$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dba6fb11-b030-4586-9017-05713a758ad9.roa File: dba6fb11-b030-4586-9017-05713a758ad9.roa (raw, json) Hash identifier: +RkDVGSEKr1z9nrO+DVKtnd5rabTAQz7Pz226UDEPc0= Subject key identifier: 4D:79:77:C8:72:C6:7F:33:38:BC:DE:4E:8A:C4:F0:47:3A:C0:89:AA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 688CAD171D367A64BB7496ABA1BF3D6ACCD121 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dba6fb11-b030-4586-9017-05713a758ad9.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.20.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:8c:ad:17:1d:36:7a:64:bb:74:96:ab:a1:bf:3d:6a:cc:d1:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=82f50617d0cc1f20c961c5113adc451cbba9a93084b62ea72ce62ef29e235d82, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:16:13:23:9d:94:34:f3:b9:be:0d:69:a3:52: 24:53:f4:76:30:22:d1:ac:e8:05:d5:e2:1b:67:f1: 07:b7:3e:88:eb:c9:48:08:40:64:99:78:07:c3:92: 64:53:10:19:f4:79:1d:cf:f4:aa:ad:5e:e7:6a:1e: c0:12:a2:79:6b:e9:3d:e2:a6:53:ca:bf:32:c3:2f: 7b:7c:2f:2e:9c:61:f3:e6:ac:0c:73:83:a8:54:23: b4:03:2f:57:10:c2:ed:e2:ee:56:f7:2f:b3:97:59: e0:9e:41:c5:78:08:48:5f:fe:57:53:35:37:57:7a: 53:82:ba:6f:a6:ca:98:72:28:1f:a0:ec:46:60:51: 27:ec:db:0d:44:eb:f7:5d:01:02:80:7f:71:fc:ae: 17:b5:35:6b:ad:1a:b4:be:8c:76:59:a3:91:d2:3b: 7f:f1:99:5d:c2:27:87:2e:9d:d0:31:0a:9d:a0:8d: fb:a9:0e:66:24:17:45:c0:22:97:8c:82:77:15:41: 2c:db:4f:97:a1:4d:ad:5f:e5:13:9a:ca:f6:d0:62: fe:65:25:b5:95:3e:2d:ad:b5:33:52:90:69:11:d8: f1:f0:df:71:15:dc:46:f2:f1:0e:ac:c0:16:74:6e: 6d:fa:2d:4d:d9:dd:02:1b:31:dd:96:b0:ae:9f:36: e8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:79:77:C8:72:C6:7F:33:38:BC:DE:4E:8A:C4:F0:47:3A:C0:89:AA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dba6fb11-b030-4586-9017-05713a758ad9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.220.0/22 Signature Algorithm: sha256WithRSAEncryption a5:2a:d2:92:e0:91:89:bb:dd:63:6a:d0:cd:40:11:61:ff:a7: 68:db:b8:a6:63:df:cb:97:2b:d3:74:90:5a:6a:7e:33:c4:23: ae:e6:a4:36:d9:26:af:7f:0f:fc:49:e9:46:81:49:8c:17:f7: 89:65:58:37:d8:33:ed:eb:6c:fc:5f:93:52:52:f6:a4:a7:38: d2:33:60:93:69:2a:83:09:5f:b1:9e:fe:12:7e:3e:b5:45:8c: 92:dd:95:7b:83:eb:2f:fe:7c:80:2b:03:68:5a:b8:f1:40:3f: e8:d2:83:59:4f:e6:b8:68:c4:2d:71:bc:31:79:7c:78:e0:3c: 76:40:19:60:fb:df:eb:6b:be:d7:44:de:e2:b3:9e:a2:34:cf: c6:59:57:2e:e1:b7:dc:9e:1b:ec:fe:f6:b0:be:0f:89:f7:16: 43:25:48:e9:56:29:1f:4f:80:2b:26:09:2e:6b:db:52:2e:cd: 25:41:b0:84:cc:f2:e3:cc:9d:b4:90:7a:77:a4:d0:bf:f9:bd: 69:32:c2:c3:19:cb:39:28:20:f8:af:69:0e:75:41:4b:00:eb: 86:bd:78:9e:7c:ea:39:95:84:7f:75:85:f1:f8:c0:ca:00:86: bb:f9:0b:63:e0:51:d4:4e:ea:da:7a:7b:6a:a0:2c:54:0f:f3: 15:7a:07:6b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITaIytFx02emS7dJarob89aszRITANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDA0MTUwMDAwMDBaFw0yNDA1MjAyMzU5NTla MHoxSTBHBgNVBAUTQDgyZjUwNjE3ZDBjYzFmMjBjOTYxYzUxMTNhZGM0NTFjYmJh OWE5MzA4NGI2MmVhNzJjZTYyZWYyOWUyMzVkODIxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANEWEyOdlDTzub4NaaNSJFP0djAi0azoBdXiG2fxB7c+iOvJ SAhAZJl4B8OSZFMQGfR5Hc/0qq1e52oewBKieWvpPeKmU8q/MsMve3wvLpxh8+as DHODqFQjtAMvVxDC7eLuVvcvs5dZ4J5BxXgISF/+V1M1N1d6U4K6b6bKmHIoH6Ds RmBRJ+zbDUTr910BAoB/cfyuF7U1a60atL6MdlmjkdI7f/GZXcInhy6d0DEKnaCN +6kOZiQXRcAil4yCdxVBLNtPl6FNrV/lE5rK9tBi/mUltZU+La21M1KQaRHY8fDf cRXcRvLxDqzAFnRubfotTdndAhsx3Zawrp826EsCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRNeXfIcsZ/Mzi83k6KxPBHOsCJqjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvZGJhNmZiMTEtYjAzMC00NTg2LTkwMTctMDU3MTNhNzU4YWQ5LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAhAU3DANBgkqhkiG9w0BAQsFAAOCAQEApSrSkuCRibvdY2rQzUARYf+naNu4 pmPfy5cr03SQWmp+M8QjruakNtkmr38P/EnpRoFJjBf3iWVYN9gz7ets/F+TUlL2 pKc40jNgk2kqgwlfsZ7+En4+tUWMkt2Ve4PrL/58gCsDaFq48UA/6NKDWU/muGjE LXG8MXl8eOA8dkAZYPvf62u+10Te4rOeojTPxllXLuG33J4b7P72sL4PifcWQyVI 6VYpH0+AKyYJLmvbUi7NJUGwhMzy48ydtJB6d6TQv/m9aTLCwxnLOSgg+K9pDnVB SwDrhr14nnzqOZWEf3WF8fjAygCGu/kLY+BR1E7q2np7aqAsVA/zFXoHaw== -----END CERTIFICATE-----Generated at Thu May 2 11:33:25 2024 by rpki-client on console-fra.rpki-client.org