$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d84ddace-20b9-4ca3-be5d-b63aaa0ee494.roa File: d84ddace-20b9-4ca3-be5d-b63aaa0ee494.roa (raw, json) Hash identifier: /E2JQ8jlTw7aQGVG2Ar26tWpoKLuux25EybcsE/JtVM= Subject key identifier: E6:75:8F:8B:88:F0:C2:D3:B2:A2:BC:CF:C1:09:04:AF:DE:77:BB:5C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 225A1B038F033E443A656FBAE1789816E2411312 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d84ddace-20b9-4ca3-be5d-b63aaa0ee494.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:5a:1b:03:8f:03:3e:44:3a:65:6f:ba:e1:78:98:16:e2:41:13:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=695e1ec2f357028e4e209e3345f97be7f46c736f353c229285e25baa97d67a3c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:73:6c:c3:e0:53:aa:f1:30:f6:43:b9:70:b9: 49:06:58:72:f1:16:2c:48:f3:ce:83:bc:83:e7:ca: 8a:18:91:4c:e6:c5:12:ea:99:1b:ec:80:1b:90:9c: 7d:f3:0f:15:58:09:11:26:e7:99:7c:9c:ae:eb:a1: 66:b3:54:d7:5c:0e:79:16:36:8f:47:e7:e2:4e:1d: 6a:4c:58:0e:ad:1f:91:a6:5a:a4:50:77:0e:ca:cc: 4a:31:47:c8:61:85:e8:4e:05:4b:fd:25:5f:af:9a: 22:03:f8:8e:b6:3a:24:c1:38:0f:9c:eb:67:0c:04: f0:bd:18:3b:ab:7a:40:22:5a:1d:44:2c:fc:81:17: 36:3f:88:91:89:57:d0:99:7d:01:b9:50:4e:40:a1: 1b:7e:23:ca:ff:a9:e3:e8:d7:f2:0f:b7:38:de:0c: 3c:38:53:0f:73:df:05:54:bc:a4:44:77:54:d6:ea: d5:64:1c:a3:1f:df:e5:0e:d2:88:c6:33:eb:4a:6b: 3f:95:c2:45:20:70:45:c9:8b:ef:ac:b2:70:a3:d1: 71:dd:23:4e:d1:91:07:16:d2:07:1b:16:ee:c2:85: 1e:29:06:93:9d:63:6d:b2:dc:c9:a4:59:5c:4c:26: 6d:43:e5:e3:9f:0a:22:a5:4d:8b:88:54:74:21:8f: 96:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:75:8F:8B:88:F0:C2:D3:B2:A2:BC:CF:C1:09:04:AF:DE:77:BB:5C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d84ddace-20b9-4ca3-be5d-b63aaa0ee494.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.64.0/21 Signature Algorithm: sha256WithRSAEncryption 4a:3a:75:45:fd:dc:ad:55:e8:25:94:8f:d9:54:7f:cd:94:94: 21:02:00:be:2e:10:37:74:46:ed:3f:1f:42:58:09:be:ac:c9: 30:0c:dc:97:a1:7d:29:a6:94:d9:66:8e:92:5d:f0:c5:15:00: bd:ab:45:08:e4:29:67:64:a0:98:c9:e5:8d:43:2a:8f:0c:a9: 91:3c:8b:84:f3:cf:7d:4c:10:e8:c3:6f:bd:58:23:d2:d5:94: 8d:4d:61:b0:a1:fa:ae:85:3d:b3:f0:36:8d:c7:43:03:17:08: 3b:bb:40:51:67:22:71:5f:40:29:8b:62:67:a4:8a:4f:93:e0: 14:48:ef:b7:70:09:29:15:76:ac:9c:c1:c2:d0:82:40:76:a6: 75:65:57:f2:0c:a0:92:eb:63:b3:b8:c8:4b:bf:d5:13:7d:c3: 46:bf:8c:eb:56:87:8d:48:7d:cf:ae:10:4a:57:0e:88:48:da: c8:52:45:8e:8b:83:63:dd:4b:fe:ca:27:c7:71:e9:92:64:17: a8:8e:ca:e8:82:e3:83:d5:0e:88:fb:ce:41:59:fa:16:dc:79: 01:ad:89:9d:88:1b:b3:b7:af:43:dd:de:c3:f6:36:d0:3c:73: 88:34:dc:50:7e:15:d8:58:e7:71:cc:8b:e3:9e:27:05:07:d1: 11:be:89:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIlobA48DPkQ6ZW+64XiYFuJBExIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTVlMWVjMmYzNTcwMjhlNGUyMDllMzM0NWY5N2JlN2Y0 NmM3MzZmMzUzYzIyOTI4NWUyNWJhYTk3ZDY3YTNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEc2zD4FOq8TD2Q7lwuUkGWHLxFixI886DvIPnyooYkUzm xRLqmRvsgBuQnH3zDxVYCREm55l8nK7roWazVNdcDnkWNo9H5+JOHWpMWA6tH5Gm WqRQdw7KzEoxR8hhhehOBUv9JV+vmiID+I62OiTBOA+c62cMBPC9GDurekAiWh1E LPyBFzY/iJGJV9CZfQG5UE5AoRt+I8r/qePo1/IPtzjeDDw4Uw9z3wVUvKREd1TW 6tVkHKMf3+UO0ojGM+tKaz+VwkUgcEXJi++ssnCj0XHdI07RkQcW0gcbFu7ChR4p BpOdY22y3MmkWVxMJm1D5eOfCiKlTYuIVHQhj5Y5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5nWPi4jwwtOyorzPwQkEr953u1wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4NGRkYWNlLTIwYjktNGNhMy1iZTVkLWI2M2FhYTBlZTQ5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl0AwDQYJKoZIhvcNAQELBQADggEBAEo6dUX93K1V6CWUj9lUf82UlCEC AL4uEDd0Ru0/H0JYCb6syTAM3JehfSmmlNlmjpJd8MUVAL2rRQjkKWdkoJjJ5Y1D Ko8MqZE8i4Tzz31MEOjDb71YI9LVlI1NYbCh+q6FPbPwNo3HQwMXCDu7QFFnInFf QCmLYmekik+T4BRI77dwCSkVdqycwcLQgkB2pnVlV/IMoJLrY7O4yEu/1RN9w0a/ jOtWh41Ifc+uEEpXDohI2shSRY6Lg2PdS/7KJ8dx6ZJkF6iOyuiC44PVDoj7zkFZ +hbceQGtiZ2IG7O3r0Pd3sP2NtA8c4g03FB+FdhY53HMi+OeJwUH0RG+iUw= -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:26 2024 by rpki-client on console-fra.rpki-client.org