$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8762b75b-5fc1-47b1-abe9-a598a52f7c09.roa File: 8762b75b-5fc1-47b1-abe9-a598a52f7c09.roa (raw, json) Hash identifier: mEcbmqhx7XtfrYnc28xCwpHJ0qeg4cSWdu2/59QOGiA= Subject key identifier: CB:4E:C1:FB:A2:DC:32:B0:B3:0A:5B:F0:A2:0C:C1:05:D1:F1:F9:8C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20315ECEEFE5C18E00EDFEB65CCBEA1AC3A53E66 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8762b75b-5fc1-47b1-abe9-a598a52f7c09.roa Signing time: Sat 13 Apr 2024 00:00:00 +0000 ROA not before: Sat 13 Apr 2024 00:00:00 +0000 ROA not after: Sat 18 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.129.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:31:5e:ce:ef:e5:c1:8e:00:ed:fe:b6:5c:cb:ea:1a:c3:a5:3e:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 13 00:00:00 2024 GMT Not After : May 18 23:59:59 2024 GMT Subject: serialNumber=62a0cb42fd13e2a872b643286fc28fbb03d8e8e6be2ef0106b77f2c892787508, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:10:3d:06:d3:4a:e6:ea:c8:fb:d1:df:cd:5e: b5:cb:23:24:1d:61:89:01:b1:3a:f5:af:d4:65:88: 46:e2:0f:28:d7:b7:62:ee:21:6d:ff:a3:ca:8d:0e: 47:af:af:d5:3a:e8:98:27:4b:19:2d:d7:92:4a:7e: 2c:d9:ec:29:ee:d3:d3:8e:db:b7:e8:1d:9f:fa:17: f6:6c:03:a6:ce:c3:32:1a:99:f1:1e:5f:e5:d2:54: bb:80:ea:b4:5c:00:89:5d:6a:00:2c:43:f9:ed:61: 8e:e0:7a:0b:c4:23:af:d4:7e:3e:4f:a4:b2:8b:2f: 4d:d7:db:be:98:4c:c4:2e:16:6e:02:ca:3b:f1:36: 97:c0:29:e7:8b:3f:9e:4b:b1:63:da:6e:26:22:fa: a4:28:36:c7:89:e9:30:08:2a:f0:ac:91:f8:8c:71: 43:1f:d4:b8:4d:d0:eb:2d:d6:ee:cf:68:b2:94:09: 70:d2:7e:e3:ba:c2:39:58:ec:7c:a9:b5:b2:53:7c: 0d:f9:80:d5:7a:6d:a1:e7:da:48:ab:87:a6:bd:67: 7a:6e:7a:f0:6d:cb:09:76:94:a8:31:d9:9a:4c:bd: e4:cd:fe:c9:01:19:12:26:d3:dd:72:90:dd:dc:6d: f6:8d:da:9b:88:f5:2f:44:33:3b:3b:23:aa:61:6e: 96:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4E:C1:FB:A2:DC:32:B0:B3:0A:5B:F0:A2:0C:C1:05:D1:F1:F9:8C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8762b75b-5fc1-47b1-abe9-a598a52f7c09.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.129.0.0/16 Signature Algorithm: sha256WithRSAEncryption 52:93:a0:21:f5:b8:06:1c:d9:38:ad:62:80:99:8a:9d:cb:d3: d2:bf:3c:da:8a:35:06:db:b2:be:77:ec:67:02:1b:7e:65:15: 0e:d0:6c:ac:50:a6:38:46:45:29:88:06:85:69:64:50:04:1e: b2:27:4b:e4:bc:9c:65:ee:62:f7:3b:a9:51:0f:46:1c:da:ab: 0a:76:4d:f3:59:fb:50:0a:9d:27:42:84:a0:0e:c4:13:91:45: a3:cc:b2:d4:8b:b4:0b:3b:a1:8f:50:43:5e:a5:2a:f4:0f:8b: 88:ed:16:9a:a8:88:12:5b:74:5a:a3:0a:e4:fe:66:3f:51:66: fd:7c:3e:2f:de:29:57:98:8e:f9:4c:cb:ff:56:cf:0d:e6:cc: a8:43:18:00:87:98:08:8b:f9:0d:5b:d1:95:30:f5:22:2c:e8: a0:70:0a:08:2f:7e:20:6a:54:ed:f2:33:02:60:ae:7c:aa:b7: a5:9c:60:35:e1:67:08:a3:e8:d2:6c:94:69:30:d7:f8:72:0d: af:9e:54:76:56:45:0c:3c:6d:08:b5:32:f4:d0:19:64:17:8e: 06:ff:45:1b:6b:2b:f1:9d:e0:19:a1:18:1c:ad:87:5a:25:fe: 05:1e:da:85:89:a7:b6:84:50:2b:9b:c5:ab:a1:8a:1f:ee:11: 5d:1f:c9:5c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIDFezu/lwY4A7f62XMvqGsOlPmYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEzMDAwMDAwWhcNMjQwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MmEwY2I0MmZkMTNlMmE4NzJiNjQzMjg2ZmMyOGZiYjAz ZDhlOGU2YmUyZWYwMTA2Yjc3ZjJjODkyNzg3NTA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0ED0G00rm6sj70d/NXrXLIyQdYYkBsTr1r9RliEbiDyjX t2LuIW3/o8qNDkevr9U66JgnSxkt15JKfizZ7Cnu09OO27foHZ/6F/ZsA6bOwzIa mfEeX+XSVLuA6rRcAIldagAsQ/ntYY7gegvEI6/Ufj5PpLKLL03X276YTMQuFm4C yjvxNpfAKeeLP55LsWPabiYi+qQoNseJ6TAIKvCskfiMcUMf1LhN0Ost1u7PaLKU CXDSfuO6wjlY7HyptbJTfA35gNV6baHn2kirh6a9Z3puevBtywl2lKgx2ZpMveTN /skBGRIm091ykN3cbfaN2puI9S9EMzs7I6phbpbrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUy07B+6LcMrCzClvwogzBBdHx+YwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg3NjJiNzViLTVmYzEtNDdiMS1hYmU5LWE1OThhNTJmN2MwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQgTANBgkqhkiG9w0BAQsFAAOCAQEAUpOgIfW4BhzZOK1igJmKncvT0r88 2oo1BtuyvnfsZwIbfmUVDtBsrFCmOEZFKYgGhWlkUAQesidL5LycZe5i9zupUQ9G HNqrCnZN81n7UAqdJ0KEoA7EE5FFo8yy1Iu0Czuhj1BDXqUq9A+LiO0WmqiIElt0 WqMK5P5mP1Fm/Xw+L94pV5iO+UzL/1bPDebMqEMYAIeYCIv5DVvRlTD1IizooHAK CC9+IGpU7fIzAmCufKq3pZxgNeFnCKPo0myUaTDX+HINr55UdlZFDDxtCLUy9NAZ ZBeOBv9FG2sr8Z3gGaEYHK2HWiX+BR7ahYmntoRQK5vFq6GKH+4RXR/JXA== -----END CERTIFICATE-----Generated at Thu May 2 08:51:06 2024 by rpki-client on console-fra.rpki-client.org