$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be9533f8-52be-4457-b651-62b580c3c24d.roa File: be9533f8-52be-4457-b651-62b580c3c24d.roa (raw, json) Hash identifier: X8TJsF2hVM0RlTY6Or2dae5k/RwHguOW6lqmdDBK4g0= Subject key identifier: 70:2A:6A:62:F5:E7:E5:19:07:2D:2E:DC:E9:8E:E2:7E:4B:F6:35:67 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 698CA91572065AEA06781109F2DEAE2A6FAE4AC6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be9533f8-52be-4457-b651-62b580c3c24d.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.93.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:8c:a9:15:72:06:5a:ea:06:78:11:09:f2:de:ae:2a:6f:ae:4a:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=ab105254ed7c19fe71e95e9a35b900a7770730232117a83d4d78498104eba7ee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:21:b1:2b:58:98:e5:ec:3e:1b:7b:ca:8b:fd: 43:c3:73:da:25:60:e7:11:bb:d1:c2:89:a0:a6:f2: 01:8d:f2:4f:24:5a:91:21:b6:95:4f:d0:ac:62:ba: bd:22:b0:ed:05:5f:95:f8:e7:59:62:06:ee:69:8e: 93:31:7f:70:84:d6:b7:bc:44:0d:a7:b0:be:f3:af: b0:4c:a3:d5:2e:5c:82:15:e2:cd:a7:7c:3a:2f:db: ab:bb:f1:7e:d8:57:6b:4c:28:fd:39:10:00:96:3a: 17:2e:c1:eb:d7:63:b7:f4:bf:8d:8e:c4:53:a8:60: 03:ae:56:e7:4e:46:ae:7e:a9:e4:62:5a:40:93:21: de:d6:51:a1:da:e0:91:99:d9:7b:6a:f4:b6:45:bc: cb:f9:d5:72:2b:67:fb:d5:4d:61:79:c0:1f:b0:75: 41:f4:33:30:cf:4a:34:0c:5f:d0:9a:69:a8:7a:4e: b4:c1:a2:d6:4c:87:a6:65:11:77:8e:6c:c7:9e:56: c3:5b:80:f1:29:6c:6f:9d:1c:a2:e9:3b:3d:58:4b: 9f:2b:b7:64:fe:77:6d:7a:d1:e0:65:7a:b2:e2:d9: 18:e1:5a:01:51:5b:cd:6e:0e:32:ad:a5:48:8b:b5: 52:52:a2:f1:51:71:9f:e1:84:a4:dc:32:59:2d:74: 7e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2A:6A:62:F5:E7:E5:19:07:2D:2E:DC:E9:8E:E2:7E:4B:F6:35:67 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be9533f8-52be-4457-b651-62b580c3c24d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.93.0.0/16 Signature Algorithm: sha256WithRSAEncryption 68:85:13:22:4d:1d:ed:7d:08:58:50:3a:a2:a5:30:90:fb:3c: 01:f0:46:17:c5:cf:3f:1e:9b:be:39:e9:44:b5:3d:93:70:50: c2:0d:65:4d:07:11:7e:5c:08:68:35:20:cc:d5:7e:79:6b:b9: 64:ee:8f:31:23:af:a5:03:4f:69:8d:1f:7a:e9:bc:9f:7e:31: 2b:4b:49:04:c4:07:46:d0:8d:b0:a7:ef:86:fc:0d:77:62:0b: 42:e7:da:d6:fe:b3:94:a2:1e:43:a1:7c:3f:87:77:06:f8:bb: 2b:22:fd:55:3c:f3:a8:20:d6:30:93:c8:f4:5d:90:81:47:0c: b6:c9:41:d6:10:6c:9b:65:aa:a6:68:f3:f4:d3:73:38:e2:7a: 75:36:26:fe:1b:ba:9e:9d:09:b5:90:ca:08:66:aa:55:23:46: b4:19:3c:d5:93:db:5c:5a:7a:80:96:6e:90:34:75:2a:61:05: 89:01:92:c6:6f:19:f5:32:fd:0b:39:64:4f:51:83:b8:b9:bc: 30:50:8b:2d:e2:1d:99:f2:4c:ea:1e:7c:22:45:a9:71:35:43: a8:c2:ce:f1:82:d9:55:d2:6c:1a:04:3b:3b:0f:db:78:8c:3d: e4:50:ea:f5:35:1c:07:f8:fe:2d:6a:4f:42:e9:3e:e8:04:4f: b7:95:39:cb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaYypFXIGWuoGeBEJ8t6uKm+uSsYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjEwNTI1NGVkN2MxOWZlNzFlOTVlOWEzNWI5MDBhNzc3 MDczMDIzMjExN2E4M2Q0ZDc4NDk4MTA0ZWJhN2VlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWIbErWJjl7D4be8qL/UPDc9olYOcRu9HCiaCm8gGN8k8k WpEhtpVP0Kxiur0isO0FX5X451liBu5pjpMxf3CE1re8RA2nsL7zr7BMo9UuXIIV 4s2nfDov26u78X7YV2tMKP05EACWOhcuwevXY7f0v42OxFOoYAOuVudORq5+qeRi WkCTId7WUaHa4JGZ2Xtq9LZFvMv51XIrZ/vVTWF5wB+wdUH0MzDPSjQMX9Caaah6 TrTBotZMh6ZlEXeObMeeVsNbgPEpbG+dHKLpOz1YS58rt2T+d2160eBlerLi2Rjh WgFRW81uDjKtpUiLtVJSovFRcZ/hhKTcMlktdH7VAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcCpqYvXn5RkHLS7c6Y7ifkv2NWcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JlOTUzM2Y4LTUyYmUtNDQ1Ny1iNjUxLTYyYjU4MGMzYzI0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQXTANBgkqhkiG9w0BAQsFAAOCAQEAaIUTIk0d7X0IWFA6oqUwkPs8AfBG F8XPPx6bvjnpRLU9k3BQwg1lTQcRflwIaDUgzNV+eWu5ZO6PMSOvpQNPaY0feum8 n34xK0tJBMQHRtCNsKfvhvwNd2ILQufa1v6zlKIeQ6F8P4d3Bvi7KyL9VTzzqCDW MJPI9F2QgUcMtslB1hBsm2Wqpmjz9NNzOOJ6dTYm/hu6np0JtZDKCGaqVSNGtBk8 1ZPbXFp6gJZukDR1KmEFiQGSxm8Z9TL9CzlkT1GDuLm8MFCLLeIdmfJM6h58IkWp cTVDqMLO8YLZVdJsGgQ7Ow/beIw95FDq9TUcB/j+LWpPQuk+6ARPt5U5yw== -----END CERTIFICATE-----Generated at Thu May 9 01:25:45 2024 by rpki-client on console-fra.rpki-client.org