$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5b4e201c-114d-41be-873b-831db1bdccfc.roa File: 5b4e201c-114d-41be-873b-831db1bdccfc.roa (raw, json) Hash identifier: 7naTlxana00eBnK2rEnPIs32cGwtqPbASclh+ASfYPg= Subject key identifier: D1:14:63:37:09:7F:03:8C:6A:A7:EE:28:74:D0:AE:7E:85:CE:76:8F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4D2090D6C8DFE3342C5BE9BDBE2179F63E01D226 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5b4e201c-114d-41be-873b-831db1bdccfc.roa Signing time: Tue 13 Aug 2024 00:00:00 +0000 ROA not before: Tue 13 Aug 2024 00:00:00 +0000 ROA not after: Tue 17 Sep 2024 23:59:59 +0000 asID: 8987 IP address blocks: 15.205.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Sep 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:20:90:d6:c8:df:e3:34:2c:5b:e9:bd:be:21:79:f6:3e:01:d2:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 13 00:00:00 2024 GMT Not After : Sep 17 23:59:59 2024 GMT Subject: serialNumber=7f169ca6108fd894213dee67bc63cf7f6166fec4c534809d95ca930cf8e75244, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:db:10:39:b4:bf:80:20:2a:8b:6f:e8:15:22: b0:f5:73:42:2b:82:55:53:d4:bc:84:f2:d8:ed:9e: 39:1a:dd:a8:a6:4b:e9:42:c1:f2:76:57:94:18:1e: 9c:a0:82:13:7d:f7:bc:2d:83:8e:6f:6e:12:48:76: 76:42:f6:ea:38:53:7b:ef:80:51:c5:3e:40:cf:39: 9f:cf:54:1f:39:b3:9e:b4:b9:d7:dc:5a:c6:ef:e3: ea:01:6d:ae:83:79:37:72:c8:19:98:00:41:92:7d: dc:ef:9b:82:e4:c2:ad:26:a2:b0:c8:30:4f:2f:b6: 5c:df:d0:aa:d6:d4:38:dc:2d:06:1d:e9:4d:92:6b: 63:3b:90:3f:1e:72:6e:93:72:b6:79:0a:aa:5c:be: 52:0a:a4:98:15:cf:c0:ce:f0:52:25:10:e5:4c:14: 49:49:87:70:f6:35:6a:e4:2c:93:75:c6:a6:f8:4b: 47:de:32:85:0a:62:0a:19:50:bf:46:c2:8c:17:e6: 52:6e:c6:06:4a:86:00:bf:44:db:37:c1:f8:87:00: ed:b2:15:7d:ed:a9:7c:f3:70:a0:ee:f9:7c:0d:a6: 74:48:17:7a:18:e7:23:db:4a:86:c3:31:6c:09:a2: ae:81:cd:ad:f7:7a:9b:8d:2c:cd:a5:6a:5b:4b:20: 77:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:14:63:37:09:7F:03:8C:6A:A7:EE:28:74:D0:AE:7E:85:CE:76:8F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5b4e201c-114d-41be-873b-831db1bdccfc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.205.0.0/16 Signature Algorithm: sha256WithRSAEncryption 98:61:83:ab:e8:21:35:33:1e:4a:9a:5f:9e:c8:f3:82:b7:29: b0:8a:d8:c2:ff:0d:a3:84:99:f2:df:16:8f:4f:2d:97:d2:56: 86:a8:43:0b:79:f7:79:ee:69:5a:b7:03:8c:7f:f2:ea:c8:24: ce:02:c9:95:2b:72:d9:b6:5b:84:21:8f:3d:89:11:ab:cb:69: 75:fd:f8:24:70:1a:5b:24:75:eb:c3:c7:7b:c7:9f:4e:c8:27: 88:fc:7c:ea:82:c9:5e:e1:80:ca:c6:dd:89:36:6a:5b:5a:7b: 6d:fb:bd:a4:c6:d4:dd:ca:9e:53:5b:9b:75:33:8b:e5:ac:ca: 97:0d:a9:df:bf:01:a1:6e:13:b8:97:02:84:6c:41:03:dd:bd: 2b:74:54:f9:df:a1:4c:52:23:84:4e:f2:f1:9f:6d:53:d7:bd: 63:c2:6b:ce:eb:ad:1e:b8:f4:ad:5c:81:37:06:e8:68:f5:95: c2:f0:af:e5:c1:89:a6:c9:b9:a6:08:b1:ca:36:c3:67:e7:ca: 26:85:93:93:4b:50:b8:f5:c7:57:55:f8:f6:78:24:6e:14:24: 92:7d:db:a1:c7:68:bb:44:c1:25:d0:3f:a4:c9:2c:a2:16:c2: 7d:f5:51:81:46:03:c1:cc:83:8b:ee:9a:e8:0b:35:f5:de:9b: aa:d8:f5:75 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTSCQ1sjf4zQsW+m9viF59j4B0iYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwODEzMDAwMDAwWhcNMjQwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjE2OWNhNjEwOGZkODk0MjEzZGVlNjdiYzYzY2Y3ZjYx NjZmZWM0YzUzNDgwOWQ5NWNhOTMwY2Y4ZTc1MjQ0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCr2xA5tL+AICqLb+gVIrD1c0IrglVT1LyE8tjtnjka3aim S+lCwfJ2V5QYHpygghN997wtg45vbhJIdnZC9uo4U3vvgFHFPkDPOZ/PVB85s560 udfcWsbv4+oBba6DeTdyyBmYAEGSfdzvm4Lkwq0morDIME8vtlzf0KrW1DjcLQYd 6U2Sa2M7kD8ecm6TcrZ5CqpcvlIKpJgVz8DO8FIlEOVMFElJh3D2NWrkLJN1xqb4 S0feMoUKYgoZUL9GwowX5lJuxgZKhgC/RNs3wfiHAO2yFX3tqXzzcKDu+XwNpnRI F3oY5yPbSobDMWwJoq6Bza33epuNLM2laltLIHfLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0RRjNwl/A4xqp+4odNCufoXOdo8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzViNGUyMDFjLTExNGQtNDFiZS04NzNiLTgzMWRiMWJkY2NmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPzTANBgkqhkiG9w0BAQsFAAOCAQEAmGGDq+ghNTMeSppfnsjzgrcpsIrY wv8No4SZ8t8Wj08tl9JWhqhDC3n3ee5pWrcDjH/y6sgkzgLJlSty2bZbhCGPPYkR q8tpdf34JHAaWyR168PHe8efTsgniPx86oLJXuGAysbdiTZqW1p7bfu9pMbU3cqe U1ubdTOL5azKlw2p378BoW4TuJcChGxBA929K3RU+d+hTFIjhE7y8Z9tU9e9Y8Jr zuutHrj0rVyBNwboaPWVwvCv5cGJpsm5pgixyjbDZ+fKJoWTk0tQuPXHV1X49ngk bhQkkn3bocdou0TBJdA/pMksohbCffVRgUYDwcyDi+6a6As19d6bqtj1dQ== -----END CERTIFICATE-----Generated at Sat Sep 7 00:40:08 2024 by rpki-client on console-fra.rpki-client.org