$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cf966aa-eaac-4b5f-98ef-4fc962fa8d72.roa File: 6cf966aa-eaac-4b5f-98ef-4fc962fa8d72.roa (raw, json) Hash identifier: 36/LeABhUkoasZOKGZgn9wfxZPk9enwhVFzcMfgqBHA= Subject key identifier: 7E:4A:B9:EC:4E:35:47:FE:93:A0:0E:60:CE:89:D1:AB:43:8D:4E:B0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1851EFF0B712A8BE57D80266741E10B6F0C69B96 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cf966aa-eaac-4b5f-98ef-4fc962fa8d72.roa Signing time: Tue 09 Apr 2024 00:00:00 +0000 ROA not before: Tue 09 Apr 2024 00:00:00 +0000 ROA not after: Tue 14 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 15.190.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:51:ef:f0:b7:12:a8:be:57:d8:02:66:74:1e:10:b6:f0:c6:9b:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 9 00:00:00 2024 GMT Not After : May 14 23:59:59 2024 GMT Subject: serialNumber=f15e9806ae8ad78ee070c141a4f59e3b9d1bb6e667e6e3a812e2522bf08f00b9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:46:7f:cd:e5:34:01:67:19:45:d9:4e:be:e1: b3:cc:b1:2a:56:a5:ad:1c:dd:c3:2c:22:33:95:7c: f8:9d:45:a8:92:4b:98:d4:5e:6c:7d:2f:a8:46:85: 16:8c:12:07:f8:c0:94:08:db:f7:68:12:32:b5:ed: 8e:37:bd:d2:c3:e5:58:b9:2a:7e:73:d2:73:93:d9: 2d:62:0e:5e:eb:8e:14:ec:f1:ed:53:47:ae:00:52: e8:72:3e:52:ba:de:9b:80:df:15:94:1d:7b:52:c4: a3:e0:a7:85:ec:45:51:86:39:09:85:08:eb:af:98: bc:cd:fd:ec:1f:20:b6:cb:de:dd:7b:e4:23:76:ad: 61:ac:ad:f9:0c:e3:ac:3f:43:e5:24:4d:a0:04:57: 57:9f:31:6d:60:b1:7a:73:05:10:39:61:9b:2d:16: d5:d0:70:17:38:84:f1:e0:f8:40:4a:96:0e:7e:f0: 39:37:cf:91:d1:3e:d1:89:38:27:0a:ea:e2:d7:03: 47:37:b1:6d:a6:84:e5:a1:88:67:4a:41:ac:10:d5: f7:90:90:df:94:11:87:64:1a:14:56:f0:57:0a:cf: 3d:62:a1:21:20:d6:be:27:a4:e1:64:67:7b:4b:b0: 09:01:02:25:89:4e:be:9c:d9:46:e3:9b:17:39:58: 7a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:4A:B9:EC:4E:35:47:FE:93:A0:0E:60:CE:89:D1:AB:43:8D:4E:B0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cf966aa-eaac-4b5f-98ef-4fc962fa8d72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.190.96.0/20 Signature Algorithm: sha256WithRSAEncryption 97:a1:b3:9b:c3:e7:b6:06:83:c1:00:4b:0d:ef:7a:d9:19:07: cd:25:1b:67:49:c2:59:05:05:f5:c0:44:66:af:d5:b1:0a:5b: 03:72:e1:c1:22:fe:ca:ed:77:c4:4d:6b:91:89:16:10:79:55: 06:38:c5:3b:e9:06:6f:81:61:ed:d8:27:c2:c0:19:31:21:a2: 67:30:42:f5:03:5b:eb:90:5b:f2:30:a8:13:f0:a1:22:c5:4d: 1f:9e:91:f0:38:7b:53:19:73:0b:16:f1:97:65:c7:d4:36:5a: 4e:af:f6:e7:6b:66:62:c0:61:59:36:17:c5:42:8b:1d:05:50: 04:d0:4e:8f:48:37:a9:3f:7a:8a:2f:80:e8:48:07:b5:8b:c8: 37:bf:4c:f8:c4:e2:77:83:3d:bc:c9:d3:1c:33:fc:36:ec:14: 5f:3f:93:1b:ee:20:de:f6:48:a3:c6:76:49:86:ec:09:4f:9a: df:99:a2:15:cd:ae:37:5b:ce:be:80:8a:a9:10:42:dc:69:5d: 25:7b:1a:5d:7e:47:43:0d:f7:00:73:10:72:19:46:30:dc:ef: 6f:7f:04:48:98:45:47:f9:70:00:a8:4a:c7:b8:8e:91:15:d8: a2:90:3e:92:5f:82:6d:f8:15:c8:08:84:3e:64:71:d1:c6:f1: b8:55:1d:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGFHv8LcSqL5X2AJmdB4QtvDGm5YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA5MDAwMDAwWhcNMjQwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTVlOTgwNmFlOGFkNzhlZTA3MGMxNDFhNGY1OWUzYjlk MWJiNmU2NjdlNmUzYTgxMmUyNTIyYmYwOGYwMGI5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwRn/N5TQBZxlF2U6+4bPMsSpWpa0c3cMsIjOVfPidRaiS S5jUXmx9L6hGhRaMEgf4wJQI2/doEjK17Y43vdLD5Vi5Kn5z0nOT2S1iDl7rjhTs 8e1TR64AUuhyPlK63puA3xWUHXtSxKPgp4XsRVGGOQmFCOuvmLzN/ewfILbL3t17 5CN2rWGsrfkM46w/Q+UkTaAEV1efMW1gsXpzBRA5YZstFtXQcBc4hPHg+EBKlg5+ 8Dk3z5HRPtGJOCcK6uLXA0c3sW2mhOWhiGdKQawQ1feQkN+UEYdkGhRW8FcKzz1i oSEg1r4npOFkZ3tLsAkBAiWJTr6c2Ubjmxc5WHpZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfkq57E41R/6ToA5gzonRq0ONTrAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZjZjk2NmFhLWVhYWMtNGI1Zi05OGVmLTRmYzk2MmZhOGQ3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQPvmAwDQYJKoZIhvcNAQELBQADggEBAJehs5vD57YGg8EASw3vetkZB80l G2dJwlkFBfXARGav1bEKWwNy4cEi/srtd8RNa5GJFhB5VQY4xTvpBm+BYe3YJ8LA GTEhomcwQvUDW+uQW/IwqBPwoSLFTR+ekfA4e1MZcwsW8Zdlx9Q2Wk6v9udrZmLA YVk2F8VCix0FUATQTo9IN6k/eoovgOhIB7WLyDe/TPjE4neDPbzJ0xwz/DbsFF8/ kxvuIN72SKPGdkmG7AlPmt+ZohXNrjdbzr6AiqkQQtxpXSV7Gl1+R0MN9wBzEHIZ RjDc729/BEiYRUf5cACoSse4jpEV2KKQPpJfgm34FcgIhD5kcdHG8bhVHao= -----END CERTIFICATE-----Generated at Wed May 1 20:48:54 2024 by rpki-client on console-ams.rpki-client.org