$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa File: 8b4d99c5-89ad-4008-a629-96e00cf5656f.roa (raw, json) Hash identifier: 3fW4gIuKf1y4FDP0BY2K3T1U5iwyaCQ6krUYjfwiCQE= Subject key identifier: EC:9C:DB:60:94:87:1A:BB:2E:38:31:0D:75:46:1D:71:06:11:51:2B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 56DE4EB3A7BDFA7F163B4D912EBC57759B096833 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 207.171.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:de:4e:b3:a7:bd:fa:7f:16:3b:4d:91:2e:bc:57:75:9b:09:68:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=c5f0502204fe3086cc6722085b407fa8ef749048c96c82f0c38a113744927fb0, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:98:67:32:86:ea:a0:46:69:71:74:e5:97:4d: 69:d8:35:f4:6c:ba:65:0d:a3:30:8d:4b:27:d9:eb: d1:01:7e:22:eb:38:fe:fb:c0:8e:a4:83:77:59:78: 21:fb:07:14:c0:d2:3b:37:ff:1b:6c:37:94:54:94: d9:75:b0:17:28:07:24:74:51:5b:0b:5c:df:c9:bf: 21:a2:87:55:24:6c:b3:73:e7:86:40:2e:c0:1b:30: 0e:23:02:d5:a4:88:28:55:d2:f6:a7:d3:3c:f2:35: b9:23:79:78:80:ba:a7:f6:ae:c5:6b:9b:57:a8:79: 08:59:0d:dd:6f:a5:e1:72:fa:8d:c2:72:57:fc:47: c1:bd:51:43:99:01:17:73:1d:3b:0d:e9:92:ea:98: 97:96:1d:aa:d7:10:d3:d3:94:23:bd:14:a1:fc:70: 93:a2:b2:1e:61:c8:a0:1d:df:40:62:59:40:1a:32: 67:dd:17:fb:78:a1:3a:7e:ea:14:2c:29:87:c8:ac: a5:0c:33:43:56:b4:93:44:75:4c:8b:ec:08:e5:df: 4b:0b:f5:14:bf:46:3e:76:ea:52:40:b9:a8:f0:9f: 9d:19:16:2c:5e:ef:01:12:21:6a:3e:3b:69:f9:f5: dc:bb:86:b0:31:86:ca:2e:eb:c1:60:02:cc:e3:58: 33:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:9C:DB:60:94:87:1A:BB:2E:38:31:0D:75:46:1D:71:06:11:51:2B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/20 Signature Algorithm: sha256WithRSAEncryption 79:47:6d:2b:84:dd:9e:f1:97:4e:ea:22:db:19:b4:c2:4f:85: 28:b3:95:e5:af:3f:ac:8e:23:b3:5a:46:88:91:01:be:d1:1b: a8:15:ce:f7:44:10:a0:87:29:96:69:5d:61:73:49:cd:e2:6c: 21:b1:04:22:41:6c:01:a6:a3:2d:62:f5:d4:ba:84:9f:72:f4: fa:25:64:ab:55:b7:99:d0:4c:4a:81:48:db:12:cf:d5:dc:1a: 31:ec:66:c3:21:80:44:da:8c:b5:6e:32:18:9d:fe:35:bf:ca: aa:5a:a8:d2:6b:d9:4f:2b:63:12:25:ba:ba:b2:8a:ab:98:bd: 03:07:fd:ac:2c:48:8c:22:0e:d5:9f:40:38:a9:f1:24:52:c4: 2b:4a:e3:d5:c1:b0:4d:e4:1e:40:f5:10:30:5b:24:0e:1f:26: f1:4c:f0:ac:6e:e5:e6:37:24:27:27:04:0f:b1:28:4c:4d:e0: 4f:33:3b:15:b3:26:d4:00:4f:6e:de:7e:a9:d7:44:8a:35:b0: f9:35:0c:c6:01:a1:09:d5:3e:3e:33:d4:1b:06:73:02:bf:48: 06:84:4d:ff:c5:75:88:d0:c1:de:aa:ea:8d:69:c4:29:be:47: c8:69:9b:b0:71:84:58:0f:f5:20:f0:c3:20:88:61:85:f2:00: 97:7e:0d:3d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVt5Os6e9+n8WO02RLrxXdZsJaDMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNWYwNTAyMjA0ZmUzMDg2Y2M2NzIyMDg1YjQwN2ZhOGVm NzQ5MDQ4Yzk2YzgyZjBjMzhhMTEzNzQ0OTI3ZmIwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0mGcyhuqgRmlxdOWXTWnYNfRsumUNozCNSyfZ69EBfiLr OP77wI6kg3dZeCH7BxTA0js3/xtsN5RUlNl1sBcoByR0UVsLXN/JvyGih1UkbLNz 54ZALsAbMA4jAtWkiChV0van0zzyNbkjeXiAuqf2rsVrm1eoeQhZDd1vpeFy+o3C clf8R8G9UUOZARdzHTsN6ZLqmJeWHarXENPTlCO9FKH8cJOish5hyKAd30BiWUAa MmfdF/t4oTp+6hQsKYfIrKUMM0NWtJNEdUyL7Ajl30sL9RS/Rj526lJAuajwn50Z Fixe7wESIWo+O2n59dy7hrAxhsou68FgAszjWDPFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7JzbYJSHGrsuODENdUYdcQYRUSswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzhiNGQ5OWM1LTg5YWQtNDAwOC1hNjI5LTk2ZTAwY2Y1NjU2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPq6AwDQYJKoZIhvcNAQELBQADggEBAHlHbSuE3Z7xl07qItsZtMJPhSiz leWvP6yOI7NaRoiRAb7RG6gVzvdEEKCHKZZpXWFzSc3ibCGxBCJBbAGmoy1i9dS6 hJ9y9PolZKtVt5nQTEqBSNsSz9XcGjHsZsMhgETajLVuMhid/jW/yqpaqNJr2U8r YxIlurqyiquYvQMH/awsSIwiDtWfQDip8SRSxCtK49XBsE3kHkD1EDBbJA4fJvFM 8Kxu5eY3JCcnBA+xKExN4E8zOxWzJtQAT27efqnXRIo1sPk1DMYBoQnVPj4z1BsG cwK/SAaETf/FdYjQwd6q6o1pxCm+R8hpm7BxhFgP9SDwwyCIYYXyAJd+DT0= -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:30 2024 by rpki-client on console-fra.rpki-client.org