$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8239b20f-ac2d-4526-8ea7-2a2f21d7b597.roa File: 8239b20f-ac2d-4526-8ea7-2a2f21d7b597.roa (raw, json) Hash identifier: XA42S6P0V5cXpZrcahIxNg2mdy9noR+NYr62R3FrjlY= Subject key identifier: E9:3A:37:5F:8B:0A:05:68:D5:8A:DE:53:86:CB:1E:FA:E7:0C:FC:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7246829EAEEBBBAB33544BDB7A8479ECE2F89D31 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8239b20f-ac2d-4526-8ea7-2a2f21d7b597.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.219.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:46:82:9e:ae:eb:bb:ab:33:54:4b:db:7a:84:79:ec:e2:f8:9d:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=7adf09011931335ef57647e9e255ff6a74058a09c5dab2e4d16fa89d128a8c5f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2f:d8:34:07:2d:da:b2:e3:07:db:c8:7a:9f: d5:3a:97:c6:b4:64:a3:b8:db:0d:e6:c6:f2:da:51: 00:4b:7d:3c:78:7f:12:07:a0:b0:4c:2d:c0:a4:08: 51:86:cb:9a:c8:37:69:7d:83:71:07:44:18:56:cd: c4:5e:10:07:fa:98:8e:a5:8b:e0:ab:4b:dd:3e:c6: 3d:5f:b9:32:58:b5:4c:03:78:9a:a5:77:d8:29:73: d5:b9:6c:81:f2:c7:55:7b:8f:eb:20:e1:23:0c:49: 06:d5:72:e0:3b:e4:09:c4:4b:a0:17:bd:64:36:cb: bb:26:2c:78:cc:9c:e5:e2:ce:6a:76:59:0b:c5:c9: ea:13:24:3e:5d:46:7a:17:6d:d0:d3:f3:75:90:4b: 61:91:c5:81:04:e5:c4:e3:43:db:89:e3:51:e5:38: a6:0a:cf:c1:53:cd:18:e6:23:ee:f9:39:19:08:df: e3:fe:61:49:2b:97:0e:69:d4:e9:50:81:cc:a8:93: 23:8d:db:19:24:58:7d:a5:f5:8d:9a:86:0a:d6:69: 92:54:6d:a7:cc:b7:76:58:c4:40:a9:7d:7b:a3:d1: a7:16:05:32:81:b2:0c:c1:33:2e:31:51:76:f0:3b: 9a:a1:f8:69:38:c4:8f:a5:16:18:dc:2e:64:56:70: df:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:3A:37:5F:8B:0A:05:68:D5:8A:DE:53:86:CB:1E:FA:E7:0C:FC:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8239b20f-ac2d-4526-8ea7-2a2f21d7b597.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.219.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2b:62:25:43:b7:67:1a:ce:6e:1f:c9:ca:58:1c:73:fe:95:f6: c6:ec:4b:05:4b:29:50:91:7d:b3:ee:f7:e8:83:2f:5f:e4:47: 57:dc:0a:64:05:7b:ad:25:d4:38:1e:3e:6d:64:dc:50:89:f8: 99:69:a5:bc:c4:7c:ef:65:b6:bf:f3:c2:e0:73:cc:f1:dd:0d: 32:16:50:d5:1d:9d:84:ec:dd:80:d9:20:79:76:4d:ba:70:25: 78:dc:7e:c1:7e:ac:e0:d2:f9:52:81:b8:60:78:ff:5e:33:68: e7:f8:f3:80:4c:a9:1a:94:c8:0e:6d:e2:f0:83:d9:99:53:c5: 78:bc:e4:74:cc:6d:d5:c1:90:c7:fb:05:df:ec:cc:30:19:74: e5:b6:1e:63:67:60:ff:33:0d:ca:aa:92:5c:2a:8c:9f:cd:6e: bd:81:d2:34:b0:27:e3:89:9c:d6:01:c1:d5:32:73:a7:3b:0f: e2:b3:3c:dd:17:1d:0f:a5:7f:dd:ce:ab:39:6b:29:6e:27:c2: 59:10:d1:b6:ab:45:72:a3:e0:92:db:92:e0:46:e8:22:9d:34: 53:c8:45:79:d0:58:93:67:04:72:66:60:fa:2f:84:b9:a1:d8: 61:e9:0f:ac:29:69:88:33:ac:25:e1:ff:2a:47:b8:05:b2:2a: bf:63:b8:8b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUckaCnq7ru6szVEvbeoR57OL4nTEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWRmMDkwMTE5MzEzMzVlZjU3NjQ3ZTllMjU1ZmY2YTc0 MDU4YTA5YzVkYWIyZTRkMTZmYTg5ZDEyOGE4YzVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuL9g0By3asuMH28h6n9U6l8a0ZKO42w3mxvLaUQBLfTx4 fxIHoLBMLcCkCFGGy5rIN2l9g3EHRBhWzcReEAf6mI6li+CrS90+xj1fuTJYtUwD eJqld9gpc9W5bIHyx1V7j+sg4SMMSQbVcuA75AnES6AXvWQ2y7smLHjMnOXizmp2 WQvFyeoTJD5dRnoXbdDT83WQS2GRxYEE5cTjQ9uJ41HlOKYKz8FTzRjmI+75ORkI 3+P+YUkrlw5p1OlQgcyokyON2xkkWH2l9Y2ahgrWaZJUbafMt3ZYxECpfXuj0acW BTKBsgzBMy4xUXbwO5qh+Gk4xI+lFhjcLmRWcN8HAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6To3X4sKBWjVit5Thsse+ucM/JowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgyMzliMjBmLWFjMmQtNDUyNi04ZWE3LTJhMmYyMWQ3YjU5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQ2zANBgkqhkiG9w0BAQsFAAOCAQEAK2IlQ7dnGs5uH8nKWBxz/pX2xuxL BUspUJF9s+736IMvX+RHV9wKZAV7rSXUOB4+bWTcUIn4mWmlvMR872W2v/PC4HPM 8d0NMhZQ1R2dhOzdgNkgeXZNunAleNx+wX6s4NL5UoG4YHj/XjNo5/jzgEypGpTI Dm3i8IPZmVPFeLzkdMxt1cGQx/sF3+zMMBl05bYeY2dg/zMNyqqSXCqMn81uvYHS NLAn44mc1gHB1TJzpzsP4rM83RcdD6V/3c6rOWspbifCWRDRtqtFcqPgktuS4Ebo Ip00U8hFedBYk2cEcmZg+i+EuaHYYekPrClpiDOsJeH/Kke4BbIqv2O4iw== -----END CERTIFICATE-----Generated at Thu May 2 11:33:20 2024 by rpki-client on console-fra.rpki-client.org