$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/025bca09-86b7-48bd-a586-a44ce744234f.roa File: 025bca09-86b7-48bd-a586-a44ce744234f.roa (raw, json) Hash identifier: F0tTPV+1d4wubAH+/R0jrmzOVipSzoezVkmaLdAUpIU= Subject key identifier: CF:83:7E:90:9D:42:3E:00:48:DC:6B:26:C4:72:86:22:09:EF:82:67 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4B77DAF86D510CD14BC7C6D0D93F5380658F8D82 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/025bca09-86b7-48bd-a586-a44ce744234f.roa Signing time: Mon 01 Apr 2024 00:00:00 +0000 ROA not before: Mon 01 Apr 2024 00:00:00 +0000 ROA not after: Mon 06 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Apr 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:77:da:f8:6d:51:0c:d1:4b:c7:c6:d0:d9:3f:53:80:65:8f:8d:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 1 00:00:00 2024 GMT Not After : May 6 23:59:59 2024 GMT Subject: serialNumber=2cac9dc15e57f6d4be0fbb5a9df0f1ec4477a2a195a66e869171cea7c3eb8e78, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:de:f7:2b:cf:da:70:00:97:e3:7b:61:61:cf: 0b:4d:45:2c:9d:a6:6f:89:14:75:2e:04:bb:6c:a1: 67:7b:60:63:b6:8f:0f:b7:cb:18:5b:ad:b7:26:5d: d6:63:46:56:8e:ab:bc:8a:24:62:93:3a:74:c6:22: a0:38:cf:ca:2e:85:d0:55:ca:5b:ca:65:42:e4:7a: ec:6c:d2:eb:9e:98:75:0d:4b:82:71:ed:fe:c5:4b: d9:9f:72:96:7d:02:7d:a5:54:34:c5:a4:2b:a9:77: bd:ac:56:5e:92:28:0a:7b:46:0f:80:cf:6c:b5:8a: 92:53:73:c1:03:06:52:69:b7:ab:0c:23:9d:1d:86: 84:67:ee:21:4a:47:a5:82:e4:0c:99:09:d1:28:c6: 88:a4:6e:b7:7a:3c:e1:bd:c4:93:62:5e:d9:cc:a3: 53:2a:77:8f:20:0d:41:a1:8c:2d:62:0e:dd:b8:ac: 9a:3b:a5:ae:ab:5f:82:14:d7:ec:7d:a1:57:f9:16: 24:fa:93:21:31:dd:b1:a0:8f:21:b5:60:0f:fd:17: b4:4d:fa:0e:c7:33:61:1b:70:cb:08:99:b3:bd:d1: f6:bf:19:ab:8d:2a:45:7c:89:1d:c3:1d:68:65:96: c8:63:c6:ac:ee:99:53:b0:3f:67:fe:f1:2a:43:67: 8c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:83:7E:90:9D:42:3E:00:48:DC:6B:26:C4:72:86:22:09:EF:82:67 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/025bca09-86b7-48bd-a586-a44ce744234f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.168.0/21 Signature Algorithm: sha256WithRSAEncryption 83:50:b9:84:fe:a5:94:08:1a:92:ae:f2:11:3a:3a:07:c7:72: c4:72:3d:39:75:4e:fa:24:2a:e2:76:53:3e:99:c2:65:50:25: 50:5a:29:41:7d:93:4b:76:5f:e8:5a:06:98:b9:58:c9:ad:d8: 00:c8:68:5f:72:c6:ff:6c:7f:85:62:6a:fe:e7:74:1c:0e:37: 0a:cc:03:d8:cf:2e:b6:08:2c:e5:bb:d7:f5:cf:1d:7e:79:f2: 31:ed:89:88:b7:64:6d:f9:74:8c:a4:54:48:5d:33:52:26:2a: 2b:a1:bf:91:43:60:3e:cb:03:d7:09:67:59:bd:07:c1:ac:e6: a2:02:e4:e7:b0:a2:28:5a:15:63:e2:b3:08:f4:26:2f:f8:a5: 26:6f:46:21:fc:da:9a:d8:ce:4f:b5:b9:b1:2f:b6:fc:6f:40: 08:93:b0:e2:7f:fe:21:71:93:ca:80:15:cc:9f:58:5f:62:e4: 81:30:1c:a4:b1:f9:19:a4:3b:9a:fe:d5:77:97:50:7b:16:bf: 07:2d:49:c0:80:d4:53:cd:49:74:0a:8b:47:33:41:a1:07:43: 19:6b:1e:1a:95:e9:99:e3:4d:b1:4a:c6:b4:c7:ec:e0:93:d3: 6a:7d:e4:e9:15:c1:fd:35:cb:3e:52:ee:9f:2a:23:cc:88:92: 78:64:f4:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS3fa+G1RDNFLx8bQ2T9TgGWPjYIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAxMDAwMDAwWhcNMjQwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2FjOWRjMTVlNTdmNmQ0YmUwZmJiNWE5ZGYwZjFlYzQ0 NzdhMmExOTVhNjZlODY5MTcxY2VhN2MzZWI4ZTc4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDy3vcrz9pwAJfje2FhzwtNRSydpm+JFHUuBLtsoWd7YGO2 jw+3yxhbrbcmXdZjRlaOq7yKJGKTOnTGIqA4z8ouhdBVylvKZULkeuxs0uuemHUN S4Jx7f7FS9mfcpZ9An2lVDTFpCupd72sVl6SKAp7Rg+Az2y1ipJTc8EDBlJpt6sM I50dhoRn7iFKR6WC5AyZCdEoxoikbrd6POG9xJNiXtnMo1Mqd48gDUGhjC1iDt24 rJo7pa6rX4IU1+x9oVf5FiT6kyEx3bGgjyG1YA/9F7RN+g7HM2EbcMsImbO90fa/ GauNKkV8iR3DHWhllshjxqzumVOwP2f+8SpDZ4yJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUz4N+kJ1CPgBI3GsmxHKGIgnvgmcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAyNWJjYTA5LTg2YjctNDhiZC1hNTg2LWE0NGNlNzQ0MjM0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMP3KgwDQYJKoZIhvcNAQELBQADggEBAINQuYT+pZQIGpKu8hE6OgfHcsRy PTl1TvokKuJ2Uz6ZwmVQJVBaKUF9k0t2X+haBpi5WMmt2ADIaF9yxv9sf4Viav7n dBwONwrMA9jPLrYILOW71/XPHX558jHtiYi3ZG35dIykVEhdM1ImKiuhv5FDYD7L A9cJZ1m9B8Gs5qIC5OewoihaFWPiswj0Ji/4pSZvRiH82prYzk+1ubEvtvxvQAiT sOJ//iFxk8qAFcyfWF9i5IEwHKSx+RmkO5r+1XeXUHsWvwctScCA1FPNSXQKi0cz QaEHQxlrHhqV6ZnjTbFKxrTH7OCT02p95OkVwf01yz5S7p8qI8yIknhk9Fk= -----END CERTIFICATE-----Generated at Thu Apr 18 16:10:44 2024 by rpki-client on console-fra.rpki-client.org