$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c75697e-cdbd-476b-87c4-53743d6d51ae.roa File: 9c75697e-cdbd-476b-87c4-53743d6d51ae.roa (raw, json) Hash identifier: gikh6yg0ZhvzX3y3SbQYhKrEnlphBGD3eBlNo5FY558= Subject key identifier: 94:BC:FE:3F:E0:F0:31:5B:CF:9A:94:EF:71:FD:DA:AB:DA:90:2C:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45504101E2C5A56A9F8DD78A86D4BB14D8EDEE94 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c75697e-cdbd-476b-87c4-53743d6d51ae.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.155.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:50:41:01:e2:c5:a5:6a:9f:8d:d7:8a:86:d4:bb:14:d8:ed:ee:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=5d8411e840698086c0e92b9e74932081c6b79fe57756a0ef207fa70c61e072ff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:37:15:17:f9:fd:ca:f0:96:0b:7d:1b:24:ea: b0:8a:22:34:0e:6d:50:b3:fd:2d:0b:4d:57:9e:85: d1:bc:b2:e1:f6:d9:bf:43:ec:2c:d7:cc:da:b3:92: 91:a9:00:7c:38:5f:a3:46:fc:93:df:1f:7c:9e:3a: 0e:7c:2b:ca:11:e5:0e:6d:8d:00:a5:eb:29:64:07: 43:99:d4:a8:de:da:1a:be:d3:62:13:a5:ba:ec:61: 6f:b2:ff:ee:f4:90:b6:ec:cd:79:b0:76:31:87:6e: 62:f0:31:5d:c2:70:3e:16:b6:2e:7f:7c:89:4a:12: 8b:0b:b6:09:19:d1:06:47:c4:cf:d0:e6:38:9b:32: b8:34:e2:ec:ef:b5:0d:0d:44:6f:45:72:8c:dc:bc: b6:8e:49:79:5d:29:7b:55:ec:58:40:ed:fa:67:69: 70:16:c1:f0:f5:ee:b3:ce:fc:d5:88:6b:ff:24:76: fb:28:56:7c:fc:f8:07:0c:da:a9:f0:29:c8:13:a2: cb:ce:66:6d:bf:2f:19:68:21:4f:46:3b:10:f5:98: 3e:8e:56:a2:08:c3:c6:7f:7a:0d:73:35:34:39:dc: 9f:9e:47:b4:2c:d8:bb:d1:5a:44:62:68:d6:c1:66: 38:28:e7:e6:2b:11:ef:0a:6a:6d:fc:2e:d8:4a:49: ce:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:BC:FE:3F:E0:F0:31:5B:CF:9A:94:EF:71:FD:DA:AB:DA:90:2C:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c75697e-cdbd-476b-87c4-53743d6d51ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.155.0.0/16 Signature Algorithm: sha256WithRSAEncryption 53:e0:5e:f4:06:3a:00:a0:a4:1a:91:34:11:70:a9:34:5e:bb: 1a:99:ef:12:6f:c0:eb:f3:c3:79:46:51:b5:48:86:21:d8:60: ef:60:6c:e0:0e:7a:7f:71:57:85:b7:41:cb:c1:fb:cf:81:07: cc:7d:d6:fb:aa:36:71:aa:0f:28:48:a7:ad:c8:c7:4d:47:93: 03:ba:aa:7c:66:35:95:c7:25:e0:bb:a3:fd:e5:f3:4c:78:f6: 49:97:28:f1:af:92:d7:21:b4:9d:8a:dc:7e:ca:16:99:5e:19: 1d:d7:29:95:f5:fc:8f:22:4f:0f:55:1a:ea:b9:f7:3f:f6:6a: 1d:a1:f1:7f:fa:eb:32:ff:f6:dd:49:0d:4a:98:07:0b:08:90: 47:74:73:88:55:a9:c0:da:95:f0:6b:b2:8f:65:ae:9b:ba:43: 89:1b:54:d2:e1:f1:2f:ed:b4:11:ca:94:52:47:fe:d4:40:1d: 7a:eb:dd:1e:f0:a4:13:92:bb:8f:66:29:64:b5:b2:9d:39:9b: 98:e2:d9:ab:3f:ac:b6:ce:22:0b:a3:1f:77:1a:48:d4:77:cf: 1b:e3:33:86:c3:3b:dd:65:dd:2d:f6:d5:a0:9f:bf:36:90:61: 18:6f:3c:39:74:79:af:60:3a:6d:97:f3:77:bc:3e:4b:6a:c7: 13:da:74:7c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURVBBAeLFpWqfjdeKhtS7FNjt7pQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDg0MTFlODQwNjk4MDg2YzBlOTJiOWU3NDkzMjA4MWM2 Yjc5ZmU1Nzc1NmEwZWYyMDdmYTcwYzYxZTA3MmZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyNxUX+f3K8JYLfRsk6rCKIjQObVCz/S0LTVeehdG8suH2 2b9D7CzXzNqzkpGpAHw4X6NG/JPfH3yeOg58K8oR5Q5tjQCl6ylkB0OZ1Kje2hq+ 02ITpbrsYW+y/+70kLbszXmwdjGHbmLwMV3CcD4Wti5/fIlKEosLtgkZ0QZHxM/Q 5jibMrg04uzvtQ0NRG9FcozcvLaOSXldKXtV7FhA7fpnaXAWwfD17rPO/NWIa/8k dvsoVnz8+AcM2qnwKcgTosvOZm2/LxloIU9GOxD1mD6OVqIIw8Z/eg1zNTQ53J+e R7Qs2LvRWkRiaNbBZjgo5+YrEe8Kam38LthKSc6tAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlLz+P+DwMVvPmpTvcf3aq9qQLKcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzljNzU2OTdlLWNkYmQtNDc2Yi04N2M0LTUzNzQzZDZkNTFhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQmzANBgkqhkiG9w0BAQsFAAOCAQEAU+Be9AY6AKCkGpE0EXCpNF67Gpnv Em/A6/PDeUZRtUiGIdhg72Bs4A56f3FXhbdBy8H7z4EHzH3W+6o2caoPKEinrcjH TUeTA7qqfGY1lccl4Luj/eXzTHj2SZco8a+S1yG0nYrcfsoWmV4ZHdcplfX8jyJP D1Ua6rn3P/ZqHaHxf/rrMv/23UkNSpgHCwiQR3RziFWpwNqV8Guyj2Wum7pDiRtU 0uHxL+20EcqUUkf+1EAdeuvdHvCkE5K7j2YpZLWynTmbmOLZqz+sts4iC6MfdxpI 1HfPG+MzhsM73WXdLfbVoJ+/NpBhGG88OXR5r2A6bZfzd7w+S2rHE9p0fA== -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:54 2024 by rpki-client on console-fra.rpki-client.org