$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47e2a0f0-4b49-420b-a679-9785ebdc8f19.roa File: 47e2a0f0-4b49-420b-a679-9785ebdc8f19.roa (raw, json) Hash identifier: AvBoU0BLFKdIj9qyVC2f231prt2teV4yWEtTAbs5sOI= Subject key identifier: 01:F8:BA:8E:CB:C9:CE:0B:AF:DE:FB:48:D8:B4:13:4B:10:09:02:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68548800A483DACAFB7BFFCF8900A3E422EEACA5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47e2a0f0-4b49-420b-a679-9785ebdc8f19.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:54:88:00:a4:83:da:ca:fb:7b:ff:cf:89:00:a3:e4:22:ee:ac:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=e9e2c0d14d6a25268010d6920a6bd260480b7cfe27509438d9f486131080dc82, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:df:fd:86:32:63:f9:e1:2d:0a:85:36:bd:9c: 05:2d:91:ac:7d:c9:c9:3a:3e:0e:59:c9:2e:54:16: 32:a2:2b:d8:1a:7d:5b:c8:05:b8:90:29:cf:43:29: f4:be:67:8a:93:b8:3b:e4:e8:97:9c:fb:ff:fe:0d: e9:fa:ef:b1:d6:8a:e8:5a:c4:c2:9f:5e:8c:d4:e0: fc:db:67:55:85:ff:7f:3a:80:50:59:7b:0e:8a:56: 6a:99:ff:0a:e9:6f:f7:38:29:ac:03:1b:ed:40:67: b0:e6:e2:81:09:67:04:f1:08:49:94:1f:e4:3c:b7: a3:31:49:58:0c:e8:70:c5:4b:da:5f:53:06:b9:ce: ce:4f:32:25:da:f8:14:1b:25:92:4d:81:20:6a:aa: ea:b3:2a:18:9c:fc:be:d1:89:0b:6a:7c:ca:d1:a6: 5a:76:2e:b2:36:46:24:22:fe:f8:93:f2:6f:8c:1c: 86:e5:43:d7:a8:17:ab:6d:67:b4:28:20:32:a2:81: 56:76:c2:ba:b4:f7:d6:69:a5:47:8c:d7:11:dc:da: 01:c8:24:7f:f2:3d:5b:3d:76:91:17:39:0d:9f:33: 68:25:01:46:ac:24:e4:9a:7d:96:a4:f3:a1:c5:66: 0c:75:ff:79:94:af:52:7b:d9:84:01:6a:8c:6a:49: 66:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:F8:BA:8E:CB:C9:CE:0B:AF:DE:FB:48:D8:B4:13:4B:10:09:02:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47e2a0f0-4b49-420b-a679-9785ebdc8f19.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.232.0/21 Signature Algorithm: sha256WithRSAEncryption 47:3d:cd:70:94:15:7d:bb:e5:9d:61:c3:be:71:85:fa:9e:62: 53:d0:bd:e6:b8:65:e1:7c:7e:57:bc:8a:13:aa:f9:c6:e1:5b: 51:30:30:d4:39:5e:99:93:6d:51:0d:48:40:bf:ac:2b:4e:fa: fb:01:36:9c:84:ff:94:4a:5f:29:84:3e:7a:6c:2e:f9:c6:30: 6a:5c:90:22:99:3b:6e:99:40:50:dc:8b:3c:da:61:4d:d8:d9: 2a:2d:6b:78:21:fe:1d:c9:d8:7b:13:38:49:99:00:51:e2:90: 34:3f:61:9e:12:87:b1:6e:8b:1b:20:02:bc:71:40:42:3e:fd: 00:8c:2f:97:fe:90:ee:30:50:cc:59:73:ec:3d:92:81:c6:96: 30:75:c2:d6:ec:dc:5c:27:8f:5f:ab:92:4b:fc:c5:46:a9:4b: 8a:5a:e9:24:ed:ad:04:ac:74:c6:9d:36:ce:ab:77:75:03:6a: 00:cb:96:12:40:81:8b:ec:ec:71:f6:a1:09:2c:6f:6a:e9:c7: eb:67:8b:b7:be:6c:bd:fe:2e:c3:ec:99:4d:20:70:7a:75:85: 12:5d:a8:aa:1e:65:05:f4:78:86:dd:9c:a6:66:0f:71:8a:f0: b3:25:b4:e4:db:ac:f3:4b:0f:3c:5a:1c:cb:d0:ef:2a:02:2e: b9:1e:1b:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaFSIAKSD2sr7e//PiQCj5CLurKUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWUyYzBkMTRkNmEyNTI2ODAxMGQ2OTIwYTZiZDI2MDQ4 MGI3Y2ZlMjc1MDk0MzhkOWY0ODYxMzEwODBkYzgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD03/2GMmP54S0KhTa9nAUtkax9yck6Pg5ZyS5UFjKiK9ga fVvIBbiQKc9DKfS+Z4qTuDvk6Jec+//+Den677HWiuhaxMKfXozU4PzbZ1WF/386 gFBZew6KVmqZ/wrpb/c4KawDG+1AZ7Dm4oEJZwTxCEmUH+Q8t6MxSVgM6HDFS9pf Uwa5zs5PMiXa+BQbJZJNgSBqquqzKhic/L7RiQtqfMrRplp2LrI2RiQi/viT8m+M HIblQ9eoF6ttZ7QoIDKigVZ2wrq099ZppUeM1xHc2gHIJH/yPVs9dpEXOQ2fM2gl AUasJOSafZak86HFZgx1/3mUr1J72YQBaoxqSWaJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAfi6jsvJzguv3vtI2LQTSxAJAmUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ3ZTJhMGYwLTRiNDktNDIwYi1hNjc5LTk3ODVlYmRjOGYxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjTugwDQYJKoZIhvcNAQELBQADggEBAEc9zXCUFX275Z1hw75xhfqeYlPQ vea4ZeF8fle8ihOq+cbhW1EwMNQ5XpmTbVENSEC/rCtO+vsBNpyE/5RKXymEPnps LvnGMGpckCKZO26ZQFDcizzaYU3Y2Sota3gh/h3J2HsTOEmZAFHikDQ/YZ4Sh7Fu ixsgArxxQEI+/QCML5f+kO4wUMxZc+w9koHGljB1wtbs3Fwnj1+rkkv8xUapS4pa 6STtrQSsdMadNs6rd3UDagDLlhJAgYvs7HH2oQksb2rpx+tni7e+bL3+LsPsmU0g cHp1hRJdqKoeZQX0eIbdnKZmD3GK8LMltOTbrPNLDzxaHMvQ7yoCLrkeG4w= -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:14 2024 by rpki-client on console-ams.rpki-client.org