$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b972674e-333d-473a-8df0-763a2479adc6.roa File: b972674e-333d-473a-8df0-763a2479adc6.roa (raw, json) Hash identifier: KsI9+W+LKVeVoXrnj+5s0qIajWxCdn6tKjwM8iU29/k= Subject key identifier: 17:A2:67:73:A2:E7:73:DA:3C:D2:A9:D6:E3:DD:7C:E0:1A:F5:6B:66 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19E6C6D490BED8150FFA347DAB531B42477E1460 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b972674e-333d-473a-8df0-763a2479adc6.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.17.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:e6:c6:d4:90:be:d8:15:0f:fa:34:7d:ab:53:1b:42:47:7e:14:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=82aa5887b2c63525893a8297f415447c61c230926adf31f20243db3d2dc25f73, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e8:88:83:8c:e1:67:d4:05:65:91:74:13:f7: 84:19:c9:96:a5:90:58:45:7a:ba:d1:db:a0:73:fa: 40:fb:4b:ac:64:2f:7c:b5:ec:96:7b:95:6f:bc:26: 04:6c:20:fb:06:0c:1e:1c:d8:f9:ce:08:d8:9c:32: 3e:a4:c8:d1:eb:a8:b3:86:86:70:65:71:19:3b:ec: 8f:e4:a3:3d:b4:8d:37:ac:d6:b0:86:67:47:23:8a: 5f:fb:b0:a5:29:b1:95:ff:de:9e:d6:22:07:dd:73: f2:5c:ae:db:df:2b:83:72:d6:0a:6c:2e:ac:2e:3c: bb:c7:da:1d:24:f1:35:77:6e:c2:31:2d:04:0a:0f: 20:e9:6c:63:68:1c:bb:cb:89:a4:1f:29:b2:df:75: b3:71:9e:dd:5d:0c:18:50:03:60:96:39:1a:c8:eb: e6:28:da:b5:19:01:a4:d0:0e:fe:52:fc:07:cd:65: 0d:e8:8e:5f:4f:48:10:78:8e:5f:86:c9:3f:bc:83: 2e:81:a9:9b:da:75:b8:e0:92:c4:d3:15:3a:d9:93: bd:23:93:da:29:fa:a2:12:7f:8b:63:f0:fa:21:d6: 8a:a0:1f:0f:9c:0e:29:5d:96:ac:09:16:e4:5e:66: cb:ad:2b:c4:aa:f5:e9:b1:04:7f:e5:7a:3c:9c:99: 86:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A2:67:73:A2:E7:73:DA:3C:D2:A9:D6:E3:DD:7C:E0:1A:F5:6B:66 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b972674e-333d-473a-8df0-763a2479adc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.17.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3c:01:c1:e3:ea:2d:50:b3:f4:1a:98:73:b9:76:49:06:2e:21: fb:44:dc:c8:c5:47:89:6f:c4:5d:63:a7:e7:60:72:f4:34:57: 60:8b:6e:b7:68:dd:e2:c4:72:51:71:ea:e2:a7:6b:a4:db:f6: 4d:93:1a:8f:ad:f4:84:b8:57:62:e3:e6:9d:4c:fe:ff:2c:97: 6d:df:8f:29:5d:65:5f:20:b1:22:c6:fa:6b:63:86:6d:bb:83: 1a:ef:29:14:73:19:31:2f:51:b3:81:e6:5b:7a:2d:b9:b2:77: 2a:54:a7:52:d6:41:01:ee:33:61:fc:e5:cf:06:88:a9:09:ac: ed:53:49:76:60:b3:96:38:6f:b7:84:3a:e0:65:a8:a0:c6:0f: 12:3e:42:b0:12:c2:63:dd:77:c0:8d:b7:c2:d6:86:31:63:a8: e4:6f:b7:a7:cd:ab:27:f8:4a:8d:b2:70:eb:1d:7f:1a:95:83: 7e:de:50:01:79:0d:04:0d:1e:48:f8:c8:75:09:db:9a:10:2a: 79:cc:09:09:74:49:af:52:33:a1:96:6d:c2:b3:97:66:4b:35: 55:61:0a:38:c8:67:78:56:a4:cb:3a:2d:2d:13:fc:2b:26:f9: da:09:eb:5e:54:0c:24:e9:a8:ed:ac:e5:a6:c1:d0:c4:42:87: de:36:57:a2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGebG1JC+2BUP+jR9q1MbQkd+FGAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MmFhNTg4N2IyYzYzNTI1ODkzYTgyOTdmNDE1NDQ3YzYx YzIzMDkyNmFkZjMxZjIwMjQzZGIzZDJkYzI1ZjczMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd6IiDjOFn1AVlkXQT94QZyZalkFhFerrR26Bz+kD7S6xk L3y17JZ7lW+8JgRsIPsGDB4c2PnOCNicMj6kyNHrqLOGhnBlcRk77I/koz20jTes 1rCGZ0cjil/7sKUpsZX/3p7WIgfdc/JcrtvfK4Ny1gpsLqwuPLvH2h0k8TV3bsIx LQQKDyDpbGNoHLvLiaQfKbLfdbNxnt1dDBhQA2CWORrI6+Yo2rUZAaTQDv5S/AfN ZQ3ojl9PSBB4jl+GyT+8gy6BqZvadbjgksTTFTrZk70jk9op+qISf4tj8Poh1oqg Hw+cDildlqwJFuReZsutK8Sq9emxBH/lejycmYbnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUF6Jnc6Lnc9o80qnW49184Br1a2YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5NzI2NzRlLTMzM2QtNDczYS04ZGYwLTc2M2EyNDc5YWRjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQETANBgkqhkiG9w0BAQsFAAOCAQEAPAHB4+otULP0GphzuXZJBi4h+0Tc yMVHiW/EXWOn52By9DRXYItut2jd4sRyUXHq4qdrpNv2TZMaj630hLhXYuPmnUz+ /yyXbd+PKV1lXyCxIsb6a2OGbbuDGu8pFHMZMS9Rs4HmW3otubJ3KlSnUtZBAe4z YfzlzwaIqQms7VNJdmCzljhvt4Q64GWooMYPEj5CsBLCY913wI23wtaGMWOo5G+3 p82rJ/hKjbJw6x1/GpWDft5QAXkNBA0eSPjIdQnbmhAqecwJCXRJr1IzoZZtwrOX Zks1VWEKOMhneFakyzotLRP8Kyb52gnrXlQMJOmo7azlpsHQxEKH3jZXog== -----END CERTIFICATE-----Generated at Wed May 1 20:48:06 2024 by rpki-client on console-ams.rpki-client.org