$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89e4ba23-91ab-40dd-ba19-bcc55063a417.roa File: 89e4ba23-91ab-40dd-ba19-bcc55063a417.roa (raw, json) Hash identifier: 2HlhQHSXmuSGWn2r0pIv2sjXPdaeNG10iXtRmu3fV1A= Subject key identifier: B8:F7:79:A5:F3:A1:93:33:B2:62:5D:4F:38:88:B7:74:1E:DC:A9:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B9310C76C1C541B9EE609BEF4C07B1F9E6595A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89e4ba23-91ab-40dd-ba19-bcc55063a417.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.83.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:93:10:c7:6c:1c:54:1b:9e:e6:09:be:f4:c0:7b:1f:9e:65:95:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=caabd781a5bedfd90e15e04d13a2fe3e0dd0dc02d856311ad87688f6224389dd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:58:36:ee:52:ec:2e:6b:1f:98:b1:9e:d0:65: f3:0e:f6:98:3a:2a:c6:5f:a7:3e:ec:d8:95:b8:c6: 40:e9:08:84:e1:7d:e4:41:a7:f0:84:12:51:89:c3: 76:85:c3:5a:69:72:f1:74:00:fb:8a:cf:94:05:a7: 1b:34:6a:30:b5:ba:84:48:2c:21:ac:af:5a:bb:80: 47:8d:00:1c:d1:04:d1:e1:2c:91:d0:13:84:b5:80: 5c:ca:4c:4a:63:6b:a5:c7:c5:1e:fa:86:a8:a9:c4: 0d:cf:b7:c6:fb:5f:95:2a:be:a1:b1:94:8e:9b:51: ad:d7:0e:59:3f:1b:fa:fe:3d:e8:6a:bb:63:a7:6a: d2:49:0b:e0:f3:1e:19:00:1b:1a:5c:99:3c:e7:c8: 57:89:c2:cd:61:bb:d3:84:65:6f:b4:10:3a:44:1d: b8:d8:d3:e6:e3:3e:bd:65:98:24:da:4d:ea:53:8c: b7:b1:9a:8d:71:dd:88:4d:74:77:e3:d4:63:de:20: b6:f9:05:37:90:6f:e5:e6:5a:13:1b:16:6e:46:08: df:bd:30:2c:fd:b6:62:ed:14:1a:f3:c0:17:83:17: 1f:73:df:ac:15:87:ef:7f:54:cd:3f:67:68:7d:cb: 44:ca:99:d0:af:23:b5:a9:ec:f7:74:47:7d:99:4d: ed:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:F7:79:A5:F3:A1:93:33:B2:62:5D:4F:38:88:B7:74:1E:DC:A9:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89e4ba23-91ab-40dd-ba19-bcc55063a417.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.83.76.0/22 Signature Algorithm: sha256WithRSAEncryption c3:74:40:d4:2c:d0:89:ec:36:e5:69:c6:a2:9f:5f:e1:e9:27: 33:77:6f:b2:77:61:75:d3:42:be:52:10:bf:a7:96:fa:71:ed: 6d:2b:a3:dd:ac:21:90:1d:71:f6:d9:29:80:64:44:38:e8:c4: b6:83:4e:74:77:ec:5a:66:54:cf:79:b9:69:04:98:dc:07:3e: ad:f6:89:e8:6c:7e:69:cf:49:83:65:4d:a1:d0:a8:d4:f6:35: 3c:9f:6b:f0:7c:8d:0b:90:5f:08:da:19:a1:49:fb:c5:9e:44: 8d:9c:57:d4:8a:e8:b8:92:53:ae:58:7c:2c:1b:75:90:a7:0a: 38:8c:64:1b:2f:d1:94:50:9e:47:0d:eb:c0:ab:d4:b9:b7:ed: 2e:af:67:5e:16:39:93:77:69:44:da:ab:76:97:18:36:a9:e6: 33:f9:7e:0d:4e:31:64:dc:ed:2a:5d:ce:2d:ab:30:70:29:54: 30:e5:a9:e9:7f:fb:ce:49:a1:97:a1:8d:50:ef:09:f2:61:b3: aa:de:61:e6:05:a8:0a:7b:0a:38:68:95:34:ae:3f:24:14:bf: 04:68:c6:06:be:c6:4b:b5:9a:31:49:5f:04:62:91:de:ce:7b: 77:bf:ea:ac:9e:a0:de:42:eb:7a:e9:c7:53:65:01:b5:45:10: 29:c6:7f:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW5MQx2wcVBue5gm+9MB7H55llaEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWFiZDc4MWE1YmVkZmQ5MGUxNWUwNGQxM2EyZmUzZTBk ZDBkYzAyZDg1NjMxMWFkODc2ODhmNjIyNDM4OWRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLWDbuUuwuax+YsZ7QZfMO9pg6KsZfpz7s2JW4xkDpCITh feRBp/CEElGJw3aFw1ppcvF0APuKz5QFpxs0ajC1uoRILCGsr1q7gEeNABzRBNHh LJHQE4S1gFzKTEpja6XHxR76hqipxA3Pt8b7X5UqvqGxlI6bUa3XDlk/G/r+Pehq u2OnatJJC+DzHhkAGxpcmTznyFeJws1hu9OEZW+0EDpEHbjY0+bjPr1lmCTaTepT jLexmo1x3YhNdHfj1GPeILb5BTeQb+XmWhMbFm5GCN+9MCz9tmLtFBrzwBeDFx9z 36wVh+9/VM0/Z2h9y0TKmdCvI7Wp7Pd0R32ZTe35AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuPd5pfOhkzOyYl1POIi3dB7cqcUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5ZTRiYTIzLTkxYWItNDBkZC1iYTE5LWJjYzU1MDYzYTQxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjU0wwDQYJKoZIhvcNAQELBQADggEBAMN0QNQs0InsNuVpxqKfX+HpJzN3 b7J3YXXTQr5SEL+nlvpx7W0ro92sIZAdcfbZKYBkRDjoxLaDTnR37FpmVM95uWkE mNwHPq32iehsfmnPSYNlTaHQqNT2NTyfa/B8jQuQXwjaGaFJ+8WeRI2cV9SK6LiS U65YfCwbdZCnCjiMZBsv0ZRQnkcN68Cr1Lm37S6vZ14WOZN3aUTaq3aXGDap5jP5 fg1OMWTc7Spdzi2rMHApVDDlqel/+85JoZehjVDvCfJhs6reYeYFqAp7CjholTSu PyQUvwRoxga+xku1mjFJXwRikd7Oe3e/6qyeoN5C63rpx1NlAbVFECnGf2U= -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:20 2024 by rpki-client on console-fra.rpki-client.org