$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa File: 3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa (raw, json) Hash identifier: RB3jmTgrCFy/RHHwcICkaVq7bxNUr0STPyjxrJY86dM= Subject key identifier: 91:E1:9F:C7:03:64:3C:28:A8:A7:B5:0D:3D:81:26:E7:F2:CD:3F:5C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77F33BF94BEBFC8C765E32C9D373906AB9258B32 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 09 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:f3:3b:f9:4b:eb:fc:8c:76:5e:32:c9:d3:73:90:6a:b9:25:8b:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=e97ead470eaa91c5139e7213ab5b5d0095bb7d111b60034dd5e92c27123ccfa2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ec:91:a0:ef:92:97:fc:d6:31:2a:19:d7:d7: 3b:df:bb:df:12:eb:79:8d:d9:72:d6:35:ec:4b:79: 1e:9a:75:16:bc:08:36:d2:dc:b9:4b:d1:05:36:66: c5:02:81:bf:d1:86:2f:7e:ed:4d:d4:a1:da:62:9a: c4:eb:9c:54:a6:fd:65:dd:34:2f:98:b9:02:56:7a: c7:a1:35:57:2a:e5:fb:39:f4:f2:f8:13:a8:46:ac: 99:a6:c2:41:4d:42:35:74:39:30:37:61:e5:fd:a6: af:78:0a:34:ef:3e:81:75:07:82:2b:13:b6:bb:59: 66:98:79:57:a0:e3:5c:86:2b:21:7a:72:c2:53:a5: 81:87:5d:87:97:01:d9:d9:8e:e3:ba:78:53:5c:8e: 6d:9b:ea:ad:ca:88:9f:88:06:8a:23:56:24:7e:5c: e9:07:ae:1a:c1:da:1a:fa:0d:7b:de:b6:db:cc:f0: c6:3e:a0:7a:bd:f5:22:35:ba:0e:d8:06:98:69:de: f2:e7:2f:7c:96:7e:66:19:bb:4d:59:ef:ba:3b:4b: 8c:6b:3a:fe:8d:27:8c:53:15:2b:6d:0b:d2:4f:6a: 54:5a:bf:81:4b:ec:a7:ee:af:66:a6:23:0b:23:ac: 70:a0:b7:8a:5d:30:38:8d:a0:ce:67:1a:39:20:30: 24:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E1:9F:C7:03:64:3C:28:A8:A7:B5:0D:3D:81:26:E7:F2:CD:3F:5C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.186.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:d6:f3:84:68:a6:b7:a2:e6:0d:6f:a8:54:11:6c:ab:f3:03: 83:b1:9a:04:59:40:2d:ed:5c:06:b5:73:ea:45:bd:b0:a5:d2: c7:1a:e7:f4:5e:1a:aa:c9:47:cf:08:52:19:b9:31:eb:3f:79: e0:38:3f:b7:c0:10:21:1a:1a:b2:bb:62:7c:46:9b:ce:d6:de: 37:bf:4b:1d:d9:19:68:d6:1e:d5:e4:ab:8c:f4:93:6d:c9:e9: bc:6a:95:91:23:86:2d:8c:a3:f9:84:c4:e2:b0:39:cd:1f:02: 22:eb:ec:84:3b:c8:e7:38:43:2c:dd:6e:07:b7:32:36:57:f5: 8b:b5:25:c5:45:87:fe:9d:be:43:5b:b6:03:a8:3f:21:52:d9: 75:a4:24:a9:97:46:78:f4:36:9b:16:68:60:41:86:87:af:d6: 59:07:62:a7:cf:1f:94:ca:37:35:4c:60:10:23:d9:df:ed:d7: d2:f3:e9:5f:b6:fe:2a:58:46:ea:01:6f:d2:c4:a5:02:6b:7b: 3a:6f:c8:88:b2:61:16:0c:41:05:56:ea:84:b1:51:5a:f4:d4: 7c:02:a8:de:ea:d7:38:23:0e:d7:25:95:f6:ba:33:a0:a2:ee: 16:4d:d1:e5:81:6c:dc:f6:8e:11:1e:51:a8:0b:35:a4:fb:07: 30:20:91:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd/M7+Uvr/Ix2XjLJ03OQarklizIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTdlYWQ0NzBlYWE5MWM1MTM5ZTcyMTNhYjViNWQwMDk1 YmI3ZDExMWI2MDAzNGRkNWU5MmMyNzEyM2NjZmEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR7JGg75KX/NYxKhnX1zvfu98S63mN2XLWNexLeR6adRa8 CDbS3LlL0QU2ZsUCgb/Rhi9+7U3UodpimsTrnFSm/WXdNC+YuQJWesehNVcq5fs5 9PL4E6hGrJmmwkFNQjV0OTA3YeX9pq94CjTvPoF1B4IrE7a7WWaYeVeg41yGKyF6 csJTpYGHXYeXAdnZjuO6eFNcjm2b6q3KiJ+IBoojViR+XOkHrhrB2hr6DXvettvM 8MY+oHq99SI1ug7YBphp3vLnL3yWfmYZu01Z77o7S4xrOv6NJ4xTFSttC9JPalRa v4FL7Kfur2amIwsjrHCgt4pdMDiNoM5nGjkgMCTPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkeGfxwNkPCiop7UNPYEm5/LNP1wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1MzNjNzgyLTRhOGUtNGIwNS1iMjNlLWUzNzQxZTlmYjAyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTbowDQYJKoZIhvcNAQELBQADggEBAFzW84Roprei5g1vqFQRbKvzA4Ox mgRZQC3tXAa1c+pFvbCl0sca5/ReGqrJR88IUhm5Mes/eeA4P7fAECEaGrK7YnxG m87W3je/Sx3ZGWjWHtXkq4z0k23J6bxqlZEjhi2Mo/mExOKwOc0fAiLr7IQ7yOc4 Qyzdbge3MjZX9Yu1JcVFh/6dvkNbtgOoPyFS2XWkJKmXRnj0NpsWaGBBhoev1lkH YqfPH5TKNzVMYBAj2d/t19Lz6V+2/ipYRuoBb9LEpQJrezpvyIiyYRYMQQVW6oSx UVr01HwCqN7q1zgjDtcllfa6M6Ci7hZN0eWBbNz2jhEeUagLNaT7BzAgkbo= -----END CERTIFICATE-----Generated at Tue May 7 18:08:37 2024 by rpki-client on console-fra.rpki-client.org