$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/257d6905-409b-487b-9e1b-2baaee12123e.roa File: 257d6905-409b-487b-9e1b-2baaee12123e.roa (raw, json) Hash identifier: 3LhanYNnCIqBULHDVCLqYMd3Ild7TTCX/z/WjNXNjGE= Subject key identifier: C6:E4:E0:77:89:76:E9:1E:1B:DF:11:90:60:39:6E:D4:BD:7D:50:6C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4F8685B5FE9AE86462FBAA7DE78141DBCEF32C30 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/257d6905-409b-487b-9e1b-2baaee12123e.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.32.0.0/11 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:86:85:b5:fe:9a:e8:64:62:fb:aa:7d:e7:81:41:db:ce:f3:2c:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=8a0a8f289d43e97372aaba9373895803e66b515cf814a3ac07a89a786587fd30, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b6:5a:09:9c:68:c5:75:0c:3e:43:86:27:4d: 48:aa:0d:ab:3d:81:77:bb:72:81:46:60:22:63:06: 79:9d:fa:bf:2e:39:e3:49:13:3e:9b:ed:fb:56:b1: 42:e0:90:04:5b:68:16:ba:2c:66:3a:da:a8:20:dd: 8d:0e:a8:d3:a9:75:8b:d2:6b:3d:90:b4:28:7a:6b: 51:ab:cd:3a:3c:67:a6:75:1f:d1:56:56:41:81:a4: 6a:66:b9:76:5e:0b:83:83:8a:f4:17:34:69:37:28: 17:ca:2e:61:d9:7f:3c:f9:8f:2b:d2:f7:cc:5d:4b: 01:15:94:c9:62:14:ff:2b:70:63:b7:7d:c8:b8:55: 6f:3b:4a:eb:3e:3e:2c:9d:fa:84:39:eb:b3:0d:95: 91:3a:dc:f0:fc:c2:ab:ac:44:ce:97:7b:a9:20:2f: ea:8c:55:5a:20:25:ac:b0:b3:b3:52:ef:c2:a8:74: a3:2f:ba:eb:08:61:ae:5f:14:cd:b4:69:78:2a:0e: 42:3c:6f:b8:fb:48:9a:8a:6e:7f:c4:a6:6c:7e:38: bc:62:48:52:4b:87:bc:61:72:12:e9:61:c8:49:61: 7a:9d:64:df:f6:1b:cc:5e:0a:2c:9e:b0:cd:4e:5e: 4c:ef:41:00:b4:03:39:45:05:17:57:4b:23:56:ba: ac:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E4:E0:77:89:76:E9:1E:1B:DF:11:90:60:39:6E:D4:BD:7D:50:6C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/257d6905-409b-487b-9e1b-2baaee12123e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.32.0.0/11 Signature Algorithm: sha256WithRSAEncryption 6f:22:9a:38:6a:3d:b6:71:44:cd:c2:d0:42:37:3d:5d:2b:f1: 72:a0:46:32:40:cf:30:70:0e:30:cd:bd:28:bf:4e:fd:f7:91: cd:92:0f:4b:be:71:1b:30:40:0a:73:7d:82:74:ce:47:f7:bf: 23:ba:a5:d3:4d:03:9e:ab:14:7a:64:43:cc:69:31:05:dd:08: d9:d5:cc:19:90:a3:79:e3:71:ee:a4:8e:da:e2:13:89:7c:62: a7:db:b4:30:4a:ca:3c:d0:5a:16:16:fc:95:6f:1c:c8:4d:9b: 98:f8:85:44:2f:97:17:ac:e5:90:62:56:25:c9:74:63:ae:7a: 56:ad:9c:e6:4c:d7:5c:2f:63:4a:97:fb:fb:0f:0a:aa:bc:bd: 53:ba:db:43:76:02:1e:15:e1:55:2e:52:b4:8c:1c:6d:5b:92: 6e:9b:b5:9e:7c:81:fa:a9:55:ee:d4:52:fa:f4:34:b3:41:77: fb:75:c7:62:83:0c:90:f5:45:4e:65:f2:20:3b:03:15:2a:03: 80:65:a1:7c:de:c1:0e:62:58:eb:ca:85:59:42:ce:dc:12:03: 10:1e:04:4b:66:fe:55:5c:97:5f:c6:0b:ea:0d:ee:42:72:b2: dd:c6:75:0a:c7:78:c6:60:e0:e5:47:9b:4f:95:5c:51:01:17: 93:8d:4b:c1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT4aFtf6a6GRi+6p954FB287zLDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTBhOGYyODlkNDNlOTczNzJhYWJhOTM3Mzg5NTgwM2U2 NmI1MTVjZjgxNGEzYWMwN2E4OWE3ODY1ODdmZDMwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDotloJnGjFdQw+Q4YnTUiqDas9gXe7coFGYCJjBnmd+r8u OeNJEz6b7ftWsULgkARbaBa6LGY62qgg3Y0OqNOpdYvSaz2QtCh6a1GrzTo8Z6Z1 H9FWVkGBpGpmuXZeC4ODivQXNGk3KBfKLmHZfzz5jyvS98xdSwEVlMliFP8rcGO3 fci4VW87Sus+Piyd+oQ567MNlZE63PD8wqusRM6Xe6kgL+qMVVogJayws7NS78Ko dKMvuusIYa5fFM20aXgqDkI8b7j7SJqKbn/Epmx+OLxiSFJLh7xhchLpYchJYXqd ZN/2G8xeCiyesM1OXkzvQQC0AzlFBRdXSyNWuqwJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxuTgd4l26R4b3xGQYDlu1L19UGwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI1N2Q2OTA1LTQwOWItNDg3Yi05ZTFiLTJiYWFlZTEyMTIzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwU0IDANBgkqhkiG9w0BAQsFAAOCAQEAbyKaOGo9tnFEzcLQQjc9XSvxcqBG MkDPMHAOMM29KL9O/feRzZIPS75xGzBACnN9gnTOR/e/I7ql000DnqsUemRDzGkx Bd0I2dXMGZCjeeNx7qSO2uITiXxip9u0MErKPNBaFhb8lW8cyE2bmPiFRC+XF6zl kGJWJcl0Y656Vq2c5kzXXC9jSpf7+w8Kqry9U7rbQ3YCHhXhVS5StIwcbVuSbpu1 nnyB+qlV7tRS+vQ0s0F3+3XHYoMMkPVFTmXyIDsDFSoDgGWhfN7BDmJY68qFWULO 3BIDEB4ES2b+VVyXX8YL6g3uQnKy3cZ1Csd4xmDg5UebT5VcUQEXk41LwQ== -----END CERTIFICATE-----Generated at Wed Apr 24 18:35:28 2024 by rpki-client on console-ams.rpki-client.org