$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99e8bb44-3025-44e4-9f44-16b97a3d2055.roa File: 99e8bb44-3025-44e4-9f44-16b97a3d2055.roa (raw, json) Hash identifier: QBFFyIzq8yEyGxS2uzvteNCJ0669tZ8cyb2u2PKkt+4= Subject key identifier: 4B:0E:A6:09:1C:51:10:F4:33:A3:E7:2C:29:6E:52:4D:07:44:70:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 316E729A2E19F8A0B7936AC5FF8CBED3B7C82F20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99e8bb44-3025-44e4-9f44-16b97a3d2055.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:6e:72:9a:2e:19:f8:a0:b7:93:6a:c5:ff:8c:be:d3:b7:c8:2f:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=2f00c2449d47e498119e51a1fc0e7ca8303c21e35665ba3d1f0757d85a6ecfa3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d7:f9:a8:d6:f8:4e:b5:fb:fc:98:e9:99:70: a9:a8:40:d3:50:dc:a1:c4:f3:a2:65:b4:01:1d:08: be:1c:9b:f9:04:22:2e:22:07:0b:ea:f4:4a:ec:f4: 96:3e:7e:8b:43:b4:b0:3d:fc:5b:30:da:af:d1:bc: 62:e5:10:43:ff:ac:e0:3b:18:ba:7a:70:10:17:ca: 3c:d7:12:29:b0:e6:6d:49:f7:1a:73:3f:8e:63:96: 47:7d:6f:c5:8c:b5:8f:6b:de:68:dc:56:98:6f:99: 9d:1d:34:48:71:27:31:37:76:7c:0b:b3:05:76:9d: fe:da:6a:02:c4:97:2d:cd:dc:1d:3c:9b:f2:06:f5: 29:66:f9:cc:a2:20:ed:60:7f:fc:14:30:3f:7a:ef: cc:3f:ce:f2:70:44:a3:b7:9d:f8:15:83:48:f5:3e: 5b:45:68:68:e8:43:3c:ce:ff:7a:ae:da:ce:0e:fd: f1:e4:60:22:51:87:ee:27:82:e1:43:56:93:ee:60: 57:d3:58:b8:fb:59:b0:b3:04:b9:56:0c:59:29:31: 5f:77:56:06:03:41:21:80:ee:05:7d:cc:66:68:f0: fc:7b:d8:23:e0:e1:8b:c7:8d:4f:17:1a:05:89:e3: ce:ae:2e:9d:e9:7f:32:8f:b8:70:fd:38:43:18:99: 68:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0E:A6:09:1C:51:10:F4:33:A3:E7:2C:29:6E:52:4D:07:44:70:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99e8bb44-3025-44e4-9f44-16b97a3d2055.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.132.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:01:63:62:df:1f:8b:ef:9c:94:c1:fb:f8:8b:97:0d:05:36: a4:d2:d0:de:e6:63:11:bd:f5:e8:ca:35:4e:cc:fc:62:95:0e: 39:6a:72:93:a7:e8:3f:fc:c5:02:67:0f:29:37:f6:12:63:79: 63:fb:df:db:29:f5:d8:44:0c:89:59:fd:9e:56:86:22:ae:d3: df:0d:03:73:74:3f:2c:50:c7:85:cc:6e:e8:af:09:8e:e5:ce: ef:7c:27:a7:9a:e1:01:eb:0c:12:25:c7:61:80:27:56:d5:00: bf:5d:5a:6d:f8:11:77:55:26:1f:8c:2a:2a:36:09:2d:2b:df: 72:ea:ab:e5:e0:8c:0b:22:c5:1e:2b:86:fa:e5:ff:5f:f2:78: 97:0d:1e:ab:c0:8f:72:71:9f:ee:27:93:b3:7e:e8:4e:16:ea: 95:58:3a:5f:15:5f:a6:03:89:2d:b4:0a:55:c2:ef:bc:e2:0b: eb:3c:79:e7:ff:e1:5d:02:19:9e:ed:b7:c4:02:e0:a4:fb:b5: 20:28:f2:85:24:3e:44:4a:61:68:29:bf:22:81:42:42:e4:94: 8a:b4:be:d4:e3:2f:cf:81:1c:b6:9d:2a:0a:fa:1a:ab:22:01: b1:03:61:00:31:b2:95:ae:de:2b:7b:f1:86:e2:dc:fd:ed:0f: 47:8f:81:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMW5ymi4Z+KC3k2rF/4y+07fILyAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjAwYzI0NDlkNDdlNDk4MTE5ZTUxYTFmYzBlN2NhODMw M2MyMWUzNTY2NWJhM2QxZjA3NTdkODVhNmVjZmEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCp1/mo1vhOtfv8mOmZcKmoQNNQ3KHE86JltAEdCL4cm/kE Ii4iBwvq9Ers9JY+fotDtLA9/Fsw2q/RvGLlEEP/rOA7GLp6cBAXyjzXEimw5m1J 9xpzP45jlkd9b8WMtY9r3mjcVphvmZ0dNEhxJzE3dnwLswV2nf7aagLEly3N3B08 m/IG9Slm+cyiIO1gf/wUMD9678w/zvJwRKO3nfgVg0j1PltFaGjoQzzO/3qu2s4O /fHkYCJRh+4nguFDVpPuYFfTWLj7WbCzBLlWDFkpMV93VgYDQSGA7gV9zGZo8Px7 2CPg4YvHjU8XGgWJ486uLp3pfzKPuHD9OEMYmWjZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSw6mCRxREPQzo+csKW5STQdEcGkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5ZThiYjQ0LTMwMjUtNDRlNC05ZjQ0LTE2Yjk3YTNkMjA1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGIEoQwDQYJKoZIhvcNAQELBQADggEBAB0BY2LfH4vvnJTB+/iLlw0FNqTS 0N7mYxG99ejKNU7M/GKVDjlqcpOn6D/8xQJnDyk39hJjeWP739sp9dhEDIlZ/Z5W hiKu098NA3N0PyxQx4XMbuivCY7lzu98J6ea4QHrDBIlx2GAJ1bVAL9dWm34EXdV Jh+MKio2CS0r33Lqq+XgjAsixR4rhvrl/1/yeJcNHqvAj3Jxn+4nk7N+6E4W6pVY Ol8VX6YDiS20ClXC77ziC+s8eef/4V0CGZ7tt8QC4KT7tSAo8oUkPkRKYWgpvyKB QkLklIq0vtTjL8+BHLadKgr6GqsiAbEDYQAxspWu3it78Ybi3P3tD0ePgSo= -----END CERTIFICATE-----Generated at Thu May 2 11:33:21 2024 by rpki-client on console-fra.rpki-client.org