$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ad471bc-2bd8-48f7-93ff-4afa18618192.roa File: 2ad471bc-2bd8-48f7-93ff-4afa18618192.roa (raw, json) Hash identifier: wK+PP1UM69xM9epCIjpnBxmC3/4JFCLUcSE7ULAACQU= Subject key identifier: B0:35:75:BC:53:3E:71:80:DF:D6:4B:A0:E9:00:4D:FE:B4:56:2A:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 097517BE36CEFCAED94F7F9C54D13CFB454E1EAD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ad471bc-2bd8-48f7-93ff-4afa18618192.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:75:17:be:36:ce:fc:ae:d9:4f:7f:9c:54:d1:3c:fb:45:4e:1e:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=b6179728b272fc5b1189125165097ecc410f60791e449a3a53499a5685d181b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ea:df:72:df:70:09:f2:81:17:ba:5b:a4:8f: 6c:7d:63:9a:66:aa:84:1c:f5:76:56:d5:9a:4d:8d: 26:60:ab:22:f4:20:93:5c:93:0e:c3:95:59:fc:cf: 65:3b:f4:f2:72:1b:a0:b4:4f:25:3e:a6:66:6b:28: aa:5d:37:58:cc:d6:b4:bf:ea:97:00:1d:58:d6:ba: bb:73:fa:40:90:e4:59:69:69:51:4a:36:69:f0:90: 7d:c8:95:c1:99:af:30:f1:c6:fd:fb:be:45:ec:d7: 0f:6e:46:c4:73:92:4d:19:ed:96:ae:05:2f:69:92: 73:23:ca:05:8e:aa:f2:9a:c7:b5:bf:b3:57:12:a5: e2:a5:44:66:f9:b3:98:35:85:2f:99:5b:d0:1a:f8: dc:bc:21:8a:2b:0a:f1:e0:7f:29:15:71:8c:22:bf: 4d:a5:19:88:ac:e0:1f:c1:0f:a2:cd:73:46:4b:aa: 1e:4a:fc:ce:42:06:81:25:fa:28:86:fd:c2:06:53: 2b:b3:9c:67:ad:74:1c:91:b3:fb:68:57:82:d1:74: db:64:f8:a1:fd:06:90:ab:d4:d5:ad:d9:59:5e:90: 90:e4:cc:70:01:23:aa:de:b7:4f:43:63:db:e8:e8: 47:2b:72:f0:83:9b:09:ea:21:b9:12:03:7a:04:16: 55:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:35:75:BC:53:3E:71:80:DF:D6:4B:A0:E9:00:4D:FE:B4:56:2A:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ad471bc-2bd8-48f7-93ff-4afa18618192.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.128.0/18 Signature Algorithm: sha256WithRSAEncryption 52:a9:7a:88:ee:d0:42:fa:b8:03:6c:05:87:1c:95:e7:91:36: a2:8f:4e:ec:99:e2:06:c8:b1:78:3b:c3:ae:32:69:17:98:0d: c2:15:49:e6:40:70:90:6b:e4:ff:59:fb:6b:37:9a:e6:4f:1e: 4c:c4:56:65:55:04:63:9b:82:94:05:91:ef:00:5f:f3:d3:56: ac:ca:9c:ae:38:a5:fe:55:3b:26:59:19:c4:b3:e7:19:c6:4b: cb:20:9b:42:bf:41:8d:2d:4f:f4:24:b3:c7:a6:02:ea:6f:6d: 81:46:d4:ca:43:d9:34:c9:48:1b:63:ec:08:c6:c7:b9:4f:f2: 51:7b:c5:36:34:aa:c2:4b:cb:fa:a6:e8:d5:c3:d9:fb:a4:9b: c1:4a:d3:b2:aa:db:06:ca:75:18:75:00:9c:fe:30:22:b3:8b: bc:d8:9a:20:20:a4:1c:19:83:bf:b5:af:ec:ea:07:fd:91:c6: 44:6b:ca:e9:87:23:fc:5d:0a:3b:6e:2e:b5:a1:d3:42:f9:f5: 82:f3:a8:4a:9e:29:ae:bc:a4:9c:e8:5e:79:96:2f:e8:2f:9a: 12:6e:ea:55:38:52:ad:a4:f8:b8:ea:cb:2a:97:45:9d:99:17: c5:ac:14:33:13:da:fc:5d:44:77:b7:f0:62:86:ae:91:a4:6b: 3e:3b:00:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCXUXvjbO/K7ZT3+cVNE8+0VOHq0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjE3OTcyOGIyNzJmYzViMTE4OTEyNTE2NTA5N2VjYzQx MGY2MDc5MWU0NDlhM2E1MzQ5OWE1Njg1ZDE4MWI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd6t9y33AJ8oEXulukj2x9Y5pmqoQc9XZW1ZpNjSZgqyL0 IJNckw7DlVn8z2U79PJyG6C0TyU+pmZrKKpdN1jM1rS/6pcAHVjWurtz+kCQ5Flp aVFKNmnwkH3IlcGZrzDxxv37vkXs1w9uRsRzkk0Z7ZauBS9pknMjygWOqvKax7W/ s1cSpeKlRGb5s5g1hS+ZW9Aa+Ny8IYorCvHgfykVcYwiv02lGYis4B/BD6LNc0ZL qh5K/M5CBoEl+iiG/cIGUyuznGetdByRs/toV4LRdNtk+KH9BpCr1NWt2VlekJDk zHABI6ret09DY9vo6EcrcvCDmwnqIbkSA3oEFlXnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsDV1vFM+cYDf1kug6QBN/rRWKu8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhZDQ3MWJjLTJiZDgtNDhmNy05M2ZmLTRhZmExODYxODE5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjl4AwDQYJKoZIhvcNAQELBQADggEBAFKpeoju0EL6uANsBYccleeRNqKP TuyZ4gbIsXg7w64yaReYDcIVSeZAcJBr5P9Z+2s3muZPHkzEVmVVBGObgpQFke8A X/PTVqzKnK44pf5VOyZZGcSz5xnGS8sgm0K/QY0tT/Qks8emAupvbYFG1MpD2TTJ SBtj7AjGx7lP8lF7xTY0qsJLy/qm6NXD2fukm8FK07Kq2wbKdRh1AJz+MCKzi7zY miAgpBwZg7+1r+zqB/2RxkRryumHI/xdCjtuLrWh00L59YLzqEqeKa68pJzoXnmW L+gvmhJu6lU4Uq2k+LjqyyqXRZ2ZF8WsFDMT2vxdRHe38GKGrpGkaz47AFI= -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:15 2024 by rpki-client on console-fra.rpki-client.org