$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ecba0557-c004-41c2-bd5b-63142dbee294.roa File: ecba0557-c004-41c2-bd5b-63142dbee294.roa (raw, json) Hash identifier: Yv2uX5qULhT234v8vy1VaEegXizL5/ywkHlY2CsExjo= Subject key identifier: 96:78:97:42:90:F9:C6:6F:95:64:53:D9:D1:69:33:43:32:17:97:F6 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 391453504388EF3BFFCEEACBA7DDF48DED55FF96 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ecba0557-c004-41c2-bd5b-63142dbee294.roa Signing time: Fri 29 Mar 2024 00:00:00 +0000 ROA not before: Fri 29 Mar 2024 00:00:00 +0000 ROA not after: Fri 03 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Apr 2024 03:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:14:53:50:43:88:ef:3b:ff:ce:ea:cb:a7:dd:f4:8d:ed:55:ff:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Mar 29 00:00:00 2024 GMT Not After : May 3 23:59:59 2024 GMT Subject: serialNumber=bc58c7886f1db931e39e882be36b5e1de64e85de67300eb5efd2f40f073d9523, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b3:1e:a0:1d:3a:8b:bf:c5:f4:c6:a8:f3:37: 8e:6c:45:60:1f:6b:0c:d3:d3:68:9c:de:f5:d9:df: 40:fe:e6:f5:27:65:2c:c3:19:92:d3:29:75:1e:d3: 24:f3:e1:1e:77:c5:5a:24:d5:c4:24:e9:6a:90:db: 6c:81:0d:15:eb:e2:10:2c:19:c6:85:73:6e:e3:a7: bf:3f:83:7b:4e:06:b6:3d:ec:a4:98:5c:f3:65:f7: a4:15:f7:1a:f1:40:13:75:78:97:21:49:46:8e:8d: 54:b1:e3:ee:2b:4b:64:64:72:71:84:6f:ab:3e:3a: ab:81:99:0b:7e:ad:84:47:de:00:be:28:24:8e:a8: 4f:8b:84:d3:82:83:8e:a8:0b:8c:b5:cc:3f:67:b1: 98:eb:b9:3e:79:55:48:64:c1:6f:08:bc:ac:af:71: 9d:4e:aa:f3:73:de:7f:6d:61:b7:a2:ba:24:2f:97: 42:f1:02:07:19:ed:74:bf:d0:0b:30:26:9f:f7:a5: e0:3b:9c:f0:7d:a1:ca:01:a6:8d:da:ca:39:35:98: a6:53:5c:cf:85:85:5b:86:4a:41:44:36:4b:b2:81: ba:41:54:b8:2b:77:e7:9a:f0:94:04:3c:70:99:2c: 04:0c:ac:01:e1:ba:97:68:95:cb:f2:f0:de:fc:e3: 8b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:78:97:42:90:F9:C6:6F:95:64:53:D9:D1:69:33:43:32:17:97:F6 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ecba0557-c004-41c2-bd5b-63142dbee294.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.248.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:e5:39:08:5e:bc:12:bf:28:e9:22:ca:62:5a:e8:fb:8e:7f: df:aa:62:be:0c:55:d5:e9:c8:53:b7:b7:65:1d:a7:03:8a:f7: d3:5f:9e:31:15:e0:f3:e2:70:dd:02:15:36:ae:0f:5e:ea:67: 3e:cc:70:0b:54:2c:f6:fa:d0:3b:54:05:1a:c1:9c:3b:b3:13: c0:ce:cf:ac:0d:70:cd:5e:ea:97:b9:de:63:e5:01:7f:7f:45: d2:49:73:35:33:b7:ee:08:cb:d0:ac:f5:fd:97:7c:a9:d4:3c: 66:f1:e9:0f:30:a8:44:5d:6e:2f:7d:24:2c:dc:76:54:8f:15: 1d:9d:27:5b:c4:49:43:4b:79:72:5a:80:07:65:87:94:ba:a4: 01:1b:93:b1:18:74:2b:18:5d:d9:15:f8:d0:07:51:b3:ff:3e: e1:8e:0f:97:5d:20:10:3d:ac:f1:5c:b4:df:41:98:f9:e4:7d: e5:69:0f:af:96:47:29:02:1d:24:6b:66:48:30:d6:9c:fd:20: 33:17:cc:ef:5d:e2:b7:46:3c:5a:0f:8c:0b:21:90:e3:b3:fc: fe:f7:cb:d6:bc:12:08:a5:c9:7a:c5:87:b1:27:c9:e1:a3:31: 52:5a:ad:d5:6b:44:34:8f:fd:04:74:50:e6:99:75:d5:48:1e: d5:6c:66:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUORRTUEOI7zv/zurLp930je1V/5YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjQwMzI5MDAwMDAwWhcNMjQwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzU4Yzc4ODZmMWRiOTMxZTM5ZTg4MmJlMzZiNWUxZGU2 NGU4NWRlNjczMDBlYjVlZmQyZjQwZjA3M2Q5NTIzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBsx6gHTqLv8X0xqjzN45sRWAfawzT02ic3vXZ30D+5vUn ZSzDGZLTKXUe0yTz4R53xVok1cQk6WqQ22yBDRXr4hAsGcaFc27jp78/g3tOBrY9 7KSYXPNl96QV9xrxQBN1eJchSUaOjVSx4+4rS2RkcnGEb6s+OquBmQt+rYRH3gC+ KCSOqE+LhNOCg46oC4y1zD9nsZjruT55VUhkwW8IvKyvcZ1OqvNz3n9tYbeiuiQv l0LxAgcZ7XS/0AswJp/3peA7nPB9ocoBpo3ayjk1mKZTXM+FhVuGSkFENkuygbpB VLgrd+ea8JQEPHCZLAQMrAHhupdolcvy8N7844unAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlniXQpD5xm+VZFPZ0WkzQzIXl/YwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2VjYmEwNTU3LWMwMDQtNDFjMi1iZDViLTYzMTQyZGJlZTI5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN+/gwDQYJKoZIhvcNAQELBQADggEBABvlOQhevBK/KOkiymJa6PuOf9+q Yr4MVdXpyFO3t2UdpwOK99NfnjEV4PPicN0CFTauD17qZz7McAtULPb60DtUBRrB nDuzE8DOz6wNcM1e6pe53mPlAX9/RdJJczUzt+4Iy9Cs9f2XfKnUPGbx6Q8wqERd bi99JCzcdlSPFR2dJ1vESUNLeXJagAdlh5S6pAEbk7EYdCsYXdkV+NAHUbP/PuGO D5ddIBA9rPFctN9BmPnkfeVpD6+WRykCHSRrZkgw1pz9IDMXzO9d4rdGPFoPjAsh kOOz/P73y9a8EgilyXrFh7EnyeGjMVJardVrRDSP/QR0UOaZddVIHtVsZng= -----END CERTIFICATE-----Generated at Tue Apr 16 16:24:00 2024 by rpki-client on console-fra.rpki-client.org