$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9820863-0ada-450a-8c92-a29a28133a4a.roa File: d9820863-0ada-450a-8c92-a29a28133a4a.roa (raw, json) Hash identifier: 6nQlzehn9Vc7xFFuLeVT6kUw+Fs7GEVhbjtQexzIQ8E= Subject key identifier: 8A:E9:C2:09:65:6D:8D:BF:69:80:F0:CA:43:1C:77:CF:9F:6B:DF:EB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 49F0D0EABA0CAC2249D9287863C96E6151780DB7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9820863-0ada-450a-8c92-a29a28133a4a.roa Signing time: Fri 29 Mar 2024 00:00:00 +0000 ROA not before: Fri 29 Mar 2024 00:00:00 +0000 ROA not after: Fri 03 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:f0:d0:ea:ba:0c:ac:22:49:d9:28:78:63:c9:6e:61:51:78:0d:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Mar 29 00:00:00 2024 GMT Not After : May 3 23:59:59 2024 GMT Subject: serialNumber=763666699cd2276628d6bc1588a2fd82cdd13533e1f73df1e2468d30bf38358a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:81:c5:92:ac:93:15:07:b3:95:80:bd:c9:e2: 91:c9:0d:ed:d1:2f:78:c5:1e:2f:1f:ef:3b:de:24: 17:30:1e:7f:8e:9a:39:49:af:09:c6:3a:65:04:89: 1f:5c:7a:d0:6d:92:9b:92:04:25:0d:a8:5a:db:a2: 77:26:1b:d2:b6:67:04:e7:2b:eb:d8:af:bd:9a:76: 64:57:f2:e7:85:51:a4:bb:8d:14:b9:d5:df:26:38: a7:b4:51:24:60:33:ce:39:47:1d:27:76:02:39:90: 02:1d:1e:0e:e5:53:71:00:36:98:ad:d8:14:96:79: d4:0b:c1:91:cc:19:51:16:18:9e:08:65:19:48:e0: 20:38:96:7d:39:5e:fc:9a:0b:cf:9e:f6:b1:d9:ba: e2:45:20:bb:12:2c:ce:bd:a1:22:5c:2c:80:2d:ca: 85:77:55:ae:51:97:b9:c0:94:9a:42:92:a0:30:71: 6d:62:d4:79:ad:4a:14:fa:44:c7:40:67:5d:da:f8: 8a:07:8d:d4:a9:06:87:28:a7:e3:c3:d2:8b:f0:56: 5a:05:b5:04:dc:1e:04:a4:12:5b:84:94:89:ca:d4: 44:7c:ff:96:10:4d:a5:6b:f2:ff:a9:fd:9c:d1:cf: 93:7e:69:d5:30:87:f7:d9:be:c7:e5:68:2d:40:4e: 5a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E9:C2:09:65:6D:8D:BF:69:80:F0:CA:43:1C:77:CF:9F:6B:DF:EB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9820863-0ada-450a-8c92-a29a28133a4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.208.0/20 Signature Algorithm: sha256WithRSAEncryption ad:45:d6:fd:a6:0c:3c:12:d7:1d:6c:0e:cf:43:5b:b0:32:b0: a3:bc:1c:5b:c5:d4:d7:16:8a:96:77:8a:22:7d:f0:78:ce:18: ef:95:b9:cc:29:a2:55:34:de:8b:8e:d7:3e:0b:b4:6f:e8:48: 33:8d:36:32:20:d3:b2:9a:dd:f7:ad:79:f3:3b:21:93:cc:f7: 0a:c1:39:a4:b0:b9:89:1e:a2:d3:16:c7:90:f9:4a:11:d5:92: 9a:ea:9f:f0:c4:df:92:ed:35:f0:09:7f:5b:3c:a4:92:bf:c5: d8:fb:69:ab:6a:ba:f9:88:8d:08:63:21:8f:c3:04:d9:7d:23: 2c:12:ad:e8:ac:b6:d7:3c:58:05:5a:41:6f:1b:33:27:f6:f8: dc:6f:12:06:13:8c:13:59:8e:e7:9e:b0:18:32:b2:75:10:33: e5:fa:6f:80:85:a0:1f:4a:e0:d1:16:2f:fe:63:a0:37:a3:76: b7:c5:e1:d7:80:93:86:bd:dd:97:97:f6:4e:bf:a8:87:32:c1: bd:b6:34:56:f4:b9:fd:2c:8d:5d:69:e6:f0:08:ee:e6:fb:10: 2f:dc:3d:ef:a2:cd:05:4b:c9:b8:54:4d:0b:78:57:93:1d:ef: a8:49:df:5b:19:f7:dd:6c:01:43:cf:42:a0:66:a2:0d:47:a3: fa:36:1d:e1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSfDQ6roMrCJJ2Sh4Y8luYVF4DbcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjQwMzI5MDAwMDAwWhcNMjQwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjM2NjY2OTljZDIyNzY2MjhkNmJjMTU4OGEyZmQ4MmNk ZDEzNTMzZTFmNzNkZjFlMjQ2OGQzMGJmMzgzNThhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbgcWSrJMVB7OVgL3J4pHJDe3RL3jFHi8f7zveJBcwHn+O mjlJrwnGOmUEiR9cetBtkpuSBCUNqFrboncmG9K2ZwTnK+vYr72admRX8ueFUaS7 jRS51d8mOKe0USRgM845Rx0ndgI5kAIdHg7lU3EANpit2BSWedQLwZHMGVEWGJ4I ZRlI4CA4ln05XvyaC8+e9rHZuuJFILsSLM69oSJcLIAtyoV3Va5Rl7nAlJpCkqAw cW1i1HmtShT6RMdAZ13a+IoHjdSpBocop+PD0ovwVloFtQTcHgSkEluElInK1ER8 /5YQTaVr8v+p/ZzRz5N+adUwh/fZvsflaC1ATlqrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiunCCWVtjb9pgPDKQxx3z59r3+swHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Q5ODIwODYzLTBhZGEtNDUwYS04YzkyLWEyOWEyODEzM2E0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATN+9AwDQYJKoZIhvcNAQELBQADggEBAK1F1v2mDDwS1x1sDs9DW7AysKO8 HFvF1NcWipZ3iiJ98HjOGO+VucwpolU03ouO1z4LtG/oSDONNjIg07Ka3fetefM7 IZPM9wrBOaSwuYkeotMWx5D5ShHVkprqn/DE35LtNfAJf1s8pJK/xdj7aatquvmI jQhjIY/DBNl9IywSreisttc8WAVaQW8bMyf2+NxvEgYTjBNZjueesBgysnUQM+X6 b4CFoB9K4NEWL/5joDejdrfF4deAk4a93ZeX9k6/qIcywb22NFb0uf0sjV1p5vAI 7ub7EC/cPe+izQVLybhUTQt4V5Md76hJ31sZ991sAUPPQqBmog1Ho/o2HeE= -----END CERTIFICATE-----Generated at Thu Apr 18 16:50:40 2024 by rpki-client on console-ams.rpki-client.org