$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3115e46c-d653-48fc-b04a-cbdba014f621.roa File: 3115e46c-d653-48fc-b04a-cbdba014f621.roa (raw, json) Hash identifier: DTp/CJmZ8FQ7a8LXaktk7ece3+tMEKAMAJl1QkG0X7w= Subject key identifier: E2:19:47:F4:32:4E:6A:E1:24:9A:74:36:41:C8:0B:38:54:D8:C7:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34B3E930577DFFB1B55FA03A50CE8E44A93855AE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3115e46c-d653-48fc-b04a-cbdba014f621.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.83.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:b3:e9:30:57:7d:ff:b1:b5:5f:a0:3a:50:ce:8e:44:a9:38:55:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=18eda8f6e791ce284d5f40afe964c779c1c63ebe137915fc5b6023d595cf34ac, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ae:d3:bd:2b:50:68:a4:78:bf:93:f5:4d:51: 4a:34:13:b5:55:42:66:fd:3b:72:c5:0e:39:20:06: 79:ce:40:ca:fd:e0:87:19:e4:be:2a:a5:ee:f6:01: ae:0e:08:95:7d:cd:73:01:c4:23:c6:93:bb:c0:c7: ea:10:2b:f4:7a:ce:24:64:8d:ad:0a:1b:23:2a:87: c8:fc:5f:9e:50:d1:ae:f2:ac:4f:b0:70:f4:2e:04: c1:f1:b6:b6:09:fc:2a:84:6e:5c:f5:96:16:4d:3f: 73:b8:10:16:09:0f:70:85:48:e7:8f:3b:38:d8:3b: b4:3b:17:53:3f:6e:de:94:b4:2a:3c:cf:fb:8e:c9: af:e0:e8:c3:cd:62:f8:d1:df:b6:74:03:48:f0:49: 9e:c2:54:f2:ad:9f:ae:2c:66:44:63:4b:a9:25:85: 68:8b:d6:9f:48:53:ec:55:6c:36:7a:06:03:cc:70: 3b:fd:22:2a:8a:a5:ba:ad:5a:ea:7b:c8:52:c7:6d: a1:93:e2:5b:33:6c:03:0f:06:62:37:c8:68:52:7a: 0e:6d:cd:d4:e9:ae:16:85:ea:c8:ac:48:df:da:74: bf:ce:83:ea:66:39:f8:2d:f7:e1:59:58:13:93:d6: c9:35:9f:01:d7:cc:ba:de:53:ec:67:11:08:11:97: 81:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:19:47:F4:32:4E:6A:E1:24:9A:74:36:41:C8:0B:38:54:D8:C7:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3115e46c-d653-48fc-b04a-cbdba014f621.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.83.99.0/24 Signature Algorithm: sha256WithRSAEncryption 66:5a:00:e5:d3:1b:2a:d0:46:6e:d7:8f:4c:0b:4e:4b:ca:d2: a4:b4:db:c4:cb:07:04:3a:89:a6:ef:e9:81:fe:00:91:b8:0a: 4c:59:3f:ca:c7:1d:c1:95:79:6b:50:32:09:cc:e8:98:b2:72: 4c:83:b5:b7:5a:f8:2e:e6:bf:73:4e:0d:72:2c:80:55:5e:9b: 97:64:7b:3f:c0:95:f9:bb:13:37:a2:2e:b5:ea:7e:ef:da:49: 5f:3e:fe:c1:30:89:2a:ca:21:a1:8d:04:fe:a1:82:22:25:3b: 65:cd:59:bd:d2:b6:e6:3a:8c:9b:53:f8:de:d8:03:d4:7a:2e: 4d:70:bc:fd:88:d1:d0:40:6f:bc:a1:b7:c1:a2:df:bf:e1:f2: 9b:a8:bf:02:b7:f6:9f:57:5a:dd:49:13:3e:e0:01:4d:0e:02: 27:60:d1:84:53:01:ae:a5:c3:dc:f7:ac:fc:ee:11:36:ee:77: 66:6b:a9:04:56:c1:2a:aa:02:0a:eb:71:ba:70:6f:8d:da:30: 2b:6d:60:d6:4e:a9:f5:ee:ec:cd:d9:a6:8e:65:c8:64:52:17: 3c:ac:44:dc:8c:62:80:53:2e:18:9e:94:a2:52:12:b5:99:ab: 37:f2:9c:02:83:bb:48:36:dc:3b:45:6c:57:c2:b9:97:48:1c: 16:b9:39:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNLPpMFd9/7G1X6A6UM6ORKk4Va4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGVkYThmNmU3OTFjZTI4NGQ1ZjQwYWZlOTY0Yzc3OWMx YzYzZWJlMTM3OTE1ZmM1YjYwMjNkNTk1Y2YzNGFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdrtO9K1BopHi/k/VNUUo0E7VVQmb9O3LFDjkgBnnOQMr9 4IcZ5L4qpe72Aa4OCJV9zXMBxCPGk7vAx+oQK/R6ziRkja0KGyMqh8j8X55Q0a7y rE+wcPQuBMHxtrYJ/CqEblz1lhZNP3O4EBYJD3CFSOePOzjYO7Q7F1M/bt6UtCo8 z/uOya/g6MPNYvjR37Z0A0jwSZ7CVPKtn64sZkRjS6klhWiL1p9IU+xVbDZ6BgPM cDv9IiqKpbqtWup7yFLHbaGT4lszbAMPBmI3yGhSeg5tzdTprhaF6sisSN/adL/O g+pmOfgt9+FZWBOT1sk1nwHXzLreU+xnEQgRl4HNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4hlH9DJOauEkmnQ2QcgLOFTYx78wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxMTVlNDZjLWQ2NTMtNDhmYy1iMDRhLWNiZGJhMDE0ZjYyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjU2MwDQYJKoZIhvcNAQELBQADggEBAGZaAOXTGyrQRm7Xj0wLTkvK0qS0 28TLBwQ6iabv6YH+AJG4CkxZP8rHHcGVeWtQMgnM6JiyckyDtbda+C7mv3NODXIs gFVem5dkez/Alfm7EzeiLrXqfu/aSV8+/sEwiSrKIaGNBP6hgiIlO2XNWb3StuY6 jJtT+N7YA9R6Lk1wvP2I0dBAb7yht8Gi37/h8puovwK39p9XWt1JEz7gAU0OAidg 0YRTAa6lw9z3rPzuETbud2ZrqQRWwSqqAgrrcbpwb43aMCttYNZOqfXu7M3Zpo5l yGRSFzysRNyMYoBTLhielKJSErWZqzfynAKDu0g23DtFbFfCuZdIHBa5OU8= -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:47 2024 by rpki-client on console-fra.rpki-client.org