$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3bb406b3-e172-4230-a61e-612b72b33adf.roa File: 3bb406b3-e172-4230-a61e-612b72b33adf.roa (raw, json) Hash identifier: ZuCcoGHMlRzoICFMwW2Dd5Erl5eA9GJNNaPzwugsivc= Subject key identifier: A8:32:67:5F:05:49:5A:3B:78:25:B2:CF:2A:FE:69:81:23:80:3F:E7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0865C6B039595CCB05EBB25F641D8CF373A7863F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3bb406b3-e172-4230-a61e-612b72b33adf.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 15.155.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:65:c6:b0:39:59:5c:cb:05:eb:b2:5f:64:1d:8c:f3:73:a7:86:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=1f9eec75721c3a0bb1174cc2b917477ab6acd9236c0eee01f1188e6d882884e2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b6:3e:e6:0f:f5:fe:26:f5:06:46:79:cb:81: 0a:d1:ac:fb:e8:b5:65:22:f5:f1:db:79:82:5d:84: 31:f3:13:77:ee:3d:4d:ad:7c:f2:7b:81:2a:67:65: c0:e8:9f:82:b1:50:0b:38:da:95:0d:24:ca:f7:7a: 8b:e9:75:5c:07:fd:80:aa:79:c1:f1:6e:96:09:f3: c4:d8:d2:cf:6a:f9:03:40:90:43:38:a6:37:a2:59: 3d:08:b8:89:59:d1:17:60:ad:1c:33:13:d8:4c:81: 1f:0a:6c:d9:d6:ec:84:e8:86:a8:db:82:e7:d0:85: 4e:f5:cd:77:51:32:cf:54:d6:97:24:60:72:3a:b9: b4:d0:2d:6f:26:93:4b:a4:a4:0f:07:b9:4d:5c:91: 20:bc:9f:ad:a0:a4:74:0a:e0:89:a9:e2:71:7f:71: a4:bf:d4:6c:61:cd:3e:1f:f4:e6:88:80:79:c8:ba: bf:c1:e8:70:fb:81:c2:ea:5b:93:24:00:e8:7f:3b: 19:1c:61:02:85:ef:76:be:14:73:76:1f:61:a6:47: ee:fb:48:97:88:3b:67:22:a8:80:16:2a:5c:71:7c: 1d:44:e3:29:5b:26:14:36:d3:68:57:68:15:4a:07: 93:9d:ee:51:7b:8d:db:4b:b1:46:ac:c6:4e:6f:41: e2:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:32:67:5F:05:49:5A:3B:78:25:B2:CF:2A:FE:69:81:23:80:3F:E7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3bb406b3-e172-4230-a61e-612b72b33adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.155.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:74:20:7e:41:50:9f:3d:6f:62:6a:81:02:20:2d:af:02:7b: 2c:fa:55:c3:5c:75:c9:4c:bd:40:ac:37:b9:21:b6:e8:df:57: fa:58:80:6f:7d:b4:32:77:4d:78:78:35:78:ce:fe:45:57:a3: e1:05:e1:90:f8:91:d2:e3:c0:d1:66:d1:db:93:56:5d:8a:c4: 94:48:a8:2a:dd:4e:dc:fa:1d:21:22:5b:e3:90:97:fd:11:a8: a5:db:85:40:bc:47:be:0c:d2:5b:5d:f1:a4:9c:0e:0a:1a:2b: 25:ad:35:f2:77:b2:b5:67:1c:a7:dc:c6:7d:06:0f:5e:27:be: 83:8f:5a:e2:62:a8:96:c6:a5:d0:5e:92:bd:99:ed:0d:82:7d: c2:c6:68:10:c3:d5:a4:c4:bc:bd:32:a4:bf:46:27:a6:26:f0: 4b:ad:b9:26:78:9b:53:bf:8b:00:85:f3:38:cd:d2:34:cf:94: f8:cf:fa:32:8d:e1:05:ec:68:7e:b6:a2:fd:70:b8:41:59:83: 0c:6b:6a:c8:ec:1a:39:3a:9c:31:22:a4:c4:53:7b:88:b8:e3: 0c:57:e1:47:a8:9c:e6:3d:8b:85:f6:50:f9:7c:18:46:9c:e7: ad:d8:bb:ee:11:93:15:d0:9a:3e:0e:05:37:73:8d:93:0c:2c: 37:05:de:85 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCGXGsDlZXMsF67JfZB2M83Onhj8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjllZWM3NTcyMWMzYTBiYjExNzRjYzJiOTE3NDc3YWI2 YWNkOTIzNmMwZWVlMDFmMTE4OGU2ZDg4Mjg4NGUyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXtj7mD/X+JvUGRnnLgQrRrPvotWUi9fHbeYJdhDHzE3fu PU2tfPJ7gSpnZcDon4KxUAs42pUNJMr3eovpdVwH/YCqecHxbpYJ88TY0s9q+QNA kEM4pjeiWT0IuIlZ0RdgrRwzE9hMgR8KbNnW7ITohqjbgufQhU71zXdRMs9U1pck YHI6ubTQLW8mk0ukpA8HuU1ckSC8n62gpHQK4Imp4nF/caS/1GxhzT4f9OaIgHnI ur/B6HD7gcLqW5MkAOh/OxkcYQKF73a+FHN2H2GmR+77SJeIO2ciqIAWKlxxfB1E 4ylbJhQ202hXaBVKB5Od7lF7jdtLsUasxk5vQeLJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqDJnXwVJWjt4JbLPKv5pgSOAP+cwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNiYjQwNmIzLWUxNzItNDIzMC1hNjFlLTYxMmI3MmIzM2FkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPmzANBgkqhkiG9w0BAQsFAAOCAQEAAHQgfkFQnz1vYmqBAiAtrwJ7LPpV w1x1yUy9QKw3uSG26N9X+liAb320MndNeHg1eM7+RVej4QXhkPiR0uPA0WbR25NW XYrElEioKt1O3PodISJb45CX/RGopduFQLxHvgzSW13xpJwOChorJa018neytWcc p9zGfQYPXie+g49a4mKolsal0F6SvZntDYJ9wsZoEMPVpMS8vTKkv0YnpibwS625 JnibU7+LAIXzOM3SNM+U+M/6Mo3hBexofrai/XC4QVmDDGtqyOwaOTqcMSKkxFN7 iLjjDFfhR6ic5j2LhfZQ+XwYRpznrdi77hGTFdCaPg4FN3ONkwwsNwXehQ== -----END CERTIFICATE-----Generated at Thu Apr 25 22:33:14 2024 by rpki-client on console-fra.rpki-client.org