$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0e1b21-614e-4a93-afb4-0c6709d67c6b.roa File: ac0e1b21-614e-4a93-afb4-0c6709d67c6b.roa (raw, json) Hash identifier: 75aPXGH9ail+k37tZnclBCkKgIREf58U1t9DWnTwdCk= Subject key identifier: 7E:E8:E9:DF:94:03:99:1D:13:82:F1:5A:88:F0:1A:CB:20:E0:CC:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 219BE0CE2C67D602A2D7D0A590978F55DE8A5112 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0e1b21-614e-4a93-afb4-0c6709d67c6b.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:9b:e0:ce:2c:67:d6:02:a2:d7:d0:a5:90:97:8f:55:de:8a:51:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=97fc3e3bf2f40b3a0022509bd778ae1847aea8ffa860a0c4200ec2ff1c9a7521, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:76:81:4f:cd:c3:82:d4:b4:6a:ac:85:3b:43: 54:e4:75:b8:2f:d5:43:01:6f:bf:0b:89:93:50:a0: 77:42:39:01:c9:01:b2:45:1d:c7:80:47:af:9b:d8: 7d:40:00:7c:b4:19:15:84:d3:6f:e4:fb:b9:4c:50: 21:a0:75:be:ff:12:2d:55:66:ac:42:27:66:b0:dd: 6e:e1:df:12:c3:7b:04:a0:4f:48:78:39:94:1e:e1: de:7f:ac:7c:01:af:e3:58:ea:4d:20:e1:34:f8:66: 25:54:32:8d:d7:1b:ae:78:c7:4b:ce:69:30:77:1f: b7:07:fc:93:bf:9d:7e:07:ac:2a:8f:12:54:0a:26: 32:75:4a:27:23:70:89:86:cc:f9:39:63:c8:21:dd: 6d:96:d0:d4:1e:28:e4:7b:86:ca:00:66:84:c1:48: 1d:89:5c:1f:02:92:f4:75:9e:8e:e7:57:92:d1:5f: 03:05:81:aa:f8:00:6a:36:f2:02:15:bc:96:77:3d: f4:d3:0a:24:0f:69:7e:b3:80:49:08:1f:c5:33:10: 22:49:38:95:d5:3c:8a:ea:44:71:9e:91:c4:8e:88: 91:82:1f:bb:4b:67:1e:f9:b0:e1:98:76:36:12:33: e4:6b:4f:fe:fe:49:5b:46:a8:b0:ac:48:b3:fe:40: ae:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E8:E9:DF:94:03:99:1D:13:82:F1:5A:88:F0:1A:CB:20:E0:CC:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0e1b21-614e-4a93-afb4-0c6709d67c6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.40.0/21 Signature Algorithm: sha256WithRSAEncryption 5e:ae:42:bb:90:16:9b:cc:c6:97:44:9e:b7:54:bf:81:41:57: 73:a4:4a:14:80:bb:aa:7f:af:d3:22:d5:a1:50:5f:3f:2d:fa: 2e:d0:5e:7a:e1:8d:2a:c9:98:07:9f:1a:1d:33:c2:01:5c:90: 07:ad:11:a3:60:16:d2:aa:c1:85:ca:45:0e:8d:11:46:de:ab: 62:84:93:d0:74:f3:fc:39:69:2d:f5:b9:2d:74:05:48:c4:1d: 52:1f:86:41:9b:de:e0:d1:31:69:a3:60:83:b9:8b:24:10:7b: 3d:87:58:90:8f:ec:93:0f:eb:35:60:df:d3:8d:27:d4:4f:d6: 47:36:cb:70:06:67:90:d3:51:e7:d9:e1:24:72:c4:cf:54:5c: 90:e2:f3:99:98:8b:f1:01:b5:8b:19:a3:1c:b2:d1:85:44:94: 42:00:85:65:a7:55:15:bc:a2:b7:3a:4b:8a:b7:2e:45:f9:a1: 17:09:d6:e2:01:ed:c5:5c:6f:2d:1c:48:54:61:c8:ac:4f:1c: 87:da:19:23:8d:8a:39:60:a6:23:3a:10:ca:5b:f3:14:19:63: 0b:6a:79:c4:32:63:06:be:ab:f7:19:ad:8c:da:50:37:f5:d7: 5c:e2:d2:9e:25:36:91:b1:41:90:6b:ec:12:48:ba:7f:6e:f8: 70:21:aa:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIZvgzixn1gKi19ClkJePVd6KURIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2ZjM2UzYmYyZjQwYjNhMDAyMjUwOWJkNzc4YWUxODQ3 YWVhOGZmYTg2MGEwYzQyMDBlYzJmZjFjOWE3NTIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAdoFPzcOC1LRqrIU7Q1Tkdbgv1UMBb78LiZNQoHdCOQHJ AbJFHceAR6+b2H1AAHy0GRWE02/k+7lMUCGgdb7/Ei1VZqxCJ2aw3W7h3xLDewSg T0h4OZQe4d5/rHwBr+NY6k0g4TT4ZiVUMo3XG654x0vOaTB3H7cH/JO/nX4HrCqP ElQKJjJ1SicjcImGzPk5Y8gh3W2W0NQeKOR7hsoAZoTBSB2JXB8CkvR1no7nV5LR XwMFgar4AGo28gIVvJZ3PfTTCiQPaX6zgEkIH8UzECJJOJXVPIrqRHGekcSOiJGC H7tLZx75sOGYdjYSM+RrT/7+SVtGqLCsSLP+QK7NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfujp35QDmR0TgvFaiPAayyDgzAwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjMGUxYjIxLTYxNGUtNGE5My1hZmI0LTBjNjcwOWQ2N2M2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjligwDQYJKoZIhvcNAQELBQADggEBAF6uQruQFpvMxpdEnrdUv4FBV3Ok ShSAu6p/r9Mi1aFQXz8t+i7QXnrhjSrJmAefGh0zwgFckAetEaNgFtKqwYXKRQ6N EUbeq2KEk9B08/w5aS31uS10BUjEHVIfhkGb3uDRMWmjYIO5iyQQez2HWJCP7JMP 6zVg39ONJ9RP1kc2y3AGZ5DTUefZ4SRyxM9UXJDi85mYi/EBtYsZoxyy0YVElEIA hWWnVRW8orc6S4q3LkX5oRcJ1uIB7cVcby0cSFRhyKxPHIfaGSONijlgpiM6EMpb 8xQZYwtqecQyYwa+q/cZrYzaUDf111zi0p4lNpGxQZBr7BJIun9u+HAhqvI= -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:29 2024 by rpki-client on console-fra.rpki-client.org