$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc65cc41-e9a0-4733-ba5c-b32dca864122.roa File: cc65cc41-e9a0-4733-ba5c-b32dca864122.roa (raw, json) Hash identifier: WRzUnW0bnbRIrus6qvAJahBVelHS3OyqEK42iXuQwns= Subject key identifier: 00:50:70:8E:3E:F2:F0:82:0B:F7:1C:BF:F8:B5:44:8B:F2:D6:D6:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F2514CB3E5C2EE226E5805D01BDFB257A9AEB94 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc65cc41-e9a0-4733-ba5c-b32dca864122.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.73.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:25:14:cb:3e:5c:2e:e2:26:e5:80:5d:01:bd:fb:25:7a:9a:eb:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=24dedcb89c2f8a336238504a62363182141e70e3e4af6601caa949f92b31289b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:45:b1:d0:d0:f4:e1:ac:d9:e3:ea:9d:1a:b4: a7:24:46:2b:8e:6c:fc:a1:d1:c8:cf:6e:4d:81:54: 9d:de:57:4b:5a:6b:76:77:89:59:f9:5b:61:78:85: 26:74:76:25:d7:f3:fd:7c:3e:58:17:e1:7b:5c:eb: db:3c:42:c9:15:26:d5:5b:88:f6:b8:8d:f2:7f:d0: f2:8f:48:87:4a:ee:a7:e3:f3:7b:85:0f:a7:f8:12: f2:8e:18:aa:bd:a4:a5:f1:c1:61:71:70:ba:ec:c4: c6:b8:87:77:58:12:c2:62:3d:3c:0a:9e:2b:6c:f7: 3c:fd:02:6c:1b:1a:2f:b2:26:da:03:2f:9f:3b:bf: 15:66:79:29:b7:72:72:0c:22:f6:59:b6:f2:38:56: da:b3:09:9f:11:11:7c:d3:16:c1:2a:6a:53:9c:1e: 5d:38:b5:08:c6:0b:12:99:a7:d4:79:51:d1:46:1c: ba:23:c1:13:16:e4:be:06:20:4c:76:43:0c:3a:06: 58:de:68:8d:45:50:cc:99:56:5f:9a:9f:62:a0:3a: 5b:2e:97:de:49:d3:f0:99:f4:25:1d:1d:c9:ec:f3: 55:e4:fe:f1:be:7e:05:28:f7:f6:4a:17:6c:a9:be: 30:e9:f1:8b:f4:75:32:99:7b:11:5d:4f:18:d9:11: 6c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:50:70:8E:3E:F2:F0:82:0B:F7:1C:BF:F8:B5:44:8B:F2:D6:D6:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc65cc41-e9a0-4733-ba5c-b32dca864122.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9d:0d:79:c0:3a:2f:d9:dd:09:e5:94:a6:f6:f1:6c:8e:ff:b4: 78:d7:01:d6:83:f5:1e:ed:ea:1c:83:7c:4f:5c:38:aa:56:44: a2:1a:97:af:2f:a9:d7:30:fb:fe:8c:ff:d9:88:2e:c9:03:1f: f4:22:52:03:2d:e4:a8:56:b2:fb:4a:bb:81:16:f0:00:85:d8: de:09:c5:95:b6:d0:a6:dd:af:88:0b:ee:10:3e:4c:5b:0f:44: 4b:bc:74:9e:a0:8a:8b:cc:15:79:17:23:ad:49:16:d2:a3:aa: 80:a3:5e:93:06:c6:d8:94:3e:dc:2e:ad:11:5b:e4:46:76:49: 24:97:2f:60:21:3e:ed:50:e4:a9:50:91:38:87:39:60:41:82: 9d:8f:f4:28:4b:66:52:04:ec:a9:4f:e5:a6:05:f0:35:8d:63: 10:36:c1:9a:1f:69:7e:a8:42:97:6a:cc:5d:09:4b:2b:7f:ff: e8:ca:ad:51:2b:e1:09:93:2f:06:db:e6:26:68:06:95:54:be: 40:55:c1:db:cc:ee:04:c1:a2:69:9e:21:2f:b4:a6:c7:34:c0: 87:21:46:d2:87:62:a9:ba:69:70:51:62:e6:48:25:52:9b:c3: 63:6e:ef:08:ab:b4:aa:e9:e5:5e:48:3b:51:dc:06:0d:c0:bc: d1:fd:33:7e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbyUUyz5cLuIm5YBdAb37JXqa65QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNGRlZGNiODljMmY4YTMzNjIzODUwNGE2MjM2MzE4MjE0 MWU3MGUzZTRhZjY2MDFjYWE5NDlmOTJiMzEyODliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5RbHQ0PThrNnj6p0atKckRiuObPyh0cjPbk2BVJ3eV0ta a3Z3iVn5W2F4hSZ0diXX8/18PlgX4Xtc69s8QskVJtVbiPa4jfJ/0PKPSIdK7qfj 83uFD6f4EvKOGKq9pKXxwWFxcLrsxMa4h3dYEsJiPTwKnits9zz9AmwbGi+yJtoD L587vxVmeSm3cnIMIvZZtvI4VtqzCZ8REXzTFsEqalOcHl04tQjGCxKZp9R5UdFG HLojwRMW5L4GIEx2Qww6BljeaI1FUMyZVl+an2KgOlsul95J0/CZ9CUdHcns81Xk /vG+fgUo9/ZKF2ypvjDp8Yv0dTKZexFdTxjZEWzNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAFBwjj7y8IIL9xy/+LVEi/LW1ocwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjNjVjYzQxLWU5YTAtNDczMy1iYTVjLWIzMmRjYTg2NDEyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQSTANBgkqhkiG9w0BAQsFAAOCAQEAnQ15wDov2d0J5ZSm9vFsjv+0eNcB 1oP1Hu3qHIN8T1w4qlZEohqXry+p1zD7/oz/2YguyQMf9CJSAy3kqFay+0q7gRbw AIXY3gnFlbbQpt2viAvuED5MWw9ES7x0nqCKi8wVeRcjrUkW0qOqgKNekwbG2JQ+ 3C6tEVvkRnZJJJcvYCE+7VDkqVCROIc5YEGCnY/0KEtmUgTsqU/lpgXwNY1jEDbB mh9pfqhCl2rMXQlLK3//6MqtUSvhCZMvBtvmJmgGlVS+QFXB28zuBMGiaZ4hL7Sm xzTAhyFG0odiqbppcFFi5kglUpvDY27vCKu0qunlXkg7UdwGDcC80f0zfg== -----END CERTIFICATE-----Generated at Thu May 9 01:25:47 2024 by rpki-client on console-fra.rpki-client.org