$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fc813e0-ed48-4732-a179-6455d829b9db.roa File: 5fc813e0-ed48-4732-a179-6455d829b9db.roa (raw, json) Hash identifier: UeHyMEzcCZZJRkQ/Q35W8bWAwxbQVjxj8y8bmiSfmt8= Subject key identifier: 4D:5F:E0:28:78:8C:C4:DA:83:BD:68:C6:E8:1C:89:E3:A0:D6:8C:26 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 409234CEDA78514370F40848A5D6673E5FE7358C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fc813e0-ed48-4732-a179-6455d829b9db.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.100.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:92:34:ce:da:78:51:43:70:f4:08:48:a5:d6:67:3e:5f:e7:35:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=9f3d929dc8d5a37d5312fec606e171cc87c531be07e1d6cc8e336074f10ad549, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:78:a9:e9:67:44:42:2c:56:24:b1:b9:81:4a: 3b:0c:14:6c:20:3e:05:de:48:94:1a:c7:1d:bc:fe: 52:a5:f6:62:90:82:b2:63:57:88:20:f0:89:37:23: d4:78:48:a0:e9:19:4d:b3:da:8f:39:a6:8f:37:57: ca:c5:5f:b2:a1:91:b1:dc:c6:a8:6f:42:6f:83:85: 81:f8:5e:6d:9b:eb:a4:0f:a7:f9:83:d9:b0:15:5d: 9f:82:92:e6:67:8d:bc:63:1d:13:04:3d:c6:23:b1: f0:20:a3:e1:de:bf:d2:cf:36:e2:fe:15:b6:b7:b1: f1:71:8b:b6:73:8b:bd:77:6e:06:ea:ef:d5:5a:69: 79:12:92:fb:b2:77:c1:88:7c:4f:9e:ad:bf:5d:b2: a0:cc:0a:2d:12:5b:93:fe:6d:22:16:b9:6d:c6:0d: 08:bf:b6:fe:41:35:aa:37:8c:93:c7:1d:93:4f:29: fd:63:0e:96:2e:14:ad:6e:2b:a1:62:69:83:d9:9a: 92:a3:f9:db:06:85:78:da:5d:8b:a9:b2:96:5f:b4: 54:92:a4:7f:3d:d9:20:5b:3b:2a:da:c7:13:4c:65: 20:5f:9a:3f:a5:99:a3:46:12:40:c1:28:43:48:1a: 9e:17:11:06:5d:a4:3c:0b:42:b6:d1:52:34:bd:d3: d3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:5F:E0:28:78:8C:C4:DA:83:BD:68:C6:E8:1C:89:E3:A0:D6:8C:26 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fc813e0-ed48-4732-a179-6455d829b9db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption bf:a0:81:a9:07:47:be:0a:8d:ef:0a:61:e0:4b:ea:76:7f:65: b8:b3:64:b5:e5:b5:05:d4:90:2d:74:d0:46:c9:8b:f7:91:f1: 95:dc:6b:35:bf:cf:07:3f:16:ea:39:f7:42:59:cf:94:b3:2c: 56:3c:3e:ae:19:1d:5d:fc:41:a9:dd:77:4b:ba:d5:00:4d:79: 4c:2d:d8:5d:6f:1f:8a:3e:c3:81:31:ba:ce:fc:f9:e8:ee:6f: 95:a7:6e:15:16:6a:59:5b:ec:9a:57:65:b6:d2:92:d1:47:24: f2:e8:9c:88:ec:70:b5:10:f5:11:cf:03:b1:19:96:65:2c:93: 60:e6:ce:73:25:ef:e2:d5:23:5c:e3:eb:e1:37:a2:f9:ac:c4: 4d:53:fe:aa:49:a1:5b:85:87:5e:9c:49:66:96:6d:0f:17:99: 7e:f6:d3:b7:f1:c2:1e:37:6b:0f:27:19:30:b5:f7:47:e1:91: ed:2d:03:e7:0a:ca:7f:ee:0a:4d:15:fd:45:5b:f3:81:5d:b4: 5f:64:bb:c5:47:34:96:fd:b5:26:c1:1e:2a:51:02:4b:97:f8: 01:c0:2c:64:ba:d9:30:a9:0c:6a:2f:37:5b:73:80:18:d5:52: d5:2b:18:dc:9a:df:87:61:8a:0f:40:6a:c6:6a:17:39:22:ae: ed:27:da:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQJI0ztp4UUNw9AhIpdZnPl/nNYwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjNkOTI5ZGM4ZDVhMzdkNTMxMmZlYzYwNmUxNzFjYzg3 YzUzMWJlMDdlMWQ2Y2M4ZTMzNjA3NGYxMGFkNTQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaeKnpZ0RCLFYksbmBSjsMFGwgPgXeSJQaxx28/lKl9mKQ grJjV4gg8Ik3I9R4SKDpGU2z2o85po83V8rFX7KhkbHcxqhvQm+DhYH4Xm2b66QP p/mD2bAVXZ+CkuZnjbxjHRMEPcYjsfAgo+Hev9LPNuL+Fba3sfFxi7Zzi713bgbq 79VaaXkSkvuyd8GIfE+erb9dsqDMCi0SW5P+bSIWuW3GDQi/tv5BNao3jJPHHZNP Kf1jDpYuFK1uK6FiaYPZmpKj+dsGhXjaXYupspZftFSSpH892SBbOyraxxNMZSBf mj+lmaNGEkDBKENIGp4XEQZdpDwLQrbRUjS909PdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTV/gKHiMxNqDvWjG6ByJ46DWjCYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVmYzgxM2UwLWVkNDgtNDczMi1hMTc5LTY0NTVkODI5YjlkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQZDANBgkqhkiG9w0BAQsFAAOCAQEAv6CBqQdHvgqN7wph4Evqdn9luLNk teW1BdSQLXTQRsmL95HxldxrNb/PBz8W6jn3QlnPlLMsVjw+rhkdXfxBqd13S7rV AE15TC3YXW8fij7DgTG6zvz56O5vladuFRZqWVvsmldlttKS0Uck8uiciOxwtRD1 Ec8DsRmWZSyTYObOcyXv4tUjXOPr4Tei+azETVP+qkmhW4WHXpxJZpZtDxeZfvbT t/HCHjdrDycZMLX3R+GR7S0D5wrKf+4KTRX9RVvzgV20X2S7xUc0lv21JsEeKlEC S5f4AcAsZLrZMKkMai83W3OAGNVS1SsY3Jrfh2GKD0BqxmoXOSKu7SfaCw== -----END CERTIFICATE-----Generated at Thu May 9 15:19:34 2024 by rpki-client on console-fra.rpki-client.org