$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a968700-a089-4299-8b14-9a9aa6edf062.roa File: 8a968700-a089-4299-8b14-9a9aa6edf062.roa (raw, json) Hash identifier: OwtRbAFqtj2anheZYTSmhjxkCclTyHJ4B0l+NvckbL0= Subject key identifier: 44:36:AF:C9:AD:E2:37:E7:A3:D5:9B:79:18:6F:A5:02:DA:E5:06:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B535BC33799FF1155AFB73CA0D19E810FC6DF46 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a968700-a089-4299-8b14-9a9aa6edf062.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:53:5b:c3:37:99:ff:11:55:af:b7:3c:a0:d1:9e:81:0f:c6:df:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=a6945bde3798e40085cffac65a695237959c2615c23ea846d985f1eae5ee0cb1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c7:17:6c:b9:61:6c:ec:13:47:93:df:f6:ea: 9a:f4:55:5b:a2:f6:98:f2:fa:25:22:47:ee:22:27: 38:e1:14:58:de:20:a3:da:a8:06:a7:9e:52:07:86: e3:f1:c8:5e:70:35:7b:62:55:70:24:b8:44:13:ce: 68:4e:84:90:b9:ad:b8:e1:0a:ab:83:c3:d1:0b:f0: 5f:93:8d:fd:c7:75:dc:f8:b6:21:f6:51:5f:3f:7a: 87:1d:0f:86:a7:18:4f:33:b5:d8:8e:ed:1f:86:36: f4:45:5f:03:11:65:73:b2:d1:ff:4e:7b:31:8e:86: 6a:fe:36:b8:1c:93:e4:f7:5b:d8:5b:b3:43:9b:74: f1:cd:9f:b8:2c:48:6a:58:f4:80:9d:45:43:59:bd: 42:94:1d:ae:16:fe:1b:2d:82:c3:32:50:e2:22:f6: 39:75:38:ae:48:94:ab:47:8a:35:8e:06:9e:03:b9: 09:64:da:99:0d:9e:9b:52:d0:05:f3:49:f9:5a:1d: 1c:7d:63:66:56:1f:f9:40:ea:dd:3a:0c:1a:2e:89: d5:3d:72:98:ab:8c:6d:10:9c:1c:b0:db:07:8a:08: c3:40:77:2c:66:1e:0e:66:b8:0a:51:92:27:6c:e8: 73:c5:a2:6b:14:c4:58:f8:35:5f:af:db:f9:71:f3: b9:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:36:AF:C9:AD:E2:37:E7:A3:D5:9B:79:18:6F:A5:02:DA:E5:06:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a968700-a089-4299-8b14-9a9aa6edf062.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.18.0/23 Signature Algorithm: sha256WithRSAEncryption c1:8f:b4:7f:09:9e:5d:e6:26:34:ee:6e:51:45:86:04:72:8d: 0c:27:00:42:e1:ce:b8:e4:8a:ea:19:61:24:e1:a0:f7:7e:f7: 25:bb:65:55:5d:f1:b3:67:f0:98:42:9c:9e:96:74:18:9d:78: b0:92:4e:3f:dc:82:97:f9:1c:36:64:d9:c4:7d:6f:ef:53:a1: d1:f5:3a:75:b0:62:4e:56:0d:5a:15:a0:64:7f:dd:f6:5d:8d: 90:7e:21:ff:30:ea:96:b7:ec:56:07:df:d2:80:87:8b:2c:12: 29:49:8b:7a:69:92:85:10:6d:07:05:f3:e9:df:8b:aa:54:50: d3:b4:e8:13:4e:a8:59:2d:71:dc:58:42:e1:1d:d1:4a:c6:0b: 0c:ae:f8:ad:29:57:00:53:6e:96:3b:d0:4f:c2:ba:d8:85:a4: 9a:cf:f2:3e:a0:1d:c0:12:41:e6:d7:e3:67:93:79:4d:2b:36: 57:f4:4a:bf:0b:99:2f:c1:8a:71:7e:dd:58:cd:22:7a:20:5b: cc:a2:2d:2a:50:59:d3:3c:fd:0a:c2:ec:66:38:9b:86:74:6b: af:f6:ef:3b:6d:d3:e9:b7:a4:3b:ff:65:a8:41:ec:dd:5e:93: 5e:ad:fc:c6:50:87:36:5d:bb:5e:c5:c9:f7:c2:ef:c8:4e:2b: 51:07:d8:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa1NbwzeZ/xFVr7c8oNGegQ/G30YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjk0NWJkZTM3OThlNDAwODVjZmZhYzY1YTY5NTIzNzk1 OWMyNjE1YzIzZWE4NDZkOTg1ZjFlYWU1ZWUwY2IxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPxxdsuWFs7BNHk9/26pr0VVui9pjy+iUiR+4iJzjhFFje IKPaqAannlIHhuPxyF5wNXtiVXAkuEQTzmhOhJC5rbjhCquDw9EL8F+Tjf3Hddz4 tiH2UV8/eocdD4anGE8ztdiO7R+GNvRFXwMRZXOy0f9OezGOhmr+Nrgck+T3W9hb s0ObdPHNn7gsSGpY9ICdRUNZvUKUHa4W/hstgsMyUOIi9jl1OK5IlKtHijWOBp4D uQlk2pkNnptS0AXzSflaHRx9Y2ZWH/lA6t06DBouidU9cpirjG0QnByw2weKCMNA dyxmHg5muApRkids6HPFomsUxFj4NV+v2/lx87nHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURDavya3iN+ej1Zt5GG+lAtrlBlgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhOTY4NzAwLWEwODktNDI5OS04YjE0LTlhOWFhNmVkZjA2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEQDBIwDQYJKoZIhvcNAQELBQADggEBAMGPtH8Jnl3mJjTublFFhgRyjQwn AELhzrjkiuoZYSThoPd+9yW7ZVVd8bNn8JhCnJ6WdBideLCSTj/cgpf5HDZk2cR9 b+9TodH1OnWwYk5WDVoVoGR/3fZdjZB+If8w6pa37FYH39KAh4ssEilJi3ppkoUQ bQcF8+nfi6pUUNO06BNOqFktcdxYQuEd0UrGCwyu+K0pVwBTbpY70E/CutiFpJrP 8j6gHcASQebX42eTeU0rNlf0Sr8LmS/BinF+3VjNInogW8yiLSpQWdM8/QrC7GY4 m4Z0a6/27ztt0+m3pDv/ZahB7N1ek16t/MZQhzZdu17FyffC78hOK1EH2F8= -----END CERTIFICATE-----Generated at Thu Apr 25 20:25:18 2024 by rpki-client on console-fra.rpki-client.org