$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4ec4711-a29c-4222-b040-ab79022ab487.roa File: f4ec4711-a29c-4222-b040-ab79022ab487.roa (raw, json) Hash identifier: Ux03pY2hAD2Gi6DPkiBgA4T/CFgkDsmkgGJIuRYCKSw= Subject key identifier: 42:F7:67:2B:7D:F2:36:46:14:A6:92:53:3A:E2:FC:24:40:7D:99:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 674776482FA9F850E4EAE632D3B3DA25788D4492 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4ec4711-a29c-4222-b040-ab79022ab487.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.99.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:47:76:48:2f:a9:f8:50:e4:ea:e6:32:d3:b3:da:25:78:8d:44:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=fcd78cfad17d9fdb5623cc236876301d901da29a6f4abe93c79c52c5b0bda202, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:31:82:85:b3:19:d3:d0:1b:1a:99:05:4a:f0: c1:77:a9:86:fe:87:a9:f5:81:92:a9:f3:0c:e1:8f: 92:80:ef:e5:12:3a:ac:de:0d:0d:02:e3:98:fe:02: 02:98:fa:60:37:cd:5e:6f:38:a5:38:3c:a7:aa:40: a4:90:7b:c3:1f:e2:9e:91:24:01:35:f7:18:fc:4b: f5:86:3e:5d:61:5a:7b:46:ad:ae:f2:ba:65:70:82: d3:32:a2:cb:e0:fb:5a:c4:d8:d4:71:c3:08:28:c0: fb:1f:84:1f:87:0b:ac:cd:1f:76:b4:7b:7a:5d:0e: ed:15:68:42:5b:ed:9f:78:6a:1b:2d:62:98:a3:52: 03:eb:1f:a2:63:19:4e:31:2b:34:07:94:3a:fa:47: b3:2e:87:82:f9:66:4e:df:68:e6:3e:ee:0f:5b:1f: b5:ff:20:e1:93:32:fb:cc:16:86:15:86:33:c7:59: f0:8c:b9:ea:ba:19:29:dd:0a:4f:83:f6:eb:fc:ec: e5:09:62:d9:5b:85:55:47:6c:ae:ce:45:d9:9d:dd: 99:68:cf:0d:5f:24:32:47:39:9b:4b:f5:9b:c7:b0: 00:b1:1a:6e:74:12:df:01:50:bb:33:d1:16:6c:11: 5e:f0:32:b2:27:86:b2:b1:f6:d1:c3:07:da:ab:18: bc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:F7:67:2B:7D:F2:36:46:14:A6:92:53:3A:E2:FC:24:40:7D:99:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4ec4711-a29c-4222-b040-ab79022ab487.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.99.0.0/16 Signature Algorithm: sha256WithRSAEncryption c5:74:10:89:a7:0c:63:fd:ed:43:c8:43:bb:56:3d:51:c5:6e: ad:d3:1c:52:db:cb:52:72:6b:81:d3:f8:f5:9a:26:9a:05:7a: 2e:71:f9:cf:19:a8:60:ea:13:80:60:fa:7e:d9:da:ad:5f:4d: 65:72:6f:b1:20:c2:db:92:84:1c:07:5f:20:52:0b:c9:b8:c3: db:28:30:c2:5c:26:ae:3d:47:fe:45:6e:b8:09:b6:ef:c2:f7: 9f:c5:07:0c:5c:85:24:31:9b:b0:1e:f1:c6:28:0e:21:9b:9c: 35:30:c0:db:2b:63:16:92:fe:72:9f:56:c7:46:8e:57:95:b7: 59:91:b6:5a:65:f8:36:ab:24:c7:0c:1b:a1:bd:c3:de:c8:ce: 0d:1e:47:82:aa:97:bd:ae:1c:80:2a:5f:a7:9f:e5:28:90:0a: 99:0c:d2:25:f3:42:f6:89:dd:26:6b:3b:14:46:e6:45:11:10: ec:18:fe:83:2b:e8:6f:c6:28:34:74:e7:b8:4c:20:db:53:6a: 84:c3:84:e7:b2:db:2f:ea:83:5e:0d:53:f4:26:80:47:15:78: c0:26:9f:a5:d6:8b:a5:22:67:d5:32:0f:1a:98:75:bc:aa:08: 6c:a6:17:61:3a:6a:82:75:f5:b4:14:f6:31:c6:68:d8:44:89: 55:5b:38:ac -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZ0d2SC+p+FDk6uYy07PaJXiNRJIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2Q3OGNmYWQxN2Q5ZmRiNTYyM2NjMjM2ODc2MzAxZDkw MWRhMjlhNmY0YWJlOTNjNzljNTJjNWIwYmRhMjAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzMYKFsxnT0BsamQVK8MF3qYb+h6n1gZKp8wzhj5KA7+US OqzeDQ0C45j+AgKY+mA3zV5vOKU4PKeqQKSQe8Mf4p6RJAE19xj8S/WGPl1hWntG ra7yumVwgtMyosvg+1rE2NRxwwgowPsfhB+HC6zNH3a0e3pdDu0VaEJb7Z94ahst YpijUgPrH6JjGU4xKzQHlDr6R7Muh4L5Zk7faOY+7g9bH7X/IOGTMvvMFoYVhjPH WfCMueq6GSndCk+D9uv87OUJYtlbhVVHbK7ORdmd3Zlozw1fJDJHOZtL9ZvHsACx Gm50Et8BULsz0RZsEV7wMrInhrKx9tHDB9qrGLzjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQvdnK33yNkYUppJTOuL8JEB9mYgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0ZWM0NzExLWEyOWMtNDIyMi1iMDQwLWFiNzkwMjJhYjQ4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4YzANBgkqhkiG9w0BAQsFAAOCAQEAxXQQiacMY/3tQ8hDu1Y9UcVurdMc UtvLUnJrgdP49ZommgV6LnH5zxmoYOoTgGD6ftnarV9NZXJvsSDC25KEHAdfIFIL ybjD2ygwwlwmrj1H/kVuuAm278L3n8UHDFyFJDGbsB7xxigOIZucNTDA2ytjFpL+ cp9Wx0aOV5W3WZG2WmX4Nqskxwwbob3D3sjODR5HgqqXva4cgCpfp5/lKJAKmQzS JfNC9ondJms7FEbmRREQ7Bj+gyvob8YoNHTnuEwg21NqhMOE57LbL+qDXg1T9CaA RxV4wCafpdaLpSJn1TIPGph1vKoIbKYXYTpqgnX1tBT2McZo2ESJVVs4rA== -----END CERTIFICATE-----Generated at Thu May 2 17:17:19 2024 by rpki-client on console-ams.rpki-client.org