$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79209ee-b31e-46fa-bdfb-ea990915c3be.roa File: d79209ee-b31e-46fa-bdfb-ea990915c3be.roa (raw, json) Hash identifier: Nvc5V3vLz97g8G2bql/uROuFQeL7YO6oOpsm5ffL0sI= Subject key identifier: CF:D5:A4:AE:30:69:20:F3:33:F7:B4:DA:BB:01:13:FA:84:FF:95:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66E5B46028F6B633F366CCCB4BA430B8B5D7A8EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79209ee-b31e-46fa-bdfb-ea990915c3be.roa Signing time: Sat 11 May 2024 00:00:00 +0000 ROA not before: Sat 11 May 2024 00:00:00 +0000 ROA not after: Sat 15 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 98.76.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:e5:b4:60:28:f6:b6:33:f3:66:cc:cb:4b:a4:30:b8:b5:d7:a8:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 11 00:00:00 2024 GMT Not After : Jun 15 23:59:59 2024 GMT Subject: serialNumber=bcc08f264ff70d21d0a82c473d5950c8cd1d2456965f0cd30cafa962022e65e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:6b:73:dc:4d:57:a8:a8:ec:03:c9:99:7c:1f: 4e:64:fa:ab:2b:d8:d4:b9:76:66:d5:53:e1:fd:bb: d7:a9:c0:26:76:44:5e:5d:cc:e1:58:39:c3:4f:ac: b1:d5:66:58:28:05:f3:36:2a:20:62:cc:cd:fb:48: 9c:89:e4:d3:1a:7d:57:3a:b7:2b:9a:7e:7d:12:d4: 79:d2:32:44:13:6a:43:4a:a9:e7:5a:d7:d7:f6:a9: f8:9b:0b:21:03:5a:98:91:51:de:df:3b:4c:11:73: 91:23:84:08:0a:06:12:3d:65:ac:a3:93:a6:75:9c: 9d:63:72:86:97:66:e7:ab:ed:4b:12:8b:63:39:dc: b7:04:6f:79:54:91:56:31:be:0b:46:e2:c1:16:e1: cc:44:a7:ef:80:a0:8e:35:06:63:bd:25:f2:06:2b: d6:ee:cb:2d:92:b0:de:4f:ff:ed:2d:e6:69:f1:17: f7:e8:d9:48:16:9a:ba:20:e7:59:94:3b:8d:9a:51: 2e:e0:a3:40:12:f8:80:d3:0f:10:83:cf:fd:1d:96: a7:eb:3b:46:04:17:79:36:46:05:70:9d:3f:8a:ad: 7e:ab:4c:96:03:90:8a:e2:e8:ea:ae:bc:f7:5f:25: 8f:4c:90:b0:a0:60:02:13:aa:13:47:bc:90:59:65: 81:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D5:A4:AE:30:69:20:F3:33:F7:B4:DA:BB:01:13:FA:84:FF:95:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79209ee-b31e-46fa-bdfb-ea990915c3be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.76.0.0/16 Signature Algorithm: sha256WithRSAEncryption af:1e:37:59:5e:69:97:68:dd:d6:e0:5c:9e:77:a8:82:ae:e2: 57:6e:c3:ca:fb:7a:bc:99:a3:0b:05:f7:72:c4:f4:f6:66:86: a3:b6:5b:c4:c3:de:52:72:4f:00:d6:07:5c:f8:d2:aa:41:4c: f3:6d:63:8d:70:4d:2f:3e:60:5d:0e:ec:da:6d:87:5b:ee:47: 1d:3b:6d:28:e3:4c:94:c7:3b:2c:04:62:06:b8:50:2e:32:54: 43:79:a7:ea:b4:b7:89:1e:cf:ee:01:75:ee:3a:6b:27:4e:de: 4d:1e:fb:e4:c2:7e:53:c3:4f:7a:9e:34:c7:40:12:4c:53:f8: 10:52:c2:fd:09:1a:76:cd:ed:ed:ca:65:4c:0f:f4:39:e7:d2: f7:33:1c:3a:0e:32:69:ca:02:a9:4e:7e:d6:a1:a7:aa:64:1b: 3f:b3:7b:ee:c1:bb:2c:f2:38:69:9b:6b:52:9e:77:ab:d6:2c: dc:e1:a0:cf:a5:75:ba:8d:fe:98:ea:98:28:fb:49:1e:d0:46: 58:cd:26:54:51:97:9e:db:d0:66:14:56:e5:9e:1b:11:95:7e: ce:ca:fa:47:7b:eb:d8:27:cd:91:5c:16:17:1b:7e:0e:c9:83: 99:c1:c0:39:d0:9d:ab:9e:4e:55:cd:d9:4e:a2:25:64:0c:70: 00:6b:8f:d9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZuW0YCj2tjPzZszLS6QwuLXXqOswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTExMDAwMDAwWhcNMjQwNjE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2MwOGYyNjRmZjcwZDIxZDBhODJjNDczZDU5NTBjOGNk MWQyNDU2OTY1ZjBjZDMwY2FmYTk2MjAyMmU2NWU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWa3PcTVeoqOwDyZl8H05k+qsr2NS5dmbVU+H9u9epwCZ2 RF5dzOFYOcNPrLHVZlgoBfM2KiBizM37SJyJ5NMafVc6tyuafn0S1HnSMkQTakNK qeda19f2qfibCyEDWpiRUd7fO0wRc5EjhAgKBhI9Zayjk6Z1nJ1jcoaXZuer7UsS i2M53LcEb3lUkVYxvgtG4sEW4cxEp++AoI41BmO9JfIGK9buyy2SsN5P/+0t5mnx F/fo2UgWmrog51mUO42aUS7go0AS+IDTDxCDz/0dlqfrO0YEF3k2RgVwnT+KrX6r TJYDkIri6OquvPdfJY9MkLCgYAITqhNHvJBZZYHDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUz9WkrjBpIPMz97TauwET+oT/lZ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3OTIwOWVlLWIzMWUtNDZmYS1iZGZiLWVhOTkwOTE1YzNiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBiTDANBgkqhkiG9w0BAQsFAAOCAQEArx43WV5pl2jd1uBcnneogq7iV27D yvt6vJmjCwX3csT09maGo7ZbxMPeUnJPANYHXPjSqkFM821jjXBNLz5gXQ7s2m2H W+5HHTttKONMlMc7LARiBrhQLjJUQ3mn6rS3iR7P7gF17jprJ07eTR775MJ+U8NP ep40x0ASTFP4EFLC/Qkads3t7cplTA/0OefS9zMcOg4yacoCqU5+1qGnqmQbP7N7 7sG7LPI4aZtrUp53q9Ys3OGgz6V1uo3+mOqYKPtJHtBGWM0mVFGXntvQZhRW5Z4b EZV+zsr6R3vr2CfNkVwWFxt+DsmDmcHAOdCdq55OVc3ZTqIlZAxwAGuP2Q== -----END CERTIFICATE-----Generated at Sun Jun 2 02:07:04 2024 by rpki-client on console-fra.rpki-client.org