$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/735c77c2-71fa-4be3-832b-a90d38af5701.roa File: 735c77c2-71fa-4be3-832b-a90d38af5701.roa (raw, json) Hash identifier: /nXR0QwyaLNmtbzB/+iiMwNuq0LIBXbkuIfAjzBpBV0= Subject key identifier: 0D:0E:36:BA:AD:13:19:69:1E:06:E8:9C:8B:7F:1C:EE:ED:F5:0F:D1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0562F5D6271E74E5182A9DEC407061D0B436BA98 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/735c77c2-71fa-4be3-832b-a90d38af5701.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.153.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:62:f5:d6:27:1e:74:e5:18:2a:9d:ec:40:70:61:d0:b4:36:ba:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=6da79e1a23499af0ea43ab25a92032d9738fe8dfb3a72bb0aa64e9b2dd6a0653, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6c:b7:91:8f:46:ee:73:d3:3d:07:49:ca:7e: e5:23:31:47:8b:2c:0d:c8:e8:21:f3:5e:a5:46:ef: d2:c7:0f:d9:74:b6:72:b2:1a:34:3e:e9:b6:8c:d3: cf:58:11:b3:a9:7b:5d:e8:f8:d5:62:a2:e9:97:4c: 83:2c:c7:db:ca:9a:29:27:d9:d0:6e:93:44:79:86: d2:de:cf:2b:f0:a5:7c:14:8f:ba:af:3f:6e:69:ea: ca:96:4b:a0:56:b9:1b:61:83:85:17:4f:84:7b:30: ea:67:4f:5c:7c:d5:1e:0e:1d:ab:4e:c9:15:e7:08: 0f:2f:59:0a:d8:94:0b:2a:16:ef:b0:29:41:8f:ab: 69:ae:46:ac:b5:14:e8:87:da:e8:dc:db:6c:da:a4: 4a:8c:7c:43:fc:8b:e0:9b:4c:d4:e3:37:a2:5f:a8: 7c:a7:59:6d:e0:b4:8d:62:d1:8f:6f:1e:24:24:6b: d1:07:71:af:81:8d:fe:97:e0:bd:9f:1c:1b:dd:25: db:5c:5d:ed:ac:9c:56:a3:75:20:1f:25:98:d0:29: c0:06:c5:ee:36:eb:31:7f:35:44:fb:fc:cf:09:09: f9:d7:d9:63:84:04:07:c9:c2:31:68:38:33:1c:ef: a2:80:ea:ac:9e:2b:1c:e6:1e:4f:03:ea:18:d3:2d: 55:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:0E:36:BA:AD:13:19:69:1E:06:E8:9C:8B:7F:1C:EE:ED:F5:0F:D1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/735c77c2-71fa-4be3-832b-a90d38af5701.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.153.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2d:1b:6e:5a:cc:45:96:65:43:ea:d3:78:5f:1c:2e:db:c3:3b: 01:e5:1d:44:4d:45:ea:2f:ce:16:08:ca:d8:9f:0f:47:aa:56: 25:da:42:4f:5f:b4:eb:1b:66:00:27:6e:b0:cd:7c:f1:04:93: f2:d5:2a:a2:19:1f:53:74:c0:a9:6f:cc:9e:22:42:01:20:9b: 8d:00:87:79:aa:5d:a2:31:38:44:88:f4:1f:a3:f6:eb:54:4e: 84:c3:c7:ba:5a:ac:a6:aa:94:4c:ec:45:ff:f3:2f:44:50:2f: 43:76:e2:cd:fd:b7:99:32:f3:c1:25:79:2e:2c:10:b7:9e:da: 41:69:ac:6b:7a:dc:73:ce:ac:88:00:e2:90:4c:c4:fe:d6:c8: e1:82:c5:36:36:a1:f2:04:bd:7c:0e:55:5a:22:cd:27:54:8f: 47:b6:18:c1:3e:79:16:d3:06:77:8d:37:62:6b:39:1e:d2:5e: 0d:53:b3:a7:9c:d7:0f:bd:ca:bd:9b:fa:57:ca:10:7f:de:6b: da:5d:af:6f:2f:fd:49:f8:cf:80:3c:37:81:19:91:df:67:b0: 4d:ba:ec:82:5a:95:e8:ae:3f:90:f1:80:84:7d:66:82:09:3c: 2e:2d:36:59:37:6f:db:49:f4:ea:60:4a:e6:20:91:fa:28:d3: d1:bd:e3:7f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBWL11icedOUYKp3sQHBh0LQ2upgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGE3OWUxYTIzNDk5YWYwZWE0M2FiMjVhOTIwMzJkOTcz OGZlOGRmYjNhNzJiYjBhYTY0ZTliMmRkNmEwNjUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpbLeRj0buc9M9B0nKfuUjMUeLLA3I6CHzXqVG79LHD9l0 tnKyGjQ+6baM089YEbOpe13o+NVioumXTIMsx9vKmikn2dBuk0R5htLezyvwpXwU j7qvP25p6sqWS6BWuRthg4UXT4R7MOpnT1x81R4OHatOyRXnCA8vWQrYlAsqFu+w KUGPq2muRqy1FOiH2ujc22zapEqMfEP8i+CbTNTjN6JfqHynWW3gtI1i0Y9vHiQk a9EHca+Bjf6X4L2fHBvdJdtcXe2snFajdSAfJZjQKcAGxe426zF/NUT7/M8JCfnX 2WOEBAfJwjFoODMc76KA6qyeKxzmHk8D6hjTLVUVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDQ42uq0TGWkeBuici38c7u31D9EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzczNWM3N2MyLTcxZmEtNGJlMy04MzJiLWE5MGQzOGFmNTcwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQmTANBgkqhkiG9w0BAQsFAAOCAQEALRtuWsxFlmVD6tN4Xxwu28M7AeUd RE1F6i/OFgjK2J8PR6pWJdpCT1+06xtmACdusM188QST8tUqohkfU3TAqW/MniJC ASCbjQCHeapdojE4RIj0H6P261ROhMPHulqspqqUTOxF//MvRFAvQ3bizf23mTLz wSV5LiwQt57aQWmsa3rcc86siADikEzE/tbI4YLFNjah8gS9fA5VWiLNJ1SPR7YY wT55FtMGd403Yms5HtJeDVOzp5zXD73KvZv6V8oQf95r2l2vby/9SfjPgDw3gRmR 32ewTbrsglqV6K4/kPGAhH1mggk8Li02WTdv20n06mBK5iCR+ijT0b3jfw== -----END CERTIFICATE-----Generated at Thu May 2 08:02:33 2024 by rpki-client on console-ams.rpki-client.org