$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa File: d3454ba8-e03c-463a-be52-e46f944b7fa6.roa (raw, json) Hash identifier: WZLXJ6fSe0h8L/wdUjGuir+idOu8C6DWBmuqNJbVggY= Subject key identifier: 17:8D:F0:90:9E:EA:B5:40:65:31:2A:17:EC:7C:A9:D9:1B:FC:0A:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 355E50D2034FF04A02476A523BCE8604C20C2DCE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.104.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:5e:50:d2:03:4f:f0:4a:02:47:6a:52:3b:ce:86:04:c2:0c:2d:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=e4cec6b05291e44c171e537491f343180e537c8af2aa829474bee8f95c5bc99e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d1:a1:74:c2:2f:7a:a1:69:cc:b6:79:69:a3: 18:c9:bd:23:3e:79:3c:9c:72:5c:2d:39:19:88:af: 17:f2:82:06:ad:7e:94:2d:3a:9e:e4:d1:48:52:72: 34:9c:2e:18:a3:6c:2e:95:4f:9e:0f:74:f7:94:4d: a7:e2:01:61:af:ec:7c:eb:25:34:dd:7f:9c:be:17: 59:03:f0:ac:72:75:e4:8e:d9:11:ef:66:76:21:9f: 5d:7c:fa:c4:3e:cd:44:89:00:60:4b:08:9d:d0:77: 69:7e:12:f0:f2:83:d4:b8:b8:7e:2c:ab:78:52:b4: 3a:44:ec:a0:05:67:1b:5b:72:f0:35:27:cf:45:ac: 1f:a2:6a:62:5e:3b:fb:ce:31:2d:7f:fa:b9:39:d4: f6:a5:88:4b:35:c4:3d:6a:a2:03:5c:c9:b5:6d:8b: 9c:7c:d3:f3:25:dd:f1:14:84:f3:15:14:04:2b:cb: 19:ad:87:ef:21:a1:02:34:15:4d:76:a4:2e:c4:62: 00:f5:42:8e:7f:64:ac:ae:e9:78:1d:de:97:bc:fa: 7c:f7:b6:d5:c1:56:0f:e1:b7:04:88:a8:46:a9:48: 1f:6e:a0:d9:a2:78:6a:4b:4c:4a:d9:89:ac:b1:d8: 75:53:f2:03:00:2c:98:91:65:55:71:ee:4e:1e:f9: a3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:8D:F0:90:9E:EA:B5:40:65:31:2A:17:EC:7C:A9:D9:1B:FC:0A:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.104.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4d:70:99:1f:57:7b:45:65:8e:48:23:e1:ee:4b:95:93:5a:02: 1f:11:08:97:1a:d4:03:f3:4b:fb:5b:5e:68:44:fa:19:8c:aa: ee:9c:19:d3:23:39:a9:0e:eb:a5:fd:a9:8e:6b:22:6f:ed:03: 22:72:a6:ad:c7:ea:c1:f1:36:cb:a8:20:fd:80:1b:13:d8:48: ec:85:24:ce:83:4f:5a:f0:7c:16:ec:ec:04:2d:1b:5c:a9:d3: f9:fc:68:bf:e6:87:64:67:34:bc:e6:ed:77:8f:d3:74:c0:51: 19:80:1f:7a:c4:79:08:07:bf:9b:50:e1:bd:1a:b1:bb:99:fc: f2:c3:a2:7b:87:34:3c:aa:16:5f:3c:b2:e4:c1:9d:2c:3f:de: ee:09:11:8a:37:9d:00:b0:05:f6:d6:9c:2e:e9:8a:fc:9d:11: c6:f3:63:f5:8c:19:0d:35:c9:18:ba:f0:5e:cd:fe:ba:7b:a2: 94:85:a5:f5:5c:7e:f1:2b:2b:43:42:cf:1f:a9:96:ff:05:b2: 96:89:28:55:aa:12:7d:fd:ba:83:6b:09:bd:45:b7:76:6d:d2: 28:bd:18:f4:49:89:02:b7:49:d4:1f:ac:b5:45:ae:01:0c:d3: 8f:1b:37:9c:f1:e4:55:7b:ff:5e:f2:18:cb:72:3e:0a:52:17: 13:01:b5:35 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNV5Q0gNP8EoCR2pSO86GBMIMLc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNGNlYzZiMDUyOTFlNDRjMTcxZTUzNzQ5MWYzNDMxODBl NTM3YzhhZjJhYTgyOTQ3NGJlZThmOTVjNWJjOTllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDn0aF0wi96oWnMtnlpoxjJvSM+eTycclwtORmIrxfyggat fpQtOp7k0UhScjScLhijbC6VT54PdPeUTafiAWGv7HzrJTTdf5y+F1kD8KxydeSO 2RHvZnYhn118+sQ+zUSJAGBLCJ3Qd2l+EvDyg9S4uH4sq3hStDpE7KAFZxtbcvA1 J89FrB+iamJeO/vOMS1/+rk51PaliEs1xD1qogNcybVti5x80/Ml3fEUhPMVFAQr yxmth+8hoQI0FU12pC7EYgD1Qo5/ZKyu6Xgd3pe8+nz3ttXBVg/htwSIqEapSB9u oNmieGpLTErZiayx2HVT8gMALJiRZVVx7k4e+aM/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUF43wkJ7qtUBlMSoX7Hyp2Rv8Cp4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzNDU0YmE4LWUwM2MtNDYzYS1iZTUyLWU0NmY5NDRiN2ZhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQaDANBgkqhkiG9w0BAQsFAAOCAQEATXCZH1d7RWWOSCPh7kuVk1oCHxEI lxrUA/NL+1teaET6GYyq7pwZ0yM5qQ7rpf2pjmsib+0DInKmrcfqwfE2y6gg/YAb E9hI7IUkzoNPWvB8FuzsBC0bXKnT+fxov+aHZGc0vObtd4/TdMBRGYAfesR5CAe/ m1DhvRqxu5n88sOie4c0PKoWXzyy5MGdLD/e7gkRijedALAF9tacLumK/J0RxvNj 9YwZDTXJGLrwXs3+unuilIWl9Vx+8SsrQ0LPH6mW/wWylokoVaoSff26g2sJvUW3 dm3SKL0Y9EmJArdJ1B+stUWuAQzTjxs3nPHkVXv/XvIYy3I+ClIXEwG1NQ== -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:26 2024 by rpki-client on console-fra.rpki-client.org