$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5da7aa2e-8a07-4eaa-a4a3-ee30731d1623.roa File: 5da7aa2e-8a07-4eaa-a4a3-ee30731d1623.roa (raw, json) Hash identifier: JjLFSVVZuT1mZH7XcFdgq7qohCZApTyuCHJ+plIxO4A= Subject key identifier: 2A:F3:DE:89:94:2D:43:30:1C:0A:8E:4D:AB:FC:67:4F:68:D5:67:C8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 69C18D93E8BA929DA72FE8A527959C0C1DD24B79 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5da7aa2e-8a07-4eaa-a4a3-ee30731d1623.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.136.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c1:8d:93:e8:ba:92:9d:a7:2f:e8:a5:27:95:9c:0c:1d:d2:4b:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=a3e737fb11537c82062ad3070e5bda6dcaccea117fb87628a24e2fb0412bd8be, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:70:6c:5d:99:02:cd:63:eb:9e:60:85:ac:85: 76:08:59:06:f8:5f:03:a3:97:e4:e5:57:26:b4:ba: 33:18:ab:c1:e5:01:c0:73:1e:6a:d1:61:01:26:88: 61:ad:5c:d9:20:3d:7d:0b:67:5d:48:bb:6b:0c:6c: 3d:37:6c:41:71:6d:7f:88:9c:64:e3:64:5e:be:3e: 44:b5:60:2a:c6:92:c1:79:b0:55:d2:4e:51:29:45: 7c:a9:ca:43:a4:72:40:e5:c0:56:f8:fd:18:1b:30: 7c:68:53:f8:b1:98:5b:31:78:74:46:d6:78:82:dc: 89:02:58:b5:c5:1a:06:f2:7e:10:f4:ad:cd:5a:77: 37:c6:1b:53:e5:5f:74:d3:bc:2f:7d:1f:2d:69:da: 79:c5:04:d8:3e:ec:fe:62:74:f5:7d:9c:21:38:6d: 60:4a:b6:bd:d8:31:4e:6b:77:b0:10:b4:a7:7c:7d: 3c:9b:62:86:d8:d9:6f:63:05:5e:b5:f7:2a:10:d5: 9d:48:79:b9:6a:74:54:51:57:f6:ea:5a:fe:ee:df: 2d:9e:4f:86:f4:39:5e:8b:ab:2d:68:78:9e:93:85: ea:e6:6c:47:e6:10:c9:64:74:31:e0:99:b3:48:8a: 16:47:38:40:00:44:34:b6:8a:b6:ba:79:89:f5:a4: 22:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F3:DE:89:94:2D:43:30:1C:0A:8E:4D:AB:FC:67:4F:68:D5:67:C8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5da7aa2e-8a07-4eaa-a4a3-ee30731d1623.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.136.0/21 Signature Algorithm: sha256WithRSAEncryption 92:f1:85:ab:84:54:31:d8:89:3f:83:04:b0:fa:0d:1b:0c:f3: 5a:5c:ce:75:31:1e:b7:92:de:ce:d6:4b:2e:9b:56:49:90:08: 82:93:f1:eb:43:ce:7d:45:aa:6b:29:cc:65:77:7c:ae:d0:e3: 54:84:c4:7f:27:fb:c4:ee:0f:d0:ea:1a:0d:cd:8d:37:7b:e7: 53:98:e1:d0:82:a2:d3:05:cc:1f:7f:8f:2a:12:5a:13:f1:3a: 00:69:c3:a8:a0:d5:4c:95:bf:bc:5d:65:c9:ff:d2:8d:98:4d: b4:df:18:1f:fe:78:00:d7:9b:40:7c:72:91:d8:58:e2:bc:7e: e5:64:95:3a:31:73:83:15:7c:9a:a2:cd:c9:5e:cd:ac:f1:9e: c0:06:c2:bc:83:de:9d:72:50:86:24:12:06:d8:56:96:ce:6a: a9:eb:82:fe:bd:a5:a2:42:50:7e:dc:6d:fd:8e:e8:dc:f3:32: 78:da:cd:f6:9b:22:86:03:1d:fa:14:fd:ff:2d:17:9a:fb:1f: 2b:b3:bb:45:6f:e5:50:c4:b0:e8:f7:d9:c2:8a:d1:5e:68:b8: b8:7e:03:e4:1e:86:a6:84:9a:ac:bf:05:db:5f:dd:4c:7b:54: e7:8e:3f:41:92:e6:25:89:06:4a:1b:d4:90:1b:87:c4:9b:90: 28:d8:f1:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUacGNk+i6kp2nL+ilJ5WcDB3SS3kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhM2U3MzdmYjExNTM3YzgyMDYyYWQzMDcwZTViZGE2ZGNh Y2NlYTExN2ZiODc2MjhhMjRlMmZiMDQxMmJkOGJlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvcGxdmQLNY+ueYIWshXYIWQb4XwOjl+TlVya0ujMYq8Hl AcBzHmrRYQEmiGGtXNkgPX0LZ11Iu2sMbD03bEFxbX+InGTjZF6+PkS1YCrGksF5 sFXSTlEpRXypykOkckDlwFb4/RgbMHxoU/ixmFsxeHRG1niC3IkCWLXFGgbyfhD0 rc1adzfGG1PlX3TTvC99Hy1p2nnFBNg+7P5idPV9nCE4bWBKtr3YMU5rd7AQtKd8 fTybYobY2W9jBV619yoQ1Z1IeblqdFRRV/bqWv7u3y2eT4b0OV6Lqy1oeJ6Therm bEfmEMlkdDHgmbNIihZHOEAARDS2ira6eYn1pCJrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKvPeiZQtQzAcCo5Nq/xnT2jVZ8gwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVkYTdhYTJlLThhMDctNGVhYS1hNGEzLWVlMzA3MzFkMTYyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMP3IgwDQYJKoZIhvcNAQELBQADggEBAJLxhauEVDHYiT+DBLD6DRsM81pc znUxHreS3s7WSy6bVkmQCIKT8etDzn1FqmspzGV3fK7Q41SExH8n+8TuD9DqGg3N jTd751OY4dCCotMFzB9/jyoSWhPxOgBpw6ig1UyVv7xdZcn/0o2YTbTfGB/+eADX m0B8cpHYWOK8fuVklToxc4MVfJqizclezazxnsAGwryD3p1yUIYkEgbYVpbOaqnr gv69paJCUH7cbf2O6NzzMnjazfabIoYDHfoU/f8tF5r7Hyuzu0Vv5VDEsOj32cKK 0V5ouLh+A+QehqaEmqy/Bdtf3Ux7VOeOP0GS5iWJBkob1JAbh8SbkCjY8fk= -----END CERTIFICATE-----Generated at Wed Apr 24 01:55:35 2024 by rpki-client on console-ams.rpki-client.org