$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99a0e85e-2c99-4420-b447-f8e3a815a452.roa File: 99a0e85e-2c99-4420-b447-f8e3a815a452.roa (raw, json) Hash identifier: CGs4vfUuBKTSxx+VkV0WmvE/E/8s7yIhBwWETolZIK8= Subject key identifier: 3A:F3:9F:CE:F2:D6:D2:D9:CB:27:8D:93:F0:B5:5F:11:E5:D5:15:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5726D9EBCB8DF143284957EAFC40CAC3EE19473E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99a0e85e-2c99-4420-b447-f8e3a815a452.roa Signing time: Fri 31 May 2024 00:00:00 +0000 ROA not before: Fri 31 May 2024 00:00:00 +0000 ROA not after: Fri 05 Jul 2024 23:59:59 +0000 asID: 8987 IP address blocks: 167.97.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:26:d9:eb:cb:8d:f1:43:28:49:57:ea:fc:40:ca:c3:ee:19:47:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 31 00:00:00 2024 GMT Not After : Jul 5 23:59:59 2024 GMT Subject: serialNumber=446801c616fabcd39c0bba97411843aa6a06ad21aec0f62b42d58fce7c04841f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:24:c4:49:a8:2e:20:18:82:ff:17:25:30:41: 3f:d8:96:1d:2d:c8:d2:e8:a3:45:c3:df:d1:28:a3: bc:22:16:9d:e3:f9:ce:cb:1c:f4:8d:6d:e2:5f:de: 2d:36:35:34:4b:be:2b:85:b9:29:e0:6b:fd:d4:65: 44:14:df:fd:8d:ca:8d:69:93:93:80:62:71:4a:12: c7:51:8e:a3:06:3c:2c:2c:86:ad:a4:a8:dc:31:fe: bc:14:ba:82:a8:0a:6c:5d:ae:e3:96:11:5a:ed:01: 86:35:d1:e4:71:87:30:dd:6d:7f:b5:e2:9e:40:6f: 40:c6:5b:fe:41:80:01:84:65:a4:d6:a6:8d:d9:4e: ea:b5:59:1a:c6:27:fc:dc:48:bf:e4:ea:ac:d0:70: d2:6c:c5:c9:f5:25:10:52:d8:21:ed:7c:2b:17:47: e0:3e:4e:64:3b:5e:62:b2:33:c1:f6:0f:8d:32:b1: a8:74:2d:13:74:29:fb:b7:c6:fa:bb:60:14:67:41: 45:0a:16:af:f9:6f:ef:49:bf:11:5c:b4:d8:21:ff: 6d:9a:99:9b:91:b2:3a:94:77:8e:18:51:15:d7:69: b6:ce:82:fc:2a:97:1d:61:47:aa:94:2f:7c:6c:8f: 47:27:ea:c9:25:bd:33:b1:46:bc:2f:77:52:e5:74: 95:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F3:9F:CE:F2:D6:D2:D9:CB:27:8D:93:F0:B5:5F:11:E5:D5:15:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99a0e85e-2c99-4420-b447-f8e3a815a452.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9a:f3:c0:4b:67:dc:a3:bd:20:00:93:15:9c:c8:f1:10:c4:59: b8:1e:b8:10:8e:d0:68:fa:c2:64:ef:e3:89:8e:8a:e1:ef:dc: 28:b0:b2:15:ee:87:79:6d:79:f2:df:63:0c:06:7b:f7:26:69: 94:1a:8c:9c:cb:d6:b1:3d:65:fd:59:b8:e6:be:e5:fa:70:d4: a6:83:c0:f8:c8:29:ca:1c:1f:f3:c4:e2:88:7f:63:11:61:85: 16:e0:2f:5e:82:30:69:a3:3e:53:1d:cf:55:54:a9:17:14:a8: 49:64:76:4c:2f:a4:1d:df:25:b5:dc:8a:06:a4:3c:27:6a:c6: 31:b0:34:af:c2:26:04:be:06:90:0e:99:4d:97:d5:09:be:a4: 52:26:38:11:49:70:0c:da:51:98:dc:b7:ec:84:2c:58:88:a3: 56:fb:25:26:6c:94:61:de:99:0f:82:4c:90:ea:0f:96:32:ef: f3:4d:9d:18:98:f3:ca:f4:20:75:4a:39:fd:c3:2a:9f:ab:27: 89:15:e5:51:52:30:7d:5c:57:c8:4a:ec:c4:35:0b:25:3f:dc: 1f:82:a2:33:d2:58:5a:42:c0:52:0e:09:14:8d:6e:d8:57:45: eb:a3:fd:3e:7c:3d:7d:be:53:50:4b:7f:77:ed:4f:4f:ed:0f: 10:98:c7:be -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVybZ68uN8UMoSVfq/EDKw+4ZRz4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTMxMDAwMDAwWhcNMjQwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDY4MDFjNjE2ZmFiY2QzOWMwYmJhOTc0MTE4NDNhYTZh MDZhZDIxYWVjMGY2MmI0MmQ1OGZjZTdjMDQ4NDFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqJMRJqC4gGIL/FyUwQT/Ylh0tyNLoo0XD39Eoo7wiFp3j +c7LHPSNbeJf3i02NTRLviuFuSnga/3UZUQU3/2Nyo1pk5OAYnFKEsdRjqMGPCws hq2kqNwx/rwUuoKoCmxdruOWEVrtAYY10eRxhzDdbX+14p5Ab0DGW/5BgAGEZaTW po3ZTuq1WRrGJ/zcSL/k6qzQcNJsxcn1JRBS2CHtfCsXR+A+TmQ7XmKyM8H2D40y sah0LRN0Kfu3xvq7YBRnQUUKFq/5b+9JvxFctNgh/22amZuRsjqUd44YURXXabbO gvwqlx1hR6qUL3xsj0cn6sklvTOxRrwvd1LldJU1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOvOfzvLW0tnLJ42T8LVfEeXVFdIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5YTBlODVlLTJjOTktNDQyMC1iNDQ3LWY4ZTNhODE1YTQ1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCnYTANBgkqhkiG9w0BAQsFAAOCAQEAmvPAS2fco70gAJMVnMjxEMRZuB64 EI7QaPrCZO/jiY6K4e/cKLCyFe6HeW158t9jDAZ79yZplBqMnMvWsT1l/Vm45r7l +nDUpoPA+Mgpyhwf88TiiH9jEWGFFuAvXoIwaaM+Ux3PVVSpFxSoSWR2TC+kHd8l tdyKBqQ8J2rGMbA0r8ImBL4GkA6ZTZfVCb6kUiY4EUlwDNpRmNy37IQsWIijVvsl JmyUYd6ZD4JMkOoPljLv802dGJjzyvQgdUo5/cMqn6sniRXlUVIwfVxXyErsxDUL JT/cH4KiM9JYWkLAUg4JFI1u2FdF66P9Pnw9fb5TUEt/d+1PT+0PEJjHvg== -----END CERTIFICATE-----Generated at Sun Jun 2 02:06:59 2024 by rpki-client on console-fra.rpki-client.org