$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/025bca09-86b7-48bd-a586-a44ce744234f.roa File: 025bca09-86b7-48bd-a586-a44ce744234f.roa (raw, json) Hash identifier: tsVYWJ7u1VGL0yervph7Hq9RCfIGp+aV97sy5c+iCBI= Subject key identifier: 4C:8B:9C:3A:B9:3A:FA:A4:10:95:32:6D:1C:6F:76:7C:4A:DC:F9:D4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6AD603C654E3FD9CB3D421496CF419EE9E8CE4E8 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/025bca09-86b7-48bd-a586-a44ce744234f.roa Signing time: Sat 16 Nov 2024 00:00:00 +0000 ROA not before: Sat 16 Nov 2024 00:00:00 +0000 ROA not after: Sat 21 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:d6:03:c6:54:e3:fd:9c:b3:d4:21:49:6c:f4:19:ee:9e:8c:e4:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 16 00:00:00 2024 GMT Not After : Dec 21 23:59:59 2024 GMT Subject: serialNumber=7ecaf7467eea1aa53fd12bbd73886632c5d89c9a202440fabe65f5e8a23f6361, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:da:ce:ad:e0:01:f1:6e:fc:6e:f4:5b:fd:93: 01:e1:26:fb:70:90:39:c0:a3:f1:c6:0e:58:70:91: 50:38:16:61:e8:80:72:9c:fc:a8:4c:22:da:54:b1: 20:1b:22:49:62:84:b0:07:e1:e9:97:b9:05:12:85: a6:9c:5a:3a:11:f2:c9:00:65:d6:9b:58:a6:3a:09: db:57:bc:be:e5:67:4c:3c:6a:17:3d:56:01:65:dc: 49:1c:a4:28:2a:80:da:0a:d3:56:24:21:9a:72:24: bc:49:bf:f9:c7:5a:14:e3:16:4c:03:a9:ca:fe:2c: 02:28:c3:01:b6:a8:36:73:ef:a6:3c:f1:6c:5d:25: 67:8b:08:92:0b:06:be:91:4f:4d:b3:15:a4:cd:06: 2f:e6:59:69:10:80:ad:a0:cb:a6:97:ab:c4:ec:ba: 47:66:49:b2:b1:81:6f:e3:ec:4c:3f:5e:c9:a0:0a: 6f:e8:e7:47:5c:e0:19:da:40:78:94:a0:f0:df:86: 74:a9:21:97:90:74:de:05:ac:ca:ef:7e:12:b1:80: 62:23:44:ce:66:64:0b:5b:cc:9d:44:00:22:f6:73: 0e:f0:f4:2b:08:3c:8c:47:bc:a6:ed:dc:34:35:f3: 65:44:41:79:ac:0d:1f:e7:7e:e3:f0:12:c0:03:a9: 66:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:8B:9C:3A:B9:3A:FA:A4:10:95:32:6D:1C:6F:76:7C:4A:DC:F9:D4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/025bca09-86b7-48bd-a586-a44ce744234f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.168.0/21 Signature Algorithm: sha256WithRSAEncryption 76:d7:6b:a9:fa:05:69:0c:36:5d:52:17:a7:75:90:d8:e5:ff: 0d:67:a2:28:c8:6b:55:ef:33:d5:a0:db:5c:c7:8c:81:9f:c0: 3f:7a:45:91:17:f5:7f:f7:f1:1a:15:12:af:1d:54:b0:40:dc: 36:87:6e:31:89:62:ab:35:a2:02:e2:a8:da:4f:53:07:e4:13: fa:81:1c:6d:ca:e9:6b:c5:b8:c7:79:fb:ef:24:aa:61:00:24: c7:17:6d:24:2f:0e:fb:22:17:9f:8a:50:11:f7:dc:8a:cd:8d: e9:df:4a:c3:a7:06:b1:fd:c3:8c:84:d0:9c:75:ce:f4:01:41: bb:10:e8:3e:ed:65:0a:95:f0:80:dc:e5:4d:56:56:41:56:18: a5:82:8a:0c:ae:7c:84:30:85:50:c5:a3:7a:bc:75:d0:9e:58: 70:3c:9a:61:39:d7:69:7c:28:fe:d7:03:b4:b2:a4:2e:c2:e3: 13:b5:b6:f1:fa:c1:a5:10:e0:72:1c:48:d5:a9:45:ae:2d:34: 7b:92:66:70:a1:3d:2a:e7:fc:57:41:a2:cd:fc:40:29:05:63: e9:5c:3c:18:dd:0b:c1:47:9e:c6:83:65:af:95:c1:55:b7:ca: fb:39:b0:af:ce:2e:dc:c6:5d:ee:83:b7:0f:c1:d4:f3:27:a6: 5e:dd:03:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUatYDxlTj/Zyz1CFJbPQZ7p6M5OgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE2MDAwMDAwWhcNMjQxMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZWNhZjc0NjdlZWExYWE1M2ZkMTJiYmQ3Mzg4NjYzMmM1 ZDg5YzlhMjAyNDQwZmFiZTY1ZjVlOGEyM2Y2MzYxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDr2s6t4AHxbvxu9Fv9kwHhJvtwkDnAo/HGDlhwkVA4FmHo gHKc/KhMItpUsSAbIklihLAH4emXuQUShaacWjoR8skAZdabWKY6CdtXvL7lZ0w8 ahc9VgFl3EkcpCgqgNoK01YkIZpyJLxJv/nHWhTjFkwDqcr+LAIowwG2qDZz76Y8 8WxdJWeLCJILBr6RT02zFaTNBi/mWWkQgK2gy6aXq8TsukdmSbKxgW/j7Ew/Xsmg Cm/o50dc4BnaQHiUoPDfhnSpIZeQdN4FrMrvfhKxgGIjRM5mZAtbzJ1EACL2cw7w 9CsIPIxHvKbt3DQ182VEQXmsDR/nfuPwEsADqWYXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTIucOrk6+qQQlTJtHG92fErc+dQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAyNWJjYTA5LTg2YjctNDhiZC1hNTg2LWE0NGNlNzQ0MjM0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMP3KgwDQYJKoZIhvcNAQELBQADggEBAHbXa6n6BWkMNl1SF6d1kNjl/w1n oijIa1XvM9Wg21zHjIGfwD96RZEX9X/38RoVEq8dVLBA3DaHbjGJYqs1ogLiqNpP UwfkE/qBHG3K6WvFuMd5++8kqmEAJMcXbSQvDvsiF5+KUBH33IrNjenfSsOnBrH9 w4yE0Jx1zvQBQbsQ6D7tZQqV8IDc5U1WVkFWGKWCigyufIQwhVDFo3q8ddCeWHA8 mmE512l8KP7XA7SypC7C4xO1tvH6waUQ4HIcSNWpRa4tNHuSZnChPSrn/FdBos38 QCkFY+lcPBjdC8FHnsaDZa+VwVW3yvs5sK/OLtzGXe6Dtw/B1PMnpl7dA7U= -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:50 2024 by rpki-client on console-fra.rpki-client.org