$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e4a270a-8468-429b-9756-be2ffa392b61.roa File: 1e4a270a-8468-429b-9756-be2ffa392b61.roa (raw, json) Hash identifier: 53gIUJUrfDRzpJamgfIr9+VGzUHye5YvHmyNEsrNA+k= Subject key identifier: 91:FC:70:9B:B4:26:76:76:49:47:71:D4:58:4C:31:67:F7:30:48:F8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 08FA361603479727B18B87A428192918FAD0AEE2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e4a270a-8468-429b-9756-be2ffa392b61.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.119.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 28 Jul 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:fa:36:16:03:47:97:27:b1:8b:87:a4:28:19:29:18:fa:d0:ae:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=fe0c83018cefd32e30c1fe37d920dab4db55568d69944662f775ae80ebef957a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:14:41:90:af:47:d3:a4:4e:0a:e6:9f:90:ba: dd:71:21:2b:8b:10:0c:7d:73:ab:e0:41:dc:a6:9b: 46:7d:ce:43:1b:f7:47:9d:1a:2d:a3:bc:e2:4b:14: 67:50:eb:80:f5:da:00:07:e1:c6:b0:39:91:c2:59: 98:2a:b6:03:0a:57:23:10:2a:81:47:ac:ed:2c:09: 55:a9:a4:d2:87:53:2b:82:51:9f:84:34:86:58:87: 90:3a:56:49:91:22:02:1c:26:68:25:f9:76:4b:fb: 8b:70:11:24:eb:16:c6:b5:54:af:8e:76:88:9a:d1: c2:15:0a:e9:17:57:36:85:1d:2d:d9:c7:f8:09:82: fe:6e:34:42:85:76:ba:dc:08:4c:a6:22:b2:5b:7f: 31:ea:af:d8:5a:80:4e:45:e1:f6:62:e1:c9:64:e1: 3d:44:d5:fb:fc:84:03:fa:c1:91:74:6d:7f:ff:dd: 7f:5c:ee:3a:4f:76:e8:b6:08:a9:43:40:e8:61:73: 8f:e8:5c:23:50:e8:6b:26:e2:ce:82:5b:5e:b8:43: 34:84:01:64:2d:eb:ca:3c:fd:60:21:eb:4d:a4:05: df:33:5c:54:34:bf:59:c9:a4:64:5b:33:79:ac:24: bf:fc:32:3c:45:f2:e3:13:2e:86:f3:8d:60:c0:4c: f0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FC:70:9B:B4:26:76:76:49:47:71:D4:58:4C:31:67:F7:30:48:F8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e4a270a-8468-429b-9756-be2ffa392b61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.119.214.0/23 Signature Algorithm: sha256WithRSAEncryption 93:2b:44:8a:21:98:cc:e7:ce:37:5d:dc:d3:79:24:d9:3b:2c: 63:b7:ac:81:fd:43:84:69:6e:a6:3e:1d:27:1c:80:61:d8:2d: 99:83:2a:9f:3a:0e:33:73:79:39:15:95:f3:68:4c:0e:cb:2a: 91:09:9c:a2:4b:93:ab:4a:79:50:43:07:1b:a8:96:ac:33:bf: 37:bd:fc:3f:81:14:10:ed:cc:3c:4e:57:60:1b:da:8b:dc:b6: ff:40:24:c0:89:59:ad:61:3e:c6:82:31:31:34:b6:16:dd:04: f0:53:7d:0a:57:94:63:32:fa:fe:3b:2b:dd:81:1b:d5:14:f1: 5e:82:92:34:5c:ec:9b:b4:13:69:78:b9:57:fe:63:7f:06:3e: f1:a1:7c:8f:2d:e8:53:95:bf:b4:d3:24:19:19:22:d1:b6:91: 2a:10:d9:08:d9:ae:f5:8c:3e:14:09:51:3b:ae:46:76:1f:48: f2:35:c5:c9:06:67:18:9f:a5:90:2f:38:ff:a2:cc:6c:2a:c5: 20:94:bc:c1:a5:d4:8e:ee:37:e1:71:69:0f:1c:2a:fc:02:61: 51:16:83:ca:c3:77:93:0c:13:19:34:58:12:c6:04:b0:2c:86: 21:5d:80:94:43:fa:dd:96:17:e3:28:23:e9:c7:59:3a:88:18: db:11:7b:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCPo2FgNHlyexi4ekKBkpGPrQruIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNzE2MDAwMDAwWhcNMjQwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTBjODMwMThjZWZkMzJlMzBjMWZlMzdkOTIwZGFiNGRi NTU1NjhkNjk5NDQ2NjJmNzc1YWU4MGViZWY5NTdhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmFEGQr0fTpE4K5p+Qut1xISuLEAx9c6vgQdymm0Z9zkMb 90edGi2jvOJLFGdQ64D12gAH4cawOZHCWZgqtgMKVyMQKoFHrO0sCVWppNKHUyuC UZ+ENIZYh5A6VkmRIgIcJmgl+XZL+4twESTrFsa1VK+Odoia0cIVCukXVzaFHS3Z x/gJgv5uNEKFdrrcCEymIrJbfzHqr9hagE5F4fZi4clk4T1E1fv8hAP6wZF0bX// 3X9c7jpPdui2CKlDQOhhc4/oXCNQ6Gsm4s6CW164QzSEAWQt68o8/WAh602kBd8z XFQ0v1nJpGRbM3msJL/8MjxF8uMTLobzjWDATPCbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkfxwm7QmdnZJR3HUWEwxZ/cwSPgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFlNGEyNzBhLTg0NjgtNDI5Yi05NzU2LWJlMmZmYTM5MmI2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE0d9YwDQYJKoZIhvcNAQELBQADggEBAJMrRIohmMznzjdd3NN5JNk7LGO3 rIH9Q4RpbqY+HSccgGHYLZmDKp86DjNzeTkVlfNoTA7LKpEJnKJLk6tKeVBDBxuo lqwzvze9/D+BFBDtzDxOV2Ab2ovctv9AJMCJWa1hPsaCMTE0thbdBPBTfQpXlGMy +v47K92BG9UU8V6CkjRc7Ju0E2l4uVf+Y38GPvGhfI8t6FOVv7TTJBkZItG2kSoQ 2QjZrvWMPhQJUTuuRnYfSPI1xckGZxifpZAvOP+izGwqxSCUvMGl1I7uN+FxaQ8c KvwCYVEWg8rDd5MMExk0WBLGBLAshiFdgJRD+t2WF+MoI+nHWTqIGNsRe0Q= -----END CERTIFICATE-----Generated at Sat Jul 27 01:00:10 2024 by rpki-client on console-ams.rpki-client.org