$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caa8821a-8780-44c9-9694-a0adb3e8010a.roa File: caa8821a-8780-44c9-9694-a0adb3e8010a.roa (raw, json) Hash identifier: 8V3ZaPdGwuNOqZS+E/fursx1YxwtP7TCDZlczFwueU8= Subject key identifier: F8:2B:82:21:94:5A:A1:47:75:C2:75:C9:5F:83:69:5B:2A:A1:0F:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CAB0826088E0C06982C28267521A4DEBF0BF72F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caa8821a-8780-44c9-9694-a0adb3e8010a.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.29.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ab:08:26:08:8e:0c:06:98:2c:28:26:75:21:a4:de:bf:0b:f7:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=becb1ce494e3a04311f2eba396220a2d23441e7d301e1f38d84561e53857b26a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f4:1d:d9:59:3c:7e:52:a5:29:75:a9:34:1c: 62:2e:b7:92:e4:85:69:de:b5:93:a7:7f:5f:57:d1: 6b:ff:58:6d:19:61:1b:d3:e7:98:e7:54:31:7e:85: 3b:10:fc:09:b5:51:e7:27:a0:fe:df:78:0b:f4:22: 29:45:50:cc:15:a5:8a:54:da:d9:62:bd:51:11:de: ba:8c:2e:26:a0:1a:d3:2d:39:5f:85:a4:98:00:a3: 3b:b4:06:83:ce:ec:16:6c:56:4d:05:9e:ae:75:27: 6e:66:03:93:15:ce:2f:39:de:fa:df:87:b7:d7:31: 97:ce:d3:bf:2c:ec:f9:50:76:1a:81:45:3f:67:3c: b3:06:c0:53:ca:ac:c5:d4:f8:8d:56:3d:66:1c:c6: a6:9c:7a:9a:75:64:96:0d:e0:32:fb:5d:e8:15:ff: 8a:8f:97:19:bc:65:d5:e7:29:66:34:55:56:ed:dd: bb:d7:1a:08:20:00:06:52:b7:12:2a:7c:a6:cc:a7: a7:1f:24:2d:7c:7c:e0:8c:9d:f7:01:40:c7:9b:fc: 16:4b:66:b5:0b:f8:94:ab:c2:d9:72:43:3e:c0:0f: cf:be:e8:7c:7e:92:c5:4e:61:62:09:dc:6d:5f:e2: 35:57:e2:d6:ed:24:49:3f:37:57:9e:34:97:db:b9: c1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2B:82:21:94:5A:A1:47:75:C2:75:C9:5F:83:69:5B:2A:A1:0F:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caa8821a-8780-44c9-9694-a0adb3e8010a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.29.0.0/16 Signature Algorithm: sha256WithRSAEncryption 16:33:a7:83:3f:d3:78:9b:f4:1d:fb:82:34:54:98:0b:a3:2c: 57:af:c2:8d:b6:0c:42:6f:cc:b5:ac:db:87:38:2e:30:16:99: 05:62:d4:e8:0c:7a:4e:e5:d0:c2:c0:23:e3:ca:40:e1:3f:aa: 55:65:53:a0:ea:e8:60:7b:de:b2:ec:db:2e:0e:37:20:26:43: a4:00:3e:81:36:ea:eb:c5:aa:c5:36:e3:46:c0:dd:f0:d2:73: 17:93:d1:7f:08:47:16:b5:09:7b:37:db:22:c7:b7:ee:a8:af: 64:3b:69:2f:eb:97:e6:85:d7:2d:af:dc:7c:2b:a7:df:3b:7a: a8:19:90:9d:57:bf:b1:9f:d9:12:20:c4:2b:e3:d7:07:37:1f: 9c:dc:ea:7d:06:99:7e:a7:c8:7c:5a:5b:5f:e0:f8:f2:b1:4a: 8f:19:bd:b3:be:bc:cf:61:50:b6:e1:d6:6d:12:a7:ee:15:c5: b4:c8:dc:1f:7e:9f:11:3c:90:b7:4d:85:43:ac:d4:66:e1:82: 38:e0:c4:3e:82:97:5a:60:04:ab:34:e9:a1:2a:a7:5b:fe:76: ad:ec:2d:34:2c:11:c3:1b:cc:1c:ec:b6:12:6f:ba:12:59:81: 50:83:14:c6:13:eb:7c:a2:4e:fd:71:9f:99:8a:c1:54:b9:e0: a6:8c:1f:34 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXKsIJgiODAaYLCgmdSGk3r8L9y8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZWNiMWNlNDk0ZTNhMDQzMTFmMmViYTM5NjIyMGEyZDIz NDQxZTdkMzAxZTFmMzhkODQ1NjFlNTM4NTdiMjZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi9B3ZWTx+UqUpdak0HGIut5LkhWnetZOnf19X0Wv/WG0Z YRvT55jnVDF+hTsQ/Am1UecnoP7feAv0IilFUMwVpYpU2tlivVER3rqMLiagGtMt OV+FpJgAozu0BoPO7BZsVk0Fnq51J25mA5MVzi853vrfh7fXMZfO078s7PlQdhqB RT9nPLMGwFPKrMXU+I1WPWYcxqacepp1ZJYN4DL7XegV/4qPlxm8ZdXnKWY0VVbt 3bvXGgggAAZStxIqfKbMp6cfJC18fOCMnfcBQMeb/BZLZrUL+JSrwtlyQz7AD8++ 6Hx+ksVOYWIJ3G1f4jVX4tbtJEk/N1eeNJfbucG5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+CuCIZRaoUd1wnXJX4NpWyqhD5cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NhYTg4MjFhLTg3ODAtNDRjOS05Njk0LWEwYWRiM2U4MDEwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQHTANBgkqhkiG9w0BAQsFAAOCAQEAFjOngz/TeJv0HfuCNFSYC6MsV6/C jbYMQm/MtazbhzguMBaZBWLU6Ax6TuXQwsAj48pA4T+qVWVToOroYHvesuzbLg43 ICZDpAA+gTbq68WqxTbjRsDd8NJzF5PRfwhHFrUJezfbIse37qivZDtpL+uX5oXX La/cfCun3zt6qBmQnVe/sZ/ZEiDEK+PXBzcfnNzqfQaZfqfIfFpbX+D48rFKjxm9 s768z2FQtuHWbRKn7hXFtMjcH36fETyQt02FQ6zUZuGCOODEPoKXWmAEqzTpoSqn W/52rewtNCwRwxvMHOy2Em+6ElmBUIMUxhPrfKJO/XGfmYrBVLngpowfNA== -----END CERTIFICATE-----Generated at Thu May 9 01:26:25 2024 by rpki-client on console-ams.rpki-client.org