$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6f7e63b-2d4c-4efa-b76b-8bf81eb02bb2.roa File: a6f7e63b-2d4c-4efa-b76b-8bf81eb02bb2.roa (raw, json) Hash identifier: qMgE5D5ClxWhu/covh5rqRxPg3sMma95ZERoQmlt7nA= Subject key identifier: FD:91:06:A5:27:05:23:8F:A1:74:E9:7A:7F:05:19:76:1D:20:FF:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 058F271597E27D0926A87DEFE973CBDFBD360D6B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6f7e63b-2d4c-4efa-b76b-8bf81eb02bb2.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:8f:27:15:97:e2:7d:09:26:a8:7d:ef:e9:73:cb:df:bd:36:0d:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=4c96291a5ad987d2da23794835d167417e7f44488e0171a2b8398a447115e018, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ed:c0:39:e8:d1:ef:65:bc:7f:54:6b:62:36: d6:59:bb:6a:b2:41:89:2e:0b:71:cd:ac:55:f8:26: 8c:c7:55:03:99:81:9e:93:d0:3b:d7:73:12:82:4e: 9e:d6:df:10:fb:e3:fe:e5:08:f7:6f:37:8b:e7:3f: f4:c5:bb:fc:fa:71:a0:2e:4c:a3:43:25:97:a4:87: f6:7a:d7:93:ac:93:e4:57:ba:0c:c5:4e:3d:0a:8a: f9:4f:61:ac:74:6a:49:85:8f:0f:24:24:ad:79:2a: fc:0a:30:22:f0:b0:10:db:0b:55:82:8c:fd:e1:3e: 8b:9a:b8:da:fb:62:70:4d:fa:ac:d5:55:69:62:51: 87:0e:34:3d:fe:96:b5:d6:ed:b3:86:0a:a7:02:b5: a6:a7:c7:54:6c:a8:70:2d:e6:bf:86:73:65:c7:09: 21:99:42:04:e4:63:cf:db:f3:40:62:69:45:90:45: 06:37:c2:de:32:21:b0:e4:d7:52:b1:a5:4a:38:60: d1:aa:5e:ac:ff:7a:7b:01:f9:ec:2a:76:e7:64:c0: 81:c0:3e:9a:4a:7c:3c:58:44:f6:a0:37:bc:9c:7b: 3e:ac:8e:f2:84:e1:b8:f3:82:ee:16:71:1c:c6:5e: 98:b5:d5:53:49:e3:4c:0e:12:bc:20:e7:c4:cf:d6: 2c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:91:06:A5:27:05:23:8F:A1:74:E9:7A:7F:05:19:76:1D:20:FF:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6f7e63b-2d4c-4efa-b76b-8bf81eb02bb2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption b8:5b:ba:c4:9b:2e:9b:79:52:05:c8:51:6c:fd:2d:c3:dd:37: 38:9e:f7:0a:d2:94:8d:56:da:5a:db:f3:85:df:9d:2a:84:13: 64:15:10:cc:b7:a2:90:f5:3f:59:b1:a3:62:ce:b0:a7:c4:4d: 7a:18:2d:fb:21:ab:18:04:2f:fb:6d:51:5b:fb:54:fe:f5:f9: 16:ec:87:21:80:fd:ee:7e:fe:a4:a8:91:af:a3:1e:20:40:de: 75:33:12:b9:86:91:0a:5d:8e:cc:b3:d1:2c:f7:94:27:47:56: b1:01:8d:66:85:c8:70:6e:c5:89:9c:b6:00:ad:01:07:1f:ff: 38:8d:e2:1c:f8:00:eb:44:20:44:a0:94:72:35:0d:5e:ab:b1: 0e:6e:3d:0e:98:46:73:cf:20:6e:5c:3d:39:09:a5:ec:de:a6: f7:2a:4a:56:93:ae:02:20:6a:2b:65:c6:89:02:ef:88:16:7c: c2:f2:79:b6:5f:27:30:e3:ac:ab:04:99:ea:8f:82:70:94:1f: ee:ce:58:ad:4e:55:ac:76:55:48:55:30:d8:f2:41:fe:ba:18: df:39:96:1c:75:e3:ce:87:7f:98:1f:d9:cc:c6:a2:6a:48:e4: d7:b5:b0:85:29:f9:d2:e8:50:41:58:c5:0d:d9:3a:08:eb:23: 81:a1:cb:34 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBY8nFZfifQkmqH3v6XPL3702DWswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0Yzk2MjkxYTVhZDk4N2QyZGEyMzc5NDgzNWQxNjc0MTdl N2Y0NDQ4OGUwMTcxYTJiODM5OGE0NDcxMTVlMDE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/7cA56NHvZbx/VGtiNtZZu2qyQYkuC3HNrFX4JozHVQOZ gZ6T0DvXcxKCTp7W3xD74/7lCPdvN4vnP/TFu/z6caAuTKNDJZekh/Z615Osk+RX ugzFTj0KivlPYax0akmFjw8kJK15KvwKMCLwsBDbC1WCjP3hPouauNr7YnBN+qzV VWliUYcOND3+lrXW7bOGCqcCtaanx1RsqHAt5r+Gc2XHCSGZQgTkY8/b80BiaUWQ RQY3wt4yIbDk11KxpUo4YNGqXqz/ensB+ewqdudkwIHAPppKfDxYRPagN7ycez6s jvKE4bjzgu4WcRzGXpi11VNJ40wOErwg58TP1izBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/ZEGpScFI4+hdOl6fwUZdh0g/8kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2ZjdlNjNiLTJkNGMtNGVmYS1iNzZiLThiZjgxZWIwMmJiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvDANBgkqhkiG9w0BAQsFAAOCAQEAuFu6xJsum3lSBchRbP0tw903OJ73 CtKUjVbaWtvzhd+dKoQTZBUQzLeikPU/WbGjYs6wp8RNehgt+yGrGAQv+21RW/tU /vX5FuyHIYD97n7+pKiRr6MeIEDedTMSuYaRCl2OzLPRLPeUJ0dWsQGNZoXIcG7F iZy2AK0BBx//OI3iHPgA60QgRKCUcjUNXquxDm49DphGc88gblw9OQml7N6m9ypK VpOuAiBqK2XGiQLviBZ8wvJ5tl8nMOOsqwSZ6o+CcJQf7s5YrU5VrHZVSFUw2PJB /roY3zmWHHXjzod/mB/ZzMaiakjk17WwhSn50uhQQVjFDdk6COsjgaHLNA== -----END CERTIFICATE-----Generated at Thu May 9 15:19:51 2024 by rpki-client on console-fra.rpki-client.org