$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/12d30afd-7657-4d7b-996a-bf7a313920f5.roa File: 12d30afd-7657-4d7b-996a-bf7a313920f5.roa (raw, json) Hash identifier: keD6nvNaYnEmu5GkzCZrx5hrzpme/Gaw86eHgif1W5s= Subject key identifier: A0:34:2C:DC:BF:2B:B9:5F:4C:3A:FE:90:23:65:A0:B7:9E:29:BC:9A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4D99DBECD664548586C4EBFFABF12770F856021C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/12d30afd-7657-4d7b-996a-bf7a313920f5.roa Signing time: Fri 19 Jul 2024 00:00:00 +0000 ROA not before: Fri 19 Jul 2024 00:00:00 +0000 ROA not after: Fri 23 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.239.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 28 Jul 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:99:db:ec:d6:64:54:85:86:c4:eb:ff:ab:f1:27:70:f8:56:02:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 19 00:00:00 2024 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: serialNumber=1fe4fd3094d8199b4cb3205198e8bc1d2395d90bbdc417ba206d110b949b1042, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a1:c1:03:91:a2:14:bd:2f:94:37:73:ae:26: 63:16:b4:36:65:ce:8e:84:35:be:bf:7f:54:23:f5: 88:eb:ee:84:fd:e3:a1:71:52:79:83:97:60:b2:82: 92:fb:8e:40:48:8e:4b:a2:e1:e2:d2:f5:40:40:c3: ea:e8:b3:4c:8c:64:e3:5c:6f:f4:d8:2e:c5:38:f9: 50:c3:3e:1b:b6:6e:ed:90:8e:f1:ff:cd:5b:e7:7b: f3:11:3c:f3:d9:cb:98:d5:74:8f:c8:06:72:89:90: 6e:17:be:a7:71:d2:69:4c:4e:65:19:0b:b3:e9:d6: 79:1e:61:1d:ad:c9:87:70:2b:f4:df:cf:9d:4f:9f: b6:81:5c:6a:90:b6:3a:b3:77:89:64:c9:56:e1:f4: 8f:fb:e7:be:50:c8:c9:df:dd:bf:c2:9e:4e:f5:8f: e0:87:83:06:5c:50:62:36:20:06:cb:17:b1:d2:e7: 9e:35:54:84:a0:24:88:85:12:72:e7:27:9e:62:10: 15:2d:3a:3c:e1:fc:99:65:7f:5e:5c:06:07:c9:67: 1d:ea:2c:1d:58:3a:de:c5:bc:92:86:39:e8:05:d9: f9:18:61:18:07:91:a3:6d:99:f2:bf:e9:fb:31:e5: 84:f1:b1:cb:58:47:29:c7:e4:8a:b5:26:6b:f7:41: 1d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:34:2C:DC:BF:2B:B9:5F:4C:3A:FE:90:23:65:A0:B7:9E:29:BC:9A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/12d30afd-7657-4d7b-996a-bf7a313920f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.239.64.0/21 Signature Algorithm: sha256WithRSAEncryption 89:f2:18:3a:11:e4:37:97:ca:6a:bc:26:ff:64:bb:ed:de:16: 42:f9:0d:3e:31:62:ce:9c:94:74:d0:b9:70:32:11:c3:12:e1: 94:80:ba:4d:ae:02:09:8e:33:1d:b1:81:66:25:f4:a3:5a:1a: 43:18:a8:27:7a:e4:2f:65:94:35:43:5c:2b:67:9f:af:74:90: 6f:95:eb:30:86:31:95:7f:be:8f:66:08:1e:13:fe:3c:20:29: ce:8f:d8:0d:59:39:8f:19:a4:ac:26:34:06:e1:6b:69:9d:33: 7f:43:29:10:98:4e:1f:14:ca:52:84:bc:b8:43:ee:09:cd:ad: c5:14:6c:ec:df:dd:80:b6:c4:64:bc:57:77:86:5b:e0:e7:fe: 77:7c:63:04:d4:5b:65:5d:70:8c:bd:e9:a3:7e:37:ee:65:08: 70:50:37:7f:26:04:4c:bc:29:17:79:89:84:2c:53:45:4b:70: 7b:11:34:1c:33:ea:c9:fb:af:32:ff:63:65:f9:46:99:51:f9: 37:a7:a9:65:ba:3d:c6:97:40:f5:5b:09:ba:b6:46:a0:3a:9a: a0:c8:78:14:18:8c:35:8f:bf:e7:ce:de:a2:cd:24:f3:73:0b: 86:12:01:f9:30:98:ef:bb:b6:65:e9:85:b6:39:b5:99:44:d6: ae:e4:9e:25 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTZnb7NZkVIWGxOv/q/EncPhWAhwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNzE5MDAwMDAwWhcNMjQwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZmU0ZmQzMDk0ZDgxOTliNGNiMzIwNTE5OGU4YmMxZDIz OTVkOTBiYmRjNDE3YmEyMDZkMTEwYjk0OWIxMDQyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjocEDkaIUvS+UN3OuJmMWtDZlzo6ENb6/f1Qj9Yjr7oT9 46FxUnmDl2CygpL7jkBIjkui4eLS9UBAw+ros0yMZONcb/TYLsU4+VDDPhu2bu2Q jvH/zVvne/MRPPPZy5jVdI/IBnKJkG4Xvqdx0mlMTmUZC7Pp1nkeYR2tyYdwK/Tf z51Pn7aBXGqQtjqzd4lkyVbh9I/7575QyMnf3b/Cnk71j+CHgwZcUGI2IAbLF7HS 5541VISgJIiFEnLnJ55iEBUtOjzh/Jllf15cBgfJZx3qLB1YOt7FvJKGOegF2fkY YRgHkaNtmfK/6fsx5YTxsctYRynH5Iq1Jmv3QR3dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoDQs3L8ruV9MOv6QI2Wgt54pvJowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzEyZDMwYWZkLTc2NTctNGQ3Yi05OTZhLWJmN2EzMTM5MjBmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM270AwDQYJKoZIhvcNAQELBQADggEBAInyGDoR5DeXymq8Jv9ku+3eFkL5 DT4xYs6clHTQuXAyEcMS4ZSAuk2uAgmOMx2xgWYl9KNaGkMYqCd65C9llDVDXCtn n690kG+V6zCGMZV/vo9mCB4T/jwgKc6P2A1ZOY8ZpKwmNAbha2mdM39DKRCYTh8U ylKEvLhD7gnNrcUUbOzf3YC2xGS8V3eGW+Dn/nd8YwTUW2VdcIy96aN+N+5lCHBQ N38mBEy8KRd5iYQsU0VLcHsRNBwz6sn7rzL/Y2X5RplR+TenqWW6PcaXQPVbCbq2 RqA6mqDIeBQYjDWPv+fO3qLNJPNzC4YSAfkwmO+7tmXphbY5tZlE1q7kniU= -----END CERTIFICATE-----Generated at Fri Jul 26 00:47:19 2024 by rpki-client on console-fra.rpki-client.org