$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/414f78f0-f144-4b6a-85e5-9117d5a2f0d4.roa File: 414f78f0-f144-4b6a-85e5-9117d5a2f0d4.roa (raw, json) Hash identifier: nUpts+vxB3WPkqyIUC7Yxn+7/r1CNsvCNVKwWSaPW1I= Subject key identifier: 36:8B:BB:85:06:7C:E8:05:58:4F:D7:0B:44:AC:CE:A3:26:C1:57:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 500EA50BAFA9975D5B48E0B0AE935EC7D0A62BF6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/414f78f0-f144-4b6a-85e5-9117d5a2f0d4.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:0e:a5:0b:af:a9:97:5d:5b:48:e0:b0:ae:93:5e:c7:d0:a6:2b:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=989d239505a637a2b3fac184973738a65ff0a2b730afc47b04ffaf5882ef101d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fc:cd:7b:a1:e8:5c:e4:8d:13:08:72:9c:5b: 1f:1c:46:f9:a6:ce:48:08:b8:4f:9c:85:bb:de:04: 57:ef:b8:81:bf:aa:a7:a0:b5:34:ff:3b:44:1c:f4: 6a:e0:f4:1a:41:87:97:f9:0f:c7:e7:35:7e:b3:09: 9f:46:26:84:38:16:39:db:71:e6:ea:c8:94:83:42: 80:a1:1c:29:c1:2e:af:cd:23:63:65:52:76:24:e3: fb:70:db:69:cc:c1:4a:7e:08:b4:11:d2:a2:06:6c: d1:b4:4a:69:9c:b3:97:65:be:6e:51:9c:05:d7:69: fb:57:77:60:ca:57:58:43:24:00:ab:e0:c2:61:e9: 3a:d8:b2:de:da:58:46:67:6f:e0:31:d8:a4:c8:d8: a9:9c:cb:49:34:2e:d4:3d:16:3a:b7:13:5a:2a:69: b4:2f:c8:2c:a0:69:3f:72:f1:16:91:d1:d0:49:a9: a5:6f:fd:52:a5:d0:51:91:4c:65:91:76:bc:0d:4d: c1:5c:31:f5:6f:36:50:12:6f:91:06:e5:5c:55:3b: 4c:7c:03:81:e5:c3:ab:ae:77:4d:8d:a8:e4:e2:1b: ce:b6:1c:9c:83:1d:2d:c5:68:d3:9e:bc:01:d8:bb: 03:c5:8c:62:9f:ae:33:85:3e:18:14:a6:0e:b9:d0: c6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8B:BB:85:06:7C:E8:05:58:4F:D7:0B:44:AC:CE:A3:26:C1:57:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/414f78f0-f144-4b6a-85e5-9117d5a2f0d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.176.0/22 Signature Algorithm: sha256WithRSAEncryption d1:21:21:b2:65:06:cc:47:f8:b0:12:b5:e2:28:9c:e3:29:30: 6f:24:5c:c7:d8:5e:c2:37:59:19:2b:fe:59:5f:a3:0f:18:55: e5:fc:1e:ac:ba:b5:5d:96:14:7f:fa:c6:a6:f7:44:ce:96:5e: 39:a1:75:d4:af:c9:75:d9:76:ba:b7:7a:80:70:c5:7d:dc:79: 70:8f:ba:5a:63:f6:1d:61:35:62:73:e7:4c:bd:21:73:ac:9e: aa:1b:07:11:65:2e:a1:29:55:1b:8c:e8:ed:fb:bd:98:96:1d: a2:2f:64:23:b1:48:32:02:bd:24:12:33:41:85:5b:ca:37:eb: 51:3c:37:5e:8d:5c:e6:b3:56:ee:cf:e5:2f:e4:ec:87:e4:8d: 36:2e:3a:1e:94:90:2f:87:17:16:7a:95:14:44:38:60:8b:e6: 1a:80:c7:97:75:e2:b7:d9:73:b9:fa:5e:fd:e4:70:84:3e:14: 9c:29:18:7e:c4:e3:7d:cb:73:22:f5:6f:5f:74:7d:3d:2d:b5: c0:6e:5e:a7:25:2b:e2:d0:82:a7:4e:66:5f:02:e3:74:39:69: 39:46:2c:2f:02:71:0b:59:8e:31:bc:6c:f2:47:db:f4:fc:a8: 63:e8:0f:28:fa:34:3d:ad:ab:14:55:b0:e2:72:3c:81:dc:ca: da:7e:64:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUA6lC6+pl11bSOCwrpNex9CmK/YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODlkMjM5NTA1YTYzN2EyYjNmYWMxODQ5NzM3MzhhNjVm ZjBhMmI3MzBhZmM0N2IwNGZmYWY1ODgyZWYxMDFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP/M17oehc5I0TCHKcWx8cRvmmzkgIuE+chbveBFfvuIG/ qqegtTT/O0Qc9Grg9BpBh5f5D8fnNX6zCZ9GJoQ4FjnbcebqyJSDQoChHCnBLq/N I2NlUnYk4/tw22nMwUp+CLQR0qIGbNG0Smmcs5dlvm5RnAXXaftXd2DKV1hDJACr 4MJh6TrYst7aWEZnb+Ax2KTI2Kmcy0k0LtQ9Fjq3E1oqabQvyCygaT9y8RaR0dBJ qaVv/VKl0FGRTGWRdrwNTcFcMfVvNlASb5EG5VxVO0x8A4Hlw6uud02NqOTiG862 HJyDHS3FaNOevAHYuwPFjGKfrjOFPhgUpg650MbDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNou7hQZ86AVYT9cLRKzOoybBVw0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxNGY3OGYwLWYxNDQtNGI2YS04NWU1LTkxMTdkNWEyZjBkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjl7AwDQYJKoZIhvcNAQELBQADggEBANEhIbJlBsxH+LASteIonOMpMG8k XMfYXsI3WRkr/llfow8YVeX8Hqy6tV2WFH/6xqb3RM6WXjmhddSvyXXZdrq3eoBw xX3ceXCPulpj9h1hNWJz50y9IXOsnqobBxFlLqEpVRuM6O37vZiWHaIvZCOxSDIC vSQSM0GFW8o361E8N16NXOazVu7P5S/k7IfkjTYuOh6UkC+HFxZ6lRREOGCL5hqA x5d14rfZc7n6Xv3kcIQ+FJwpGH7E433LcyL1b190fT0ttcBuXqclK+LQgqdOZl8C 43Q5aTlGLC8CcQtZjjG8bPJH2/T8qGPoDyj6ND2tqxRVsOJyPIHcytp+ZJ8= -----END CERTIFICATE-----Generated at Thu May 2 22:28:03 2024 by rpki-client on console-ams.rpki-client.org