$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e290ea6c-d4f0-4297-bdf2-dbf8c85e8140.roa File: e290ea6c-d4f0-4297-bdf2-dbf8c85e8140.roa (raw, json) Hash identifier: tYAqN1FkMiYCkhCDfuSj6eF5LCtEKM3/CvDSxSXDUqI= Subject key identifier: 50:41:DB:8E:CC:3C:41:30:3F:4E:95:42:19:F4:EC:B7:6E:2E:F0:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6567E17B864F4B70A5EB996B93F2969FF5BADC82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e290ea6c-d4f0-4297-bdf2-dbf8c85e8140.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:67:e1:7b:86:4f:4b:70:a5:eb:99:6b:93:f2:96:9f:f5:ba:dc:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=7e4627a683639a0520a7fda5342e46a49d83872d4e42fb909a99ab911fc0b2c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:74:a5:fd:e2:c0:25:61:78:1f:ef:29:dc:fc: db:8b:13:87:17:01:f5:03:da:cf:16:97:ff:d5:be: d6:12:9b:ff:04:d6:1a:b3:6c:4c:24:6b:b1:b5:50: 66:bd:88:97:21:f3:1d:8c:60:f6:11:49:84:2a:e6: 7c:fa:68:f5:18:0f:bd:33:24:2c:93:a8:31:68:2b: 7a:e1:19:97:1d:cf:19:9d:c9:95:9f:5e:a2:77:24: 62:90:08:9d:64:c5:de:e6:64:d1:99:32:ee:68:97: aa:7f:59:6f:cf:29:eb:15:83:02:9c:3c:c7:6d:f5: 50:5e:eb:f5:d0:4d:db:c7:55:ba:80:a2:41:0e:f4: 75:32:d5:9c:dc:bb:d2:51:b2:dd:00:58:3d:6b:e4: e8:bd:5e:e5:ec:9c:57:a3:fe:a8:0c:c3:f6:7b:22: fe:07:04:d0:0d:23:3f:f1:00:7a:49:8f:db:4d:ce: 4b:fa:07:9c:21:53:5f:01:b6:61:34:a0:1a:7a:9c: 87:a0:30:e2:13:e8:eb:ba:50:15:1e:e9:43:7b:66: 28:f2:b6:91:27:00:14:4a:52:21:df:2b:1c:30:33: aa:79:10:52:9b:d5:9f:a0:71:28:23:b6:6d:ec:ba: 84:f4:1b:74:73:79:5f:86:6a:77:19:f5:86:d4:e8: 82:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:41:DB:8E:CC:3C:41:30:3F:4E:95:42:19:F4:EC:B7:6E:2E:F0:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e290ea6c-d4f0-4297-bdf2-dbf8c85e8140.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.188.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:c0:5b:29:fa:e2:78:e4:66:73:c2:63:8c:38:a2:56:90:6d: d6:65:0f:bd:15:5b:83:12:7d:27:6b:91:1a:ab:3b:3b:18:ab: 95:47:ce:a2:8f:e2:04:eb:d0:74:75:ef:53:d6:8e:4d:3b:f1: 36:74:df:df:4e:02:cd:0f:4e:65:bf:96:f3:ba:7e:58:bc:53: 78:47:24:c9:fd:bd:33:32:77:5d:3c:24:bd:46:60:4c:81:dd: 16:84:4e:8c:b9:1c:10:c1:67:44:dd:56:e4:a2:d5:b0:9b:26: 83:29:c8:63:90:3e:a8:b3:23:cc:01:f1:e9:2c:d2:ea:de:73: 80:0d:fb:d7:a8:2c:bb:bd:71:07:d9:a5:bd:5d:df:1b:cf:72: 71:fb:8a:e0:54:07:31:45:9c:cf:ca:72:94:af:18:27:9b:2d: e5:5d:a8:4f:62:3a:f4:23:bc:96:d6:b5:3a:d4:68:2b:dc:d6: 5c:34:39:48:a1:ca:db:58:d1:49:e2:fa:4b:78:15:9b:3c:fb: 0a:8a:1f:f8:3f:03:50:56:9f:96:92:71:2e:f9:1d:7c:5a:15: 96:eb:bc:f8:90:63:cc:ac:65:9b:a7:b4:aa:16:98:ad:a2:3c: 86:3a:31:ad:4d:0b:53:18:e8:c8:9d:4e:3d:b9:0b:81:ab:d7: d4:37:d1:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZWfhe4ZPS3Cl65lrk/KWn/W63IIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTQ2MjdhNjgzNjM5YTA1MjBhN2ZkYTUzNDJlNDZhNDlk ODM4NzJkNGU0MmZiOTA5YTk5YWI5MTFmYzBiMmM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvdKX94sAlYXgf7ync/NuLE4cXAfUD2s8Wl//VvtYSm/8E 1hqzbEwka7G1UGa9iJch8x2MYPYRSYQq5nz6aPUYD70zJCyTqDFoK3rhGZcdzxmd yZWfXqJ3JGKQCJ1kxd7mZNGZMu5ol6p/WW/PKesVgwKcPMdt9VBe6/XQTdvHVbqA okEO9HUy1Zzcu9JRst0AWD1r5Oi9XuXsnFej/qgMw/Z7Iv4HBNANIz/xAHpJj9tN zkv6B5whU18BtmE0oBp6nIegMOIT6Ou6UBUe6UN7ZijytpEnABRKUiHfKxwwM6p5 EFKb1Z+gcSgjtm3suoT0G3RzeV+GancZ9YbU6ILrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUEHbjsw8QTA/TpVCGfTst24u8FgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyOTBlYTZjLWQ0ZjAtNDI5Ny1iZGYyLWRiZjhjODVlODE0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTbwwDQYJKoZIhvcNAQELBQADggEBAHrAWyn64njkZnPCY4w4olaQbdZl D70VW4MSfSdrkRqrOzsYq5VHzqKP4gTr0HR171PWjk078TZ0399OAs0PTmW/lvO6 fli8U3hHJMn9vTMyd108JL1GYEyB3RaEToy5HBDBZ0TdVuSi1bCbJoMpyGOQPqiz I8wB8eks0urec4AN+9eoLLu9cQfZpb1d3xvPcnH7iuBUBzFFnM/KcpSvGCebLeVd qE9iOvQjvJbWtTrUaCvc1lw0OUihyttY0Uni+kt4FZs8+wqKH/g/A1BWn5aScS75 HXxaFZbrvPiQY8ysZZuntKoWmK2iPIY6Ma1NC1MY6MidTj25C4Gr19Q30cA= -----END CERTIFICATE-----Generated at Tue Apr 16 20:12:56 2024 by rpki-client on console-ams.rpki-client.org