$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74e7008f-a85b-4c1f-bd1f-953472f2542b.roa File: 74e7008f-a85b-4c1f-bd1f-953472f2542b.roa (raw, json) Hash identifier: 57434h77t1QBPWMZ546a9dht5ctjidlxjMNYaKmcSBg= Subject key identifier: 35:7D:E7:5E:C5:8A:4E:BD:02:2B:06:71:46:27:5E:40:79:03:05:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D79FC4512520E60070BBCBD35F9CA97678C8A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74e7008f-a85b-4c1f-bd1f-953472f2542b.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:79:fc:45:12:52:0e:60:07:0b:bc:bd:35:f9:ca:97:67:8c:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=56ff44bff772b19ba6ad8d50633cb612c3b59892bc7841f07a520279cbaba093, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:2b:40:55:78:14:77:af:c5:5b:ce:30:ce:1e: 70:22:da:1d:f2:3b:da:8e:30:0b:bc:59:64:21:81: c4:b5:32:cf:94:9a:9b:14:61:a1:c0:d1:6d:15:a6: f8:98:8a:fa:9e:29:72:88:a8:db:cb:8e:af:8c:e2: 76:49:70:92:bb:c4:53:fb:1a:b5:7b:0d:97:84:ab: 5c:96:15:96:da:03:75:5a:18:24:47:21:7c:36:19: 81:10:2a:69:0d:ad:b1:29:56:06:0b:36:d0:67:bc: 0e:f5:96:14:07:3f:c1:52:12:4b:f8:d7:6b:0b:4a: bc:cc:fe:10:c2:c5:65:7a:22:40:a1:30:25:c4:21: f5:dd:05:d6:31:f0:2f:ab:81:92:26:dc:58:98:ab: ef:fa:09:2c:22:2b:b8:15:78:bc:70:63:01:46:93: a3:be:bf:18:b1:3e:45:00:a8:f7:8f:a1:c8:ed:80: e2:f2:ab:d4:b8:75:e5:1c:59:ae:e5:80:ac:72:04: 88:b7:cd:4d:31:6c:90:12:b0:00:7d:4f:a6:18:08: 9b:8f:6a:82:e1:25:c7:0c:af:10:45:a4:c2:e3:ac: 13:4e:bb:dd:d6:0d:a8:58:34:89:49:a6:52:10:01: d9:1e:6a:ee:34:1e:fd:06:10:63:a3:b8:36:3f:07: bf:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7D:E7:5E:C5:8A:4E:BD:02:2B:06:71:46:27:5E:40:79:03:05:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74e7008f-a85b-4c1f-bd1f-953472f2542b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.68.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:9e:de:8b:3f:28:c9:88:9f:99:52:45:ea:6f:9a:a3:fd:39: 54:2d:b5:0f:c5:e8:18:69:9b:7a:e9:66:c1:62:be:8b:c9:23: f4:20:bc:54:3e:c3:a4:79:83:29:38:22:01:36:1d:eb:ac:de: 95:9f:b3:43:9b:ec:c5:0a:06:62:ac:ef:e3:93:8e:d6:3d:bc: 6f:2a:8f:7d:1a:9a:5d:8c:37:6d:2a:ea:22:d3:b9:9a:4d:18: 78:a8:8a:3a:88:e7:ca:7b:a9:6d:c3:7f:92:2a:16:70:79:a2: 42:eb:6f:16:fa:82:a3:81:cf:27:f4:87:d5:85:c5:62:f5:5a: a4:2c:b4:08:24:d3:dd:25:00:d5:f1:3b:77:33:e1:c6:46:81: 86:e8:1b:33:ce:36:f9:93:02:97:54:8b:5f:f8:cf:21:d2:88: c9:9e:ca:4f:82:f6:40:92:4b:00:fb:06:72:0f:2b:24:57:dc: ef:56:36:8c:27:67:ab:61:54:a1:66:a0:0b:3b:8b:27:37:2c: 88:c6:f8:25:ec:c0:74:6d:2a:69:48:e6:fb:c3:3b:dd:ca:3e: 51:68:5e:06:aa:d8:23:e1:21:0e:06:29:ce:04:19:2b:a8:c8: 7c:33:b3:3a:76:27:e4:4b:5f:d1:b7:b4:51:98:a2:d0:00:a0: ee:6b:64:27 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITTXn8RRJSDmAHC7y9NfnKl2eMijANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDA0MTYwMDAwMDBaFw0yNDA1MjEyMzU5NTla MHoxSTBHBgNVBAUTQDU2ZmY0NGJmZjc3MmIxOWJhNmFkOGQ1MDYzM2NiNjEyYzNi NTk4OTJiYzc4NDFmMDdhNTIwMjc5Y2JhYmEwOTMxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAO0rQFV4FHevxVvOMM4ecCLaHfI72o4wC7xZZCGBxLUyz5Sa mxRhocDRbRWm+JiK+p4pcoio28uOr4zidklwkrvEU/satXsNl4SrXJYVltoDdVoY JEchfDYZgRAqaQ2tsSlWBgs20Ge8DvWWFAc/wVISS/jXawtKvMz+EMLFZXoiQKEw JcQh9d0F1jHwL6uBkibcWJir7/oJLCIruBV4vHBjAUaTo76/GLE+RQCo94+hyO2A 4vKr1Lh15RxZruWArHIEiLfNTTFskBKwAH1PphgIm49qguElxwyvEEWkwuOsE067 3dYNqFg0iUmmUhAB2R5q7jQe/QYQY6O4Nj8Hv50CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQ1fedexYpOvQIrBnFGJ15AeQMFFzAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNzRlNzAwOGYtYTg1Yi00YzFmLWJkMWYtOTUzNDcyZjI1NDJiLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEARAMRDANBgkqhkiG9w0BAQsFAAOCAQEAPZ7eiz8oyYifmVJF6m+ao/05VC21 D8XoGGmbeulmwWK+i8kj9CC8VD7DpHmDKTgiATYd66zelZ+zQ5vsxQoGYqzv45OO 1j28byqPfRqaXYw3bSrqItO5mk0YeKiKOojnynupbcN/kioWcHmiQutvFvqCo4HP J/SH1YXFYvVapCy0CCTT3SUA1fE7dzPhxkaBhugbM842+ZMCl1SLX/jPIdKIyZ7K T4L2QJJLAPsGcg8rJFfc71Y2jCdnq2FUoWagCzuLJzcsiMb4JezAdG0qaUjm+8M7 3co+UWheBqrYI+EhDgYpzgQZK6jIfDOzOnYn5Etf0be0UZii0ACg7mtkJw== -----END CERTIFICATE-----Generated at Thu May 2 17:17:12 2024 by rpki-client on console-ams.rpki-client.org