$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d16bf4ed-487f-4adc-954b-9b19669221a7.roa File: d16bf4ed-487f-4adc-954b-9b19669221a7.roa (raw, json) Hash identifier: 1Zvnf6ZTWAcaaY7nJoTHvaG1ys11wLpsqsvFDX/QAls= Subject key identifier: 78:A5:F1:4C:90:16:BE:78:B6:F3:DF:7C:3C:1F:FD:54:56:96:2F:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2DB3DF9C21B33E7FE1AF13B8BE3CA851889AF9B0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d16bf4ed-487f-4adc-954b-9b19669221a7.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 20.142.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:b3:df:9c:21:b3:3e:7f:e1:af:13:b8:be:3c:a8:51:88:9a:f9:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=8f32c2d548e24ea7770eebc4f29e8e9b817804a790c38069e33cadd4ceb42e7f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:1d:aa:d2:4b:d4:77:b0:f8:6a:e6:39:f0:ca: 80:d2:71:fb:d8:9b:30:51:a9:0f:bc:eb:37:2a:49: cf:1f:0e:60:ff:9c:c2:ab:69:9a:48:72:6b:64:3e: e0:c2:b5:59:b7:af:04:e5:54:3c:0f:32:f9:5f:75: 23:1f:f2:d8:e9:d9:29:c3:4f:a2:85:e9:13:ca:2e: d0:16:03:be:6a:4b:88:04:0a:76:f4:35:7c:4e:92: 3b:3f:3a:d1:bf:77:ea:aa:5d:a9:3a:ac:00:35:41: e4:dc:21:cb:ba:24:47:52:3a:c6:d6:68:84:35:2d: 26:7e:d5:d5:7e:ef:80:f0:c2:63:bc:53:74:28:31: 2d:17:c4:78:f4:e0:57:b0:93:a4:7b:7b:38:21:9c: 73:cf:62:49:50:5b:ad:3a:c0:5a:a4:bc:9b:2b:0a: 2b:f8:dc:5e:43:35:72:eb:fc:3f:51:37:d9:f6:2a: 02:06:14:5d:76:2b:ba:5d:d5:66:29:9a:12:41:8a: c5:77:16:c7:13:50:eb:e2:6d:fe:df:86:47:e4:44: f3:00:33:aa:01:2f:42:07:9b:6e:05:dc:c0:8a:81: ae:91:4e:dd:79:7c:8b:27:0e:f4:a3:ba:4e:d7:3a: 9e:7b:29:a0:02:4d:70:0b:69:d6:05:de:33:4a:14: b4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A5:F1:4C:90:16:BE:78:B6:F3:DF:7C:3C:1F:FD:54:56:96:2F:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d16bf4ed-487f-4adc-954b-9b19669221a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 20.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 57:c3:c3:5b:2e:6b:14:7c:60:2d:3c:55:e7:19:4d:ee:5d:4e: ec:e1:b2:e3:52:ba:57:a5:f3:a1:82:bd:9b:48:89:c7:53:8a: 8b:e1:1a:0b:59:9c:65:af:01:4a:6e:a3:67:38:b4:8d:30:94: e5:92:37:a0:91:d8:a7:89:5b:47:f6:49:09:24:81:5c:c2:0c: 8c:a4:45:21:f4:8d:fe:51:b7:6d:27:31:47:a2:85:a9:f0:fb: 96:7a:5f:a3:57:04:59:90:ed:2a:f8:fe:cb:9d:60:c4:07:34: 43:98:d9:ce:14:ae:8e:5d:fc:ac:d5:cf:2d:d8:58:c2:5b:ba: db:93:bc:19:b4:29:af:40:4b:73:16:08:1f:e9:2f:b9:88:8a: 99:ca:56:63:de:c1:45:0d:1c:6e:77:0d:99:af:0f:14:ec:ca: 3b:b7:d8:28:b2:52:16:4a:b9:55:67:bf:01:70:ae:9a:31:b7: 47:e3:0a:f3:5f:c0:ad:4e:24:14:d8:7d:7a:ac:6e:ad:89:9f: 1c:14:a0:5b:7a:5c:6d:14:77:17:3f:69:3c:79:5b:13:f9:b3: 62:a0:ba:58:51:13:78:54:9d:86:88:a9:33:1c:cf:7a:4e:4c: df:bf:17:0d:14:cf:be:b9:c6:92:be:60:ab:bd:82:7a:f3:69: 81:19:7e:5d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULbPfnCGzPn/hrxO4vjyoUYia+bAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjMyYzJkNTQ4ZTI0ZWE3NzcwZWViYzRmMjllOGU5Yjgx NzgwNGE3OTBjMzgwNjllMzNjYWRkNGNlYjQyZTdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDzHarSS9R3sPhq5jnwyoDScfvYmzBRqQ+86zcqSc8fDmD/ nMKraZpIcmtkPuDCtVm3rwTlVDwPMvlfdSMf8tjp2SnDT6KF6RPKLtAWA75qS4gE Cnb0NXxOkjs/OtG/d+qqXak6rAA1QeTcIcu6JEdSOsbWaIQ1LSZ+1dV+74DwwmO8 U3QoMS0XxHj04Fewk6R7ezghnHPPYklQW606wFqkvJsrCiv43F5DNXLr/D9RN9n2 KgIGFF12K7pd1WYpmhJBisV3FscTUOvibf7fhkfkRPMAM6oBL0IHm24F3MCKga6R Tt15fIsnDvSjuk7XOp57KaACTXALadYF3jNKFLSNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeKXxTJAWvni28998PB/9VFaWL14wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QxNmJmNGVkLTQ4N2YtNGFkYy05NTRiLTliMTk2NjkyMjFhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAUjjANBgkqhkiG9w0BAQsFAAOCAQEAV8PDWy5rFHxgLTxV5xlN7l1O7OGy 41K6V6XzoYK9m0iJx1OKi+EaC1mcZa8BSm6jZzi0jTCU5ZI3oJHYp4lbR/ZJCSSB XMIMjKRFIfSN/lG3bScxR6KFqfD7lnpfo1cEWZDtKvj+y51gxAc0Q5jZzhSujl38 rNXPLdhYwlu625O8GbQpr0BLcxYIH+kvuYiKmcpWY97BRQ0cbncNma8PFOzKO7fY KLJSFkq5VWe/AXCumjG3R+MK81/ArU4kFNh9eqxurYmfHBSgW3pcbRR3Fz9pPHlb E/mzYqC6WFETeFSdhoipMxzPek5M378XDRTPvrnGkr5gq72CevNpgRl+XQ== -----END CERTIFICATE-----Generated at Thu May 2 08:02:40 2024 by rpki-client on console-ams.rpki-client.org