$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5adf633d-95e5-488d-80ff-102a50794cfd.roa File: 5adf633d-95e5-488d-80ff-102a50794cfd.roa (raw, json) Hash identifier: Waj7hopZPmU2EcDFf1PDXH4IEXlJTrHaYhGGTMu5NCA= Subject key identifier: 3B:1B:22:0C:34:BF:BD:96:A4:96:93:CB:37:8A:8E:6A:6F:FB:71:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4671A72A6BA7FED10F75887B8DB7521BD5430FCA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5adf633d-95e5-488d-80ff-102a50794cfd.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 198.99.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:71:a7:2a:6b:a7:fe:d1:0f:75:88:7b:8d:b7:52:1b:d5:43:0f:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=5e421c81d7bfe09a3d10ddb3a4b072566615c8a6b7732f80421a9416622bb52c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d8:58:93:1d:c2:3c:23:c1:00:19:8c:26:b6: 55:fc:9c:fb:44:eb:d2:a7:09:60:15:65:43:77:42: 1f:43:31:8c:47:27:87:00:c7:ef:69:f8:19:0e:85: 44:2d:7b:1b:b4:ae:6e:3f:1d:a5:e4:56:cf:d2:d1: bc:b8:0c:cd:19:1d:61:46:fb:66:c6:a2:9d:d6:af: 81:33:c8:41:89:7f:6a:2f:5c:1e:be:ea:1b:54:fc: c6:75:72:32:af:01:8c:4a:a1:21:1a:d8:d0:8e:90: 58:26:b9:29:68:f8:5d:f7:5c:50:c3:34:62:74:6e: 37:4b:e1:1d:c2:cb:80:41:9a:8f:5c:e8:ec:be:ca: 3c:0e:78:71:7d:2a:0a:21:c9:ae:15:84:25:0c:b7: 00:9a:3e:09:b0:e0:b2:53:20:de:70:84:77:ee:da: 57:8c:58:fb:99:e5:56:ff:68:1f:d5:e4:5a:dc:65: a5:65:10:6a:21:a6:a0:af:ef:b8:0e:5f:76:78:f9: a1:56:15:4c:cc:0b:2c:6a:3f:ce:8d:79:5b:23:86: 6e:47:f9:83:21:c7:35:81:91:ab:7e:e3:95:2e:78: 46:c6:ac:06:b3:22:41:b1:cf:fa:de:fd:db:ca:2e: ec:f1:f3:5d:9f:cd:12:31:72:2b:24:48:30:dd:ea: 80:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:1B:22:0C:34:BF:BD:96:A4:96:93:CB:37:8A:8E:6A:6F:FB:71:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5adf633d-95e5-488d-80ff-102a50794cfd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.99.3.0/24 Signature Algorithm: sha256WithRSAEncryption 65:62:02:7b:0f:84:ce:ea:2d:e8:89:22:27:8a:87:52:1b:b4: eb:ca:84:6d:64:b8:c5:d2:18:aa:78:68:5a:0b:43:3c:91:13: 70:de:5d:2c:42:0d:97:c8:8f:21:45:90:5d:e2:24:6c:10:96: 14:06:30:f0:30:9e:f0:3d:c2:e3:e8:fe:a9:78:35:d9:c6:fa: d6:88:b2:7c:9a:1a:97:ff:5d:07:2e:68:78:48:f7:48:68:53: b8:86:ca:87:10:42:9b:d7:30:f2:03:9a:d3:3c:e8:bd:8d:26: d1:7f:8c:a0:c8:41:0d:23:9e:36:a7:96:92:03:f2:e6:dd:87: 6e:c4:58:47:37:14:c3:ea:07:96:eb:2b:c3:4b:af:16:e7:60: e7:77:bc:2b:b0:2c:43:37:91:27:03:bd:8c:91:fd:e5:b9:6d: 66:54:6f:28:5f:26:4d:4c:63:cc:a5:84:af:f8:7d:16:f7:9d: b2:45:e1:82:02:04:47:2a:ba:5f:06:d9:5d:d4:e9:8b:d2:ba: f6:c9:13:f9:40:73:be:64:10:0b:58:65:f9:72:f2:25:d0:50: bc:9b:55:da:6e:97:a9:92:0c:a0:fe:03:41:a2:b8:fe:07:08: 0c:29:c6:98:9b:8b:1d:86:27:08:33:d4:2d:af:9f:d4:83:1a: 43:6c:50:2b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURnGnKmun/tEPdYh7jbdSG9VDD8owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTQyMWM4MWQ3YmZlMDlhM2QxMGRkYjNhNGIwNzI1NjY2 MTVjOGE2Yjc3MzJmODA0MjFhOTQxNjYyMmJiNTJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa2FiTHcI8I8EAGYwmtlX8nPtE69KnCWAVZUN3Qh9DMYxH J4cAx+9p+BkOhUQtexu0rm4/HaXkVs/S0by4DM0ZHWFG+2bGop3Wr4EzyEGJf2ov XB6+6htU/MZ1cjKvAYxKoSEa2NCOkFgmuSlo+F33XFDDNGJ0bjdL4R3Cy4BBmo9c 6Oy+yjwOeHF9Kgohya4VhCUMtwCaPgmw4LJTIN5whHfu2leMWPuZ5Vb/aB/V5Frc ZaVlEGohpqCv77gOX3Z4+aFWFUzMCyxqP86NeVsjhm5H+YMhxzWBkat+45UueEbG rAazIkGxz/re/dvKLuzx812fzRIxciskSDDd6oBPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOxsiDDS/vZaklpPLN4qOam/7ccQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhZGY2MzNkLTk1ZTUtNDg4ZC04MGZmLTEwMmE1MDc5NGNmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGYwMwDQYJKoZIhvcNAQELBQADggEBAGViAnsPhM7qLeiJIieKh1IbtOvK hG1kuMXSGKp4aFoLQzyRE3DeXSxCDZfIjyFFkF3iJGwQlhQGMPAwnvA9wuPo/ql4 NdnG+taIsnyaGpf/XQcuaHhI90hoU7iGyocQQpvXMPIDmtM86L2NJtF/jKDIQQ0j njanlpID8ubdh27EWEc3FMPqB5brK8NLrxbnYOd3vCuwLEM3kScDvYyR/eW5bWZU byhfJk1MY8ylhK/4fRb3nbJF4YICBEcqul8G2V3U6YvSuvbJE/lAc75kEAtYZfly 8iXQULybVdpul6mSDKD+A0GiuP4HCAwpxpibix2GJwgz1C2vn9SDGkNsUCs= -----END CERTIFICATE-----Generated at Fri Apr 19 00:50:48 2024 by rpki-client on console-ams.rpki-client.org