$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5006d97b-6589-4a82-a7ff-99deb6b88472.roa File: 5006d97b-6589-4a82-a7ff-99deb6b88472.roa (raw, json) Hash identifier: j4s3h4y7aMFOFWUWwNiqNEqWWwkvttjNIzGfMSwFFc4= Subject key identifier: 73:A8:B2:C0:E9:B8:82:B6:A6:40:41:E6:FC:F8:B0:07:C1:86:A3:2C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 211B769454274C73EC63B01A7F3AB30F860D1617 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5006d97b-6589-4a82-a7ff-99deb6b88472.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 3.5.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 05 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:1b:76:94:54:27:4c:73:ec:63:b0:1a:7f:3a:b3:0f:86:0d:16:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=8403bf12d9b05b98861f6877d16e6cbd75daa28efa87b593907e44c20112fc30, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:61:4c:08:6c:f9:60:ef:61:26:5b:55:70:74: 52:46:ca:b0:3e:0b:12:dd:e9:d3:5b:3b:54:93:80: ad:2a:0c:c4:f7:c6:79:18:ab:3a:11:bf:01:e4:a6: 55:3a:0a:da:e4:7f:96:6d:7f:bd:5f:56:81:3c:c7: 64:42:40:45:f1:1a:7d:a8:82:3c:56:73:ba:73:86: f7:7f:58:c5:2b:7a:16:89:1b:96:d6:19:30:b4:22: 4e:fb:e3:7c:0c:7b:c6:1b:de:c0:89:f9:c2:2b:64: 8d:bd:c9:43:81:02:95:1c:82:84:f3:c0:d7:98:1f: 4e:34:ed:b3:e5:6f:9d:4f:70:36:aa:60:dd:c9:aa: ca:aa:03:b9:88:b3:38:33:3c:56:eb:5c:77:ab:ed: 00:f9:9a:9c:cf:81:f1:49:78:86:8c:96:ef:53:4c: 44:97:63:de:fe:81:61:1a:7e:ba:a2:83:f8:7f:7a: 8b:84:96:36:17:39:aa:0d:54:3f:ce:9d:47:91:64: b4:f9:03:b8:82:36:6c:c2:01:55:6f:16:d0:68:21: 01:39:b5:46:94:18:c2:77:e3:4d:34:31:fd:99:fb: c8:9b:0a:78:55:5f:f3:36:dd:5d:ad:8a:1a:9c:1c: 13:71:14:7a:79:88:fa:2f:4b:37:ed:9a:d1:da:34: 97:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A8:B2:C0:E9:B8:82:B6:A6:40:41:E6:FC:F8:B0:07:C1:86:A3:2C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5006d97b-6589-4a82-a7ff-99deb6b88472.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.5.176.0/22 Signature Algorithm: sha256WithRSAEncryption 47:a9:11:90:3d:1b:56:dc:26:a6:f5:73:d5:48:59:fa:51:4a: 2d:0a:bc:aa:51:5c:b9:5e:a1:3b:35:43:81:8c:77:95:ed:a8: a6:43:a8:be:b5:e0:15:f3:7a:4b:8f:d7:78:a6:80:f2:60:31: 45:cd:d5:73:dc:fb:ff:f4:2e:8d:87:ad:c0:4e:5b:5d:be:07: a2:71:49:86:e5:de:32:7a:a5:82:5b:58:74:c7:c9:a0:9c:95: c3:93:92:82:7c:67:91:7a:6c:f5:39:ed:ec:cf:ed:c2:76:1b: 07:e0:61:6b:20:82:d9:c2:63:ef:cf:93:d3:fe:68:4f:27:ed: 1e:d3:86:c9:ce:a4:48:28:46:95:c4:f6:0c:f1:34:04:2f:bf: 24:2a:48:f1:30:a5:cc:82:6c:fa:2e:e2:5a:f0:28:4e:68:fd: 72:4a:02:f7:ed:27:f8:89:5e:7e:ee:52:3f:60:82:5f:20:73: 6f:5d:48:90:c1:72:0c:8a:11:0c:51:59:bf:b6:b1:c6:c1:20: 65:d1:3d:2d:e4:b1:b9:cd:dd:22:91:ec:ac:33:c8:5d:b0:9e: 95:4a:4f:fb:12:75:67:ce:c4:f1:f3:60:54:02:f7:19:54:b4: ea:a3:48:87:e1:06:2f:c5:cd:64:97:fc:2e:da:d2:22:5f:90: 03:de:c7:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIRt2lFQnTHPsY7AafzqzD4YNFhcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDAzYmYxMmQ5YjA1Yjk4ODYxZjY4NzdkMTZlNmNiZDc1 ZGFhMjhlZmE4N2I1OTM5MDdlNDRjMjAxMTJmYzMwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRYUwIbPlg72EmW1VwdFJGyrA+CxLd6dNbO1STgK0qDMT3 xnkYqzoRvwHkplU6Ctrkf5Ztf71fVoE8x2RCQEXxGn2ogjxWc7pzhvd/WMUrehaJ G5bWGTC0Ik7743wMe8Yb3sCJ+cIrZI29yUOBApUcgoTzwNeYH0407bPlb51PcDaq YN3JqsqqA7mIszgzPFbrXHer7QD5mpzPgfFJeIaMlu9TTESXY97+gWEafrqig/h/ eouEljYXOaoNVD/OnUeRZLT5A7iCNmzCAVVvFtBoIQE5tUaUGMJ34000Mf2Z+8ib CnhVX/M23V2tihqcHBNxFHp5iPovSzftmtHaNJdtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc6iywOm4gramQEHm/PiwB8GGoywwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzUwMDZkOTdiLTY1ODktNGE4Mi1hN2ZmLTk5ZGViNmI4ODQ3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIDBbAwDQYJKoZIhvcNAQELBQADggEBAEepEZA9G1bcJqb1c9VIWfpRSi0K vKpRXLleoTs1Q4GMd5XtqKZDqL614BXzekuP13imgPJgMUXN1XPc+//0Lo2HrcBO W12+B6JxSYbl3jJ6pYJbWHTHyaCclcOTkoJ8Z5F6bPU57ezP7cJ2GwfgYWsggtnC Y+/Pk9P+aE8n7R7ThsnOpEgoRpXE9gzxNAQvvyQqSPEwpcyCbPou4lrwKE5o/XJK AvftJ/iJXn7uUj9ggl8gc29dSJDBcgyKEQxRWb+2scbBIGXRPS3ksbnN3SKR7Kwz yF2wnpVKT/sSdWfOxPHzYFQC9xlUtOqjSIfhBi/FzWSX/C7a0iJfkAPex1k= -----END CERTIFICATE-----Generated at Fri May 3 01:29:15 2024 by rpki-client on console-fra.rpki-client.org