$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ef35af6-a704-4311-b43f-c62b39327200.roa File: 5ef35af6-a704-4311-b43f-c62b39327200.roa (raw, json) Hash identifier: Sm4f321pStVr/Q/Pm70ucDC9kQ71awUFgB6O6qc/XEs= Subject key identifier: E7:B4:55:7D:3C:86:EC:BA:7D:75:BE:5E:82:B6:D1:87:1D:0A:0C:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A71DB6746CB06C99B59116A23A9297D074B1FC0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ef35af6-a704-4311-b43f-c62b39327200.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.105.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:71:db:67:46:cb:06:c9:9b:59:11:6a:23:a9:29:7d:07:4b:1f:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=f2b6b491fa80fec9e4ef7223f1e1928d185c5b12ee5cf7dc3bdb9d43a04a12e7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:01:b6:ce:a1:b8:da:34:44:16:9b:ab:b7:6b: 86:44:f4:f9:8a:90:81:75:ad:47:17:ab:6d:66:8f: bf:cc:7d:41:cd:cb:ae:cd:8b:4c:69:a7:11:84:85: f7:32:18:7d:98:20:1f:ab:16:55:38:b2:7b:c0:fc: 9a:4b:b5:3f:6c:e0:9e:18:46:1d:be:b6:7b:35:7c: 72:8e:7c:c4:b5:7d:ae:8f:15:ef:e5:fe:b2:3e:de: 39:d8:0e:61:53:e4:82:34:0f:86:4a:b4:0a:1a:70: b6:f6:4f:15:46:0e:7b:df:80:08:73:bd:71:8c:38: 8a:95:f0:aa:ca:48:19:3f:69:75:88:2c:f0:e9:e0: 0b:5c:b7:9f:6b:e8:8d:ac:a2:07:58:4f:62:ed:c2: 60:e2:4a:01:90:08:aa:de:ad:55:84:79:51:ce:0a: c0:ed:3a:21:a8:53:f5:a5:34:e9:f0:90:66:83:9c: 57:77:2b:7b:07:f2:7c:eb:82:be:4a:d9:3d:80:a5: 40:46:83:d8:34:d7:95:15:3d:49:4b:d1:ef:15:02: ec:1a:68:f6:6c:87:60:6f:9c:21:10:ab:57:6e:93: 0d:95:57:c6:0b:4b:eb:aa:86:74:74:a4:8f:38:fb: dd:d5:4a:68:fb:91:de:ee:75:c6:9a:76:37:fa:ef: ff:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B4:55:7D:3C:86:EC:BA:7D:75:BE:5E:82:B6:D1:87:1D:0A:0C:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ef35af6-a704-4311-b43f-c62b39327200.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.105.128.0/18 Signature Algorithm: sha256WithRSAEncryption 56:b7:b7:e6:5a:17:2e:20:e5:3b:fb:5f:69:68:10:7a:77:cd: cb:9d:fd:a6:cd:30:50:91:ba:5e:17:0b:82:89:0d:e3:a4:e8: c5:fa:88:27:62:29:dc:47:44:87:51:b4:bc:a3:29:88:4d:e1: f8:89:46:c3:e1:c1:00:8b:9a:1f:61:4f:64:d1:b9:e4:19:fc: 91:e2:4c:6c:84:18:ce:90:b8:eb:a1:c9:50:3d:40:4b:26:60: a7:c4:80:7f:d0:cb:d1:27:9e:00:89:db:7f:43:43:32:c6:ef: 12:8d:97:ad:e4:40:64:9f:25:04:d4:40:fa:67:64:d1:a8:ad: 63:0d:f3:74:c2:25:07:d6:27:a1:ff:1b:f0:83:0e:f6:bb:7b: 14:ef:20:ce:c3:8a:23:c2:15:08:2b:50:28:c1:19:9c:c9:1e: da:7b:3c:ac:a5:99:56:a2:4c:6f:91:ae:b2:b5:8e:e2:4c:0e: c3:dc:57:18:81:2f:87:c3:7d:b9:48:68:ab:81:4a:fb:68:aa: ed:b8:23:dd:45:34:9e:bc:05:6d:f2:98:55:44:37:ef:ba:6c: 80:50:ab:4b:4c:ba:e0:ea:15:15:68:d9:dc:18:db:db:fb:7e: 5d:a5:0b:e2:36:d2:6a:2b:50:af:c0:36:9a:ed:12:80:ca:0c: 1c:f4:2c:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGnHbZ0bLBsmbWRFqI6kpfQdLH8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMmI2YjQ5MWZhODBmZWM5ZTRlZjcyMjNmMWUxOTI4ZDE4 NWM1YjEyZWU1Y2Y3ZGMzYmRiOWQ0M2EwNGExMmU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyAbbOobjaNEQWm6u3a4ZE9PmKkIF1rUcXq21mj7/MfUHN y67Ni0xppxGEhfcyGH2YIB+rFlU4snvA/JpLtT9s4J4YRh2+tns1fHKOfMS1fa6P Fe/l/rI+3jnYDmFT5II0D4ZKtAoacLb2TxVGDnvfgAhzvXGMOIqV8KrKSBk/aXWI LPDp4Atct59r6I2sogdYT2LtwmDiSgGQCKrerVWEeVHOCsDtOiGoU/WlNOnwkGaD nFd3K3sH8nzrgr5K2T2ApUBGg9g015UVPUlL0e8VAuwaaPZsh2BvnCEQq1dukw2V V8YLS+uqhnR0pI84+93VSmj7kd7udcaadjf67//PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU57RVfTyG7Lp9db5egrbRhx0KDF8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlZjM1YWY2LWE3MDQtNDMxMS1iNDNmLWM2MmIzOTMyNzIwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjaYAwDQYJKoZIhvcNAQELBQADggEBAFa3t+ZaFy4g5Tv7X2loEHp3zcud /abNMFCRul4XC4KJDeOk6MX6iCdiKdxHRIdRtLyjKYhN4fiJRsPhwQCLmh9hT2TR ueQZ/JHiTGyEGM6QuOuhyVA9QEsmYKfEgH/Qy9EnngCJ239DQzLG7xKNl63kQGSf JQTUQPpnZNGorWMN83TCJQfWJ6H/G/CDDva7exTvIM7DiiPCFQgrUCjBGZzJHtp7 PKylmVaiTG+RrrK1juJMDsPcVxiBL4fDfblIaKuBSvtoqu24I91FNJ68BW3ymFVE N++6bIBQq0tMuuDqFRVo2dwY29v7fl2lC+I20morUK/ANprtEoDKDBz0LNY= -----END CERTIFICATE-----Generated at Tue Apr 16 18:26:55 2024 by rpki-client on console-fra.rpki-client.org