$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1350873f-1059-47ea-b640-795243f68df1.roa File: 1350873f-1059-47ea-b640-795243f68df1.roa (raw, json) Hash identifier: krdyEAsHMgmfLbKp+ZMIRID52Js7b9aqZ+wXpiAcO5s= Subject key identifier: 4C:63:64:98:88:AE:89:E6:FC:29:A4:F5:3F:AF:45:CC:72:ED:BD:67 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 488C4A8E43A590D1B1507A164742B6567C4198FD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1350873f-1059-47ea-b640-795243f68df1.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 18.88.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:8c:4a:8e:43:a5:90:d1:b1:50:7a:16:47:42:b6:56:7c:41:98:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=64368d8d055971c52d04b4b5a3a07813e49e9d65a5220f4226eaadf82a171e91, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:be:be:af:2d:f8:89:c8:f8:cc:bf:66:e4:91: 6d:d7:cd:78:c4:f3:dc:18:25:35:bc:50:3e:e3:16: 1f:6c:37:b1:a3:d1:81:0b:d1:f0:d5:29:a7:eb:e4: 9f:66:a7:59:62:2e:10:7a:b4:da:e5:ef:a9:87:83: 82:0f:62:ed:7f:ed:cd:ac:00:18:15:de:8a:c9:11: fa:cc:f3:05:98:c1:5e:5b:4c:8b:99:4d:15:66:72: 5e:9b:ca:a3:3c:9f:88:5b:b1:56:3e:b8:6d:6b:f7: 79:b2:53:2f:d0:5f:df:f9:0d:81:f6:11:f2:3f:cd: 86:ce:42:bd:8f:82:55:8c:ca:ff:dc:53:7d:b7:2b: 34:69:5e:8b:07:19:fa:b5:49:5b:d0:39:b8:4a:f8: 24:8f:00:89:e3:83:b6:df:25:60:fb:45:53:d6:57: 7d:b9:1e:5c:2e:75:fa:55:1c:63:d0:9c:74:73:3d: f8:01:41:8a:61:c8:4c:69:8a:bb:28:ed:a4:19:8b: 88:ff:d3:78:3e:a7:9b:87:5a:8f:6a:d9:fd:0e:e3: 92:2b:9c:1e:dc:8e:e7:a1:13:b9:4a:80:c9:b8:30: 38:30:4d:6d:ab:31:64:63:34:78:69:c3:d1:07:65: f5:5b:f3:5e:c9:ad:1f:7b:82:09:44:1d:7b:a1:96: 22:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:63:64:98:88:AE:89:E6:FC:29:A4:F5:3F:AF:45:CC:72:ED:BD:67 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1350873f-1059-47ea-b640-795243f68df1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.88.0.0/15 Signature Algorithm: sha256WithRSAEncryption 24:7d:a0:5d:f8:14:3d:6f:38:ee:e8:3f:fb:46:a1:0b:f0:f2: 30:81:62:b6:b8:c6:bb:19:63:fd:8a:9b:be:66:62:d1:dc:5d: 54:d8:8b:87:44:18:0c:b7:61:b7:e8:72:49:f0:45:3d:40:a3: 1d:6f:63:a3:0a:50:0c:73:fe:7e:a7:bf:04:c6:82:46:0b:33: 0b:bf:35:26:85:33:0c:49:2c:82:8e:a4:45:26:c5:b8:9f:8c: 7f:c7:09:30:d3:5f:0c:8f:f7:7d:6c:6d:82:f3:6a:cc:5c:30: 1d:c0:0f:77:2c:e9:92:71:70:1e:18:62:d9:d7:76:04:37:b3: 1c:29:28:98:85:63:ad:0e:a5:1c:35:52:5e:62:d0:01:0d:b8: 32:3a:5d:d8:d9:ae:0f:3b:98:61:89:db:e4:f3:d0:cc:32:07: 32:27:36:e6:f8:a7:3c:aa:13:b2:cc:db:25:81:91:90:25:de: 88:92:cd:da:35:eb:8a:b3:48:60:64:3e:c1:ea:1c:b7:8e:32: a5:5c:17:e5:36:d5:1d:32:01:ba:e5:03:02:49:d9:e3:db:18: f8:94:d3:a2:02:d1:ba:ab:7a:3b:f8:7c:3d:b6:7e:78:9d:ea: 3c:7f:3b:e5:90:97:14:2b:8f:96:1f:99:62:4d:d1:0b:8a:c4: 0f:87:e7:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSIxKjkOlkNGxUHoWR0K2VnxBmP0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDM2OGQ4ZDA1NTk3MWM1MmQwNGI0YjVhM2EwNzgxM2U0 OWU5ZDY1YTUyMjBmNDIyNmVhYWRmODJhMTcxZTkxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChvr6vLfiJyPjMv2bkkW3XzXjE89wYJTW8UD7jFh9sN7Gj 0YEL0fDVKafr5J9mp1liLhB6tNrl76mHg4IPYu1/7c2sABgV3orJEfrM8wWYwV5b TIuZTRVmcl6byqM8n4hbsVY+uG1r93myUy/QX9/5DYH2EfI/zYbOQr2PglWMyv/c U323KzRpXosHGfq1SVvQObhK+CSPAInjg7bfJWD7RVPWV325HlwudfpVHGPQnHRz PfgBQYphyExpirso7aQZi4j/03g+p5uHWo9q2f0O45IrnB7cjuehE7lKgMm4MDgw TW2rMWRjNHhpw9EHZfVb817JrR97gglEHXuhliJvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTGNkmIiuieb8KaT1P69FzHLtvWcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzEzNTA4NzNmLTEwNTktNDdlYS1iNjQwLTc5NTI0M2Y2OGRmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwESWDANBgkqhkiG9w0BAQsFAAOCAQEAJH2gXfgUPW847ug/+0ahC/DyMIFi trjGuxlj/YqbvmZi0dxdVNiLh0QYDLdht+hySfBFPUCjHW9jowpQDHP+fqe/BMaC RgszC781JoUzDEksgo6kRSbFuJ+Mf8cJMNNfDI/3fWxtgvNqzFwwHcAPdyzpknFw Hhhi2dd2BDezHCkomIVjrQ6lHDVSXmLQAQ24Mjpd2NmuDzuYYYnb5PPQzDIHMic2 5vinPKoTsszbJYGRkCXeiJLN2jXrirNIYGQ+weoct44ypVwX5TbVHTIBuuUDAknZ 49sY+JTTogLRuqt6O/h8PbZ+eJ3qPH875ZCXFCuPlh+ZYk3RC4rED4fnQQ== -----END CERTIFICATE-----Generated at Wed Apr 24 16:35:34 2024 by rpki-client on console-fra.rpki-client.org