$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5cfc8fd1-392f-4d21-8287-39a89857e982.roa File: 5cfc8fd1-392f-4d21-8287-39a89857e982.roa (raw, json) Hash identifier: W2NqMpPg0cjPjXoui9Rrp25jXAO6aVPxFBqo98jk3vU= Subject key identifier: 81:9A:F1:48:BE:6E:38:72:BB:D4:DC:D1:05:E7:77:0A:30:F8:17:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07859E74D99E0725322BCC4CCCAF96D42D2749C8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5cfc8fd1-392f-4d21-8287-39a89857e982.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 99.82.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:85:9e:74:d9:9e:07:25:32:2b:cc:4c:cc:af:96:d4:2d:27:49:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=7ccc03f2d4a22e3a54d55ae159a71e1d3ba30e23a531d4b472df55225e2a7af7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d2:89:02:17:26:18:ce:42:37:a8:57:d8:1a: c5:c5:4e:0a:9c:3e:50:8c:87:67:b6:5e:f7:95:b6: c5:06:a4:22:09:f5:a5:be:27:b9:6d:f8:8c:32:26: dd:f4:36:c9:d4:d8:10:d0:c1:3d:bc:c6:64:56:0d: da:f0:d7:97:16:be:16:c5:7f:c0:fb:db:2a:95:80: c6:84:31:e8:a4:71:bc:7a:6a:6c:3a:d9:e4:68:27: 07:a3:df:33:60:82:eb:7f:ec:2c:31:7f:51:bb:60: 81:37:0a:ce:e6:09:9b:60:15:12:9e:03:5e:bf:ae: 35:09:e8:0b:0d:65:ea:4b:6a:a2:c5:1e:b3:3f:81: bc:ee:f6:3a:72:5e:96:e6:f6:8b:64:49:99:a5:13: 4c:7b:64:25:9d:62:b4:cb:dc:f7:81:f0:04:e9:e8: d1:94:5d:76:96:46:b5:1d:34:3c:46:4e:2c:58:48: 69:1f:d9:e7:63:9b:d6:a7:4e:a3:0d:d1:7c:55:12: f4:38:df:00:21:54:63:02:d4:16:cc:83:c5:d3:11: 35:9c:db:76:5f:b9:44:cf:62:cb:c2:75:c9:f4:81: 3e:71:0a:26:89:2f:7c:81:0e:70:3e:e3:88:7e:16: 74:b0:a8:a1:70:8d:05:02:b7:3e:07:c3:e8:74:3e: 11:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:9A:F1:48:BE:6E:38:72:BB:D4:DC:D1:05:E7:77:0A:30:F8:17:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5cfc8fd1-392f-4d21-8287-39a89857e982.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.128.0/18 Signature Algorithm: sha256WithRSAEncryption 55:e5:e3:b5:c5:2a:c8:01:ed:bb:6b:2a:62:c6:43:c1:da:b2: 31:e0:c5:ee:11:da:2b:a0:8b:37:1e:49:da:bc:c4:83:0c:07: df:64:5f:5a:72:e6:1a:ce:6d:70:91:e5:86:44:df:94:9a:d9: 2d:5f:22:0c:80:d3:3b:5e:3e:47:19:8f:30:d2:3f:1a:2a:ea: 42:c6:6c:25:88:61:92:f0:7e:29:c3:6c:4e:8c:92:dd:0c:91: 12:51:38:20:7c:b6:89:a5:ee:fb:34:7a:a9:a1:d3:f6:4c:b9: ef:ea:1a:76:42:ea:6b:c1:11:61:7e:90:3e:62:da:48:a0:04: ca:15:c1:de:d8:e4:8e:4c:99:3b:0e:71:0c:dd:21:1f:b5:45: 4b:77:00:d2:78:24:14:76:41:3d:ae:79:c6:1e:f0:ce:22:86: cb:f6:10:1c:10:47:ec:8a:67:24:f0:38:13:a0:5e:02:04:55: 78:40:19:4c:5f:05:32:7a:04:5e:ff:31:85:58:2d:99:0a:04: 4e:95:6a:6c:a2:a7:2b:3f:65:44:f8:c8:dc:77:55:ea:78:fc: 42:36:be:7b:ed:26:a4:c6:a3:43:8f:4d:c5:7d:83:1e:0e:d4: d4:34:fe:42:df:cf:8d:34:12:3a:80:2f:ef:50:a9:3b:67:88: f7:52:9b:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB4WedNmeByUyK8xMzK+W1C0nScgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3Y2NjMDNmMmQ0YTIyZTNhNTRkNTVhZTE1OWE3MWUxZDNi YTMwZTIzYTUzMWQ0YjQ3MmRmNTUyMjVlMmE3YWY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ0okCFyYYzkI3qFfYGsXFTgqcPlCMh2e2XveVtsUGpCIJ 9aW+J7lt+IwyJt30NsnU2BDQwT28xmRWDdrw15cWvhbFf8D72yqVgMaEMeikcbx6 amw62eRoJwej3zNggut/7Cwxf1G7YIE3Cs7mCZtgFRKeA16/rjUJ6AsNZepLaqLF HrM/gbzu9jpyXpbm9otkSZmlE0x7ZCWdYrTL3PeB8ATp6NGUXXaWRrUdNDxGTixY SGkf2edjm9anTqMN0XxVEvQ43wAhVGMC1BbMg8XTETWc23ZfuUTPYsvCdcn0gT5x CiaJL3yBDnA+44h+FnSwqKFwjQUCtz4Hw+h0PhFhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgZrxSL5uOHK71NzRBed3CjD4F6AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVjZmM4ZmQxLTM5MmYtNGQyMS04Mjg3LTM5YTg5ODU3ZTk4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjUoAwDQYJKoZIhvcNAQELBQADggEBAFXl47XFKsgB7btrKmLGQ8HasjHg xe4R2iugizceSdq8xIMMB99kX1py5hrObXCR5YZE35Sa2S1fIgyA0ztePkcZjzDS Pxoq6kLGbCWIYZLwfinDbE6Mkt0MkRJROCB8toml7vs0eqmh0/ZMue/qGnZC6mvB EWF+kD5i2kigBMoVwd7Y5I5MmTsOcQzdIR+1RUt3ANJ4JBR2QT2uecYe8M4ihsv2 EBwQR+yKZyTwOBOgXgIEVXhAGUxfBTJ6BF7/MYVYLZkKBE6Vamyipys/ZUT4yNx3 Vep4/EI2vnvtJqTGo0OPTcV9gx4O1NQ0/kLfz400EjqAL+9QqTtniPdSm9w= -----END CERTIFICATE-----Generated at Thu May 9 01:25:31 2024 by rpki-client on console-fra.rpki-client.org