$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa File: 20dfdb8e-82f9-432c-9d09-08b35b26e968.roa (raw, json) Hash identifier: 34LkW8qJw1rjFiQHKpTvwDUWP4OKY1RXdwhzc3UH4jw= Subject key identifier: 7F:A7:46:7C:87:9E:CE:B0:54:59:D0:A7:00:5B:6D:E1:7A:AB:1F:12 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 50B8C3BBDC68889EDF4EF1BD9BCDD269024515A9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa Signing time: Tue 16 Jul 2024 00:00:00 +0000 ROA not before: Tue 16 Jul 2024 00:00:00 +0000 ROA not after: Tue 20 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 28 Jul 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:b8:c3:bb:dc:68:88:9e:df:4e:f1:bd:9b:cd:d2:69:02:45:15:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 16 00:00:00 2024 GMT Not After : Aug 20 23:59:59 2024 GMT Subject: serialNumber=6caaefce3359486c72be6cbb2c63b2d841f8a9f5df0188eb1ea1966d0d73e286, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9e:ab:f6:a4:af:1f:e7:22:cc:62:93:79:f4: a1:04:dd:8a:67:69:88:22:81:15:14:0f:8f:6a:65: 46:8d:77:f2:7e:24:7c:14:91:2f:d5:a0:84:a4:d6: 59:fa:dd:b7:c8:27:2b:48:8d:ad:5b:bf:29:7e:df: 96:a7:b6:27:91:46:fe:0e:f1:1b:f2:86:f2:1e:1c: 1e:9b:77:3f:c9:c5:e0:74:5c:e9:43:14:fc:aa:dc: 48:23:a1:f1:ce:44:3f:c0:17:45:52:cb:70:a1:26: 30:08:f2:35:81:fe:29:c2:28:b2:40:6a:6a:70:af: ca:fb:2d:72:61:2f:39:6b:4e:f9:73:78:59:ed:e9: 2d:4a:16:eb:ce:fe:b0:9d:3d:d3:b3:98:08:dc:86: 65:ef:b1:2b:af:13:d8:4d:eb:36:66:c7:80:dd:ab: 4a:df:c1:4f:9a:8b:62:96:1f:82:54:0f:87:f5:3b: 8b:fc:e1:92:13:f3:e8:67:b6:79:7d:e6:8b:d8:f1: df:97:68:0c:57:3c:9c:92:40:d6:92:a2:4a:fb:70: ce:d0:64:11:15:87:f7:f8:43:e9:a3:a6:96:d5:e7: 8d:f1:90:b8:2e:8e:d7:dc:e5:9c:d8:86:d0:d8:9b: c1:a5:8a:8c:93:80:8e:d1:4e:d3:dc:b5:50:93:16: a0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A7:46:7C:87:9E:CE:B0:54:59:D0:A7:00:5B:6D:E1:7A:AB:1F:12 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.46.0/24 Signature Algorithm: sha256WithRSAEncryption 79:d6:ff:ff:11:80:da:47:8a:ab:66:f4:1e:1d:d1:e3:9f:5b: 83:61:ae:d4:aa:1b:e9:da:4a:4a:87:f9:2e:00:2b:fb:1c:df: 04:11:4b:72:df:d5:1c:ff:1c:1d:27:26:fd:26:c1:a6:6c:9d: 12:2a:84:cc:5e:09:38:e5:7a:7e:13:d4:20:80:13:28:37:58: 3b:10:a8:2c:69:55:01:d8:d9:e0:d9:80:a2:79:7b:43:59:8c: 48:3c:a6:29:4e:d4:7f:b2:e2:96:a8:a7:6a:e3:25:5b:71:fa: ac:8e:03:d5:68:c1:3d:e1:34:0f:af:f7:ef:08:fc:ad:50:96: 15:b9:26:02:1f:21:f6:1f:c3:d4:f0:fd:02:ab:b5:45:c1:8f: 15:60:54:8a:95:4a:d1:eb:45:9b:8b:a3:9d:2e:29:85:f6:c1: f4:76:97:0d:84:03:1f:eb:21:04:d2:76:f0:89:55:a5:91:2a: c0:a0:10:27:9a:f1:69:a3:c3:85:42:54:1a:14:bf:3b:aa:0d: cb:9b:8a:d4:39:c9:a1:a2:03:22:62:0e:f9:6a:46:67:33:e1: 49:44:82:a9:e2:67:10:ec:12:a7:35:0b:58:a2:fa:96:20:ae: 1c:eb:71:fd:12:0b:e9:03:2e:36:b9:d2:c4:de:a0:d2:f2:d9: 70:45:46:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUULjDu9xoiJ7fTvG9m83SaQJFFakwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNzE2MDAwMDAwWhcNMjQwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2Y2FhZWZjZTMzNTk0ODZjNzJiZTZjYmIyYzYzYjJkODQx ZjhhOWY1ZGYwMTg4ZWIxZWExOTY2ZDBkNzNlMjg2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCanqv2pK8f5yLMYpN59KEE3YpnaYgigRUUD49qZUaNd/J+ JHwUkS/VoISk1ln63bfIJytIja1bvyl+35antieRRv4O8RvyhvIeHB6bdz/JxeB0 XOlDFPyq3EgjofHORD/AF0VSy3ChJjAI8jWB/inCKLJAampwr8r7LXJhLzlrTvlz eFnt6S1KFuvO/rCdPdOzmAjchmXvsSuvE9hN6zZmx4Ddq0rfwU+ai2KWH4JUD4f1 O4v84ZIT8+hntnl95ovY8d+XaAxXPJySQNaSokr7cM7QZBEVh/f4Q+mjppbV543x kLgujtfc5ZzYhtDYm8GlioyTgI7RTtPctVCTFqB/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf6dGfIeezrBUWdCnAFtt4XqrHxIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIwZGZkYjhlLTgyZjktNDMyYy05ZDA5LTA4YjM1YjI2ZTk2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0Xy4wDQYJKoZIhvcNAQELBQADggEBAHnW//8RgNpHiqtm9B4d0eOfW4Nh rtSqG+naSkqH+S4AK/sc3wQRS3Lf1Rz/HB0nJv0mwaZsnRIqhMxeCTjlen4T1CCA Eyg3WDsQqCxpVQHY2eDZgKJ5e0NZjEg8pilO1H+y4paop2rjJVtx+qyOA9VowT3h NA+v9+8I/K1QlhW5JgIfIfYfw9Tw/QKrtUXBjxVgVIqVStHrRZuLo50uKYX2wfR2 lw2EAx/rIQTSdvCJVaWRKsCgECea8Wmjw4VCVBoUvzuqDcubitQ5yaGiAyJiDvlq Rmcz4UlEgqniZxDsEqc1C1ii+pYgrhzrcf0SC+kDLja50sTeoNLy2XBFRss= -----END CERTIFICATE-----Generated at Fri Jul 26 00:25:25 2024 by rpki-client on console-ams.rpki-client.org