$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1bac3047-cf75-4cd2-9ee0-826e0162a6ad.roa File: 1bac3047-cf75-4cd2-9ee0-826e0162a6ad.roa (raw, json) Hash identifier: Q5Ke9ctUwcJBI+19Pvdo5qrOA89uSvf/5XdK65UF5LE= Subject key identifier: C5:DF:26:56:D7:60:FA:71:BC:6B:5D:F7:4E:36:5B:52:E4:FA:20:08 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6F1DB77A5AA94195DB73C14D64B78031260D6689 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1bac3047-cf75-4cd2-9ee0-826e0162a6ad.roa Signing time: Sat 13 Apr 2024 00:00:00 +0000 ROA not before: Sat 13 Apr 2024 00:00:00 +0000 ROA not after: Sat 18 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 3.4.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 07 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:1d:b7:7a:5a:a9:41:95:db:73:c1:4d:64:b7:80:31:26:0d:66:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 13 00:00:00 2024 GMT Not After : May 18 23:59:59 2024 GMT Subject: serialNumber=a5538a2081b844a99d48452c98c55eaac15cdc8ce8d839b35519fbe14dadd81a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:76:c6:b8:f9:5f:f3:ce:12:32:8f:f9:0c:df: 7f:8b:3a:4a:b9:c2:aa:bd:ff:cb:9a:69:a6:64:68: 1b:6a:25:3b:bb:4d:32:e4:16:87:49:97:d4:5f:5a: b7:56:be:86:a9:81:3b:09:de:59:04:65:ce:a5:a0: 4d:8f:ee:10:bf:e0:7f:59:15:b4:df:ef:2a:2a:0b: ef:34:9d:58:5a:7f:dd:48:3c:58:11:66:bf:c4:2b: 94:3f:e5:52:6e:15:e1:fc:f3:ff:36:7c:07:76:85: 34:a7:3c:2a:1f:37:f3:32:50:80:ec:f0:7f:f8:29: 9e:69:d1:17:cd:ca:ca:ed:d9:b0:0e:f8:b2:79:4a: cd:83:40:17:b2:96:2d:17:a8:a2:d3:47:dc:55:41: b8:ea:1b:c2:b1:94:39:7d:15:3c:5e:7c:4a:e8:e6: c3:8b:d3:48:4e:15:0d:92:2f:45:b7:61:e4:c1:03: 1f:fb:cc:ec:af:60:05:6f:92:18:d6:bd:35:98:50: ea:b8:be:51:8d:5a:cd:50:31:31:b1:99:be:80:ba: 55:59:f1:4f:7f:93:58:4e:a8:ed:7e:ce:b6:a8:ec: f1:ca:be:be:91:e9:4f:02:06:13:89:40:43:4b:16: 4f:c5:49:88:84:e6:69:f1:94:52:b3:96:7e:c4:c6: e4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:DF:26:56:D7:60:FA:71:BC:6B:5D:F7:4E:36:5B:52:E4:FA:20:08 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1bac3047-cf75-4cd2-9ee0-826e0162a6ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.4.10.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:55:41:8f:ec:8f:f3:48:30:75:e6:93:09:55:b2:16:2a:3e: ee:0d:d7:a4:fc:c0:cf:33:f6:1a:2e:c5:07:0e:af:6c:4e:ca: a7:48:b1:45:44:54:94:07:c2:09:19:be:6a:18:84:29:e9:0f: 58:48:b1:60:f2:51:ff:e8:74:56:36:d3:ba:40:46:f3:82:7d: 08:c4:26:8a:cf:4c:c9:00:15:8a:a8:53:df:13:33:12:b0:ca: d3:cb:9e:c2:8c:b9:98:d6:01:32:d9:9f:9e:d7:06:02:28:1c: 89:08:58:0a:ea:55:36:71:a3:a4:9c:18:be:ea:ea:8b:aa:96: be:08:9c:90:8c:97:5f:37:dd:fc:ba:a8:93:4c:a7:e0:be:9b: c0:b8:ab:8f:b9:44:75:c1:74:78:c5:11:53:22:7d:72:c4:59: fe:1c:bd:f1:81:ea:6c:40:f0:26:86:cd:ec:55:70:6c:c5:55: f3:5d:44:51:97:91:ef:2b:a0:d8:b1:06:22:bb:33:31:21:8d: b4:79:f7:2e:df:fd:c4:04:31:b5:2e:45:24:36:9f:d5:f0:4d: 20:d4:e0:d8:7d:30:98:04:8c:c3:4e:e1:fd:c4:15:da:43:01: 4e:34:60:d0:9f:f1:04:e8:22:3a:06:83:ad:48:f5:9e:b4:ff: 48:2c:28:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbx23elqpQZXbc8FNZLeAMSYNZokwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDEzMDAwMDAwWhcNMjQwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTUzOGEyMDgxYjg0NGE5OWQ0ODQ1MmM5OGM1NWVhYWMx NWNkYzhjZThkODM5YjM1NTE5ZmJlMTRkYWRkODFhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCudsa4+V/zzhIyj/kM33+LOkq5wqq9/8uaaaZkaBtqJTu7 TTLkFodJl9RfWrdWvoapgTsJ3lkEZc6loE2P7hC/4H9ZFbTf7yoqC+80nVhaf91I PFgRZr/EK5Q/5VJuFeH88/82fAd2hTSnPCofN/MyUIDs8H/4KZ5p0RfNysrt2bAO +LJ5Ss2DQBeyli0XqKLTR9xVQbjqG8KxlDl9FTxefEro5sOL00hOFQ2SL0W3YeTB Ax/7zOyvYAVvkhjWvTWYUOq4vlGNWs1QMTGxmb6AulVZ8U9/k1hOqO1+zrao7PHK vr6R6U8CBhOJQENLFk/FSYiE5mnxlFKzln7ExuStAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxd8mVtdg+nG8a133TjZbUuT6IAgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFiYWMzMDQ3LWNmNzUtNGNkMi05ZWUwLTgyNmUwMTYyYTZhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADBAowDQYJKoZIhvcNAQELBQADggEBAExVQY/sj/NIMHXmkwlVshYqPu4N 16T8wM8z9houxQcOr2xOyqdIsUVEVJQHwgkZvmoYhCnpD1hIsWDyUf/odFY207pA RvOCfQjEJorPTMkAFYqoU98TMxKwytPLnsKMuZjWATLZn57XBgIoHIkIWArqVTZx o6ScGL7q6ouqlr4InJCMl1833fy6qJNMp+C+m8C4q4+5RHXBdHjFEVMifXLEWf4c vfGB6mxA8CaGzexVcGzFVfNdRFGXke8roNixBiK7MzEhjbR59y7f/cQEMbUuRSQ2 n9XwTSDU4Nh9MJgEjMNO4f3EFdpDAU40YNCf8QToIjoGg61I9Z60/0gsKM8= -----END CERTIFICATE-----Generated at Mon May 6 00:47:33 2024 by rpki-client on console-ams.rpki-client.org