$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9929b47c-a127-4e49-9843-84b3967adcfc.roa File: 9929b47c-a127-4e49-9843-84b3967adcfc.roa (raw, json) Hash identifier: OF4+XP+YzC2EJsrmbowI4Fwq7xcGEvIyFFVK1/ikz/8= Subject key identifier: 81:9F:4C:BE:3D:91:36:C6:42:22:5E:E1:B1:C9:61:1C:9A:5C:45:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 113A41DC6791F9203217FE6DBACD48E43EE19A1E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9929b47c-a127-4e49-9843-84b3967adcfc.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.15.0.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:3a:41:dc:67:91:f9:20:32:17:fe:6d:ba:cd:48:e4:3e:e1:9a:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=1844a7f03fe466d9a1fd3b2c2785955b6d2e1d4f2c221ce6363cfc0cdbf9a95a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c0:35:38:ec:7c:bb:f2:0e:bb:51:5a:44:65: 15:46:c8:ad:5a:35:6c:00:c6:3d:3b:88:1c:3a:17: 2b:cd:1d:c4:17:f8:66:aa:90:b2:e5:93:b8:0e:78: 6c:56:bf:68:77:7a:59:b5:fa:3d:7f:df:c6:89:a0: 7a:b7:49:a9:fe:e4:1d:e8:2e:74:b7:84:17:49:35: 87:c0:19:28:bb:47:61:23:ed:0c:f3:bf:39:66:11: fd:6b:be:2f:f0:7e:bf:49:55:0d:a4:57:00:35:29: 4d:33:a9:13:01:6a:f6:d4:d9:53:4c:bc:ec:59:c1: 0c:11:ef:50:aa:0d:89:d4:ad:68:c5:47:ab:3b:09: de:91:2d:c0:27:ce:34:b4:b7:77:2a:61:a8:ad:23: 84:77:cd:f4:10:4c:5a:0b:b8:16:6f:21:98:82:cf: 32:4d:a0:08:7f:86:57:ff:16:fd:e7:64:6d:0f:d2: da:27:f7:ee:1b:31:0b:7e:e2:4b:1e:f8:ed:7e:81: e0:de:7a:18:89:84:5d:eb:92:02:30:1d:34:1d:e9: 1f:d7:ab:c7:b9:3c:62:ad:94:41:76:b2:fb:cb:a0: 1f:c2:97:e9:b7:83:a7:de:46:0f:2c:8d:0c:5d:07: 3d:4c:eb:02:27:cf:11:10:dd:71:5c:64:74:23:d9: ca:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:9F:4C:BE:3D:91:36:C6:42:22:5E:E1:B1:C9:61:1C:9A:5C:45:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9929b47c-a127-4e49-9843-84b3967adcfc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.15.0.0/21 Signature Algorithm: sha256WithRSAEncryption 01:2f:b1:ee:61:a4:f8:37:71:e1:c6:e6:c4:7a:0d:96:7a:1d: f3:5e:2d:6c:77:42:1d:8c:7b:e8:91:5a:7b:28:55:98:bb:57: 60:c6:84:f6:19:48:bd:49:22:3f:b7:38:ea:64:e3:30:18:ce: 92:ec:cf:c5:10:63:a4:37:a9:16:96:e4:77:99:f6:a8:f6:a5: d8:54:1e:ef:70:26:f8:88:71:21:fd:ac:90:f8:f9:08:1f:bb: 8a:97:ca:53:88:33:61:ca:ef:76:c4:9d:a9:02:56:d9:00:c8: 2e:4d:9b:81:cc:9f:f8:25:5b:59:b9:be:58:8d:03:09:17:83: 8b:af:1f:cc:f5:bc:ef:a7:07:73:2d:19:29:31:3a:55:17:68: 87:cc:5e:e4:09:26:b2:a1:7a:e0:dd:81:43:1f:4e:4d:cc:93: a7:ea:09:29:22:50:24:43:81:71:06:8f:3f:fc:e0:56:aa:65: 7c:e3:60:35:37:da:b8:4c:5b:ec:18:b3:0d:53:37:55:c0:bb: 55:14:23:06:12:d1:f2:98:d3:ed:eb:14:42:be:a2:08:f9:40: fb:04:a6:43:43:08:9f:52:0d:c2:40:31:c8:59:91:96:b7:bd: 6e:92:38:58:46:a9:03:09:7f:01:55:83:ad:5f:2e:58:23:8d: ec:33:91:41 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUETpB3GeR+SAyF/5tus1I5D7hmh4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxODQ0YTdmMDNmZTQ2NmQ5YTFmZDNiMmMyNzg1OTU1YjZk MmUxZDRmMmMyMjFjZTYzNjNjZmMwY2RiZjlhOTVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2wDU47Hy78g67UVpEZRVGyK1aNWwAxj07iBw6FyvNHcQX +GaqkLLlk7gOeGxWv2h3elm1+j1/38aJoHq3San+5B3oLnS3hBdJNYfAGSi7R2Ej 7QzzvzlmEf1rvi/wfr9JVQ2kVwA1KU0zqRMBavbU2VNMvOxZwQwR71CqDYnUrWjF R6s7Cd6RLcAnzjS0t3cqYaitI4R3zfQQTFoLuBZvIZiCzzJNoAh/hlf/Fv3nZG0P 0ton9+4bMQt+4kse+O1+geDeehiJhF3rkgIwHTQd6R/Xq8e5PGKtlEF2svvLoB/C l+m3g6feRg8sjQxdBz1M6wInzxEQ3XFcZHQj2cq5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgZ9Mvj2RNsZCIl7hsclhHJpcRcUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5MjliNDdjLWExMjctNGU0OS05ODQzLTg0YjM5NjdhZGNmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMQDwAwDQYJKoZIhvcNAQELBQADggEBAAEvse5hpPg3ceHG5sR6DZZ6HfNe LWx3Qh2Me+iRWnsoVZi7V2DGhPYZSL1JIj+3OOpk4zAYzpLsz8UQY6Q3qRaW5HeZ 9qj2pdhUHu9wJviIcSH9rJD4+Qgfu4qXylOIM2HK73bEnakCVtkAyC5Nm4HMn/gl W1m5vliNAwkXg4uvH8z1vO+nB3MtGSkxOlUXaIfMXuQJJrKheuDdgUMfTk3Mk6fq CSkiUCRDgXEGjz/84FaqZXzjYDU32rhMW+wYsw1TN1XAu1UUIwYS0fKY0+3rFEK+ ogj5QPsEpkNDCJ9SDcJAMchZkZa3vW6SOFhGqQMJfwFVg61fLlgjjewzkUE= -----END CERTIFICATE-----Generated at Thu May 2 12:23:09 2024 by rpki-client on console-ams.rpki-client.org