$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7674b9ce-f436-4132-8cec-d9fd050b1a07.roa File: 7674b9ce-f436-4132-8cec-d9fd050b1a07.roa (raw, json) Hash identifier: rRTV0Fx+vEAKm8cplMUNNpwOfqkZECUzLazYOmdf2LE= Subject key identifier: 62:5F:A7:60:8A:3F:B7:EA:C9:DB:11:AA:09:FD:63:70:2D:F4:B9:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D96A9A7D5E4F0D30F60B8A69215A372181B1BAA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7674b9ce-f436-4132-8cec-d9fd050b1a07.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 198.99.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:96:a9:a7:d5:e4:f0:d3:0f:60:b8:a6:92:15:a3:72:18:1b:1b:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=7dd31d111a452f2ba005661db253857eeeb677319a73330d75ba9a1a1c3d9366, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:78:5e:24:5a:5d:f5:69:e1:4c:ad:23:32:40: 33:0b:4b:23:f3:c7:f2:9b:ab:8a:82:b1:f5:b6:ac: 88:b4:a8:5e:b0:0f:0f:7c:9f:0c:f5:f2:69:2b:3b: ba:4d:30:e8:32:23:7d:e5:20:51:51:2c:2c:2e:29: 8d:1c:13:3f:38:8e:5f:2d:97:24:23:fc:53:f8:bd: 7f:91:5a:23:4f:66:08:06:8f:f2:55:e0:58:95:ce: 7c:76:8f:cd:32:16:4e:08:45:2b:30:04:04:0a:cd: 59:82:29:52:f8:e4:1b:27:26:ee:90:7f:3b:c2:1a: 09:1b:b6:35:ce:0e:3f:a4:3c:fd:6f:c8:b0:3b:16: 7c:15:03:db:b1:95:f4:53:8d:50:99:cd:da:3d:83: 39:f2:1e:6b:69:d8:84:8f:c2:8a:14:59:10:6b:a1: 28:d4:fa:1c:09:8b:5e:be:ae:81:8e:f7:45:cd:69: 2b:8c:97:9c:f1:0c:a5:ae:73:ed:6c:8e:15:de:93: 3b:1c:34:ad:c3:17:f7:34:fa:74:26:ec:cf:fd:66: aa:3a:61:c0:32:a5:62:6c:f5:fd:75:3e:b5:ac:a5: c3:61:23:b6:91:a5:a6:9e:b7:1c:14:86:ce:56:b6: 43:16:0a:a6:ca:9e:9b:48:1e:76:6d:8f:70:08:11: 3b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:5F:A7:60:8A:3F:B7:EA:C9:DB:11:AA:09:FD:63:70:2D:F4:B9:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7674b9ce-f436-4132-8cec-d9fd050b1a07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.99.3.0/24 Signature Algorithm: sha256WithRSAEncryption 30:1b:09:01:14:65:1a:45:74:0e:ac:c4:29:58:1c:77:11:27: dd:e6:87:72:6a:54:81:e7:ea:c3:07:be:8c:66:a6:b3:12:86: f8:84:d8:18:d1:56:0a:51:33:1b:3b:b8:fe:2d:c0:1e:d7:02: d5:8a:f6:29:13:f9:b8:ec:b7:58:d7:5c:29:f0:4d:80:5b:31: ee:c0:81:c4:8b:2c:eb:f9:c2:b3:2f:2c:a4:df:33:2d:8b:17: 77:8f:62:de:77:77:30:1b:bb:e0:84:25:b3:61:32:ff:dd:7f: 3a:73:6d:44:5e:74:5c:bd:64:32:dd:e7:48:9f:07:2b:20:d7: 57:76:ea:ca:d5:a6:75:49:5e:21:f5:36:91:a4:44:bb:16:74: 2d:ff:0e:10:70:68:3a:04:50:fd:b9:f9:18:5a:97:87:cb:9c: 90:fd:d4:33:b8:86:ed:ff:b5:93:09:bd:46:57:4a:4a:6b:e6: 4f:24:22:e8:29:ce:51:bf:dc:0e:f7:b9:7b:19:f7:45:fb:65: d9:97:92:b3:d0:a2:ef:18:1b:67:d3:ee:5d:7d:47:f9:74:16: 7f:41:e3:46:f5:21:95:61:5d:1d:8a:2a:4c:b4:ec:72:e3:44: 70:3c:4e:76:cc:ef:87:a2:cb:31:77:0c:3e:bb:5c:84:35:3a: 47:4d:e2:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHZapp9Xk8NMPYLimkhWjchgbG6owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZGQzMWQxMTFhNDUyZjJiYTAwNTY2MWRiMjUzODU3ZWVl YjY3NzMxOWE3MzMzMGQ3NWJhOWExYTFjM2Q5MzY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxeF4kWl31aeFMrSMyQDMLSyPzx/Kbq4qCsfW2rIi0qF6w Dw98nwz18mkrO7pNMOgyI33lIFFRLCwuKY0cEz84jl8tlyQj/FP4vX+RWiNPZggG j/JV4FiVznx2j80yFk4IRSswBAQKzVmCKVL45BsnJu6QfzvCGgkbtjXODj+kPP1v yLA7FnwVA9uxlfRTjVCZzdo9gznyHmtp2ISPwooUWRBroSjU+hwJi16+roGO90XN aSuMl5zxDKWuc+1sjhXekzscNK3DF/c0+nQm7M/9Zqo6YcAypWJs9f11PrWspcNh I7aRpaaetxwUhs5WtkMWCqbKnptIHnZtj3AIETvPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYl+nYIo/t+rJ2xGqCf1jcC30uQswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc2NzRiOWNlLWY0MzYtNDEzMi04Y2VjLWQ5ZmQwNTBiMWEwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGYwMwDQYJKoZIhvcNAQELBQADggEBADAbCQEUZRpFdA6sxClYHHcRJ93m h3JqVIHn6sMHvoxmprMShviE2BjRVgpRMxs7uP4twB7XAtWK9ikT+bjst1jXXCnw TYBbMe7AgcSLLOv5wrMvLKTfMy2LF3ePYt53dzAbu+CEJbNhMv/dfzpzbURedFy9 ZDLd50ifBysg11d26srVpnVJXiH1NpGkRLsWdC3/DhBwaDoEUP25+Rhal4fLnJD9 1DO4hu3/tZMJvUZXSkpr5k8kIugpzlG/3A73uXsZ90X7ZdmXkrPQou8YG2fT7l19 R/l0Fn9B40b1IZVhXR2KKky07HLjRHA8TnbM74eiyzF3DD67XIQ1OkdN4m4= -----END CERTIFICATE-----Generated at Wed May 1 20:47:59 2024 by rpki-client on console-ams.rpki-client.org