$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d326f8cc-1ff8-487b-a402-194dc48b8195.roa File: d326f8cc-1ff8-487b-a402-194dc48b8195.roa (raw, json) Hash identifier: sPhO4GkQ352VMNZOqiOipTW7ZIvcuRo9G9fiZhsK40s= Subject key identifier: 6D:C4:EB:02:67:F1:25:B1:FF:35:CA:05:E7:86:6F:66:66:79:76:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 9D41EFFC74C02EBE7D1E30F962A8A8E3E79D58 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d326f8cc-1ff8-487b-a402-194dc48b8195.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.156.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9d:41:ef:fc:74:c0:2e:be:7d:1e:30:f9:62:a8:a8:e3:e7:9d:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=ae0f56426704604450e7cd0bc9d17589059c791c6f29c4d1ee0f5f83a17aca68, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f9:d0:e1:a2:d1:48:2f:ef:46:8e:d2:0d:bb: fd:37:a1:49:99:bb:d6:bc:7a:69:56:0a:53:79:5d: 5f:39:95:77:b4:90:7a:cc:56:44:b8:98:a3:02:f6: 21:aa:8c:bb:8a:46:3d:1d:ec:08:ec:d8:00:18:59: 9b:a2:5d:2c:77:d0:fd:a8:6e:e5:27:cc:8a:36:c1: 23:a0:40:cc:ab:7a:1e:b9:54:a5:f1:25:e1:2e:c9: 1c:7e:64:bc:69:c8:fe:4d:97:64:f6:39:a5:79:c7: 3b:01:c4:e5:9c:c2:e0:a6:70:df:fd:d4:36:6c:7b: 2c:03:77:55:03:c0:82:58:c5:a6:6e:58:e3:22:38: f6:bb:88:1e:41:73:ee:87:14:c5:e9:52:fe:a8:8a: fc:40:fe:39:9a:24:18:6a:3d:67:47:bb:9c:d8:53: 25:2c:fd:da:94:e4:bd:13:db:f8:db:8d:0b:6e:ab: 6a:b7:b0:ac:b0:83:c0:3b:f6:46:35:b7:b0:8b:17: fe:07:a8:a3:14:7e:06:1c:69:f2:25:fe:d7:4b:14: b1:c0:2f:41:e8:86:3b:c6:9b:ac:cd:9f:81:98:ac: 4f:55:0b:9a:e0:39:dd:24:94:73:d9:36:9b:56:c4: 2d:0b:ed:9b:f8:42:84:7d:d7:23:5d:38:60:6a:11: ba:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C4:EB:02:67:F1:25:B1:FF:35:CA:05:E7:86:6F:66:66:79:76:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d326f8cc-1ff8-487b-a402-194dc48b8195.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.156.0.0/14 Signature Algorithm: sha256WithRSAEncryption 97:ea:24:4d:cc:2e:83:c1:9e:59:75:40:09:7b:3a:bf:97:6b: 47:8e:d0:6d:44:c7:49:b8:fa:47:ba:44:27:c6:da:31:aa:a2: 3a:23:01:b7:88:75:8a:37:2b:79:95:ea:a2:97:03:9b:b8:a8: b1:45:cf:19:e3:5b:0a:73:4f:d6:f0:07:f2:b8:40:23:cf:68: 05:b9:4f:5d:93:b2:b8:37:a9:73:c1:a4:bc:2c:28:a4:e3:73: 20:63:8b:82:9e:c6:6b:44:6e:0f:71:63:59:e7:a5:3a:6e:d1: 0c:f5:82:62:59:08:45:28:05:20:7d:cf:63:db:e0:3a:59:ee: 6a:d2:c7:20:2e:ee:da:55:7d:df:e3:ca:ca:14:52:56:6c:fa: 20:07:7f:f9:d8:a6:d4:97:92:13:64:2f:80:80:ae:b1:6d:e7: ce:5f:a0:1a:a2:c2:72:b1:54:8d:58:73:2c:db:ad:0a:85:c1: 09:96:fd:34:5f:9a:94:de:6e:3e:2f:21:1c:3c:d7:18:c3:e2: 56:32:ec:06:d6:eb:b4:01:bb:e9:5c:9d:36:e9:b3:01:65:c0: 9f:45:3d:ce:25:24:57:66:97:e2:37:d9:e6:54:0f:d8:5c:b5: 59:3e:3f:c3:9b:99:e8:4a:16:6e:8b:95:47:d9:2a:ad:4d:15: a0:05:32:ba -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAJ1B7/x0wC6+fR4w+WKoqOPnnVgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTBmNTY0MjY3MDQ2MDQ0NTBlN2NkMGJjOWQxNzU4OTA1 OWM3OTFjNmYyOWM0ZDFlZTBmNWY4M2ExN2FjYTY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/+dDhotFIL+9GjtINu/03oUmZu9a8emlWClN5XV85lXe0 kHrMVkS4mKMC9iGqjLuKRj0d7Ajs2AAYWZuiXSx30P2obuUnzIo2wSOgQMyreh65 VKXxJeEuyRx+ZLxpyP5Nl2T2OaV5xzsBxOWcwuCmcN/91DZseywDd1UDwIJYxaZu WOMiOPa7iB5Bc+6HFMXpUv6oivxA/jmaJBhqPWdHu5zYUyUs/dqU5L0T2/jbjQtu q2q3sKywg8A79kY1t7CLF/4HqKMUfgYcafIl/tdLFLHAL0HohjvGm6zNn4GYrE9V C5rgOd0klHPZNptWxC0L7Zv4QoR91yNdOGBqEbp7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUbcTrAmfxJbH/NcoF54ZvZmZ5dnEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzMjZmOGNjLTFmZjgtNDg3Yi1hNDAyLTE5NGRjNDhiODE5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIQnDANBgkqhkiG9w0BAQsFAAOCAQEAl+okTcwug8GeWXVACXs6v5drR47Q bUTHSbj6R7pEJ8baMaqiOiMBt4h1ijcreZXqopcDm7iosUXPGeNbCnNP1vAH8rhA I89oBblPXZOyuDepc8GkvCwopONzIGOLgp7Ga0RuD3FjWeelOm7RDPWCYlkIRSgF IH3PY9vgOlnuatLHIC7u2lV93+PKyhRSVmz6IAd/+dim1JeSE2QvgICusW3nzl+g GqLCcrFUjVhzLNutCoXBCZb9NF+alN5uPi8hHDzXGMPiVjLsBtbrtAG76VydNumz AWXAn0U9ziUkV2aX4jfZ5lQP2Fy1WT4/w5uZ6EoWbouVR9kqrU0VoAUyug== -----END CERTIFICATE-----Generated at Thu May 9 01:25:48 2024 by rpki-client on console-fra.rpki-client.org