$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/476b6542-f865-4ad9-a41f-dd015bf0089e.roa File: 476b6542-f865-4ad9-a41f-dd015bf0089e.roa (raw, json) Hash identifier: MLxzFxBrBwtMy+0OZOmSxwl6FfsD5j7kWlbu/x6LStU= Subject key identifier: A2:2D:03:1A:BC:93:8D:6B:46:D9:7A:09:A0:B6:9C:86:E4:57:57:E9 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 164B25D35880A14B6BA62DB2F975AC5B3E464FB9 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/476b6542-f865-4ad9-a41f-dd015bf0089e.roa Signing time: Sat 30 Mar 2024 00:00:00 +0000 ROA not before: Sat 30 Mar 2024 00:00:00 +0000 ROA not after: Sat 04 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Apr 2024 12:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:4b:25:d3:58:80:a1:4b:6b:a6:2d:b2:f9:75:ac:5b:3e:46:4f:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Mar 30 00:00:00 2024 GMT Not After : May 4 23:59:59 2024 GMT Subject: serialNumber=3412a68d72b3a18281d5236ec6e290b2888134eebfe7f971a516bf72cf14e39d, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:96:57:58:7e:cb:aa:6b:4f:5f:24:7b:8a:ab: 33:16:04:77:a8:65:04:50:b4:65:6d:5f:d0:05:6b: 10:b8:9d:7b:66:62:d9:4d:1c:02:00:13:da:0a:07: db:c3:e3:04:c5:62:aa:f6:09:6b:f8:22:57:26:1c: 70:f2:9f:06:65:dc:f9:53:54:52:a1:84:6c:f3:41: 3d:6c:80:d3:71:e8:64:1e:51:0e:e0:26:cb:b3:b7: 13:8e:79:60:25:4b:69:d0:bf:00:2d:d3:bb:c4:0f: 5c:8f:6c:09:45:6c:91:1e:60:5f:7d:f5:66:b4:50: df:d8:09:1e:72:fc:05:21:f6:c2:5c:55:07:7f:32: a6:ed:71:3e:55:e1:fd:92:f7:9c:a1:23:3e:63:a6: 6f:2a:c5:6b:19:b2:a2:96:57:3f:1f:e9:b9:f7:24: 21:2c:2d:73:92:ef:4c:b9:fb:75:ff:15:dc:22:2b: 64:27:58:d8:d7:c6:c2:d1:fd:d3:e7:4a:66:80:23: c6:54:d0:82:10:09:c6:ef:5a:0a:9c:97:7a:d2:2c: 03:27:18:d8:d5:86:01:7a:6d:a3:c6:b5:cf:0c:e2: ee:ca:0b:a7:ba:a3:b8:cc:94:90:cf:33:65:4d:26: ac:bd:78:34:c5:bf:6c:54:41:43:43:3f:bd:1d:11: 8d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:2D:03:1A:BC:93:8D:6B:46:D9:7A:09:A0:B6:9C:86:E4:57:57:E9 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/476b6542-f865-4ad9-a41f-dd015bf0089e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 26:24:ce:4d:b5:69:76:6d:ee:9b:34:df:91:57:62:72:52:1f: 36:f4:b3:0b:fc:16:fe:c3:6a:27:c1:33:e2:ba:19:04:9e:85: 23:cf:54:89:36:8d:d6:b6:f8:32:06:76:d1:c4:32:61:1e:85: a9:da:ee:f7:64:10:2a:c6:6b:09:ce:23:d6:06:62:e6:ae:42: 9f:74:95:05:39:38:e1:3e:7e:dd:fd:31:08:19:9c:e4:b1:2c: 52:18:4e:6f:4f:7d:f7:81:67:ba:2c:e0:2d:85:05:6f:25:9a: 1c:a1:fe:03:e8:89:ae:b5:7d:29:b0:03:e3:17:1a:6c:ab:36: 5e:b8:1b:e7:88:a0:e9:f9:fd:25:c9:d8:47:a7:df:2f:5c:12: 4c:79:1c:f6:b3:5e:17:8a:ed:33:12:35:69:a2:9b:a5:16:dc: 37:19:58:31:4e:d0:2d:9a:85:e6:5d:16:8b:7d:81:84:88:e4: d3:5e:07:75:8c:e3:e8:ba:1d:0d:ed:be:37:81:76:d7:8c:71: b6:e9:8e:e4:53:d0:0f:6a:da:f8:03:c1:c4:44:e0:4a:cd:7a: 10:11:60:4a:dc:db:f1:94:20:65:06:1b:29:ad:1b:59:b4:fb: 30:24:df:1f:3d:fa:71:74:94:4c:79:c2:a5:43:76:94:69:15: 78:08:f7:0f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFksl01iAoUtrpi2y+XWsWz5GT7kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjQwMzMwMDAwMDAwWhcNMjQwNTA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDEyYTY4ZDcyYjNhMTgyODFkNTIzNmVjNmUyOTBiMjg4 ODEzNGVlYmZlN2Y5NzFhNTE2YmY3MmNmMTRlMzlkMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4lldYfsuqa09fJHuKqzMWBHeoZQRQtGVtX9AFaxC4nXtm YtlNHAIAE9oKB9vD4wTFYqr2CWv4IlcmHHDynwZl3PlTVFKhhGzzQT1sgNNx6GQe UQ7gJsuztxOOeWAlS2nQvwAt07vED1yPbAlFbJEeYF999Wa0UN/YCR5y/AUh9sJc VQd/MqbtcT5V4f2S95yhIz5jpm8qxWsZsqKWVz8f6bn3JCEsLXOS70y5+3X/Fdwi K2QnWNjXxsLR/dPnSmaAI8ZU0IIQCcbvWgqcl3rSLAMnGNjVhgF6baPGtc8M4u7K C6e6o7jMlJDPM2VNJqy9eDTFv2xUQUNDP70dEY3bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoi0DGryTjWtG2XoJoLachuRXV+kwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzQ3NmI2NTQyLWY4NjUtNGFkOS1hNDFmLWRkMDE1YmYwMDg5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdgfwAwDQYJKoZIhvcNAQELBQADggEBACYkzk21aXZt7ps035FXYnJSHzb0 swv8Fv7DaifBM+K6GQSehSPPVIk2jda2+DIGdtHEMmEehana7vdkECrGawnOI9YG YuauQp90lQU5OOE+ft39MQgZnOSxLFIYTm9PffeBZ7os4C2FBW8lmhyh/gPoia61 fSmwA+MXGmyrNl64G+eIoOn5/SXJ2Een3y9cEkx5HPazXheK7TMSNWmim6UW3DcZ WDFO0C2aheZdFot9gYSI5NNeB3WM4+i6HQ3tvjeBdteMcbbpjuRT0A9q2vgDwcRE 4ErNehARYErc2/GUIGUGGymtG1m0+zAk3x89+nF0lEx5wqVDdpRpFXgI9w8= -----END CERTIFICATE-----Generated at Tue Apr 16 00:29:10 2024 by rpki-client on console-ams.rpki-client.org