$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa87be32-1642-4058-b2ca-2d0f9d1bf3f5.roa File: aa87be32-1642-4058-b2ca-2d0f9d1bf3f5.roa (raw, json) Hash identifier: Y+bKilZ2YqFrAgu6aUK3Uazm5tRN+WyNbH8U7AcsV9U= Subject key identifier: E8:CF:35:A2:A3:30:1A:E2:00:0B:F9:C5:AD:4A:BC:EF:9C:85:1D:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 476585799D8550F6B339DF3112140AE78686DD35 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa87be32-1642-4058-b2ca-2d0f9d1bf3f5.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 99.87.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:65:85:79:9d:85:50:f6:b3:39:df:31:12:14:0a:e7:86:86:dd:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=d2098d7844f20b134937946e0e99f490d6caf7f789b2ac130a0e5ab6e9c06850, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:02:04:aa:e3:fc:26:3e:1e:2c:5b:0e:da:c6: 48:65:d2:fc:4e:86:7a:0c:cd:d1:3c:14:6c:03:06: 91:19:8a:84:d3:53:30:59:e7:f5:a4:5c:2a:b9:0a: a0:25:b0:b2:37:ba:c2:6e:71:9f:f1:49:a9:4e:da: bd:18:7a:87:8b:a7:b4:41:97:4a:7a:33:01:7d:13: 3f:d1:ea:34:82:2b:fd:67:dc:a7:e7:e8:9e:72:4e: cb:10:72:b6:3d:47:e8:67:1e:aa:70:87:91:44:20: e4:15:04:10:58:fe:98:b9:b9:4f:84:de:a7:73:39: 4d:a4:6a:4d:d9:08:c8:b1:cc:98:24:f6:4b:ff:a3: b5:ca:61:3a:e9:5a:27:c0:ac:e3:aa:43:ed:9b:6e: 23:1a:09:e9:6c:d7:66:98:64:12:e7:26:e8:6b:0e: 9e:75:ec:97:04:e8:a1:67:36:3a:9c:21:e4:27:7b: 66:75:62:4a:fc:16:20:c3:7e:ff:40:0f:50:74:95: d7:ee:c8:b4:34:18:cd:67:ec:d5:a3:51:34:8e:f1: 6f:b5:27:68:2e:9e:d4:bc:b3:e1:cd:41:84:e3:da: 52:fc:fe:90:d4:c8:53:82:5a:05:61:6c:57:fa:e8: df:c8:16:34:2d:1b:f7:61:04:af:44:53:d2:da:24: f3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:CF:35:A2:A3:30:1A:E2:00:0B:F9:C5:AD:4A:BC:EF:9C:85:1D:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa87be32-1642-4058-b2ca-2d0f9d1bf3f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.87.128.0/18 Signature Algorithm: sha256WithRSAEncryption a4:62:73:76:e9:9b:84:3d:a3:c1:4f:1a:c9:64:c5:a8:b3:c0: 63:ca:df:37:44:6c:ca:34:21:85:36:27:d0:32:4f:af:69:a9: 58:c6:eb:40:88:13:fc:61:d3:c4:9c:39:16:0b:0d:c5:1d:61: 1c:b3:fc:db:a8:30:cd:4a:fe:3f:84:27:ef:7b:98:9a:11:e7: 12:7e:d6:89:74:6f:40:71:f9:ed:07:8d:32:27:d3:57:fe:ea: 5d:4b:78:a6:b2:52:e2:0b:3f:d1:8a:ef:af:33:bb:07:7a:02: 34:45:16:22:9d:e4:0b:df:c1:06:c8:db:89:03:dc:2e:58:f6: 68:93:da:97:af:1e:08:35:ad:d9:cd:f6:a8:28:d5:ea:88:83: 9c:20:61:ec:6c:3c:f6:84:78:83:12:02:a7:ef:d2:d0:f3:fd: 27:dc:25:04:14:91:19:cf:15:e1:b0:e4:b9:18:8d:1e:a5:45: 6d:0f:e4:cb:6f:e1:d4:3e:d6:47:d3:e5:bb:e6:a3:41:c9:ee: bf:9c:43:63:1c:3f:17:27:9e:92:c3:a5:01:f3:df:07:b8:be: 54:83:e0:c9:ce:cf:d9:d2:1c:67:24:ec:e5:23:e6:f5:49:f1: 8d:cd:a8:e5:94:a8:64:2a:42:b2:df:2e:00:38:31:9c:e0:c2: 76:1f:99:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR2WFeZ2FUPazOd8xEhQK54aG3TUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjA5OGQ3ODQ0ZjIwYjEzNDkzNzk0NmUwZTk5ZjQ5MGQ2 Y2FmN2Y3ODliMmFjMTMwYTBlNWFiNmU5YzA2ODUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbAgSq4/wmPh4sWw7axkhl0vxOhnoMzdE8FGwDBpEZioTT UzBZ5/WkXCq5CqAlsLI3usJucZ/xSalO2r0YeoeLp7RBl0p6MwF9Ez/R6jSCK/1n 3Kfn6J5yTssQcrY9R+hnHqpwh5FEIOQVBBBY/pi5uU+E3qdzOU2kak3ZCMixzJgk 9kv/o7XKYTrpWifArOOqQ+2bbiMaCels12aYZBLnJuhrDp517JcE6KFnNjqcIeQn e2Z1Ykr8FiDDfv9AD1B0ldfuyLQ0GM1n7NWjUTSO8W+1J2guntS8s+HNQYTj2lL8 /pDUyFOCWgVhbFf66N/IFjQtG/dhBK9EU9LaJPNpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6M81oqMwGuIAC/nFrUq875yFHSgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhODdiZTMyLTE2NDItNDA1OC1iMmNhLTJkMGY5ZDFiZjNmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjV4AwDQYJKoZIhvcNAQELBQADggEBAKRic3bpm4Q9o8FPGslkxaizwGPK 3zdEbMo0IYU2J9AyT69pqVjG60CIE/xh08ScORYLDcUdYRyz/NuoMM1K/j+EJ+97 mJoR5xJ+1ol0b0Bx+e0HjTIn01f+6l1LeKayUuILP9GK768zuwd6AjRFFiKd5Avf wQbI24kD3C5Y9miT2pevHgg1rdnN9qgo1eqIg5wgYexsPPaEeIMSAqfv0tDz/Sfc JQQUkRnPFeGw5LkYjR6lRW0P5Mtv4dQ+1kfT5bvmo0HJ7r+cQ2McPxcnnpLDpQHz 3we4vlSD4MnOz9nSHGck7OUj5vVJ8Y3NqOWUqGQqQrLfLgA4MZzgwnYfmbw= -----END CERTIFICATE-----Generated at Thu May 2 08:02:37 2024 by rpki-client on console-ams.rpki-client.org