$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adb1acaf-d7d9-4e16-883d-5d2b3900c796.roa File: adb1acaf-d7d9-4e16-883d-5d2b3900c796.roa (raw, json) Hash identifier: 8NB5p9p/OZ5EOIHCmbNh7oMaafU5qvKxstYua6Zfzpc= Subject key identifier: 27:15:9E:31:C5:7A:BB:3B:9B:10:29:C9:A2:45:08:E8:98:28:01:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BE090F916FFC3097B9C748B0D7EF7592E881124 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adb1acaf-d7d9-4e16-883d-5d2b3900c796.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.62.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:e0:90:f9:16:ff:c3:09:7b:9c:74:8b:0d:7e:f7:59:2e:88:11:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=ec54bd50ca66deeab5b71bf612897403e75d800c02d39c97944d6d45ea6a8325, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:81:30:03:01:82:9b:50:1c:d2:7f:84:24:14: 92:42:4b:f3:b2:dc:6b:91:87:71:2d:65:03:f0:c4: 16:18:23:0c:14:33:0b:2e:b4:d5:0d:19:b6:ca:21: 08:a0:7d:74:df:8d:7a:ce:cd:0e:6e:48:8c:52:55: e3:c9:5d:66:9a:2e:38:da:9a:db:a2:f4:ec:3b:5b: 00:fa:03:4f:2c:7f:f6:29:b7:f9:f4:61:50:a2:f6: d7:21:23:71:ed:9b:bd:43:a1:84:91:2d:9d:6e:65: ad:3b:9b:68:ad:cc:70:4c:f0:80:07:62:75:42:e1: c5:9f:8e:fc:05:ec:97:f7:08:b3:fc:ef:89:6c:28: df:29:19:dc:b7:db:ae:7b:af:7e:9a:fb:d1:04:6c: 73:92:a1:d5:6a:9b:13:ab:79:3a:93:9e:98:a8:6a: 8f:d9:c3:f9:a7:2b:4e:f5:88:d3:e4:f3:0a:46:4c: a8:90:3a:69:ba:9b:d2:46:0d:d7:3e:92:a8:7b:24: a6:9f:77:c2:07:1c:df:62:0f:5e:8a:76:3b:b1:88: 31:9d:82:b7:76:60:93:38:95:49:d8:03:99:07:3c: ce:c3:45:e4:4c:17:42:ea:77:ca:8a:99:ab:c1:11: 7f:71:d3:03:28:58:05:33:47:e1:ee:70:43:c5:84: 1b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:15:9E:31:C5:7A:BB:3B:9B:10:29:C9:A2:45:08:E8:98:28:01:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adb1acaf-d7d9-4e16-883d-5d2b3900c796.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.62.0.0/15 Signature Algorithm: sha256WithRSAEncryption 49:42:6b:cb:00:a9:5b:14:df:69:17:c5:2e:ef:58:d9:67:91: ac:b7:77:c1:2a:78:e6:51:cc:08:c7:fd:f1:b9:6e:e3:df:c0: 87:d6:3d:68:c5:73:a2:93:11:61:12:8a:d1:9e:ea:2c:ce:04: 82:a3:ba:79:8b:dc:ec:5a:2b:a8:7a:d7:b6:1f:88:59:b0:a5: ff:2a:41:cb:98:9f:87:65:65:ef:0a:cc:51:3b:d5:0e:e0:6f: a4:62:42:46:62:dd:56:dc:72:2f:0d:3b:dc:40:42:f4:26:f8: ad:97:46:9a:d5:b6:ef:16:51:5e:31:41:2a:37:98:59:ab:1c: 60:c8:7e:98:ff:58:d1:e3:d7:d6:a9:f8:f1:79:6b:cf:c6:fa: 40:e8:b6:b7:7d:39:6a:da:36:b6:9e:ad:ce:55:a2:9a:a9:7d: 5c:a2:2a:46:a3:3f:eb:bb:69:77:e0:40:35:30:c7:31:ec:b0: df:16:24:ca:af:dd:c8:25:d4:10:31:96:f4:69:e7:75:59:92: 8b:63:7b:bb:e5:21:83:d5:00:33:1f:76:ff:e7:ed:8b:6c:8b: ea:ac:f5:3f:4c:29:b1:f0:a4:eb:8f:3a:33:d1:04:31:a5:d9: 6a:4f:49:b1:f3:d7:fc:fb:bf:82:1a:ff:44:b0:55:ae:24:67: 9b:e8:14:5b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUW+CQ+Rb/wwl7nHSLDX73WS6IESQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzU0YmQ1MGNhNjZkZWVhYjViNzFiZjYxMjg5NzQwM2U3 NWQ4MDBjMDJkMzljOTc5NDRkNmQ0NWVhNmE4MzI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAgTADAYKbUBzSf4QkFJJCS/Oy3GuRh3EtZQPwxBYYIwwU MwsutNUNGbbKIQigfXTfjXrOzQ5uSIxSVePJXWaaLjjamtui9Ow7WwD6A08sf/Yp t/n0YVCi9tchI3Htm71DoYSRLZ1uZa07m2itzHBM8IAHYnVC4cWfjvwF7Jf3CLP8 74lsKN8pGdy32657r36a+9EEbHOSodVqmxOreTqTnpioao/Zw/mnK071iNPk8wpG TKiQOmm6m9JGDdc+kqh7JKafd8IHHN9iD16KdjuxiDGdgrd2YJM4lUnYA5kHPM7D ReRMF0Lqd8qKmavBEX9x0wMoWAUzR+HucEPFhBupAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJxWeMcV6uzubECnJokUI6JgoAS8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkYjFhY2FmLWQ3ZDktNGUxNi04ODNkLTVkMmIzOTAwYzc5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQPjANBgkqhkiG9w0BAQsFAAOCAQEASUJrywCpWxTfaRfFLu9Y2WeRrLd3 wSp45lHMCMf98blu49/Ah9Y9aMVzopMRYRKK0Z7qLM4EgqO6eYvc7ForqHrXth+I WbCl/ypBy5ifh2Vl7wrMUTvVDuBvpGJCRmLdVtxyLw073EBC9Cb4rZdGmtW27xZR XjFBKjeYWascYMh+mP9Y0ePX1qn48Xlrz8b6QOi2t305ato2tp6tzlWimql9XKIq RqM/67tpd+BANTDHMeyw3xYkyq/dyCXUEDGW9GnndVmSi2N7u+Uhg9UAMx92/+ft i2yL6qz1P0wpsfCk6486M9EEMaXZak9JsfPX/Pu/ghr/RLBVriRnm+gUWw== -----END CERTIFICATE-----Generated at Thu May 9 01:25:42 2024 by rpki-client on console-fra.rpki-client.org