$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84f6069b-8b14-4821-a245-6fcd3abbf4c7.roa File: 84f6069b-8b14-4821-a245-6fcd3abbf4c7.roa (raw, json) Hash identifier: lVNpF0OFl1qQSFZzA+xaVhS4hg3pZCYO0fWCYqTRImk= Subject key identifier: 0B:B5:8D:B1:5F:60:10:4E:FC:C7:D5:4D:E7:65:C7:53:80:38:E7:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A295356501075A086FAE2061A12AE1EA0F15FAE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84f6069b-8b14-4821-a245-6fcd3abbf4c7.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.55.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:29:53:56:50:10:75:a0:86:fa:e2:06:1a:12:ae:1e:a0:f1:5f:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=827f5fbbfabf0a25c9553e6ec8bdd89cef17c11b4682ea51ae02983a0fdb7c01, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ac:77:63:6e:46:ed:14:a9:37:23:c2:b7:e5: c0:59:8f:07:99:42:18:0f:57:6f:68:d6:9f:a9:9b: db:61:e0:11:0e:55:56:c2:32:ee:a4:bc:0e:12:55: ee:48:84:b2:aa:03:56:65:11:f3:63:68:a3:78:ef: d8:22:36:a6:4e:2d:46:ee:b4:7f:9e:88:e5:fa:53: 86:42:69:8b:b7:78:ba:d9:1e:5b:61:ad:82:b6:02: f0:d0:f9:79:30:1f:a2:02:c1:d8:bc:1c:e4:aa:90: ba:5b:21:4e:86:10:ad:f4:aa:e2:07:eb:53:85:72: 7c:07:3b:4a:fb:2c:08:18:f3:57:d1:d3:11:be:9b: fa:dc:14:5d:0f:79:d1:0e:f3:5a:2e:d2:b7:db:be: d1:29:58:5e:74:06:77:31:f4:58:af:98:f7:45:c4: 30:41:07:6e:3b:e7:68:c2:99:20:1c:e8:d6:0e:d3: 16:ee:58:d3:ca:19:e7:ad:d2:14:9c:40:9d:a6:99: f3:18:ba:b8:ef:57:dc:ed:9b:0d:c3:5d:7f:72:47: 3d:30:d7:31:f1:ed:d6:ba:56:87:94:be:70:ff:e0: cb:25:19:10:7f:34:1e:38:ba:c5:6d:c8:86:68:68: ce:36:06:2b:68:92:4a:22:61:f1:f0:26:4f:64:b6: 1f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B5:8D:B1:5F:60:10:4E:FC:C7:D5:4D:E7:65:C7:53:80:38:E7:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84f6069b-8b14-4821-a245-6fcd3abbf4c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.55.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3a:5a:2d:bc:45:ad:1a:3e:30:34:65:82:20:ac:2d:d6:92:8a: 43:0a:66:98:9e:94:0e:c4:9e:d5:3a:2a:78:dd:14:83:d6:23: 8f:90:b2:cc:2b:b4:c0:69:f0:4a:98:56:13:8b:64:23:b4:be: c3:ef:ca:31:15:c1:1b:a1:dc:20:c1:1c:53:92:fb:aa:3b:a9: af:b4:31:b9:d0:e5:46:a7:1f:b6:ba:c9:1d:a4:32:b3:09:ab: 14:af:a5:a3:e3:e8:72:fc:52:12:1f:0a:6b:b0:df:da:40:24: 39:67:f8:69:2d:16:cc:c5:38:16:24:48:e0:fc:bf:f4:53:94: 3a:ce:4f:d5:51:fd:24:0f:19:da:64:1a:04:4c:24:13:02:57: 40:38:1c:b6:56:55:ff:f5:c4:6d:2a:b4:3e:00:00:57:da:77: 7c:6c:ed:38:99:c6:71:51:aa:11:ae:96:77:76:47:5a:d2:56: 13:c2:7f:87:04:63:0b:e7:c3:51:1a:2c:29:4f:ff:3b:fe:62: 0d:6a:e0:d2:b9:e1:f2:8b:e0:47:ec:75:ed:15:6f:7b:f8:b5: 08:3f:2d:ef:ea:2a:7e:1e:59:ac:a9:29:df:65:32:8c:59:a6: 10:13:a8:41:9e:4b:2e:cd:8f:c0:5c:0e:9f:15:d0:a1:3c:3b: 19:4a:1a:0e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWilTVlAQdaCG+uIGGhKuHqDxX64wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MjdmNWZiYmZhYmYwYTI1Yzk1NTNlNmVjOGJkZDg5Y2Vm MTdjMTFiNDY4MmVhNTFhZTAyOTgzYTBmZGI3YzAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7rHdjbkbtFKk3I8K35cBZjweZQhgPV29o1p+pm9th4BEO VVbCMu6kvA4SVe5IhLKqA1ZlEfNjaKN479giNqZOLUbutH+eiOX6U4ZCaYu3eLrZ HlthrYK2AvDQ+XkwH6ICwdi8HOSqkLpbIU6GEK30quIH61OFcnwHO0r7LAgY81fR 0xG+m/rcFF0PedEO81ou0rfbvtEpWF50Bncx9FivmPdFxDBBB24752jCmSAc6NYO 0xbuWNPKGeet0hScQJ2mmfMYurjvV9ztmw3DXX9yRz0w1zHx7da6VoeUvnD/4Msl GRB/NB44usVtyIZoaM42BitokkoiYfHwJk9kth/ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUC7WNsV9gEE78x9VN52XHU4A459wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0ZjYwNjliLThiMTQtNDgyMS1hMjQ1LTZmY2QzYWJiZjRjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQNzANBgkqhkiG9w0BAQsFAAOCAQEAOlotvEWtGj4wNGWCIKwt1pKKQwpm mJ6UDsSe1ToqeN0Ug9Yjj5CyzCu0wGnwSphWE4tkI7S+w+/KMRXBG6HcIMEcU5L7 qjupr7QxudDlRqcftrrJHaQyswmrFK+lo+PocvxSEh8Ka7Df2kAkOWf4aS0WzMU4 FiRI4Py/9FOUOs5P1VH9JA8Z2mQaBEwkEwJXQDgctlZV//XEbSq0PgAAV9p3fGzt OJnGcVGqEa6Wd3ZHWtJWE8J/hwRjC+fDURosKU//O/5iDWrg0rnh8ovgR+x17RVv e/i1CD8t7+oqfh5ZrKkp32UyjFmmEBOoQZ5LLs2PwFwOnxXQoTw7GUoaDg== -----END CERTIFICATE-----Generated at Thu May 2 11:33:20 2024 by rpki-client on console-fra.rpki-client.org