$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7b60dddc-79ff-4630-ae39-5d29920471be.roa File: 7b60dddc-79ff-4630-ae39-5d29920471be.roa (raw, json) Hash identifier: xg1IwG5fS5Y3g3zTgbG1n/683f4Ce2HV/k4d2w87UnA= Subject key identifier: 13:F8:18:19:E8:3A:89:91:65:64:DD:7A:AC:80:C9:0A:73:BC:8D:3F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 41CC150E229632F19910F1D73519D477E9E4ECFB Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7b60dddc-79ff-4630-ae39-5d29920471be.roa Signing time: Fri 29 Mar 2024 00:00:00 +0000 ROA not before: Fri 29 Mar 2024 00:00:00 +0000 ROA not after: Fri 03 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:cc:15:0e:22:96:32:f1:99:10:f1:d7:35:19:d4:77:e9:e4:ec:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Mar 29 00:00:00 2024 GMT Not After : May 3 23:59:59 2024 GMT Subject: serialNumber=2e66799a666faf1cccad531c44e19314b4d0231879fddc3516e17072137d1209, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:74:20:e7:83:5e:5f:d7:f6:12:19:88:c9:29: 2c:a0:96:fc:bf:15:52:f5:2c:2b:42:d2:b5:e6:97: 04:c5:4f:a7:df:d0:53:9a:6d:a0:0d:74:4a:57:66: 6d:bc:01:4c:98:18:f8:bd:e0:42:48:e7:02:87:70: 3c:b2:9b:e5:79:a5:35:d9:43:1e:79:ea:af:60:68: 9c:5f:8c:49:50:61:e4:1b:ca:07:83:f8:12:d5:9d: 56:94:d0:6a:c1:8b:a9:72:77:1d:a3:11:25:37:c8: 3f:15:1c:ea:1d:60:3a:41:10:95:27:d6:3f:24:79: 48:d7:5c:70:a5:31:2e:78:32:da:e6:1f:d2:f4:67: 6e:ab:ad:12:7f:95:98:2c:a3:5e:86:97:be:cf:58: 86:80:bf:c1:57:cc:eb:ce:27:fb:e9:d6:16:f4:00: 0c:7b:aa:e4:38:24:77:7a:af:3c:55:3e:10:19:77: 04:35:b9:32:cc:f2:71:7b:dc:56:c2:b7:9b:b7:06: 93:46:d4:3c:df:e1:da:a8:5e:86:ec:59:92:12:be: f9:cb:98:27:d8:00:9a:cd:9b:a8:8a:12:cc:11:b2: 26:01:47:8c:f6:70:64:f6:40:af:cc:0e:49:44:b7: 0d:a1:f1:37:fe:55:20:74:99:4d:82:7a:9c:8d:cd: da:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:F8:18:19:E8:3A:89:91:65:64:DD:7A:AC:80:C9:0A:73:BC:8D:3F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7b60dddc-79ff-4630-ae39-5d29920471be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.176.0/20 Signature Algorithm: sha256WithRSAEncryption 98:ad:d9:b8:29:c2:fa:eb:cc:41:a9:44:2e:f7:67:44:fa:aa: 01:6c:16:dd:8f:91:44:e5:c0:cd:c0:1e:73:ac:22:bf:fd:af: 2a:d1:05:50:b3:85:28:15:b6:69:33:db:35:7b:c1:03:15:26: 81:6d:a0:36:93:19:1e:80:ff:3a:57:ed:99:40:bd:aa:8b:3c: e7:aa:09:1e:0c:dc:b1:10:b3:98:f8:37:22:bd:e0:6c:c9:25: f3:82:68:31:92:6c:49:71:3d:8e:4a:5b:e2:bb:e4:57:f4:f4: 51:9c:1e:79:eb:df:49:7c:d0:b6:83:39:85:ff:15:f1:2d:23: d3:f9:2a:cb:9a:40:3b:a9:b6:e6:1e:7b:95:6c:4b:47:b5:a1: 7e:d9:2a:8e:a7:aa:e5:2e:23:40:1a:18:26:93:bb:51:b9:e8: 17:bd:3a:2d:ce:2b:a2:9a:d8:e9:6a:65:06:bd:73:30:2b:6c: 28:80:b8:ff:28:e1:46:8c:37:4f:da:c5:80:0d:2b:fd:5e:d2: ad:1a:31:ac:f6:92:90:50:3f:d5:14:8a:a6:09:10:f7:f9:e9: 64:8f:0e:91:66:2e:11:e9:8a:3e:7a:b8:e7:bf:55:94:50:1c: 7d:11:95:3e:66:e3:22:e5:71:29:a3:6d:75:5d:67:ec:9a:98: 25:b9:4b:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQcwVDiKWMvGZEPHXNRnUd+nk7PswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjQwMzI5MDAwMDAwWhcNMjQwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTY2Nzk5YTY2NmZhZjFjY2NhZDUzMWM0NGUxOTMxNGI0 ZDAyMzE4NzlmZGRjMzUxNmUxNzA3MjEzN2QxMjA5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBdCDng15f1/YSGYjJKSyglvy/FVL1LCtC0rXmlwTFT6ff 0FOabaANdEpXZm28AUyYGPi94EJI5wKHcDyym+V5pTXZQx556q9gaJxfjElQYeQb ygeD+BLVnVaU0GrBi6lydx2jESU3yD8VHOodYDpBEJUn1j8keUjXXHClMS54Mtrm H9L0Z26rrRJ/lZgso16Gl77PWIaAv8FXzOvOJ/vp1hb0AAx7quQ4JHd6rzxVPhAZ dwQ1uTLM8nF73FbCt5u3BpNG1Dzf4dqoXobsWZISvvnLmCfYAJrNm6iKEswRsiYB R4z2cGT2QK/MDklEtw2h8Tf+VSB0mU2CepyNzdq9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE/gYGeg6iZFlZN16rIDJCnO8jT8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzdiNjBkZGRjLTc5ZmYtNDYzMC1hZTM5LTVkMjk5MjA0NzFiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM9rAwDQYJKoZIhvcNAQELBQADggEBAJit2bgpwvrrzEGpRC73Z0T6qgFs Ft2PkUTlwM3AHnOsIr/9ryrRBVCzhSgVtmkz2zV7wQMVJoFtoDaTGR6A/zpX7ZlA vaqLPOeqCR4M3LEQs5j4NyK94GzJJfOCaDGSbElxPY5KW+K75Ff09FGcHnnr30l8 0LaDOYX/FfEtI9P5KsuaQDuptuYee5VsS0e1oX7ZKo6nquUuI0AaGCaTu1G56Be9 Oi3OK6Ka2OlqZQa9czArbCiAuP8o4UaMN0/axYANK/1e0q0aMaz2kpBQP9UUiqYJ EPf56WSPDpFmLhHpij56uOe/VZRQHH0RlT5m4yLlcSmjbXVdZ+yamCW5S3A= -----END CERTIFICATE-----Generated at Fri Apr 19 17:12:03 2024 by rpki-client on console-fra.rpki-client.org