$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/663eae09-4efb-43ab-97ba-410ba737b007.roa File: 663eae09-4efb-43ab-97ba-410ba737b007.roa (raw, json) Hash identifier: L1a6+kAFJ2mnLJwNOjXd6OMS+nqUJkC7WfvMqgPDEaA= Subject key identifier: A8:AF:1B:AD:02:53:09:F7:B8:37:67:31:FA:B1:94:CA:76:AF:A4:A0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7D394AB038984F851229775514F205D2F5CF60D0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/663eae09-4efb-43ab-97ba-410ba737b007.roa Signing time: Wed 03 Apr 2024 00:00:00 +0000 ROA not before: Wed 03 Apr 2024 00:00:00 +0000 ROA not after: Wed 08 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 18.176.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:39:4a:b0:38:98:4f:85:12:29:77:55:14:f2:05:d2:f5:cf:60:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 3 00:00:00 2024 GMT Not After : May 8 23:59:59 2024 GMT Subject: serialNumber=c2c64926745fbf99291452da3f46598acf70cdc52cf1c3d3da169bbc70a1c14a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:83:b7:39:00:cd:bf:fd:35:26:71:9a:05:d0: a5:55:94:aa:28:34:b4:a2:a8:fe:59:84:44:7e:e3: 01:8c:35:4c:7a:ee:af:7e:eb:85:78:54:96:01:95: 66:d1:09:79:ff:98:5b:d8:ce:de:fd:87:ae:12:8c: 15:52:cf:d6:35:ed:37:e0:b5:6a:d7:05:18:af:d9: e4:64:b1:d7:9b:f7:03:e2:4f:ab:2e:58:68:be:4f: 06:31:b4:70:f0:fe:57:87:54:e6:61:69:c4:24:7f: 20:68:3d:52:cd:17:9f:d9:58:cb:af:49:1e:4b:60: 28:ed:7d:2f:ba:37:f5:6c:29:c0:52:7a:db:b6:c8: 4b:60:a1:ea:ef:34:70:6a:37:95:bc:51:d1:bd:2e: 66:00:34:08:88:5f:90:42:52:f6:58:ea:be:b9:9f: 8f:bb:bd:68:f0:fb:ef:9e:33:e5:d5:fa:ea:05:99: 78:27:d8:37:71:ea:99:0d:c6:51:47:7c:9e:4f:87: ca:84:13:46:90:9c:4e:12:5c:ce:74:09:71:50:24: 23:aa:4b:e6:35:9b:a0:ca:8c:d9:19:df:34:50:18: c7:26:4c:7c:5c:ff:3c:c2:1a:ae:70:26:43:56:27: 82:87:14:8b:11:e5:29:0e:31:63:04:9d:8b:f4:77: 79:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:AF:1B:AD:02:53:09:F7:B8:37:67:31:FA:B1:94:CA:76:AF:A4:A0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/663eae09-4efb-43ab-97ba-410ba737b007.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.176.0.0/15 Signature Algorithm: sha256WithRSAEncryption b1:8d:80:29:a5:5f:65:64:2c:19:70:32:0d:47:4d:ee:f5:83: 7f:f7:2d:2c:11:0c:20:db:f2:ce:db:08:6e:fc:98:62:e9:1a: c8:39:ca:66:2d:a5:a9:83:63:ae:1f:09:67:02:89:71:47:4b: 03:3b:6d:9e:c2:46:e7:db:3e:b7:6b:30:5c:75:d0:ee:7b:46: 21:be:03:cb:98:d6:d4:71:b8:92:3f:66:46:23:9e:b5:e2:5c: 3b:2d:c0:c4:7c:1d:d3:6c:ed:bc:73:8b:4e:b6:df:f7:5e:1e: 8c:f3:14:27:2a:4e:30:a6:cc:99:c5:59:f2:80:68:90:81:69: ef:14:59:4e:49:db:76:b9:57:d4:01:e6:5e:b5:11:c3:d4:34: f3:5a:34:d5:f0:45:bd:27:06:78:47:61:7b:94:fa:19:bf:7b: 1e:8e:c4:df:ea:da:6c:da:e4:48:32:83:8a:e0:a8:11:b9:af: 42:6d:bf:ea:11:4b:bb:d6:51:56:e2:5b:6b:8c:40:00:92:2a: 4a:d4:c0:55:6a:00:96:e4:75:d6:6f:b5:4b:2f:3f:02:a1:48: 32:71:37:eb:43:f4:3f:6d:0f:23:12:d8:c3:7c:b2:c3:1c:20: 1c:8e:97:c3:b7:88:54:4b:3d:40:f1:50:f1:b1:1c:92:66:94: 68:2a:9c:e4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfTlKsDiYT4USKXdVFPIF0vXPYNAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAzMDAwMDAwWhcNMjQwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMmM2NDkyNjc0NWZiZjk5MjkxNDUyZGEzZjQ2NTk4YWNm NzBjZGM1MmNmMWMzZDNkYTE2OWJiYzcwYTFjMTRhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsg7c5AM2//TUmcZoF0KVVlKooNLSiqP5ZhER+4wGMNUx6 7q9+64V4VJYBlWbRCXn/mFvYzt79h64SjBVSz9Y17TfgtWrXBRiv2eRksdeb9wPi T6suWGi+TwYxtHDw/leHVOZhacQkfyBoPVLNF5/ZWMuvSR5LYCjtfS+6N/VsKcBS etu2yEtgoervNHBqN5W8UdG9LmYANAiIX5BCUvZY6r65n4+7vWjw+++eM+XV+uoF mXgn2Ddx6pkNxlFHfJ5Ph8qEE0aQnE4SXM50CXFQJCOqS+Y1m6DKjNkZ3zRQGMcm THxc/zzCGq5wJkNWJ4KHFIsR5SkOMWMEnYv0d3ntAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqK8brQJTCfe4N2cx+rGUynavpKAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY2M2VhZTA5LTRlZmItNDNhYi05N2JhLTQxMGJhNzM3YjAwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwESsDANBgkqhkiG9w0BAQsFAAOCAQEAsY2AKaVfZWQsGXAyDUdN7vWDf/ct LBEMINvyztsIbvyYYukayDnKZi2lqYNjrh8JZwKJcUdLAzttnsJG59s+t2swXHXQ 7ntGIb4Dy5jW1HG4kj9mRiOeteJcOy3AxHwd02ztvHOLTrbf914ejPMUJypOMKbM mcVZ8oBokIFp7xRZTknbdrlX1AHmXrURw9Q081o01fBFvScGeEdhe5T6Gb97Ho7E 3+rabNrkSDKDiuCoEbmvQm2/6hFLu9ZRVuJba4xAAJIqStTAVWoAluR11m+1Sy8/ AqFIMnE360P0P20PIxLYw3yywxwgHI6Xw7eIVEs9QPFQ8bEckmaUaCqc5A== -----END CERTIFICATE-----Generated at Fri Apr 26 11:01:03 2024 by rpki-client on console-ams.rpki-client.org