$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ad746a5-4122-4fe1-a6c1-09c23d7c31f0.roa File: 3ad746a5-4122-4fe1-a6c1-09c23d7c31f0.roa (raw, json) Hash identifier: JOX77LiouePfpoDyrzmHluAptBxaDP/xdAlmLA1Sp3E= Subject key identifier: 3E:A9:09:91:9F:B8:FF:3A:F4:DA:B7:E2:25:8C:9D:E2:ED:EA:C3:A7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 02D9E7A0801B8E160F1F6074BC195A0A5F73ECB3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ad746a5-4122-4fe1-a6c1-09c23d7c31f0.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 18.44.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:d9:e7:a0:80:1b:8e:16:0f:1f:60:74:bc:19:5a:0a:5f:73:ec:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=e15c389ccdaaefba4cf09887e1476c565ccdbfd67524f37c9c7b34026ea24a4c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:67:4b:09:55:25:f8:c3:fe:b3:4b:ea:2d:a8: e5:10:5a:fe:9e:3b:08:e7:9c:b6:31:58:e3:2b:0c: 77:98:02:dc:9d:be:77:c3:d0:a5:09:ba:fe:de:cb: ed:1a:e2:b7:9c:89:61:d8:79:3b:f9:0b:7f:1a:f6: 9b:63:fe:b4:22:12:3b:64:3a:0d:df:18:9b:64:e7: c6:d9:88:49:a9:5a:38:cf:2e:42:a5:be:f2:bc:98: 7a:09:c4:7d:15:f6:51:17:20:f2:a5:96:f7:c5:b3: d5:5c:16:de:6e:3f:12:15:16:d1:39:6f:72:8d:b6: d2:24:04:12:88:98:6f:c6:1a:44:3e:86:23:1d:b1: 5d:6e:30:b5:88:b2:25:8f:7e:d0:e7:b5:0c:4d:c0: c6:6a:39:ed:61:d2:2d:49:0b:c4:3b:a7:72:4f:32: 29:46:e6:60:36:c6:a4:96:25:ca:db:06:2f:fd:d6: 24:cd:c5:85:fe:fa:11:9e:a4:03:76:9e:3b:00:b8: d1:51:ac:f9:2b:20:53:b2:ad:3d:60:27:e9:3d:d2: 7c:67:d5:74:7e:61:ed:24:a7:94:01:31:91:2e:41: f5:ce:59:83:61:18:c5:84:7a:6d:d1:d5:44:4f:72: e1:f5:d1:ff:86:ed:da:d3:e5:6e:0f:4b:1c:61:f0: 68:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:A9:09:91:9F:B8:FF:3A:F4:DA:B7:E2:25:8C:9D:E2:ED:EA:C3:A7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ad746a5-4122-4fe1-a6c1-09c23d7c31f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.44.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:0f:0e:d7:c6:28:43:f2:39:11:78:1b:b6:5c:c8:1e:86:7b: 0d:f6:8b:4b:0e:bd:92:d0:2d:ee:25:c3:d8:a5:e0:7a:8b:e9: 88:fe:42:0e:0e:ff:70:4e:5d:00:5c:ea:42:fa:48:52:67:cb: f8:98:f6:33:e3:84:cf:8b:bf:85:55:a9:80:67:05:cc:58:79: 2e:0b:55:a0:55:43:2f:16:58:b5:a4:53:28:37:99:15:42:68: 9c:61:23:22:10:64:ca:cc:64:61:ed:61:c8:33:58:07:f8:0d: ef:03:ee:82:fe:e1:4f:b7:93:b3:bb:cd:46:26:b7:b7:cd:18: 97:73:5f:7d:16:09:dc:08:2e:6e:2c:79:ab:d7:b9:39:c2:9e: 4d:e2:d9:fe:44:30:14:83:8b:ac:5c:88:a8:10:bc:ef:f1:d7: e8:20:f9:3b:7f:67:a6:b0:24:de:d8:7f:c3:26:c2:28:e2:82: ff:c9:4b:fc:39:de:38:93:e0:dc:07:24:8e:1a:1c:0d:48:8d: 43:6e:a3:c0:64:cf:92:85:08:ea:de:76:a2:20:d7:7b:45:cf: 81:b9:36:f6:bd:56:44:02:9c:25:f7:e8:1e:18:b0:14:a6:84: f3:1b:ab:b6:45:de:b6:90:17:b5:49:31:a9:7f:7e:49:ed:25: 0a:f7:d4:7e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAtnnoIAbjhYPH2B0vBlaCl9z7LMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMTVjMzg5Y2NkYWFlZmJhNGNmMDk4ODdlMTQ3NmM1NjVj Y2RiZmQ2NzUyNGYzN2M5YzdiMzQwMjZlYTI0YTRjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1Z0sJVSX4w/6zS+otqOUQWv6eOwjnnLYxWOMrDHeYAtyd vnfD0KUJuv7ey+0a4reciWHYeTv5C38a9ptj/rQiEjtkOg3fGJtk58bZiEmpWjjP LkKlvvK8mHoJxH0V9lEXIPKllvfFs9VcFt5uPxIVFtE5b3KNttIkBBKImG/GGkQ+ hiMdsV1uMLWIsiWPftDntQxNwMZqOe1h0i1JC8Q7p3JPMilG5mA2xqSWJcrbBi/9 1iTNxYX++hGepAN2njsAuNFRrPkrIFOyrT1gJ+k90nxn1XR+Ye0kp5QBMZEuQfXO WYNhGMWEem3R1URPcuH10f+G7drT5W4PSxxh8GiDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPqkJkZ+4/zr02rfiJYyd4u3qw6cwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNhZDc0NmE1LTQxMjItNGZlMS1hNmMxLTA5YzIzZDdjMzFmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASLDANBgkqhkiG9w0BAQsFAAOCAQEAPg8O18YoQ/I5EXgbtlzIHoZ7DfaL Sw69ktAt7iXD2KXgeovpiP5CDg7/cE5dAFzqQvpIUmfL+Jj2M+OEz4u/hVWpgGcF zFh5LgtVoFVDLxZYtaRTKDeZFUJonGEjIhBkysxkYe1hyDNYB/gN7wPugv7hT7eT s7vNRia3t80Yl3NffRYJ3Agubix5q9e5OcKeTeLZ/kQwFIOLrFyIqBC87/HX6CD5 O39nprAk3th/wybCKOKC/8lL/DneOJPg3AckjhocDUiNQ26jwGTPkoUI6t52oiDX e0XPgbk29r1WRAKcJffoHhiwFKaE8xurtkXetpAXtUkxqX9+Se0lCvfUfg== -----END CERTIFICATE-----Generated at Wed Apr 24 18:35:29 2024 by rpki-client on console-ams.rpki-client.org