$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/915eed93-29ec-45eb-b704-b28c96a06443.roa File: 915eed93-29ec-45eb-b704-b28c96a06443.roa (raw, json) Hash identifier: 5h3+38sna1K7aSACE5ZtYiHMTGLBujRyzE5JORjE8NY= Subject key identifier: BE:18:E4:FF:6F:68:91:D0:80:4B:B0:12:3F:53:E4:8F:53:9C:13:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BD44BF49901B0CD693B2A28923057C53806241E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/915eed93-29ec-45eb-b704-b28c96a06443.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.64.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d4:4b:f4:99:01:b0:cd:69:3b:2a:28:92:30:57:c5:38:06:24:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=8f0c5278b9ad302f1a4edcc4c780b9a80a4dc0cc32c79a791a94523571065dda, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:d1:e2:fd:06:02:e5:bd:8b:ce:17:67:78:7e: 7d:4a:b1:29:7c:19:11:2b:d4:f2:8e:a5:b6:2d:44: 93:53:47:14:cb:22:f9:6b:56:a2:29:bc:81:45:34: 2e:85:8f:86:f7:a7:72:d8:61:a1:c6:c4:7c:81:e6: 42:5b:1c:15:7d:c8:b9:5d:9c:42:a2:90:60:5f:3d: f7:42:71:6b:cb:3f:82:99:a0:c4:73:2c:7f:9e:75: 17:d4:0e:74:da:5b:e4:d4:e5:9e:d1:22:1c:f5:e5: fc:3f:3a:e4:54:27:c2:b2:4a:81:27:0e:42:d0:6e: 07:51:50:e6:ce:6a:7a:be:70:57:93:22:79:fb:91: e9:67:b1:c9:2d:c5:12:b3:ae:09:60:94:86:42:5a: ce:55:81:67:43:0b:c8:53:f0:b5:4b:17:a7:6d:bc: 89:fa:23:31:34:57:1f:bb:b7:22:14:0e:c3:a2:22: 23:fb:fa:d1:1f:9f:83:78:bd:06:27:bb:13:9e:bb: ad:f6:18:d7:d3:b9:db:14:03:1d:03:b5:b7:40:b4: 25:38:d7:bb:e8:c3:e5:07:18:78:34:51:70:71:d0: af:fb:1c:2c:e8:2d:5b:a6:c4:41:a1:87:cb:06:97: c2:ba:d4:21:f4:82:c3:01:67:28:05:06:64:80:19: f8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:18:E4:FF:6F:68:91:D0:80:4B:B0:12:3F:53:E4:8F:53:9C:13:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/915eed93-29ec-45eb-b704-b28c96a06443.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.64.0.0/16 Signature Algorithm: sha256WithRSAEncryption 58:d5:eb:81:67:7e:14:82:7f:aa:2e:f3:68:27:da:e8:67:1f: 4e:cb:3a:1a:c9:0a:ef:81:62:43:87:08:03:1e:5d:c4:df:df: 1a:20:a2:06:e0:f9:37:93:37:ea:d0:4f:5f:fd:ae:86:78:96: 75:8a:e8:42:b2:ba:49:c5:ad:5e:01:46:a9:5d:ea:ba:18:2e: f6:ea:da:b9:96:1a:4a:2e:31:2b:4d:4f:97:14:25:c6:1f:0e: 52:9c:16:09:6f:00:4b:e7:ee:19:d3:f1:a3:8e:cc:48:22:6f: 42:9f:30:70:5a:a5:74:98:82:98:5d:c9:71:8b:69:63:50:b0: 0a:11:e4:90:33:d4:60:5f:b2:65:dd:3d:0c:4a:b0:df:b3:bb: a7:fa:da:5d:7c:e6:a8:6d:a9:7d:72:0b:94:53:06:b0:16:3e: 7b:3b:ed:12:6e:a7:3f:06:30:f7:2f:16:16:e6:92:9d:88:4c: ab:5b:a1:be:fc:d4:16:36:0b:46:46:ed:d7:29:e0:07:d0:4a: e8:a3:21:42:a3:50:65:37:f0:3d:19:6f:a8:a0:e1:05:bf:27: ee:f3:5d:59:f2:f7:06:be:6b:3a:5d:2e:23:b2:7a:d8:38:47: 2a:0a:15:18:ac:13:fc:0a:71:26:fe:bf:ce:8f:57:13:f8:07: 0b:f2:53:62 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUW9RL9JkBsM1pOyookjBXxTgGJB4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjBjNTI3OGI5YWQzMDJmMWE0ZWRjYzRjNzgwYjlhODBh NGRjMGNjMzJjNzlhNzkxYTk0NTIzNTcxMDY1ZGRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD50eL9BgLlvYvOF2d4fn1KsSl8GREr1PKOpbYtRJNTRxTL IvlrVqIpvIFFNC6Fj4b3p3LYYaHGxHyB5kJbHBV9yLldnEKikGBfPfdCcWvLP4KZ oMRzLH+edRfUDnTaW+TU5Z7RIhz15fw/OuRUJ8KySoEnDkLQbgdRUObOanq+cFeT Inn7kelnscktxRKzrglglIZCWs5VgWdDC8hT8LVLF6dtvIn6IzE0Vx+7tyIUDsOi IiP7+tEfn4N4vQYnuxOeu632GNfTudsUAx0DtbdAtCU417vow+UHGHg0UXBx0K/7 HCzoLVumxEGhh8sGl8K61CH0gsMBZygFBmSAGfijAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUvhjk/29okdCAS7ASP1Pkj1OcE80wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxNWVlZDkzLTI5ZWMtNDVlYi1iNzA0LWIyOGM5NmEwNjQ0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQQDANBgkqhkiG9w0BAQsFAAOCAQEAWNXrgWd+FIJ/qi7zaCfa6GcfTss6 GskK74FiQ4cIAx5dxN/fGiCiBuD5N5M36tBPX/2uhniWdYroQrK6ScWtXgFGqV3q uhgu9urauZYaSi4xK01PlxQlxh8OUpwWCW8AS+fuGdPxo47MSCJvQp8wcFqldJiC mF3JcYtpY1CwChHkkDPUYF+yZd09DEqw37O7p/raXXzmqG2pfXILlFMGsBY+ezvt Em6nPwYw9y8WFuaSnYhMq1uhvvzUFjYLRkbt1yngB9BK6KMhQqNQZTfwPRlvqKDh Bb8n7vNdWfL3Br5rOl0uI7J62DhHKgoVGKwT/ApxJv6/zo9XE/gHC/JTYg== -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:19 2024 by rpki-client on console-ams.rpki-client.org