$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a943f07c-803a-494b-ac3a-c1da0a65f0d4.roa File: a943f07c-803a-494b-ac3a-c1da0a65f0d4.roa (raw, json) Hash identifier: 43EFOhhou28nPxHJHmUOFXeDQUkC3AnVGXBZBjJRqRg= Subject key identifier: 85:25:02:BD:6D:F1:47:A2:5A:56:5E:6C:0D:72:4E:56:2E:50:F2:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 601433AF706187DB86386B83CCC05D6AB79C31F9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a943f07c-803a-494b-ac3a-c1da0a65f0d4.roa Signing time: Fri 26 Apr 2024 00:00:00 +0000 ROA not before: Fri 26 Apr 2024 00:00:00 +0000 ROA not after: Fri 31 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:14:33:af:70:61:87:db:86:38:6b:83:cc:c0:5d:6a:b7:9c:31:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 26 00:00:00 2024 GMT Not After : May 31 23:59:59 2024 GMT Subject: serialNumber=abb4f6c7a01d6076c5da5653f9fc0db832411502a8b734a433891ea7fe8778e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dd:b1:ea:e9:37:d4:f2:f8:79:56:d7:e7:39: f9:8a:9a:dc:ed:68:91:88:bc:f5:a7:9a:b1:ea:e7: 78:b2:ff:ad:e8:1f:ce:25:40:9b:f2:84:c5:ca:1d: 18:8e:69:7b:ca:2b:12:8f:85:03:10:1f:00:ac:95: 16:78:b1:c3:93:e6:27:77:63:59:db:66:50:77:2b: 7c:eb:ad:d6:58:b4:1a:83:3d:f6:50:0c:03:57:3b: aa:04:ec:be:e6:d1:e7:97:04:0c:ab:e9:60:3c:18: cd:5a:5b:59:b4:1b:c2:28:22:c5:4f:c1:25:c7:91: d7:c3:d3:ec:ea:13:1f:ba:ed:1e:80:5e:c2:02:e0: a8:e7:b2:e1:92:4a:28:3c:c2:98:18:2d:84:a4:1f: f2:1e:99:88:89:a5:a8:e6:29:38:01:63:65:91:61: a5:76:2d:f7:71:80:14:18:8a:19:df:27:1c:9b:f0: 90:89:cd:21:6a:95:ce:17:d3:fd:aa:9d:a6:dd:95: 58:3d:7c:dd:83:b7:a2:a1:4f:ad:5a:c8:40:d7:04: 8d:f8:9c:5f:18:8a:72:49:d4:14:6e:d0:3a:df:23: 67:42:d0:90:2f:48:44:25:32:85:d0:1d:28:aa:6b: b5:b7:6e:f7:35:c2:b2:ab:e2:0b:88:1f:96:f3:ea: 7b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:25:02:BD:6D:F1:47:A2:5A:56:5E:6C:0D:72:4E:56:2E:50:F2:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a943f07c-803a-494b-ac3a-c1da0a65f0d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.71.0/24 Signature Algorithm: sha256WithRSAEncryption cd:48:1d:f3:de:35:7c:ef:4e:a6:cb:08:04:97:ea:bd:46:10: 6f:e5:25:5c:f0:77:9a:10:76:a9:ef:02:3d:88:e1:f2:1d:b8: fd:bf:fb:80:f2:77:e3:38:1b:02:08:6d:41:7b:61:76:6c:1b: ee:da:cb:37:73:66:04:8e:fd:09:59:95:6a:82:81:0f:0b:cb: b8:c1:fd:1b:fb:97:fc:09:31:72:a2:d8:e5:cf:f6:8c:c2:51: bf:63:02:c9:89:b8:2b:8b:e0:c5:23:13:de:fc:f6:8c:39:e2: 08:99:10:e2:ff:85:18:2d:13:4f:a0:f4:04:bc:01:09:0c:6c: 80:ba:b4:76:f8:6c:05:f7:a5:ff:c6:ab:a8:5e:1f:d7:e2:41: 3d:8f:4a:5a:71:bd:55:93:b3:28:cc:d0:db:dc:6f:f3:90:93: 9c:95:93:6a:fd:e1:43:0d:0a:f7:68:1c:91:48:40:da:2a:ae: 7c:19:b7:c7:58:2d:c1:bd:ff:dd:08:12:61:d5:7d:3e:27:3b: 8e:8b:d5:d0:87:7b:20:28:86:a8:65:08:a5:ec:9b:9c:e1:b8: 35:b1:b2:ac:57:36:59:b7:90:d1:1b:09:2d:df:b1:36:e3:9d: 6d:c3:db:a1:9f:5c:2a:1d:9a:14:32:51:b2:86:09:ea:f9:09: 97:86:87:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYBQzr3Bhh9uGOGuDzMBdarecMfkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI2MDAwMDAwWhcNMjQwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmI0ZjZjN2EwMWQ2MDc2YzVkYTU2NTNmOWZjMGRiODMy NDExNTAyYThiNzM0YTQzMzg5MWVhN2ZlODc3OGU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+3bHq6TfU8vh5VtfnOfmKmtztaJGIvPWnmrHq53iy/63o H84lQJvyhMXKHRiOaXvKKxKPhQMQHwCslRZ4scOT5id3Y1nbZlB3K3zrrdZYtBqD PfZQDANXO6oE7L7m0eeXBAyr6WA8GM1aW1m0G8IoIsVPwSXHkdfD0+zqEx+67R6A XsIC4KjnsuGSSig8wpgYLYSkH/IemYiJpajmKTgBY2WRYaV2LfdxgBQYihnfJxyb 8JCJzSFqlc4X0/2qnabdlVg9fN2Dt6KhT61ayEDXBI34nF8YinJJ1BRu0DrfI2dC 0JAvSEQlMoXQHSiqa7W3bvc1wrKr4guIH5bz6nuXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhSUCvW3xR6JaVl5sDXJOVi5Q8jUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5NDNmMDdjLTgwM2EtNDk0Yi1hYzNhLWMxZGEwYTY1ZjBkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAQDEcwDQYJKoZIhvcNAQELBQADggEBAM1IHfPeNXzvTqbLCASX6r1GEG/l JVzwd5oQdqnvAj2I4fIduP2/+4Dyd+M4GwIIbUF7YXZsG+7ayzdzZgSO/QlZlWqC gQ8Ly7jB/Rv7l/wJMXKi2OXP9ozCUb9jAsmJuCuL4MUjE9789ow54giZEOL/hRgt E0+g9AS8AQkMbIC6tHb4bAX3pf/Gq6heH9fiQT2PSlpxvVWTsyjM0Nvcb/OQk5yV k2r94UMNCvdoHJFIQNoqrnwZt8dYLcG9/90IEmHVfT4nO46L1dCHeyAohqhlCKXs m5zhuDWxsqxXNlm3kNEbCS3fsTbjnW3D26GfXCodmhQyUbKGCer5CZeGh3c= -----END CERTIFICATE-----Generated at Thu May 2 17:41:16 2024 by rpki-client on console-fra.rpki-client.org