$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa File: 00a5e67e-d81d-4547-b011-580d41cad494.roa (raw, json) Hash identifier: q61WnuoBR1LFZt4YDqDAXxY6teGDrN4cg/8ifFeFD+M= Subject key identifier: B3:82:34:F3:F5:A2:95:9F:45:8A:BD:40:3E:7A:37:8D:C1:48:53:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25B87F5206591F59D6D52BD6EFB94AD1B39980E9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:b8:7f:52:06:59:1f:59:d6:d5:2b:d6:ef:b9:4a:d1:b3:99:80:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=852a757dad96632d1ff5beee8769beba8e116976e08d7218e509c3fca721e195, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:34:ee:bf:37:74:26:da:24:a3:9c:97:80:4e: 93:4f:f2:27:4b:b7:63:75:cd:9d:84:ce:64:64:4e: 85:34:46:94:da:d9:cf:ac:89:9f:df:26:3c:05:09: 9c:10:09:5d:e2:3c:24:e3:d1:31:d5:bb:bc:ae:4f: a7:44:51:27:f1:f7:09:fd:c6:83:c2:75:ff:65:56: ab:c6:9f:4c:37:74:b9:6d:6b:11:bc:2e:7d:eb:fc: 2a:ae:dd:bc:b5:55:1b:06:f2:8d:3a:fb:08:6b:12: 4d:52:6b:b0:3c:9e:3c:0f:9f:26:20:5f:a3:9b:c8: dd:21:e4:84:f3:e9:79:97:8f:d3:e2:79:ca:c1:b3: bd:1b:ba:20:78:af:52:f6:a8:86:8d:0d:89:30:da: 18:52:8f:2d:52:06:67:66:76:17:dd:60:ea:ac:c3: dc:ab:cf:10:d6:81:ec:c9:e0:2a:a6:6a:80:93:0a: 05:23:2d:dd:07:b8:af:74:1d:ec:39:68:46:22:45: 67:19:32:18:92:7a:73:61:6b:b5:ec:58:4c:db:3d: e4:11:64:d7:6c:b6:e2:a3:e4:e1:45:c7:d8:3a:d6: d9:65:b4:62:89:f1:40:3c:e6:77:57:09:87:84:5e: f0:04:e8:7c:04:62:9d:32:35:51:ac:da:3b:a5:0e: 14:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:82:34:F3:F5:A2:95:9F:45:8A:BD:40:3E:7A:37:8D:C1:48:53:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.243.0/24 Signature Algorithm: sha256WithRSAEncryption 29:40:0c:76:2b:ac:84:18:3a:88:ed:f9:83:99:dd:18:47:3b: 31:ac:75:c8:77:50:ca:6a:df:01:04:41:6f:c8:85:77:98:9f: 86:85:50:a9:e6:c0:cd:f9:70:79:b0:3b:87:a7:24:2c:91:fa: 72:6b:21:f5:29:20:44:83:1a:0e:76:8d:6c:00:e9:21:9f:c7: 82:59:ac:87:11:c8:43:5f:1a:0f:c3:cc:5e:8b:40:94:e8:93: b8:4d:5c:bf:02:a7:e0:94:ec:86:52:ec:39:4e:52:88:4a:dc: 47:bb:74:5f:26:6f:50:e4:02:92:a3:d6:f3:4a:45:1f:8d:98: e6:86:50:f8:bb:15:31:eb:1e:7a:3d:4e:f7:6e:cb:f9:98:0d: b5:67:ae:ef:68:46:fe:55:d8:6c:04:24:a7:98:7d:db:ef:1c: 9d:f5:d4:d2:48:a4:60:17:44:d4:8a:9a:60:12:78:28:e2:f4: 03:00:61:6c:8e:72:fe:6a:1b:c9:c2:9e:49:04:f9:4f:45:9f: ab:f8:d4:7e:82:56:d0:58:c7:b8:07:2e:e1:13:9c:5b:07:80: 64:28:e0:db:8b:5b:58:28:02:2a:9b:70:9f:e4:b0:ad:ee:79: 35:b0:45:30:b0:20:c7:77:94:f6:da:44:35:b5:6a:df:00:62: f8:88:7d:7e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJbh/UgZZH1nW1SvW77lK0bOZgOkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTJhNzU3ZGFkOTY2MzJkMWZmNWJlZWU4NzY5YmViYThl MTE2OTc2ZTA4ZDcyMThlNTA5YzNmY2E3MjFlMTk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkNO6/N3Qm2iSjnJeATpNP8idLt2N1zZ2EzmRkToU0RpTa 2c+siZ/fJjwFCZwQCV3iPCTj0THVu7yuT6dEUSfx9wn9xoPCdf9lVqvGn0w3dLlt axG8Ln3r/Cqu3by1VRsG8o06+whrEk1Sa7A8njwPnyYgX6ObyN0h5ITz6XmXj9Pi ecrBs70buiB4r1L2qIaNDYkw2hhSjy1SBmdmdhfdYOqsw9yrzxDWgezJ4CqmaoCT CgUjLd0HuK90Hew5aEYiRWcZMhiSenNha7XsWEzbPeQRZNdstuKj5OFFx9g61tll tGKJ8UA85ndXCYeEXvAE6HwEYp0yNVGs2julDhSxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUs4I08/WilZ9Fir1APno3jcFIU2swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAwYTVlNjdlLWQ4MWQtNDU0Ny1iMDExLTU4MGQ0MWNhZDQ5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfMwDQYJKoZIhvcNAQELBQADggEBAClADHYrrIQYOojt+YOZ3RhHOzGs dch3UMpq3wEEQW/IhXeYn4aFUKnmwM35cHmwO4enJCyR+nJrIfUpIESDGg52jWwA 6SGfx4JZrIcRyENfGg/DzF6LQJTok7hNXL8Cp+CU7IZS7DlOUohK3Ee7dF8mb1Dk ApKj1vNKRR+NmOaGUPi7FTHrHno9Tvduy/mYDbVnru9oRv5V2GwEJKeYfdvvHJ31 1NJIpGAXRNSKmmASeCji9AMAYWyOcv5qG8nCnkkE+U9Fn6v41H6CVtBYx7gHLuET nFsHgGQo4NuLW1goAiqbcJ/ksK3ueTWwRTCwIMd3lPbaRDW1at8AYviIfX4= -----END CERTIFICATE-----Generated at Fri Apr 19 00:30:58 2024 by rpki-client on console-fra.rpki-client.org