$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb5382b8-b941-4dff-bf10-b99c36484947.roa File: bb5382b8-b941-4dff-bf10-b99c36484947.roa (raw, json) Hash identifier: nDwwnTr0TmTcnpqw+h3/C58jD2k059uwQXQ++wdFvi8= Subject key identifier: AF:E8:A5:52:71:79:D2:C1:A1:D5:28:A7:7B:62:7C:C5:E8:99:E4:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45A6A9AE9280CD6E37B2AC33E5F05D43B879FF12 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb5382b8-b941-4dff-bf10-b99c36484947.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.125.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a6:a9:ae:92:80:cd:6e:37:b2:ac:33:e5:f0:5d:43:b8:79:ff:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=b3f5a98f21e495457153864f9eb86db65dd905dea818695756c1306ad180647f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:93:d8:f2:0d:c6:b2:d0:01:81:62:aa:fb:e2: 86:cf:e1:ff:70:e0:3e:10:a3:63:6b:ff:27:01:f4: 59:d5:16:29:03:88:a1:ff:2a:61:66:d8:17:a1:85: 3e:b8:1c:f0:d2:62:0e:4a:52:e0:4d:36:79:a7:94: 14:1d:34:e5:dc:bc:30:92:8c:5a:5d:47:c8:69:2c: e8:1b:fb:0e:df:c1:34:0e:c4:2a:6a:7a:6c:46:47: e2:78:5b:77:b6:77:ab:39:14:f9:00:e7:eb:30:cc: 4f:3a:67:58:a9:6b:1b:b6:24:87:c2:4d:08:9f:be: c7:75:d1:48:82:1f:c1:1c:24:70:d2:ad:7c:ce:8d: c7:81:ad:62:e2:b3:0e:cc:a5:00:5f:ac:3c:26:c2: dd:f5:07:76:68:f9:18:eb:7a:e0:bc:73:6f:fa:9a: 87:ba:5c:e2:d6:1c:a1:e8:bb:74:2c:72:d0:05:50: de:3f:5e:6e:b3:c6:fd:ad:33:e4:2c:6b:3e:45:b3: cd:28:17:b2:e9:ec:3f:33:4d:a2:53:de:f8:e9:39: 91:23:c6:21:99:ba:a4:a7:d7:d4:13:03:67:52:b8: cd:cc:52:c1:41:4b:20:27:c5:62:d2:83:31:c9:48: a3:6c:a1:19:88:73:06:f4:d0:94:02:2b:cb:e3:2c: 08:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E8:A5:52:71:79:D2:C1:A1:D5:28:A7:7B:62:7C:C5:E8:99:E4:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb5382b8-b941-4dff-bf10-b99c36484947.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.125.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4b:bf:8d:4b:ec:47:ab:3d:ac:1f:a6:47:2a:0d:de:6c:b2:35: 52:52:70:92:8e:26:ad:33:92:bc:f8:bf:05:cd:65:29:79:e2: ec:e5:48:89:2a:db:26:8a:b8:f9:b0:0e:90:f4:35:89:25:1e: 72:79:9d:d1:62:af:9c:2e:f8:61:73:13:1f:70:7f:e5:a5:48: 55:e2:95:66:56:63:35:b9:87:06:e5:0a:71:1e:5f:de:b6:29: 6f:e9:cb:78:07:2f:e7:13:ff:f2:35:47:ab:b3:a8:18:8c:ef: 7e:ce:da:6f:51:f0:18:d8:de:a7:32:99:ea:80:54:16:30:c4: e1:82:24:94:86:c2:46:a2:01:c2:d2:22:ab:1a:21:11:ef:7e: 4e:4f:c3:a4:07:b6:bf:20:9c:11:a9:00:d6:c8:ed:10:63:cd: 47:ae:de:2c:f9:df:67:76:25:36:0c:c3:c4:b9:6c:23:5d:3b: 6d:fd:74:6e:57:10:86:61:9d:64:d9:57:45:65:20:df:b1:ac: 4f:6c:b2:84:62:4a:85:db:ea:d5:c5:3c:6d:69:a5:8e:d0:89: 08:d1:73:31:a4:84:12:fa:45:d1:42:84:0f:ca:14:3b:88:ad: d2:b5:b5:54:f4:22:eb:a6:07:ec:97:64:98:93:22:1b:77:04: 61:78:de:e7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURaaprpKAzW43sqwz5fBdQ7h5/xIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2Y1YTk4ZjIxZTQ5NTQ1NzE1Mzg2NGY5ZWI4NmRiNjVk ZDkwNWRlYTgxODY5NTc1NmMxMzA2YWQxODA2NDdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2k9jyDcay0AGBYqr74obP4f9w4D4Qo2Nr/ycB9FnVFikD iKH/KmFm2BehhT64HPDSYg5KUuBNNnmnlBQdNOXcvDCSjFpdR8hpLOgb+w7fwTQO xCpqemxGR+J4W3e2d6s5FPkA5+swzE86Z1ipaxu2JIfCTQifvsd10UiCH8EcJHDS rXzOjceBrWLisw7MpQBfrDwmwt31B3Zo+RjreuC8c2/6moe6XOLWHKHou3QsctAF UN4/Xm6zxv2tM+Qsaz5Fs80oF7Lp7D8zTaJT3vjpOZEjxiGZuqSn19QTA2dSuM3M UsFBSyAnxWLSgzHJSKNsoRmIcwb00JQCK8vjLAhvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUr+ilUnF50sGh1Sine2J8xeiZ5N4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JiNTM4MmI4LWI5NDEtNGRmZi1iZjEwLWI5OWMzNjQ4NDk0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQfTANBgkqhkiG9w0BAQsFAAOCAQEAS7+NS+xHqz2sH6ZHKg3ebLI1UlJw ko4mrTOSvPi/Bc1lKXni7OVIiSrbJoq4+bAOkPQ1iSUecnmd0WKvnC74YXMTH3B/ 5aVIVeKVZlZjNbmHBuUKcR5f3rYpb+nLeAcv5xP/8jVHq7OoGIzvfs7ab1HwGNje pzKZ6oBUFjDE4YIklIbCRqIBwtIiqxohEe9+Tk/DpAe2vyCcEakA1sjtEGPNR67e LPnfZ3YlNgzDxLlsI107bf10blcQhmGdZNlXRWUg37GsT2yyhGJKhdvq1cU8bWml jtCJCNFzMaSEEvpF0UKED8oUO4it0rW1VPQi66YH7JdkmJMiG3cEYXje5w== -----END CERTIFICATE-----Generated at Thu May 2 12:23:11 2024 by rpki-client on console-ams.rpki-client.org