$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/673c385c-1059-4c0e-aada-20e7985e7a5d.roa File: 673c385c-1059-4c0e-aada-20e7985e7a5d.roa (raw, json) Hash identifier: hZOsQaFdQtRHm125GnEP8uyGd3CExnhte7Jj6AdwOMk= Subject key identifier: 0F:24:05:96:C5:8F:18:F3:74:16:95:32:0F:CF:2D:C0:2C:20:64:08 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0C4932001C309E8F9A672A97D97621DBC4098F31 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/673c385c-1059-4c0e-aada-20e7985e7a5d.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 18.87.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:49:32:00:1c:30:9e:8f:9a:67:2a:97:d9:76:21:db:c4:09:8f:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=3d82c6c25010748d96099062fffa15d198dd0bb2184f91bc2995790630488825, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2e:ab:4d:6b:dd:18:d0:23:13:d2:65:7d:7b: f3:9b:0e:0f:3e:3b:3c:05:bf:10:81:d6:33:aa:2f: 52:13:bb:10:25:94:ba:55:87:cc:6f:30:27:7a:84: f7:ac:30:7f:b9:70:08:88:87:d5:70:0d:a0:99:90: c2:07:75:95:42:6f:87:09:95:6a:2a:a0:1c:f1:30: 71:9b:85:a8:08:84:a4:b8:b3:3d:29:d1:15:b4:0a: fc:96:b6:52:4f:8d:fa:19:ed:ad:56:f7:11:50:d5: 1b:e3:cf:1f:77:4e:94:4c:0b:dc:19:72:d6:d1:41: bb:fc:7f:56:a1:79:87:2a:74:fc:1f:6d:d8:76:2d: 87:b9:5a:a7:6b:51:8a:81:04:82:3a:46:33:11:03: c6:1f:6b:5f:70:fa:09:1c:9e:5a:24:24:ec:32:db: 00:6b:cd:8f:25:3a:24:66:a2:7c:25:fe:e2:27:d6: 99:67:f7:5d:b5:01:03:74:65:21:f3:a6:7b:3d:26: a0:48:03:ba:dc:f3:b0:bc:e1:84:7f:bd:a8:f6:ec: c1:73:14:e5:63:a4:30:b3:43:7b:85:27:74:01:72: 91:90:ae:b3:6f:1c:2f:af:2b:f4:2b:73:87:64:4d: 70:c6:8b:56:c4:99:0f:89:f6:f7:be:1c:92:9b:e1: e0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:24:05:96:C5:8F:18:F3:74:16:95:32:0F:CF:2D:C0:2C:20:64:08 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/673c385c-1059-4c0e-aada-20e7985e7a5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.87.0.0/16 Signature Algorithm: sha256WithRSAEncryption 92:3f:f4:e5:ac:8a:80:76:cf:76:c3:12:f7:62:1e:f7:62:3a: d6:c3:64:dd:5a:fb:0b:75:bc:6d:69:b5:6d:75:db:6f:43:58: 12:2d:04:8e:f1:79:73:b7:2c:69:be:b3:b0:c1:85:93:cc:dd: 7b:8d:47:1a:ec:5c:dc:18:94:3e:a1:97:68:d0:53:17:79:1d: a1:8e:c1:60:df:5d:56:22:8b:6b:56:0d:0c:df:79:37:31:50: b6:b9:84:55:10:fd:4e:b6:2b:9f:a6:e6:b2:e1:d8:e9:31:aa: 45:3b:78:b0:b6:83:bc:9e:3a:25:58:3c:66:9e:bb:49:23:0c: ab:a9:02:75:e5:47:d3:7a:9b:73:e4:06:b6:89:ca:38:a9:58: 83:14:a8:73:b5:ca:ae:1f:08:7c:fc:cb:90:f1:97:0d:fd:58: e1:0d:e5:45:04:da:53:70:1d:15:83:a6:dd:1b:d9:6f:a4:25: ee:a9:66:47:cd:ff:77:c8:40:c6:f0:b5:bf:f3:6f:de:ed:d4: 33:db:0d:e0:c9:73:ea:2f:e9:8c:40:53:17:59:9a:dc:f6:18: 6b:58:0a:65:b0:c1:62:3e:b1:8b:d3:40:0e:76:57:ad:50:be: e0:39:51:de:07:3c:e7:47:9a:94:26:c7:a2:6d:69:48:28:e8: 53:c4:18:8e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDEkyABwwno+aZyqX2XYh28QJjzEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDgyYzZjMjUwMTA3NDhkOTYwOTkwNjJmZmZhMTVkMTk4 ZGQwYmIyMTg0ZjkxYmMyOTk1NzkwNjMwNDg4ODI1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeLqtNa90Y0CMT0mV9e/ObDg8+OzwFvxCB1jOqL1ITuxAl lLpVh8xvMCd6hPesMH+5cAiIh9VwDaCZkMIHdZVCb4cJlWoqoBzxMHGbhagIhKS4 sz0p0RW0CvyWtlJPjfoZ7a1W9xFQ1Rvjzx93TpRMC9wZctbRQbv8f1aheYcqdPwf bdh2LYe5WqdrUYqBBII6RjMRA8Yfa19w+gkcnlokJOwy2wBrzY8lOiRmonwl/uIn 1pln9121AQN0ZSHzpns9JqBIA7rc87C84YR/vaj27MFzFOVjpDCzQ3uFJ3QBcpGQ rrNvHC+vK/Qrc4dkTXDGi1bEmQ+J9ve+HJKb4eAZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDyQFlsWPGPN0FpUyD88twCwgZAgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY3M2MzODVjLTEwNTktNGMwZS1hYWRhLTIwZTc5ODVlN2E1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASVzANBgkqhkiG9w0BAQsFAAOCAQEAkj/05ayKgHbPdsMS92Ie92I61sNk 3Vr7C3W8bWm1bXXbb0NYEi0EjvF5c7csab6zsMGFk8zde41HGuxc3BiUPqGXaNBT F3kdoY7BYN9dViKLa1YNDN95NzFQtrmEVRD9TrYrn6bmsuHY6TGqRTt4sLaDvJ46 JVg8Zp67SSMMq6kCdeVH03qbc+QGtonKOKlYgxSoc7XKrh8IfPzLkPGXDf1Y4Q3l RQTaU3AdFYOm3RvZb6Ql7qlmR83/d8hAxvC1v/Nv3u3UM9sN4Mlz6i/pjEBTF1ma 3PYYa1gKZbDBYj6xi9NADnZXrVC+4DlR3gc850ealCbHom1pSCjoU8QYjg== -----END CERTIFICATE-----Generated at Fri Apr 19 00:32:22 2024 by rpki-client on console-fra.rpki-client.org