG//gUE4b16LjFHfVaTwgZcB6USeKYVJIrtT2/p+BRnPxlkGq3EfsZYuRTwS tjhrs4S1kLsVR8288Ao5M9MC0Db/3hJOsOd3pcgCYsG/WPGZjkhHfSzz39TPs3VY OX6P2PVPv4h/EtRlMu7j+WwUFsEiOW1rWQqOT20t+/Fyykw1IWSLXydmhg== -----END CERTIFICATE-----Generated at Sat Apr 20 05:34:49 2024 by rpki-client on console-ams.rpki-client.org