$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/04492bfd-bde7-43eb-bdfd-c17ceaec9018.roa File: 04492bfd-bde7-43eb-bdfd-c17ceaec9018.roa (raw, json) Hash identifier: 3Kb9LtcGBRg2bPZMxz1XjK8iqqLOr3yLkxEZtTDlrSg= Subject key identifier: 59:B0:C9:49:8D:29:12:50:7D:8D:9F:79:86:71:4D:04:6A:49:19:9E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 31BA271194C9833A1D7BEA285D9BEE413369140C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/04492bfd-bde7-43eb-bdfd-c17ceaec9018.roa Signing time: Wed 13 Sep 2023 00:00:00 +0000 ROA not before: Wed 13 Sep 2023 00:00:00 +0000 ROA not after: Wed 18 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 54.252.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 Sep 2023 12:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ba:27:11:94:c9:83:3a:1d:7b:ea:28:5d:9b:ee:41:33:69:14:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 13 00:00:00 2023 GMT Not After : Oct 18 23:59:59 2023 GMT Subject: serialNumber=fdb8a531b667178e6b034cfd86537d80a6e60ce42c981e41161390407a41bc1d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:d9:6f:69:0b:8f:3f:6f:cd:79:a3:08:71:2a: 06:80:13:b0:55:2d:10:42:50:70:c9:2d:62:f1:79: 5f:db:77:ad:05:e0:7e:1c:a1:80:cc:3b:00:f0:fd: c5:b4:46:0b:21:b8:ba:da:96:66:8f:89:7b:c4:89: ee:dd:64:b1:71:42:fd:01:6a:2c:d8:7c:07:82:58: ed:0b:a6:3c:28:13:ac:7b:f5:07:49:cd:91:02:83: 2d:f6:2a:0b:b7:ee:05:fc:05:9e:d9:91:8d:21:2a: 22:b4:4c:19:d3:4d:01:48:4f:e5:ea:41:75:0c:28: 18:57:59:6c:80:73:fa:d7:48:9a:03:25:fc:c0:21: 1e:73:5a:48:06:f3:0d:27:2d:9c:03:c2:ee:03:6e: 90:0e:d1:63:35:39:c0:d7:d9:36:8d:50:a6:67:a8: db:fc:49:54:a2:99:ad:01:14:94:7f:98:f2:63:25: 66:f8:f9:4a:69:f7:16:ca:51:5d:1e:86:34:32:29: dc:c6:37:30:4a:85:1e:5e:9e:71:59:4c:df:5f:34: 13:29:4e:c0:98:75:a8:df:85:9f:37:56:7a:0e:6d: ec:47:62:7c:8d:fa:66:08:69:76:6c:7b:e9:e5:c0: 67:03:8e:66:73:94:b2:c5:11:ad:c6:dd:49:3f:c2: 0f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B0:C9:49:8D:29:12:50:7D:8D:9F:79:86:71:4D:04:6A:49:19:9E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/04492bfd-bde7-43eb-bdfd-c17ceaec9018.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.252.0.0/16 Signature Algorithm: sha256WithRSAEncryption 76:72:9a:a1:b9:70:5a:70:ef:3f:e0:ef:f8:43:3c:bb:0c:57: d9:21:c0:44:a9:fb:5f:10:06:04:c3:d1:6b:e8:82:62:80:de: f9:3a:6d:55:f0:d5:af:a3:fd:3b:68:b9:8c:74:04:5e:01:03: 55:12:74:f9:1e:51:5a:9b:37:c2:f9:04:95:4a:a6:5d:05:a4: 01:25:65:21:04:37:cf:30:19:fb:6e:67:11:09:11:34:76:00: 6f:c6:32:46:80:ba:89:13:aa:7b:ac:e1:b5:61:7c:99:e4:70: 61:98:8d:f1:42:e1:a9:c7:af:66:7f:77:fc:01:72:b7:bf:21: 47:f6:39:f5:0c:e2:e5:94:67:ff:fd:9a:4f:0f:f4:e4:6e:dc: 30:c0:f1:4e:8c:4f:8c:7b:43:7d:3c:8f:1e:25:7a:bf:63:f3: 0c:64:93:25:33:e0:1d:8b:53:b6:57:e8:45:98:2e:63:29:9b: 78:18:b3:43:fa:5c:61:c7:01:a1:b3:dc:88:b7:0e:8f:67:8c: 84:09:bb:12:c9:53:92:f3:84:6c:40:60:25:c7:34:fa:1e:19: 24:7d:62:12:e1:24:da:01:b3:6e:6f:8d:81:67:4d:8c:84:45: 83:71:1c:89:bc:75:ff:55:c1:fa:e1:3e:14:99:13:28:2a:06: ac:9d:3f:55 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMbonEZTJgzode+ooXZvuQTNpFAwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjMwOTEzMDAwMDAwWhcNMjMxMDE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZGI4YTUzMWI2NjcxNzhlNmIwMzRjZmQ4NjUzN2Q4MGE2 ZTYwY2U0MmM5ODFlNDExNjEzOTA0MDdhNDFiYzFkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCM2W9pC48/b815owhxKgaAE7BVLRBCUHDJLWLxeV/bd60F 4H4coYDMOwDw/cW0RgshuLralmaPiXvEie7dZLFxQv0BaizYfAeCWO0LpjwoE6x7 9QdJzZECgy32Kgu37gX8BZ7ZkY0hKiK0TBnTTQFIT+XqQXUMKBhXWWyAc/rXSJoD JfzAIR5zWkgG8w0nLZwDwu4DbpAO0WM1OcDX2TaNUKZnqNv8SVSima0BFJR/mPJj JWb4+Upp9xbKUV0ehjQyKdzGNzBKhR5ennFZTN9fNBMpTsCYdajfhZ83VnoObexH YnyN+mYIaXZse+nlwGcDjmZzlLLFEa3G3Uk/wg+FAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWbDJSY0pElB9jZ95hnFNBGpJGZ4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA0NDkyYmZkLWJkZTctNDNlYi1iZGZkLWMxN2NlYWVjOTAxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2/DANBgkqhkiG9w0BAQsFAAOCAQEAdnKaoblwWnDvP+Dv+EM8uwxX2SHA RKn7XxAGBMPRa+iCYoDe+TptVfDVr6P9O2i5jHQEXgEDVRJ0+R5RWps3wvkElUqm XQWkASVlIQQ3zzAZ+25nEQkRNHYAb8YyRoC6iROqe6zhtWF8meRwYZiN8ULhqcev Zn93/AFyt78hR/Y59Qzi5ZRn//2aTw/05G7cMMDxToxPjHtDfTyPHiV6v2PzDGST JTPgHYtTtlfoRZguYymbeBizQ/pcYccBobPciLcOj2eMhAm7EslTkvOEbEBgJcc0 +h4ZJH1iEuEk2gGzbm+NgWdNjIRFg3Ecibx1/1XB+uE+FJkTKCoGrJ0/VQ== -----END CERTIFICATE-----Generated at Wed Sep 13 00:41:23 2023 by rpki-client on console-fra.rpki-client.org