$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa File: 60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa (raw, json) Hash identifier: 5DjD0xx0u9P2jVDpif6vgrcB3L6bnthZxW75/0q0b7k= Subject key identifier: 36:7A:01:F2:27:38:BE:C0:8A:3F:3E:06:56:51:F9:EF:E8:36:4B:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4ABB37E316F40B60A59D45360053D22844C66629 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.219.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:bb:37:e3:16:f4:0b:60:a5:9d:45:36:00:53:d2:28:44:c6:66:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=4130f8d02199ea1061167905028396fdf388084813462a1e02cb2bcfceec493c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:36:cf:3c:21:a5:52:33:a8:2b:60:f9:04:8a: f4:d3:eb:ff:4a:03:63:99:6c:3e:dd:16:fb:10:e9: 2a:0e:21:1e:15:a9:52:43:61:a2:a5:17:e8:ed:84: 86:85:15:c4:95:4e:50:cd:97:ac:6f:e3:01:4f:92: a8:77:47:7c:29:23:8d:d0:23:bf:16:75:fe:f8:ec: 13:b7:52:65:e6:c0:b1:31:58:ab:be:22:73:03:34: c0:30:92:c8:c2:35:de:17:2a:78:9d:60:dd:17:68: 0c:1d:40:54:30:4d:44:3b:05:86:6a:7e:47:75:0f: 7d:6a:b8:5e:63:45:f9:cd:c8:5d:b1:5d:0e:4a:b0: 52:d3:b7:58:52:0c:f8:66:29:07:46:63:4e:09:19: 5e:4f:13:d8:43:54:0d:4e:2f:7b:32:de:8e:89:a0: fd:5e:63:29:34:17:f6:a4:98:34:76:d3:32:02:43: 3d:ac:33:88:9c:45:52:f2:56:37:92:ad:34:03:17: e0:93:37:75:7d:4f:7b:25:ca:da:38:8a:ad:2a:40: 45:a8:72:5f:88:0a:cf:65:6b:7c:7a:bc:a2:f6:e2: 0f:c0:d6:a1:15:95:14:28:54:35:bb:8d:2b:15:f3: b6:f0:82:91:96:df:7e:46:81:0c:5c:81:03:ed:77: 49:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:7A:01:F2:27:38:BE:C0:8A:3F:3E:06:56:51:F9:EF:E8:36:4B:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.219.0.0/16 Signature Algorithm: sha256WithRSAEncryption d0:a6:10:d5:b5:7e:62:2c:b8:b0:3c:2e:3e:08:75:95:91:67: 1f:1b:0e:d2:a6:cd:46:fc:67:52:27:3e:0a:d0:5d:e6:37:65: 4f:fa:b8:13:b7:21:ee:7d:07:db:2b:bc:67:ff:75:eb:b0:85: 16:3d:e0:12:68:10:5b:37:aa:d0:e3:f9:1a:70:02:c3:51:03: 84:cd:6c:c8:1d:c7:ed:c5:ec:cd:3d:34:78:17:3a:f0:18:b2: e3:04:b1:ba:af:a7:d3:a4:98:c3:a4:bb:a5:38:32:8f:34:82: bb:f7:14:1d:5c:1d:bb:7b:0a:c2:75:be:ea:bd:52:6a:05:57: f7:e0:97:cf:4a:ac:64:5d:71:0a:b4:fd:d7:1b:65:11:0f:bd: 56:fb:2f:36:b8:b1:19:5e:34:11:48:75:a5:67:2b:f8:7f:49: 7b:b5:aa:8f:5d:a1:fe:07:ae:e1:0f:c3:05:00:89:4b:4a:44: ef:56:c6:f0:00:6f:4e:40:6e:3e:a2:21:a1:28:da:8a:2c:e5: 7e:a6:38:44:5b:fa:0f:65:14:68:16:fa:b7:38:31:71:47:c3: 33:94:bf:45:50:e0:37:21:74:b0:f9:56:94:a2:07:0a:1e:31: b1:b2:c1:ea:33:88:ff:74:36:f8:f4:70:be:00:0c:52:ee:30: 66:ff:a0:b9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSrs34xb0C2ClnUU2AFPSKETGZikwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTMwZjhkMDIxOTllYTEwNjExNjc5MDUwMjgzOTZmZGYz ODgwODQ4MTM0NjJhMWUwMmNiMmJjZmNlZWM0OTNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQNs88IaVSM6grYPkEivTT6/9KA2OZbD7dFvsQ6SoOIR4V qVJDYaKlF+jthIaFFcSVTlDNl6xv4wFPkqh3R3wpI43QI78Wdf747BO3UmXmwLEx WKu+InMDNMAwksjCNd4XKnidYN0XaAwdQFQwTUQ7BYZqfkd1D31quF5jRfnNyF2x XQ5KsFLTt1hSDPhmKQdGY04JGV5PE9hDVA1OL3sy3o6JoP1eYyk0F/akmDR20zIC Qz2sM4icRVLyVjeSrTQDF+CTN3V9T3slyto4iq0qQEWocl+ICs9la3x6vKL24g/A 1qEVlRQoVDW7jSsV87bwgpGW335GgQxcgQPtd0kpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNnoB8ic4vsCKPz4GVlH57+g2S7cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwYTZjOWFjLTEyMjEtNGE0ZC04N2U2LTIzOWEzZmUyZDFmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQ2zANBgkqhkiG9w0BAQsFAAOCAQEA0KYQ1bV+Yiy4sDwuPgh1lZFnHxsO 0qbNRvxnUic+CtBd5jdlT/q4E7ch7n0H2yu8Z/9167CFFj3gEmgQWzeq0OP5GnAC w1EDhM1syB3H7cXszT00eBc68Biy4wSxuq+n06SYw6S7pTgyjzSCu/cUHVwdu3sK wnW+6r1SagVX9+CXz0qsZF1xCrT91xtlEQ+9VvsvNrixGV40EUh1pWcr+H9Je7Wq j12h/geu4Q/DBQCJS0pE71bG8ABvTkBuPqIhoSjaiizlfqY4RFv6D2UUaBb6tzgx cUfDM5S/RVDgNyF0sPlWlKIHCh4xsbLB6jOI/3Q2+PRwvgAMUu4wZv+guQ== -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:18 2024 by rpki-client on console-fra.rpki-client.org