$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c204c245-81a8-4ecc-8710-73a58cce8ccf.roa File: c204c245-81a8-4ecc-8710-73a58cce8ccf.roa (raw, json) Hash identifier: moRGtIlZuiLakm7CxMPCDByOrpSw1MUpRjs+v1eRJFY= Subject key identifier: 77:BB:CB:78:A9:51:E4:AD:38:7C:F8:55:40:AA:77:8E:60:AF:A5:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23434194B8A2248CB855D090AC7DFB6BD8AEECE6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c204c245-81a8-4ecc-8710-73a58cce8ccf.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.20.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:43:41:94:b8:a2:24:8c:b8:55:d0:90:ac:7d:fb:6b:d8:ae:ec:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=ca16e7fd82ce6b9deaadf0d98ccbd75c78cb768481614d4964fe8b9488da0775, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ab:85:1c:ec:a9:6f:70:83:7b:d2:33:ac:34: 8a:5e:9c:37:60:a9:1b:db:61:cf:66:71:2c:cf:b0: d4:8b:1e:d2:b2:4f:4a:7e:9e:63:01:aa:af:a3:0b: 76:93:5d:22:81:72:93:c7:2b:92:39:3c:6b:02:82: 37:4b:08:91:1f:73:78:6b:d4:4c:c7:da:eb:43:be: dc:11:0f:5f:a0:91:45:5f:2b:15:6f:92:2a:3e:b3: f7:47:f9:14:e2:07:4a:66:d2:8c:c1:f8:20:a3:13: 7b:49:61:f1:6b:ed:99:9c:c6:6f:07:8c:71:40:01: df:c4:e3:32:28:94:af:9b:f5:66:c8:76:1f:3f:4f: 69:6c:09:77:95:eb:92:9c:cb:ae:82:72:ae:a8:29: f1:cb:4b:89:39:63:47:85:74:d4:ed:d7:41:93:86: fc:35:a0:cc:17:54:3a:05:3f:9f:cc:92:1b:ed:de: 2c:6c:24:12:05:9c:b8:31:e3:04:0e:6a:37:10:87: 0a:d3:00:fb:fb:08:3a:ae:39:1a:8e:99:50:f2:3e: 22:d2:44:bf:db:f7:71:27:17:97:2d:66:30:5c:ef: 3b:c2:8e:0f:48:e9:b9:89:96:a3:02:4d:ce:10:df: 5e:8e:cc:a9:b3:c0:5a:89:87:d2:5b:d3:60:8b:ff: 72:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:BB:CB:78:A9:51:E4:AD:38:7C:F8:55:40:AA:77:8E:60:AF:A5:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c204c245-81a8-4ecc-8710-73a58cce8ccf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 98:cd:23:c8:b4:e6:22:e0:53:d1:f8:31:84:df:81:d5:75:15: 77:cf:3f:ec:13:6b:19:c4:88:aa:e9:f2:0a:f7:59:b8:48:34: ac:e6:47:ee:93:c9:a6:9c:f6:16:bd:49:7d:47:c5:6a:75:47: fa:35:6b:3c:bf:03:39:93:1b:c6:38:b4:6f:20:00:a7:fd:b0: 66:dd:b1:e0:83:9a:19:ea:51:e8:53:99:54:e4:52:4e:e3:3a: b4:14:5e:0d:c3:68:0b:20:12:cc:fa:0c:a8:73:ab:4a:dc:1c: aa:58:24:0b:aa:9c:3b:78:16:4e:48:44:9a:3c:bc:ea:22:fc: 69:b2:1a:9f:e5:cd:e9:46:9e:ce:39:91:34:e4:35:b4:c7:36: e7:fc:2a:6e:01:b7:96:a4:9e:0b:2d:13:29:3c:8a:55:25:d3: 8e:14:7b:5d:c4:e6:af:54:15:c4:26:e2:9f:26:ec:06:69:7e: 8c:47:ad:c9:25:33:af:da:ab:86:4a:67:f8:08:2c:8b:17:1c: cf:23:a4:b5:5a:7f:9c:eb:6a:4e:2d:67:4d:2c:76:e8:11:fd: 3e:1c:05:67:d0:1f:0b:bd:c7:3d:06:3c:91:4a:8e:0e:d9:a7: 07:e4:b4:1d:c1:5d:a5:e3:da:b4:43:05:84:86:56:b7:15:e9: 13:93:58:1b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI0NBlLiiJIy4VdCQrH37a9iu7OYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTE2ZTdmZDgyY2U2YjlkZWFhZGYwZDk4Y2NiZDc1Yzc4 Y2I3Njg0ODE2MTRkNDk2NGZlOGI5NDg4ZGEwNzc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhq4Uc7KlvcIN70jOsNIpenDdgqRvbYc9mcSzPsNSLHtKy T0p+nmMBqq+jC3aTXSKBcpPHK5I5PGsCgjdLCJEfc3hr1EzH2utDvtwRD1+gkUVf KxVvkio+s/dH+RTiB0pm0ozB+CCjE3tJYfFr7Zmcxm8HjHFAAd/E4zIolK+b9WbI dh8/T2lsCXeV65Kcy66Ccq6oKfHLS4k5Y0eFdNTt10GThvw1oMwXVDoFP5/Mkhvt 3ixsJBIFnLgx4wQOajcQhwrTAPv7CDquORqOmVDyPiLSRL/b93EnF5ctZjBc7zvC jg9I6bmJlqMCTc4Q316OzKmzwFqJh9Jb02CL/3KbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUd7vLeKlR5K04fPhVQKp3jmCvpX8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMDRjMjQ1LTgxYTgtNGVjYy04NzEwLTczYTU4Y2NlOGNjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFDANBgkqhkiG9w0BAQsFAAOCAQEAmM0jyLTmIuBT0fgxhN+B1XUVd88/ 7BNrGcSIqunyCvdZuEg0rOZH7pPJppz2Fr1JfUfFanVH+jVrPL8DOZMbxji0byAA p/2wZt2x4IOaGepR6FOZVORSTuM6tBReDcNoCyASzPoMqHOrStwcqlgkC6qcO3gW TkhEmjy86iL8abIan+XN6UaezjmRNOQ1tMc25/wqbgG3lqSeCy0TKTyKVSXTjhR7 XcTmr1QVxCbinybsBml+jEetySUzr9qrhkpn+AgsixcczyOktVp/nOtqTi1nTSx2 6BH9PhwFZ9AfC73HPQY8kUqODtmnB+S0HcFdpePatEMFhIZWtxXpE5NYGw== -----END CERTIFICATE-----Generated at Thu May 9 01:26:23 2024 by rpki-client on console-ams.rpki-client.org