$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa File: 20dfdb8e-82f9-432c-9d09-08b35b26e968.roa (raw, json) Hash identifier: x5ky5rJ4ytYThdbpTKO7AwXFEBSKsF2Rclx2KBBWfO4= Subject key identifier: 43:8B:80:77:5B:0C:04:33:92:A8:0F:D3:B7:11:F0:C6:51:9F:DC:BE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 08AACCE6B3217B350C13F50A8AFC32FB11CAF590 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:aa:cc:e6:b3:21:7b:35:0c:13:f5:0a:8a:fc:32:fb:11:ca:f5:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=799c87f6e0a6a04c636456ac96a1572b277bd51c8fea0dc870deaae5e38e06b4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e7:b2:b2:6e:e3:fa:66:3a:46:6a:e7:59:95: 4c:01:7b:37:3d:4d:fe:81:7c:d3:71:e9:e4:22:ec: 33:24:33:32:e1:8b:c4:9f:3b:9f:82:cf:80:fd:89: 61:07:df:b2:67:51:fc:40:05:28:e9:40:01:72:5c: 04:35:4e:59:25:be:aa:5d:16:0d:71:9a:cc:7b:2a: 75:b0:73:08:2f:0b:f2:75:ef:ec:cf:bc:1b:75:48: d2:e3:bc:87:02:2e:b3:21:b5:7c:67:57:5e:9b:bc: c3:d8:6c:c2:a6:fa:94:d9:62:15:2e:20:a7:9a:c9: 4d:e0:3a:50:cb:b3:d7:1f:c7:02:5d:cc:ef:c7:4e: 65:be:a5:35:62:c2:63:ed:df:ee:1f:15:3a:04:17: f7:0a:29:5b:95:e8:f5:c5:3e:23:90:e5:91:ce:37: e9:4f:89:14:0e:6c:26:25:17:cc:51:b1:fd:51:3d: ba:42:5d:cc:71:34:40:96:69:fb:ee:69:9c:cc:b9: 25:dc:08:68:02:a4:86:c6:a7:71:04:2d:36:76:00: c6:bc:d5:b3:01:40:64:3d:c5:79:f0:73:e6:93:78: e9:0c:bb:8f:2b:c3:32:3b:72:cb:a7:25:55:c4:12: 65:53:2b:f0:01:06:b5:60:cc:09:90:d6:ef:bf:82: 2e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:8B:80:77:5B:0C:04:33:92:A8:0F:D3:B7:11:F0:C6:51:9F:DC:BE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.46.0/24 Signature Algorithm: sha256WithRSAEncryption 88:c8:76:21:03:ec:33:6b:28:ad:f7:a0:73:e3:92:54:3a:d5: 7e:17:a7:1c:33:e0:f4:cd:73:88:a2:29:56:38:c2:b2:30:e6: 8d:ad:db:35:d0:78:2e:99:dd:f4:5a:c7:04:03:ed:4b:8c:a0: d0:23:3f:c3:7a:ba:f1:40:1e:08:69:1a:a4:ae:bf:2e:71:42: b9:ee:f5:0a:b2:a4:81:b9:b5:2e:ff:94:72:bb:d1:f1:3b:29: a2:99:8e:8e:99:f2:2c:d6:f5:dc:b5:01:4c:7c:53:1a:38:c5: 27:24:b7:32:4a:a0:be:94:4f:eb:67:f5:db:3a:ac:03:81:01: be:d1:27:a7:14:65:0c:93:8e:8a:99:89:bb:ca:a8:fc:0a:7d: 31:5a:55:15:c4:be:be:26:00:eb:5a:49:95:09:c7:be:ab:9e: ed:20:2c:da:01:96:30:c5:4f:04:fa:9b:04:12:59:c2:ef:83: ab:a8:94:18:0b:58:ad:ea:b4:12:0d:6c:ae:5b:a6:c5:e3:17: 87:4f:e1:99:f2:4c:5c:8b:50:ff:de:ca:43:c9:fe:61:9c:c7: 9c:66:f3:94:c7:7e:e4:2a:54:63:7b:7d:65:8a:3a:18:20:59: a1:88:c1:1e:c3:ce:38:0e:64:ca:fd:1a:52:a9:cb:4f:61:90: 8e:52:df:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCKrM5rMhezUME/UKivwy+xHK9ZAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTljODdmNmUwYTZhMDRjNjM2NDU2YWM5NmExNTcyYjI3 N2JkNTFjOGZlYTBkYzg3MGRlYWFlNWUzOGUwNmI0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCY57KybuP6ZjpGaudZlUwBezc9Tf6BfNNx6eQi7DMkMzLh i8SfO5+Cz4D9iWEH37JnUfxABSjpQAFyXAQ1TlklvqpdFg1xmsx7KnWwcwgvC/J1 7+zPvBt1SNLjvIcCLrMhtXxnV16bvMPYbMKm+pTZYhUuIKeayU3gOlDLs9cfxwJd zO/HTmW+pTViwmPt3+4fFToEF/cKKVuV6PXFPiOQ5ZHON+lPiRQObCYlF8xRsf1R PbpCXcxxNECWafvuaZzMuSXcCGgCpIbGp3EELTZ2AMa81bMBQGQ9xXnwc+aTeOkM u48rwzI7csunJVXEEmVTK/ABBrVgzAmQ1u+/gi41AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQ4uAd1sMBDOSqA/TtxHwxlGf3L4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIwZGZkYjhlLTgyZjktNDMyYy05ZDA5LTA4YjM1YjI2ZTk2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0Xy4wDQYJKoZIhvcNAQELBQADggEBAIjIdiED7DNrKK33oHPjklQ61X4X pxwz4PTNc4iiKVY4wrIw5o2t2zXQeC6Z3fRaxwQD7UuMoNAjP8N6uvFAHghpGqSu vy5xQrnu9QqypIG5tS7/lHK70fE7KaKZjo6Z8izW9dy1AUx8Uxo4xScktzJKoL6U T+tn9ds6rAOBAb7RJ6cUZQyTjoqZibvKqPwKfTFaVRXEvr4mAOtaSZUJx76rnu0g LNoBljDFTwT6mwQSWcLvg6uolBgLWK3qtBINbK5bpsXjF4dP4ZnyTFyLUP/eykPJ /mGcx5xm85THfuQqVGN7fWWKOhggWaGIwR7DzjgOZMr9GlKpy09hkI5S39k= -----END CERTIFICATE-----Generated at Thu Apr 25 22:33:13 2024 by rpki-client on console-fra.rpki-client.org