$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8dc0433c-cfe0-477e-936f-17b8022e341f.roa File: 8dc0433c-cfe0-477e-936f-17b8022e341f.roa (raw, json) Hash identifier: E1T+ulR2NETSt174pC+SXVgQHliJb3tuqGbMz0J51HM= Subject key identifier: 59:D3:27:C5:0A:F1:A9:C5:A5:7D:B5:B1:92:83:DF:B8:2E:58:31:77 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 350B5355BB19703526EB251B9CCB1C20ECC30AE2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8dc0433c-cfe0-477e-936f-17b8022e341f.roa Signing time: Fri 03 May 2024 00:00:00 +0000 ROA not before: Fri 03 May 2024 00:00:00 +0000 ROA not after: Fri 07 Jun 2024 23:59:59 +0000 asID: 14618 IP address blocks: 52.223.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 07 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:0b:53:55:bb:19:70:35:26:eb:25:1b:9c:cb:1c:20:ec:c3:0a:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 3 00:00:00 2024 GMT Not After : Jun 7 23:59:59 2024 GMT Subject: serialNumber=d1bbcb971c73a6c79ed3d57f15f5a094e0e9755d73941e6c41943331b8b471bb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ca:f6:4a:75:e3:d3:8f:5b:27:17:40:64:0d: 8c:0e:59:07:2f:6a:74:55:0f:33:0c:1b:88:82:7a: 03:3d:fc:28:a3:42:95:a1:3b:fc:f0:6b:76:8b:e4: 27:82:1e:e7:00:1f:b8:41:87:07:d3:df:84:3d:c4: ac:f4:8b:c9:ef:72:33:74:91:ed:28:19:eb:db:ab: 19:3a:91:61:6c:06:7b:b1:67:74:00:2b:05:7c:e9: f5:53:13:5e:53:8d:35:fe:a4:58:0f:1e:ce:41:e7: 84:9b:59:88:3a:2d:81:5f:e8:2e:b5:85:cc:92:f9: 0a:56:a6:6a:2c:70:f9:26:a2:2a:44:a5:ba:5a:3b: 5b:89:cf:dc:45:f8:3f:b5:09:66:de:dc:09:95:61: 31:2a:d2:2d:98:01:2c:dc:a1:19:4a:54:92:ed:3a: 32:5a:84:aa:b7:38:ee:b8:0a:5e:db:df:08:ae:5d: 5f:18:70:3e:de:cd:b7:87:3c:62:ca:8e:6f:56:41: 40:9e:93:d5:a4:ed:3d:d8:7b:96:a4:c8:71:59:71: ef:e8:8c:2a:f2:fb:f3:6a:14:66:74:db:8a:39:53: 6e:0d:54:51:41:5d:9f:68:8d:20:94:49:d1:fd:b7: aa:9d:a3:b3:cf:b7:8f:28:c7:91:3d:92:72:81:06: 91:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D3:27:C5:0A:F1:A9:C5:A5:7D:B5:B1:92:83:DF:B8:2E:58:31:77 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8dc0433c-cfe0-477e-936f-17b8022e341f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.223.128.0/18 Signature Algorithm: sha256WithRSAEncryption 27:85:0c:19:98:78:47:53:a4:6c:62:9a:90:17:21:71:8a:a5: f9:5e:0d:e8:c7:d6:d3:cb:41:ee:64:55:a0:73:c8:d7:ca:9b: 7f:bd:21:a0:68:ec:af:fc:54:12:ff:3b:64:32:81:c2:03:c0: bf:a5:f2:8d:60:1d:33:37:20:ea:f5:5e:e7:c2:11:41:22:a7: cf:51:05:7b:87:1f:78:fd:e2:72:ef:8d:21:f0:6d:c0:49:5c: f4:5c:e4:7a:20:c4:9f:89:24:05:18:88:79:20:cb:1c:c0:23: a0:84:d5:c8:ea:db:cb:5b:42:5a:7f:d5:09:1a:bb:dc:a3:38: 69:6e:4b:c1:43:c6:4b:98:53:90:75:a4:02:e7:54:b0:92:c8: f3:3a:78:bf:22:71:70:3b:6d:09:fd:f2:64:7a:c6:83:9f:9d: a5:f8:8d:ab:20:3d:c7:76:5d:34:ac:ab:6d:2a:57:7e:aa:32: 2c:05:db:09:aa:ba:16:ec:5d:fd:d7:b6:98:d9:d0:e2:08:b1: 05:cb:d1:41:3c:ba:ad:1d:8e:ee:fa:99:f2:91:71:6a:8b:c4: ea:4c:2d:21:ea:42:aa:f2:8c:0d:f7:b2:e2:91:d1:e6:56:a7: 5d:67:40:31:48:9a:3a:55:c3:66:5c:26:39:ad:13:ba:4c:a7: ee:cd:62:0e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNQtTVbsZcDUm6yUbnMscIOzDCuIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNTAzMDAwMDAwWhcNMjQwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWJiY2I5NzFjNzNhNmM3OWVkM2Q1N2YxNWY1YTA5NGUw ZTk3NTVkNzM5NDFlNmM0MTk0MzMzMWI4YjQ3MWJiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtyvZKdePTj1snF0BkDYwOWQcvanRVDzMMG4iCegM9/Cij QpWhO/zwa3aL5CeCHucAH7hBhwfT34Q9xKz0i8nvcjN0ke0oGevbqxk6kWFsBnux Z3QAKwV86fVTE15TjTX+pFgPHs5B54SbWYg6LYFf6C61hcyS+QpWpmoscPkmoipE pbpaO1uJz9xF+D+1CWbe3AmVYTEq0i2YASzcoRlKVJLtOjJahKq3OO64Cl7b3wiu XV8YcD7ezbeHPGLKjm9WQUCek9Wk7T3Ye5akyHFZce/ojCry+/NqFGZ024o5U24N VFFBXZ9ojSCUSdH9t6qdo7PPt48ox5E9knKBBpHbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWdMnxQrxqcWlfbWxkoPfuC5YMXcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhkYzA0MzNjLWNmZTAtNDc3ZS05MzZmLTE3YjgwMjJlMzQxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY034AwDQYJKoZIhvcNAQELBQADggEBACeFDBmYeEdTpGximpAXIXGKpfle DejH1tPLQe5kVaBzyNfKm3+9IaBo7K/8VBL/O2QygcIDwL+l8o1gHTM3IOr1XufC EUEip89RBXuHH3j94nLvjSHwbcBJXPRc5HogxJ+JJAUYiHkgyxzAI6CE1cjq28tb Qlp/1Qkau9yjOGluS8FDxkuYU5B1pALnVLCSyPM6eL8icXA7bQn98mR6xoOfnaX4 jasgPcd2XTSsq20qV36qMiwF2wmquhbsXf3XtpjZ0OIIsQXL0UE8uq0dju76mfKR cWqLxOpMLSHqQqryjA33suKR0eZWp11nQDFImjpVw2ZcJjmtE7pMp+7NYg4= -----END CERTIFICATE-----Generated at Mon May 6 00:50:07 2024 by rpki-client on console-fra.rpki-client.org