$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/404e92f3-75c8-4009-90ff-77096b5f65f8.roa File: 404e92f3-75c8-4009-90ff-77096b5f65f8.roa (raw, json) Hash identifier: CIIr8bWtmUUdQ5QVjoyRIkKRWt5iupkKM5gEVP7YarA= Subject key identifier: 73:CB:21:40:51:99:95:01:54:B8:72:A3:C3:1D:70:50:72:2C:01:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A25561F3F25AFB0447FE39AFBC553B94736CB96 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/404e92f3-75c8-4009-90ff-77096b5f65f8.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:25:56:1f:3f:25:af:b0:44:7f:e3:9a:fb:c5:53:b9:47:36:cb:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=ad9d3cd113ec0af889a82a575aad5d5d8c070ae177fd850930464b3ab5b08332, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:53:10:2a:fc:fb:19:16:c3:eb:d6:b1:f3:f0: d5:ef:9d:fe:4f:6b:22:66:13:8e:59:51:a1:68:75: ed:b8:7a:a0:03:42:e8:ab:d8:62:17:91:8a:f1:c5: 24:e3:ad:dd:10:a3:6b:b3:61:d5:18:1a:4c:6b:2d: e3:be:2d:b7:91:af:8e:ef:4e:20:7b:2d:f1:e2:08: e7:5f:ac:e5:2f:4e:99:60:f2:d5:b7:44:d2:4b:08: 48:a8:68:a7:d7:5c:8d:39:65:11:79:92:9c:ad:54: 5f:b2:c9:6f:25:8a:5c:47:d1:98:be:d9:2e:35:ca: e6:25:48:e7:f6:bc:62:32:3e:ce:6a:f8:91:ef:c7: 73:3d:d9:11:2b:53:15:3b:8a:e2:65:b1:dd:5d:38: dd:de:b7:e3:85:46:0a:d0:25:3d:ba:71:67:45:05: 54:ef:07:0e:d7:5a:f1:46:f3:f6:c3:17:6c:05:c6: 51:58:32:46:2c:55:d9:e3:a9:b4:37:3b:7b:95:2f: b9:ed:60:d1:28:f8:18:de:41:2e:b1:04:c9:24:8f: d4:29:25:88:f8:ed:20:ed:64:b1:1d:05:11:86:46: df:a2:33:aa:1b:ad:50:72:5c:f0:4b:fd:3c:5b:f7: b7:83:e3:ed:07:4a:2d:ab:40:2d:f6:88:d2:bb:5b: e2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:CB:21:40:51:99:95:01:54:B8:72:A3:C3:1D:70:50:72:2C:01:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/404e92f3-75c8-4009-90ff-77096b5f65f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.128.0/17 Signature Algorithm: sha256WithRSAEncryption a4:f6:f3:bc:07:62:1d:be:91:71:7e:92:ee:4a:74:ef:d7:17: 01:0f:76:74:6e:b8:8e:6e:42:92:a7:3e:61:f6:67:f1:a8:77: 42:28:a1:19:b1:6a:2e:bb:d2:27:2a:d5:30:ee:58:43:44:35: 54:cc:5d:7c:d4:56:62:fa:c6:52:7c:5f:41:e6:f8:39:ab:28: 7a:0b:2e:0a:43:7f:88:3d:80:97:f7:ec:4e:86:a6:e6:58:14: 67:bb:5e:2b:20:e2:b8:44:be:6b:db:b6:2d:3e:64:dd:80:dd: 8a:7f:a5:6a:0e:ab:0c:4c:91:6b:c1:b5:14:f1:ef:cd:dc:71: 1b:f4:df:0c:79:cf:85:cd:5b:44:15:d9:0f:79:f3:d7:05:d4: 18:3b:a5:0f:26:c5:94:5d:b9:e0:8a:eb:b5:cd:9c:11:98:ac: c8:a7:af:1e:65:d4:16:ca:ae:2b:b3:90:fe:5f:db:aa:78:2c: 5e:df:e8:87:bd:2f:36:13:78:6f:9d:52:81:db:a6:d6:8c:c5: 30:06:f2:6a:58:1d:97:4a:b9:5f:9c:0c:19:eb:2d:60:8e:c0: d4:e0:2f:f1:e2:da:62:9f:d5:0c:e4:7a:ce:ab:a7:f2:ce:21: 31:7f:ed:f1:33:0b:0e:b3:49:47:e9:7d:61:e8:d6:f7:9c:01: cb:59:5e:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeiVWHz8lr7BEf+Oa+8VTuUc2y5YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDlkM2NkMTEzZWMwYWY4ODlhODJhNTc1YWFkNWQ1ZDhj MDcwYWUxNzdmZDg1MDkzMDQ2NGIzYWI1YjA4MzMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqUxAq/PsZFsPr1rHz8NXvnf5PayJmE45ZUaFode24eqAD Quir2GIXkYrxxSTjrd0Qo2uzYdUYGkxrLeO+LbeRr47vTiB7LfHiCOdfrOUvTplg 8tW3RNJLCEioaKfXXI05ZRF5kpytVF+yyW8lilxH0Zi+2S41yuYlSOf2vGIyPs5q +JHvx3M92RErUxU7iuJlsd1dON3et+OFRgrQJT26cWdFBVTvBw7XWvFG8/bDF2wF xlFYMkYsVdnjqbQ3O3uVL7ntYNEo+BjeQS6xBMkkj9QpJYj47SDtZLEdBRGGRt+i M6obrVByXPBL/Txb97eD4+0HSi2rQC32iNK7W+K5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc8shQFGZlQFUuHKjwx1wUHIsAeYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwNGU5MmYzLTc1YzgtNDAwOS05MGZmLTc3MDk2YjVmNjVmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjToAwDQYJKoZIhvcNAQELBQADggEBAKT287wHYh2+kXF+ku5KdO/XFwEP dnRuuI5uQpKnPmH2Z/God0IooRmxai670icq1TDuWENENVTMXXzUVmL6xlJ8X0Hm +DmrKHoLLgpDf4g9gJf37E6GpuZYFGe7Xisg4rhEvmvbti0+ZN2A3Yp/pWoOqwxM kWvBtRTx783ccRv03wx5z4XNW0QV2Q9589cF1Bg7pQ8mxZRdueCK67XNnBGYrMin rx5l1BbKriuzkP5f26p4LF7f6Ie9LzYTeG+dUoHbptaMxTAG8mpYHZdKuV+cDBnr LWCOwNTgL/Hi2mKf1Qzkes6rp/LOITF/7fEzCw6zSUfpfWHo1vecActZXsg= -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:10 2024 by rpki-client on console-fra.rpki-client.org