$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa File: c1007d85-fbf5-45da-82c5-653042baeda9.roa (raw, json) Hash identifier: 8GGqdNT6qrQpfpk0GprjZtJ0RfuADHb2L+kuMTmTclQ= Subject key identifier: 59:F9:46:42:6B:97:02:85:FB:0F:FA:7D:97:B5:AD:F0:87:F1:75:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CFC5C8358AFE791AE7F8713D58B6109FACA425B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.20.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:fc:5c:83:58:af:e7:91:ae:7f:87:13:d5:8b:61:09:fa:ca:42:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=5e7b3b0da51ca8e7b3886caff06fd0a62181ef717f9ab5446f8d2cfcdf94a17b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:28:ee:0b:51:95:c9:4c:d1:98:a7:a7:d9:4c: 68:90:2b:94:08:13:5e:76:e8:86:37:f2:d9:43:e9: 84:86:d8:34:a8:c0:2a:40:e7:fa:e4:b8:bd:57:28: 7b:79:44:01:8c:0b:50:77:29:65:ba:7d:4f:0c:00: 8b:61:51:3b:5e:c1:a8:ed:bd:b7:5b:6f:96:df:9f: d4:c0:ff:4e:63:c0:a5:f7:de:95:c2:9d:32:9d:24: 07:39:d0:6d:68:38:e6:1f:fe:cf:ff:01:1a:8c:0b: 1a:9c:2e:25:a3:68:33:45:31:90:93:6e:51:d7:0c: b9:cc:a5:c0:8a:6e:fa:e1:79:36:12:a6:56:3b:e3: ae:9c:8a:1b:2a:2c:97:81:6a:e2:31:f3:64:09:ff: c0:68:d8:45:bf:e5:d3:3d:d7:67:db:9e:25:6c:29: cc:0a:6c:84:49:7c:0b:14:52:d5:83:9a:27:12:e9: f6:e2:0e:9b:df:26:03:11:68:d6:8d:79:c8:82:73: 08:bf:38:df:07:51:50:fa:01:a5:1a:e8:11:8a:1f: 92:72:3a:f6:a1:c3:6b:ba:15:97:5f:f7:d4:df:25: 28:79:fb:d3:35:df:e8:25:de:91:b9:2b:2a:46:b7: 83:c6:7a:6c:35:01:a5:54:bb:73:88:41:ee:c3:41: ed:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F9:46:42:6B:97:02:85:FB:0F:FA:7D:97:B5:AD:F0:87:F1:75:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption b9:c7:47:a4:ee:d4:c8:80:5a:d7:44:79:75:a2:8e:68:c3:b8: b3:b7:0e:8e:c8:f7:07:27:d1:a2:32:6e:65:fa:e1:e0:ef:3b: 16:a6:28:bc:86:f2:da:be:f2:79:38:66:6f:5f:df:69:6f:48: ab:4a:74:49:55:8e:91:96:ad:2d:38:70:20:20:9d:0f:2d:20: 33:1b:29:d4:79:3b:96:8b:54:bb:fe:a4:55:c5:40:e5:86:f6: 36:34:46:9b:51:8d:4b:6c:58:5d:19:51:2f:b1:8d:1b:b9:c2: c2:62:87:96:fb:b8:de:9b:78:b5:be:06:f2:96:42:f3:13:6b: 1e:cc:2e:00:43:71:9c:ec:6c:09:3f:a0:41:8b:f7:41:5e:d5: 5f:4e:d6:6f:2d:20:96:09:0e:4a:b2:6a:7c:8b:49:71:c2:7e: 67:85:85:cd:7d:b0:a9:86:af:98:bb:1a:9a:8b:cc:ef:a9:4f: d7:e0:e7:32:54:b5:41:04:94:21:5d:da:c4:4e:c2:82:ad:93: 8d:30:15:f6:0b:5f:40:a9:e4:6c:28:3e:1b:35:cb:a5:af:96: 72:ce:e0:80:d3:b2:70:0b:60:fe:a6:7b:31:e5:74:7d:34:b5: 09:36:e6:e6:5f:31:87:50:c0:d9:f4:55:1c:c3:da:b8:a1:ab: d0:86:f3:59 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbPxcg1iv55Guf4cT1YthCfrKQlswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTdiM2IwZGE1MWNhOGU3YjM4ODZjYWZmMDZmZDBhNjIx ODFlZjcxN2Y5YWI1NDQ2ZjhkMmNmY2RmOTRhMTdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtKO4LUZXJTNGYp6fZTGiQK5QIE1526IY38tlD6YSG2DSo wCpA5/rkuL1XKHt5RAGMC1B3KWW6fU8MAIthUTtewajtvbdbb5bfn9TA/05jwKX3 3pXCnTKdJAc50G1oOOYf/s//ARqMCxqcLiWjaDNFMZCTblHXDLnMpcCKbvrheTYS plY7466cihsqLJeBauIx82QJ/8Bo2EW/5dM912fbniVsKcwKbIRJfAsUUtWDmicS 6fbiDpvfJgMRaNaNeciCcwi/ON8HUVD6AaUa6BGKH5JyOvahw2u6FZdf99TfJSh5 +9M13+gl3pG5KypGt4PGemw1AaVUu3OIQe7DQe2vAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWflGQmuXAoX7D/p9l7Wt8IfxdeMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxMDA3ZDg1LWZiZjUtNDVkYS04MmM1LTY1MzA0MmJhZWRhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFDANBgkqhkiG9w0BAQsFAAOCAQEAucdHpO7UyIBa10R5daKOaMO4s7cO jsj3ByfRojJuZfrh4O87FqYovIby2r7yeThmb1/faW9Iq0p0SVWOkZatLThwICCd Dy0gMxsp1Hk7lotUu/6kVcVA5Yb2NjRGm1GNS2xYXRlRL7GNG7nCwmKHlvu43pt4 tb4G8pZC8xNrHswuAENxnOxsCT+gQYv3QV7VX07Wby0glgkOSrJqfItJccJ+Z4WF zX2wqYavmLsamovM76lP1+DnMlS1QQSUIV3axE7Cgq2TjTAV9gtfQKnkbCg+GzXL pa+Wcs7ggNOycAtg/qZ7MeV0fTS1CTbm5l8xh1DA2fRVHMPauKGr0IbzWQ== -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:25 2024 by rpki-client on console-fra.rpki-client.org