$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa File: 99922d4f-b1fc-43d5-9674-a085ad312500.roa (raw, json) Hash identifier: 5X5zhnNXJClzzE6sPyTdR6+Rhh0ZrrzBiceg8V+uaas= Subject key identifier: 19:C3:AB:6F:16:8F:6A:57:30:C2:72:6C:AC:C1:24:FC:9D:42:C7:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C5FD5165EE7D508DF0CECED25CBBA90FA9CD584 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:5f:d5:16:5e:e7:d5:08:df:0c:ec:ed:25:cb:ba:90:fa:9c:d5:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=161eeccd6342e72aa0d7270c17d3746093b09bd783a9eda7783e3352dea5aebf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:43:49:52:93:c4:60:dd:79:06:b6:fb:ff:cd: 3b:44:23:2c:1b:8a:4b:e1:d6:a7:df:0a:31:45:81: da:75:ff:bc:62:f7:b4:5e:f0:4f:c1:86:67:35:ba: 27:e6:05:b5:f6:73:21:44:2b:c9:65:52:94:fb:e9: a5:f2:66:bc:02:15:2f:45:d9:35:88:09:c9:a5:c7: f0:11:cc:0a:44:3a:27:5e:da:f8:a8:8c:bb:9e:7e: 4d:f6:aa:e5:e3:fd:c4:c3:20:35:e0:e1:77:0c:ef: de:fa:14:e2:7d:f2:0f:e2:c5:08:4f:08:7d:46:0a: 13:1a:71:d1:40:e5:90:04:ae:e5:60:52:c8:d9:50: 7a:3f:8b:e4:3f:6e:51:6d:bb:f4:87:1c:f4:6b:36: bd:d4:04:21:ee:1c:8e:82:36:6c:f4:21:81:d9:7b: 5f:ec:f8:26:7b:2a:c4:3a:de:ce:fe:26:96:11:b3: 3f:12:9a:59:6f:ca:d8:07:11:5a:55:65:47:20:18: c7:e5:36:75:1b:90:fd:ba:1a:cf:d5:4f:a7:b5:fa: 6a:84:fe:03:93:07:11:5c:8e:96:19:d6:63:2f:12: e4:94:52:d4:da:b6:f4:97:1c:bb:76:5c:29:53:ee: 0e:a5:59:3b:c7:ed:bc:9e:b8:d3:0e:16:e3:b6:a6: 2a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:C3:AB:6F:16:8F:6A:57:30:C2:72:6C:AC:C1:24:FC:9D:42:C7:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.118.0/24 Signature Algorithm: sha256WithRSAEncryption b5:63:bb:37:2c:7a:72:20:2f:29:b4:b7:f0:f8:e2:d7:88:ae: f1:dc:76:26:ff:af:af:50:30:59:19:6b:bc:ec:a5:34:79:af: ba:77:9b:50:f1:3e:95:21:57:69:33:56:92:09:17:95:60:4f: 6f:ef:2f:ae:a6:20:a9:a0:12:3b:2d:d2:ff:e6:b3:53:3a:ef: ce:fa:d6:c6:ef:b5:b1:9c:e8:21:f7:2d:b1:16:34:05:20:75: da:32:37:92:92:ae:80:d3:7d:59:53:9b:bd:79:01:9e:af:cf: 1e:80:57:1f:a1:f0:67:26:80:5f:87:0c:0d:a1:1a:62:cf:46: 1d:33:3b:26:8e:42:50:06:72:78:26:6d:cf:eb:93:77:21:b7: 9c:e6:5f:7f:ef:e6:4e:1c:74:fe:a4:3f:eb:b9:87:a2:e6:ac: 24:7a:a2:6c:5c:e8:e5:e7:70:8d:e2:56:f9:f9:fc:d3:4f:c7: a0:16:a8:7d:ac:99:0e:38:50:d1:41:54:c0:76:f4:14:51:7f: fd:45:9a:32:af:ec:26:82:52:b8:86:42:bb:61:99:96:7d:b5: e0:87:23:1c:aa:59:f7:3f:d3:eb:11:49:c4:7c:3e:8b:70:92: 37:db:7d:59:f0:62:1d:8e:4b:f7:b3:60:f5:5e:36:9d:bb:da: 33:b3:64:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHF/VFl7n1QjfDOztJcu6kPqc1YQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjFlZWNjZDYzNDJlNzJhYTBkNzI3MGMxN2QzNzQ2MDkz YjA5YmQ3ODNhOWVkYTc3ODNlMzM1MmRlYTVhZWJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyQ0lSk8Rg3XkGtvv/zTtEIywbikvh1qffCjFFgdp1/7xi 97Re8E/Bhmc1uifmBbX2cyFEK8llUpT76aXyZrwCFS9F2TWICcmlx/ARzApEOide 2viojLuefk32quXj/cTDIDXg4XcM7976FOJ98g/ixQhPCH1GChMacdFA5ZAEruVg UsjZUHo/i+Q/blFtu/SHHPRrNr3UBCHuHI6CNmz0IYHZe1/s+CZ7KsQ63s7+JpYR sz8SmllvytgHEVpVZUcgGMflNnUbkP26Gs/VT6e1+mqE/gOTBxFcjpYZ1mMvEuSU UtTatvSXHLt2XClT7g6lWTvH7byeuNMOFuO2pioRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGcOrbxaPalcwwnJsrMEk/J1CxxswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5OTIyZDRmLWIxZmMtNDNkNS05Njc0LWEwODVhZDMxMjUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXYwDQYJKoZIhvcNAQELBQADggEBALVjuzcsenIgLym0t/D44teIrvHc dib/r69QMFkZa7zspTR5r7p3m1DxPpUhV2kzVpIJF5VgT2/vL66mIKmgEjst0v/m s1M678761sbvtbGc6CH3LbEWNAUgddoyN5KSroDTfVlTm715AZ6vzx6AVx+h8Gcm gF+HDA2hGmLPRh0zOyaOQlAGcngmbc/rk3cht5zmX3/v5k4cdP6kP+u5h6LmrCR6 omxc6OXncI3iVvn5/NNPx6AWqH2smQ44UNFBVMB29BRRf/1FmjKv7CaCUriGQrth mZZ9teCHIxyqWfc/0+sRScR8PotwkjfbfVnwYh2OS/ezYPVeNp272jOzZJM= -----END CERTIFICATE-----Generated at Wed Apr 24 01:49:01 2024 by rpki-client on console-fra.rpki-client.org