$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa File: 5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa (raw, json) Hash identifier: SEhnRBpxsJlo/tLcCeC/UwSdoF0lbUEYbXgxuANgf4c= Subject key identifier: 47:86:56:44:26:F9:43:48:A7:1B:5E:3A:E0:27:C1:55:6C:F6:D3:FB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 085864451B402997ED565F1DF88AF5FBEC4064D5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:58:64:45:1b:40:29:97:ed:56:5f:1d:f8:8a:f5:fb:ec:40:64:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=7685f241f1179e905dacd98dbda6ee1b7034862809139dfe56677b89a21ffeee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:11:82:30:12:89:8c:d3:2c:39:a3:3b:61:5f: bb:5e:67:35:8b:5a:23:9d:54:ac:5c:fc:65:4d:02: 00:fc:97:8f:a2:da:45:af:be:82:8e:ec:ba:2c:dd: 7e:0a:62:75:50:2a:73:86:6c:1d:15:84:97:37:a0: b2:02:f0:88:9f:11:67:2e:60:07:33:bc:77:0f:76: f6:3f:2c:a7:fc:4b:80:e4:0c:04:28:99:aa:c9:1d: 31:86:e2:c3:38:14:3f:74:17:34:d0:d3:ff:75:2c: 8d:4c:e8:6e:6d:24:05:bd:76:f1:9e:e3:f8:5d:4d: e9:63:cb:6a:9e:77:51:2c:3e:98:8f:b4:5f:7e:76: 6c:f1:fa:10:e3:f9:25:17:7b:db:15:9f:4c:8c:61: 62:b1:02:cd:cd:3c:09:85:91:5b:88:76:8a:d6:49: 3d:8b:0d:de:4f:37:24:fa:41:cf:ec:3d:0a:24:77: f8:a2:a8:77:f7:87:32:6c:5a:e0:00:2f:8c:45:a6: e7:2a:67:7b:65:42:67:15:69:b3:73:97:42:26:b6: 43:66:9e:81:0e:e8:83:5d:65:ff:31:69:96:ac:4a: b5:5e:20:76:b5:72:2e:5f:b7:57:5b:b4:c5:ef:c0: 53:6a:20:8e:e5:17:e8:29:b7:6e:36:a7:56:97:fb: 64:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:86:56:44:26:F9:43:48:A7:1B:5E:3A:E0:27:C1:55:6C:F6:D3:FB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.249.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:e9:a7:31:a3:82:4a:fc:ff:80:90:a8:72:93:28:ac:8c:01: 7a:e5:5c:4b:f6:bf:c7:cf:7f:d6:9b:04:58:b2:da:6b:e9:ab: 51:eb:bc:78:6a:dd:e9:3e:f3:7c:93:34:0c:6c:4b:b0:2e:1a: 27:00:88:5d:6c:45:c5:23:b5:f0:3c:90:a6:68:5a:92:00:ef: 3a:a0:8d:b5:9b:55:4d:06:05:a3:58:20:92:9c:63:cf:1e:77: 78:e8:0c:bb:48:98:33:14:48:93:a6:28:5f:bb:07:3a:f2:48: b5:39:83:b6:34:52:a1:88:a9:9c:f0:2f:8b:15:56:01:0f:32: 2f:e9:01:86:db:3d:6c:7d:b3:13:79:45:d1:aa:ae:40:08:d5: fe:22:f7:8f:70:ad:98:be:00:ac:a6:db:ba:cd:55:16:63:62: f5:48:d0:8c:45:6a:39:68:3f:46:77:f1:ef:99:f5:33:ea:30: 89:4f:cc:b2:59:ad:fa:9a:08:16:e9:b0:0f:a7:4e:9b:74:6a: ca:06:09:58:38:91:f2:12:d0:ee:b5:b7:f2:77:43:0c:14:a8: 85:36:5a:b6:b0:32:92:45:98:68:98:20:82:5a:1a:de:2f:0c: db:cc:2f:a6:6b:21:0b:ad:b5:c2:ae:60:5a:e6:0f:a1:84:d6: 7f:ee:44:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCFhkRRtAKZftVl8d+Ir1++xAZNUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3Njg1ZjI0MWYxMTc5ZTkwNWRhY2Q5OGRiZGE2ZWUxYjcw MzQ4NjI4MDkxMzlkZmU1NjY3N2I4OWEyMWZmZWVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNEYIwEomM0yw5ozthX7teZzWLWiOdVKxc/GVNAgD8l4+i 2kWvvoKO7Los3X4KYnVQKnOGbB0VhJc3oLIC8IifEWcuYAczvHcPdvY/LKf8S4Dk DAQomarJHTGG4sM4FD90FzTQ0/91LI1M6G5tJAW9dvGe4/hdTeljy2qed1EsPpiP tF9+dmzx+hDj+SUXe9sVn0yMYWKxAs3NPAmFkVuIdorWST2LDd5PNyT6Qc/sPQok d/iiqHf3hzJsWuAAL4xFpucqZ3tlQmcVabNzl0ImtkNmnoEO6INdZf8xaZasSrVe IHa1ci5ft1dbtMXvwFNqII7lF+gpt242p1aX+2TRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR4ZWRCb5Q0inG1464CfBVWz20/swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViZGIyMDI1LTcxODEtNDM5Zi04YmQ4LWQxMDkxYzFmOGQ3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfkwDQYJKoZIhvcNAQELBQADggEBAE7ppzGjgkr8/4CQqHKTKKyMAXrl XEv2v8fPf9abBFiy2mvpq1HrvHhq3ek+83yTNAxsS7AuGicAiF1sRcUjtfA8kKZo WpIA7zqgjbWbVU0GBaNYIJKcY88ed3joDLtImDMUSJOmKF+7BzrySLU5g7Y0UqGI qZzwL4sVVgEPMi/pAYbbPWx9sxN5RdGqrkAI1f4i949wrZi+AKym27rNVRZjYvVI 0IxFajloP0Z38e+Z9TPqMIlPzLJZrfqaCBbpsA+nTpt0asoGCVg4kfIS0O61t/J3 QwwUqIU2WrawMpJFmGiYIIJaGt4vDNvML6ZrIQuttcKuYFrmD6GE1n/uRCo= -----END CERTIFICATE-----Generated at Tue Apr 16 20:22:41 2024 by rpki-client on console-fra.rpki-client.org