$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/40b3b09f-480a-4149-bfe2-ffb4077e4849.roa File: 40b3b09f-480a-4149-bfe2-ffb4077e4849.roa (raw, json) Hash identifier: LiGDws2XURhI+HlONILM6bjmYYFYWdql1n6IXaCqzuo= Subject key identifier: D6:B7:12:28:4C:6E:B9:A4:48:08:B1:BA:6C:78:37:FD:5D:74:ED:6F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7D147E949946230D7FADAE68DEA69DE5B3788F3C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/40b3b09f-480a-4149-bfe2-ffb4077e4849.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 13.212.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:14:7e:94:99:46:23:0d:7f:ad:ae:68:de:a6:9d:e5:b3:78:8f:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=aee2d2cba191eb748fbea450ee26a3157cd4b47e723f5401f6308b6337ee8735, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f0:7c:33:8d:93:c3:a6:55:f5:43:fd:40:a7: c0:10:93:59:aa:e7:60:bf:c8:98:b2:bf:7f:79:2a: aa:0d:3c:13:03:7d:7f:17:16:7a:9f:4c:a2:33:bd: 70:7c:29:ec:b7:98:1c:66:bf:1e:dc:1e:b9:7d:3a: 69:0e:f3:41:3d:f4:67:11:5a:84:e0:3e:de:d3:de: d5:ff:67:29:b3:9c:fa:a5:aa:ec:67:5f:7e:9e:33: 35:3c:d6:39:94:67:9c:91:62:a2:6c:05:80:69:c8: 01:40:a7:11:f4:40:54:97:3b:c8:61:c5:59:4f:4f: 5c:10:c3:eb:a5:2d:73:23:4b:b9:eb:12:64:89:e2: 81:0c:06:32:c9:c4:bd:60:21:f7:49:5f:4e:a2:02: 11:37:a7:a7:62:11:06:0f:71:73:dd:9e:eb:49:10: 17:d3:b3:c7:72:4a:13:a7:1c:dd:5a:1c:47:84:59: 57:43:49:0e:ee:dc:2f:5a:66:83:bf:9f:80:14:af: 34:07:80:b4:fb:b9:c9:45:39:54:52:f4:83:a8:09: a9:94:67:95:94:da:49:d7:68:f0:b3:70:27:ae:71: c9:c5:cb:ab:b1:62:19:95:7f:93:6e:19:af:1a:5f: 36:7d:3e:5f:43:71:b3:33:66:26:4f:0a:82:d7:d4: fb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B7:12:28:4C:6E:B9:A4:48:08:B1:BA:6C:78:37:FD:5D:74:ED:6F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/40b3b09f-480a-4149-bfe2-ffb4077e4849.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.212.0.0/14 Signature Algorithm: sha256WithRSAEncryption 19:eb:32:d4:b0:8c:56:93:e2:81:12:f8:8d:0d:30:5b:88:7b: 5c:47:1a:5e:07:c6:92:9f:de:d1:95:76:dc:9c:4d:12:39:ea: 76:94:7b:03:3d:a2:29:17:5c:c7:7f:41:97:9c:03:3e:50:61: 7b:b6:32:46:6e:10:05:08:c2:b7:91:0d:94:db:61:83:ca:42: e8:86:7f:48:34:c0:d3:d4:07:aa:d5:2f:33:19:a7:16:a6:99: f6:7c:ff:cc:ce:e2:11:91:0d:60:7e:76:3a:49:38:5b:1e:a2: 53:fd:40:20:58:d1:73:36:e2:3d:6d:5d:34:4e:da:2d:3c:4c: 52:76:dd:f4:40:24:0c:fe:9b:60:c8:aa:7c:05:fb:62:39:d6: 15:ca:8f:ff:f5:6d:ed:08:26:75:e5:d0:36:6e:f8:78:41:15: 31:44:86:7d:32:2d:c1:07:59:b6:44:3b:32:a0:c2:ee:a0:b7: e0:bd:d1:bb:ed:52:27:c9:a7:aa:53:89:8f:c3:88:bf:26:4e: 26:5f:80:43:65:12:40:62:ac:40:6c:3e:eb:ef:03:c7:8a:eb: 03:bd:7e:00:6b:b9:a3:41:0b:05:aa:bc:57:e2:c9:51:b6:9a: 19:a1:0d:90:cd:45:4a:8c:cc:1f:a0:5c:a1:f3:0b:f8:82:e1: 95:bd:e5:0d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfRR+lJlGIw1/ra5o3qad5bN4jzwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZWUyZDJjYmExOTFlYjc0OGZiZWE0NTBlZTI2YTMxNTdj ZDRiNDdlNzIzZjU0MDFmNjMwOGI2MzM3ZWU4NzM1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+8HwzjZPDplX1Q/1Ap8AQk1mq52C/yJiyv395KqoNPBMD fX8XFnqfTKIzvXB8Key3mBxmvx7cHrl9OmkO80E99GcRWoTgPt7T3tX/ZymznPql quxnX36eMzU81jmUZ5yRYqJsBYBpyAFApxH0QFSXO8hhxVlPT1wQw+ulLXMjS7nr EmSJ4oEMBjLJxL1gIfdJX06iAhE3p6diEQYPcXPdnutJEBfTs8dyShOnHN1aHEeE WVdDSQ7u3C9aZoO/n4AUrzQHgLT7uclFOVRS9IOoCamUZ5WU2knXaPCzcCeuccnF y6uxYhmVf5NuGa8aXzZ9Pl9DcbMzZiZPCoLX1PsHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1rcSKExuuaRICLG6bHg3/V107W8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQwYjNiMDlmLTQ4MGEtNDE0OS1iZmUyLWZmYjQwNzdlNDg0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIN1DANBgkqhkiG9w0BAQsFAAOCAQEAGesy1LCMVpPigRL4jQ0wW4h7XEca XgfGkp/e0ZV23JxNEjnqdpR7Az2iKRdcx39Bl5wDPlBhe7YyRm4QBQjCt5ENlNth g8pC6IZ/SDTA09QHqtUvMxmnFqaZ9nz/zM7iEZENYH52Okk4Wx6iU/1AIFjRczbi PW1dNE7aLTxMUnbd9EAkDP6bYMiqfAX7YjnWFcqP//Vt7QgmdeXQNm74eEEVMUSG fTItwQdZtkQ7MqDC7qC34L3Ru+1SJ8mnqlOJj8OIvyZOJl+AQ2USQGKsQGw+6+8D x4rrA71+AGu5o0ELBaq8V+LJUbaaGaENkM1FSozMH6BcofML+ILhlb3lDQ== -----END CERTIFICATE-----Generated at Thu Apr 18 00:46:59 2024 by rpki-client on console-fra.rpki-client.org