$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4478ff0f-6a53-4acc-9479-07278c3797ec.roa File: 4478ff0f-6a53-4acc-9479-07278c3797ec.roa (raw, json) Hash identifier: grfIdU4mo6XzOzH6wtxzLJooymq5TLJVq5n/+2/l4+E= Subject key identifier: 01:AB:AE:E0:70:22:08:8C:59:95:7B:CE:31:50:08:6C:89:C5:F7:25 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 73E94BF70D2D2FCC7D754E876485E4AD1BA5FEE7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4478ff0f-6a53-4acc-9479-07278c3797ec.roa Signing time: Fri 03 May 2024 00:00:00 +0000 ROA not before: Fri 03 May 2024 00:00:00 +0000 ROA not after: Fri 07 Jun 2024 23:59:59 +0000 asID: 14618 IP address blocks: 52.192.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 07 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:e9:4b:f7:0d:2d:2f:cc:7d:75:4e:87:64:85:e4:ad:1b:a5:fe:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 3 00:00:00 2024 GMT Not After : Jun 7 23:59:59 2024 GMT Subject: serialNumber=1f73ad19282bcf39a6e17d7810f427a46fe492c669584489cec74805b44a990c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:75:e4:06:35:e2:8b:7d:b2:a1:41:c0:06:ad: 1d:03:ee:e2:4e:d5:eb:03:67:f1:1a:9a:1e:59:25: ea:e8:40:8a:29:90:48:ac:2f:41:3f:9b:6d:dc:38: 7f:c8:54:23:51:7a:ad:01:c6:bd:68:7b:ca:69:68: bc:49:c9:10:bd:77:f5:f9:ae:9d:65:4c:41:1b:86: be:3a:49:9b:8b:f1:9f:22:83:4d:d9:9b:b6:82:0b: 1b:1a:18:a3:51:61:76:1f:cc:06:2a:a2:a5:92:2c: 38:74:b8:1a:46:3b:0b:2a:e8:8a:99:26:27:ce:c5: a1:2e:e5:ea:c1:d3:ff:3b:7c:da:a2:e2:0e:bd:52: d9:41:4d:06:c0:e7:1d:f8:61:3d:9c:fd:1f:a2:9e: 0f:e4:15:f3:83:f6:25:9e:98:67:6c:2a:c7:12:e8: 3e:f5:4d:7a:44:d8:45:7d:30:87:c4:18:bb:8c:cb: 5b:22:37:85:4e:f9:e4:fe:5a:3f:0b:9c:bc:47:0e: 6d:7b:f1:cb:78:9b:a8:d8:10:61:79:91:a0:1d:2f: 33:60:20:9f:19:d5:c7:fa:10:64:20:cf:73:ff:3e: f3:e9:a5:3a:c2:95:fb:fe:14:05:9c:92:55:fd:35: 38:a4:96:2c:f0:28:13:c7:db:7b:6b:0d:56:04:18: 86:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:AB:AE:E0:70:22:08:8C:59:95:7B:CE:31:50:08:6C:89:C5:F7:25 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4478ff0f-6a53-4acc-9479-07278c3797ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.192.0.0/12 Signature Algorithm: sha256WithRSAEncryption 14:33:c9:c3:2a:d8:43:28:31:7f:a5:9a:23:25:cd:d7:2d:71: 2d:08:83:a4:b9:04:c6:78:1f:73:d6:af:84:38:8d:b1:50:91: 58:96:14:69:24:67:31:e7:ff:95:6e:ee:7e:64:2c:02:f2:89: e4:6a:1d:10:9b:b8:b2:3c:0e:85:da:d4:d3:67:f3:1f:37:6d: fb:5d:79:c9:88:e6:0d:a8:f0:7c:5d:1d:f9:8d:31:a8:09:d8: 09:c6:2b:3b:f4:82:71:06:48:63:aa:ad:4e:64:48:1e:fb:23: 4d:fa:3f:12:93:d2:d5:08:fc:b0:a2:46:d6:e5:3d:56:03:d8: 42:b7:3d:b4:8c:8f:ab:0c:e4:26:a0:09:67:b1:de:af:47:4f: 11:71:d5:45:0c:73:4c:ae:89:09:0e:d8:3a:e3:66:8c:fa:0b: 41:0b:ee:a2:d6:a2:7e:59:86:85:1f:1c:8b:3e:c6:93:60:2a: 4d:88:c3:2c:7c:be:7c:eb:75:66:41:95:57:5d:68:0c:de:98: ea:48:8a:2f:ac:5c:47:c0:cb:67:11:25:99:b8:50:94:bb:f0: 9c:dd:c5:fe:da:22:c6:50:dc:07:2a:40:ff:d9:06:59:8e:6f: 3c:55:37:3c:5f:8f:0b:1a:1f:b4:9b:17:e8:be:5c:d3:b8:ee: e3:dd:32:36 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUc+lL9w0tL8x9dU6HZIXkrRul/ucwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNTAzMDAwMDAwWhcNMjQwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjczYWQxOTI4MmJjZjM5YTZlMTdkNzgxMGY0MjdhNDZm ZTQ5MmM2Njk1ODQ0ODljZWM3NDgwNWI0NGE5OTBjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUdeQGNeKLfbKhQcAGrR0D7uJO1esDZ/Eamh5ZJeroQIop kEisL0E/m23cOH/IVCNReq0Bxr1oe8ppaLxJyRC9d/X5rp1lTEEbhr46SZuL8Z8i g03Zm7aCCxsaGKNRYXYfzAYqoqWSLDh0uBpGOwsq6IqZJifOxaEu5erB0/87fNqi 4g69UtlBTQbA5x34YT2c/R+ing/kFfOD9iWemGdsKscS6D71TXpE2EV9MIfEGLuM y1siN4VO+eT+Wj8LnLxHDm178ct4m6jYEGF5kaAdLzNgIJ8Z1cf6EGQgz3P/PvPp pTrClfv+FAWcklX9NTiklizwKBPH23trDVYEGIbLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAauu4HAiCIxZlXvOMVAIbInF9yUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ0NzhmZjBmLTZhNTMtNGFjYy05NDc5LTA3Mjc4YzM3OTdlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQ0wDANBgkqhkiG9w0BAQsFAAOCAQEAFDPJwyrYQygxf6WaIyXN1y1xLQiD pLkExngfc9avhDiNsVCRWJYUaSRnMef/lW7ufmQsAvKJ5GodEJu4sjwOhdrU02fz Hzdt+115yYjmDajwfF0d+Y0xqAnYCcYrO/SCcQZIY6qtTmRIHvsjTfo/EpPS1Qj8 sKJG1uU9VgPYQrc9tIyPqwzkJqAJZ7Her0dPEXHVRQxzTK6JCQ7YOuNmjPoLQQvu otaiflmGhR8ciz7Gk2AqTYjDLHy+fOt1ZkGVV11oDN6Y6kiKL6xcR8DLZxElmbhQ lLvwnN3F/toixlDcBypA/9kGWY5vPFU3PF+PCxoftJsX6L5c07ju490yNg== -----END CERTIFICATE-----Generated at Mon May 6 00:49:57 2024 by rpki-client on console-fra.rpki-client.org