$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15633e1f-54bc-4c9a-8294-0c707f053f2a.roa File: 15633e1f-54bc-4c9a-8294-0c707f053f2a.roa (raw, json) Hash identifier: FTE52OPI25DhfpVvCmxlNf4xRCPIU5HMFq4dtl1I8LI= Subject key identifier: 7E:A6:D9:3E:0A:DC:EA:DE:92:CE:69:D3:A4:85:37:70:21:FE:A3:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51294A5E4F7F043E90095E372DF853D17BD19A67 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15633e1f-54bc-4c9a-8294-0c707f053f2a.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:29:4a:5e:4f:7f:04:3e:90:09:5e:37:2d:f8:53:d1:7b:d1:9a:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=f9b80c3201bf919438649059a6f3b1c348ec1b01e9e3ec47cc00f3eb6fc55829, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:95:94:dc:7b:3d:29:45:43:19:33:5c:69:f8: 8e:b7:0e:4f:3f:f3:d8:b1:89:f4:84:dc:75:f5:bd: 42:69:22:65:6f:47:33:c6:89:54:f5:4c:26:7b:46: 85:eb:c9:ab:69:56:82:b1:a6:c5:94:a1:f4:dd:61: c0:38:40:f0:16:2a:55:00:40:71:05:9a:4c:2d:b2: 4b:52:d7:97:c5:e7:03:25:ec:82:f7:a9:27:98:62: 3d:16:dd:f2:9d:a3:ed:c2:1a:0b:73:ca:be:ef:3a: 2f:2d:c1:4a:3b:1c:cd:7b:ae:00:fd:74:ea:f0:1e: 27:5c:0e:00:ae:2f:d9:aa:2d:df:78:2b:c5:81:65: 0b:9d:ea:c6:b0:7f:56:0b:4a:76:26:a1:c6:ec:46: ff:d0:c2:0f:0f:64:cc:22:16:6d:85:8e:51:32:0f: 15:98:6e:c4:6c:73:c9:ee:49:76:2b:ef:b7:57:c9: b4:dc:75:6f:e3:69:be:70:50:a2:d3:a8:bf:10:fc: 3a:69:3c:3d:a3:ce:e5:31:51:fd:db:6d:8d:b7:96: 1d:d4:03:4c:cc:9d:9c:30:64:d8:a2:d9:a1:8d:be: 04:ed:bb:4d:ec:04:a0:3a:2c:0f:a4:ee:a1:22:84: 45:3b:e6:87:5b:0b:9a:6d:14:e6:86:20:9e:4a:0a: 53:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:A6:D9:3E:0A:DC:EA:DE:92:CE:69:D3:A4:85:37:70:21:FE:A3:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15633e1f-54bc-4c9a-8294-0c707f053f2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.190.0/24 Signature Algorithm: sha256WithRSAEncryption 15:a0:38:59:a0:82:04:aa:26:15:56:d0:37:b4:e5:94:66:ac: 96:02:bc:01:3e:26:28:82:ef:73:ae:5b:ea:bc:0a:20:27:94: 01:df:df:be:6d:70:86:3c:da:75:8a:53:3a:ff:3b:0d:08:8f: e5:b2:8f:c1:b5:ff:f4:99:8a:e6:89:db:b8:41:81:da:85:26: 87:5b:2d:ab:4e:ea:e6:23:98:4d:aa:67:81:45:ae:87:49:e3: e8:e3:c0:10:8b:21:94:bb:49:69:af:f4:19:9e:15:b0:26:ae: 5e:ef:c8:5e:49:01:23:6a:79:a1:71:17:41:42:5b:3b:af:c0: 4c:4f:06:95:a5:83:11:50:11:6d:3f:5d:fa:4e:7b:2e:d2:2f: 18:fb:1d:22:47:1a:2e:72:f8:0f:e1:a4:af:d0:88:e9:e0:37: ae:ed:d0:fd:9e:0d:82:d7:43:17:da:b1:2f:43:59:02:b1:d3: 06:d8:97:c7:b5:f9:ec:44:75:af:b5:67:57:cf:74:70:c0:40: 61:28:0a:67:c0:7c:c9:2c:2f:e6:ac:19:7a:06:04:64:ee:ca: 66:02:54:74:78:07:b8:d8:7c:f5:71:5b:37:61:24:03:74:e5: 3e:99:f1:26:a6:04:fc:bc:00:21:56:68:ce:61:b6:27:7b:5a: 61:c1:44:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUSlKXk9/BD6QCV43LfhT0XvRmmcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOWI4MGMzMjAxYmY5MTk0Mzg2NDkwNTlhNmYzYjFjMzQ4 ZWMxYjAxZTllM2VjNDdjYzAwZjNlYjZmYzU1ODI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZlZTcez0pRUMZM1xp+I63Dk8/89ixifSE3HX1vUJpImVv RzPGiVT1TCZ7RoXryatpVoKxpsWUofTdYcA4QPAWKlUAQHEFmkwtsktS15fF5wMl 7IL3qSeYYj0W3fKdo+3CGgtzyr7vOi8twUo7HM17rgD9dOrwHidcDgCuL9mqLd94 K8WBZQud6sawf1YLSnYmocbsRv/Qwg8PZMwiFm2FjlEyDxWYbsRsc8nuSXYr77dX ybTcdW/jab5wUKLTqL8Q/DppPD2jzuUxUf3bbY23lh3UA0zMnZwwZNii2aGNvgTt u03sBKA6LA+k7qEihEU75odbC5ptFOaGIJ5KClPFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfqbZPgrc6t6SzmnTpIU3cCH+o2kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1NjMzZTFmLTU0YmMtNGM5YS04Mjk0LTBjNzA3ZjA1M2YyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTb4wDQYJKoZIhvcNAQELBQADggEBABWgOFmgggSqJhVW0De05ZRmrJYC vAE+JiiC73OuW+q8CiAnlAHf375tcIY82nWKUzr/Ow0Ij+Wyj8G1//SZiuaJ27hB gdqFJodbLatO6uYjmE2qZ4FFrodJ4+jjwBCLIZS7SWmv9BmeFbAmrl7vyF5JASNq eaFxF0FCWzuvwExPBpWlgxFQEW0/XfpOey7SLxj7HSJHGi5y+A/hpK/QiOngN67t 0P2eDYLXQxfasS9DWQKx0wbYl8e1+exEda+1Z1fPdHDAQGEoCmfAfMksL+asGXoG BGTuymYCVHR4B7jYfPVxWzdhJAN05T6Z8SamBPy8ACFWaM5htid7WmHBRD8= -----END CERTIFICATE-----Generated at Sat Apr 20 03:56:07 2024 by rpki-client on console-fra.rpki-client.org