$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1036092-5c04-4e3c-9c4e-9701eac7245d.roa File: d1036092-5c04-4e3c-9c4e-9701eac7245d.roa (raw, json) Hash identifier: FPdynFymGcIm+9ixWgPA5J75uCiomng10zfQRUWWwoE= Subject key identifier: 94:57:5F:0B:E1:32:F8:E7:09:AE:73:95:26:E5:9B:03:B8:38:84:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 346F380AB9555C1560A97ED325F29DE65FF973BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1036092-5c04-4e3c-9c4e-9701eac7245d.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.20.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:6f:38:0a:b9:55:5c:15:60:a9:7e:d3:25:f2:9d:e6:5f:f9:73:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=0ae884f9a7f66b2d544dbb82e45c5e1e3a42b5340b8cd7934fc4a7279b1cb45f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:34:df:45:bb:04:bb:34:81:5b:fc:f2:99:36: 36:a8:32:15:ed:90:a9:b8:7f:05:63:64:2f:15:95: 0d:5f:79:1d:b0:e2:96:43:b4:3a:a3:4b:a4:9a:6e: f3:88:0b:35:a3:d0:df:63:9a:ab:3d:5b:9f:5b:7f: 05:1b:56:e3:5a:c0:79:d5:9a:a2:d8:10:c8:d0:fc: e9:7b:3c:69:37:74:9e:36:db:7b:f6:ef:83:a6:10: 07:89:8b:b5:52:ce:b0:bc:f7:32:3c:fc:49:47:45: 3d:d8:c3:d7:da:d7:a1:e7:bd:89:57:1b:cf:ec:39: c7:a7:40:7e:a0:3f:70:cb:79:0e:cd:2d:53:a0:69: 90:bc:a9:b8:d6:3b:6e:56:9d:73:26:42:a4:7e:b0: c3:f9:56:4b:07:27:86:cd:83:ac:90:a8:7d:ed:22: 12:98:6a:17:c9:cd:d7:95:36:71:b2:7c:8f:52:13: 89:2e:bd:87:af:47:73:1e:11:40:19:f0:af:75:b4: 52:9d:cf:9a:0f:9e:86:02:99:5e:c6:09:7f:99:2f: 99:c5:e4:05:89:28:2a:3e:5b:0f:21:20:c4:ae:63: 22:ac:8b:b1:48:b5:39:f2:20:1d:2d:be:bc:0f:c7: be:08:68:1c:93:5c:17:64:fa:56:04:67:63:59:86: fa:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:57:5F:0B:E1:32:F8:E7:09:AE:73:95:26:E5:9B:03:B8:38:84:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1036092-5c04-4e3c-9c4e-9701eac7245d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.212.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:ec:31:79:a8:4e:b2:7f:25:44:ba:21:f5:c9:c0:10:9c:82: b5:60:15:cf:d7:50:71:cb:03:ea:9c:3a:9d:41:a7:e4:be:5f: ae:30:f8:c0:e5:84:15:31:67:75:9c:ff:1b:35:00:3c:f7:b4: 5d:58:33:9a:4c:d9:1c:de:4f:bc:04:fc:a9:ee:4d:00:34:30: 6a:42:8c:79:0b:36:c2:79:4b:ba:a2:3a:16:db:09:77:7c:f0: 7e:da:a2:34:0e:d8:36:16:4e:09:1e:62:7d:6e:c5:90:a7:54: a6:19:ba:00:4e:c0:ce:2d:b6:08:ad:5f:32:3a:86:35:2e:82: 9c:17:6f:75:2b:a4:0d:6e:27:32:eb:3d:fb:c3:dd:ea:63:e1: 56:df:cb:61:70:35:54:bd:cb:f2:27:42:75:0c:11:c0:04:d9: 04:01:c7:27:d8:f1:c3:1f:af:17:68:5b:63:a3:e8:bb:c0:79: 6c:23:4e:cd:2f:4a:41:94:3f:28:02:94:c9:dc:9a:32:6c:9b: e9:67:49:73:5a:6a:ab:a2:b5:d7:b8:31:39:57:a6:a1:be:cf: 5d:11:66:62:c9:32:7f:79:69:15:50:8e:67:8f:54:2a:ef:fe: e2:7a:7f:6c:00:2d:7f:31:95:7d:a3:9e:39:12:5a:ed:a1:e6: 0c:e0:ed:40 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNG84CrlVXBVgqX7TJfKd5l/5c7wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYWU4ODRmOWE3ZjY2YjJkNTQ0ZGJiODJlNDVjNWUxZTNh NDJiNTM0MGI4Y2Q3OTM0ZmM0YTcyNzliMWNiNDVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRNN9FuwS7NIFb/PKZNjaoMhXtkKm4fwVjZC8VlQ1feR2w 4pZDtDqjS6SabvOICzWj0N9jmqs9W59bfwUbVuNawHnVmqLYEMjQ/Ol7PGk3dJ42 23v274OmEAeJi7VSzrC89zI8/ElHRT3Yw9fa16HnvYlXG8/sOcenQH6gP3DLeQ7N LVOgaZC8qbjWO25WnXMmQqR+sMP5VksHJ4bNg6yQqH3tIhKYahfJzdeVNnGyfI9S E4kuvYevR3MeEUAZ8K91tFKdz5oPnoYCmV7GCX+ZL5nF5AWJKCo+Ww8hIMSuYyKs i7FItTnyIB0tvrwPx74IaByTXBdk+lYEZ2NZhvp3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlFdfC+Ey+OcJrnOVJuWbA7g4hNUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QxMDM2MDkyLTVjMDQtNGUzYy05YzRlLTk3MDFlYWM3MjQ1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIQFNQwDQYJKoZIhvcNAQELBQADggEBAEvsMXmoTrJ/JUS6IfXJwBCcgrVg Fc/XUHHLA+qcOp1Bp+S+X64w+MDlhBUxZ3Wc/xs1ADz3tF1YM5pM2RzeT7wE/Knu TQA0MGpCjHkLNsJ5S7qiOhbbCXd88H7aojQO2DYWTgkeYn1uxZCnVKYZugBOwM4t tgitXzI6hjUugpwXb3UrpA1uJzLrPfvD3epj4Vbfy2FwNVS9y/InQnUMEcAE2QQB xyfY8cMfrxdoW2Oj6LvAeWwjTs0vSkGUPygClMncmjJsm+lnSXNaaquitde4MTlX pqG+z10RZmLJMn95aRVQjmePVCrv/uJ6f2wALX8xlX2jnjkSWu2h5gzg7UA= -----END CERTIFICATE-----Generated at Thu May 2 22:12:18 2024 by rpki-client on console-fra.rpki-client.org