$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7411dd-5096-4786-98d0-4438424a95cd.roa File: ef7411dd-5096-4786-98d0-4438424a95cd.roa (raw, json) Hash identifier: V+7TqxnhdVUHo2iiH7nk9z0vq9dGWGlBVHoeQdELo4w= Subject key identifier: 31:D9:E1:D1:5F:E2:62:8A:44:C5:C7:69:F8:46:26:5B:70:5A:05:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 031689B0F26452D93DB57C6BE8AFEF6DB7C741D1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7411dd-5096-4786-98d0-4438424a95cd.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.87.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:16:89:b0:f2:64:52:d9:3d:b5:7c:6b:e8:af:ef:6d:b7:c7:41:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=16047510b58e454eaca93d5081e41dfe5bef99472dfd4ec8695024894b1c53ef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:cd:fd:67:64:de:f7:2c:1a:2b:3f:da:19:3c: 97:f6:51:fe:6c:7a:fc:e4:37:c5:f7:c9:fa:16:a1: 4e:e2:0a:ad:b4:2b:6c:72:7a:b8:b2:fd:1c:e0:8f: 65:2c:2c:3a:3b:39:21:0d:0c:6d:10:60:31:f3:5c: 44:a2:62:0b:d5:6a:59:54:ee:5c:bf:69:91:74:13: 5d:66:97:71:af:c8:08:49:61:a7:4f:5c:02:cc:55: 23:1a:39:43:a6:0e:0c:c4:61:29:6c:e4:6c:2d:dc: 6e:f4:a0:d0:83:53:9f:6f:c7:a5:7e:bd:31:bb:0f: f7:4b:a5:da:3d:ef:3b:db:0b:5c:53:04:52:8a:99: 74:8a:f0:b5:d2:73:c8:b2:29:e7:b7:70:44:52:d0: c8:41:e0:a5:06:20:87:73:2e:a5:2b:3b:1c:d3:db: d6:ed:32:3f:2e:c2:d3:d3:76:ca:74:95:d3:ad:4f: 6e:25:7a:be:59:bc:a7:64:37:32:ae:be:a0:b8:b1: 77:26:31:e4:ba:0d:c4:31:eb:33:2c:4f:1e:a7:a8: c8:a2:b1:c8:70:fa:d6:58:8f:eb:98:14:c5:70:27: 0c:43:cb:9c:8d:4d:01:83:ec:99:7e:c8:86:b7:a0: 94:09:24:65:61:89:6f:eb:36:ce:40:11:18:d8:9c: 0d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:D9:E1:D1:5F:E2:62:8A:44:C5:C7:69:F8:46:26:5B:70:5A:05:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7411dd-5096-4786-98d0-4438424a95cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.87.32.0/22 Signature Algorithm: sha256WithRSAEncryption c1:76:dd:e5:fa:be:a6:12:de:63:a1:c2:fd:7e:e2:2c:a3:c1: 66:3d:26:d2:9b:23:6f:62:95:10:30:c8:f3:99:ed:b9:90:4f: ac:af:c6:89:5a:a1:d6:14:d3:ec:76:27:d2:ec:b5:6c:ca:75: 59:f6:c1:0e:af:6b:8b:a3:4f:5f:ef:da:93:bb:94:0e:73:8b: a7:08:e7:7d:84:d2:47:64:77:a8:a4:2b:01:ed:53:c9:d8:19: b7:9d:98:f1:2a:88:07:51:72:6d:70:8e:6d:bf:c7:5e:74:5d: 47:83:7a:1f:81:9d:3b:67:11:36:1c:7b:c7:d5:34:49:7b:20: f4:b4:5f:fc:14:0e:80:e6:68:0e:4a:78:88:05:80:22:0a:79: 28:be:52:04:b4:db:a1:9b:17:de:19:d9:fb:42:86:0c:26:6c: dd:c5:39:b9:8c:91:0a:26:e5:5f:aa:bc:c7:1e:c8:da:ed:bd: cc:54:52:05:53:3a:2e:a1:ef:41:51:6c:05:e5:06:f2:85:4a: ce:9a:54:f6:51:b8:bc:43:f9:14:1b:e0:83:4d:4e:fb:c6:8c: 39:2f:21:49:68:7d:0d:7c:f1:c9:99:94:88:1f:ef:77:d4:56: f6:3b:29:f3:34:12:24:38:17:5a:37:f0:a0:fd:0f:ae:fb:b1: 91:88:b0:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAxaJsPJkUtk9tXxr6K/vbbfHQdEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjA0NzUxMGI1OGU0NTRlYWNhOTNkNTA4MWU0MWRmZTVi ZWY5OTQ3MmRmZDRlYzg2OTUwMjQ4OTRiMWM1M2VmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVzf1nZN73LBorP9oZPJf2Uf5sevzkN8X3yfoWoU7iCq20 K2xyeriy/Rzgj2UsLDo7OSENDG0QYDHzXESiYgvVallU7ly/aZF0E11ml3GvyAhJ YadPXALMVSMaOUOmDgzEYSls5Gwt3G70oNCDU59vx6V+vTG7D/dLpdo97zvbC1xT BFKKmXSK8LXSc8iyKee3cERS0MhB4KUGIIdzLqUrOxzT29btMj8uwtPTdsp0ldOt T24ler5ZvKdkNzKuvqC4sXcmMeS6DcQx6zMsTx6nqMiischw+tZYj+uYFMVwJwxD y5yNTQGD7Jl+yIa3oJQJJGVhiW/rNs5AERjYnA0NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMdnh0V/iYopExcdp+EYmW3BaBWkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmNzQxMWRkLTUwOTYtNDc4Ni05OGQwLTQ0Mzg0MjRhOTVjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjVyAwDQYJKoZIhvcNAQELBQADggEBAMF23eX6vqYS3mOhwv1+4iyjwWY9 JtKbI29ilRAwyPOZ7bmQT6yvxolaodYU0+x2J9LstWzKdVn2wQ6va4ujT1/v2pO7 lA5zi6cI532E0kdkd6ikKwHtU8nYGbedmPEqiAdRcm1wjm2/x150XUeDeh+BnTtn ETYce8fVNEl7IPS0X/wUDoDmaA5KeIgFgCIKeSi+UgS026GbF94Z2ftChgwmbN3F ObmMkQom5V+qvMceyNrtvcxUUgVTOi6h70FRbAXlBvKFSs6aVPZRuLxD+RQb4INN TvvGjDkvIUlofQ188cmZlIgf73fUVvY7KfM0EiQ4F1o38KD9D677sZGIsK0= -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:41 2024 by rpki-client on console-fra.rpki-client.org