$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/71b069da-cb61-4657-b888-4f53d5a18907.roa File: 71b069da-cb61-4657-b888-4f53d5a18907.roa (raw, json) Hash identifier: 98smSs8fPV3/CEValV9MUPpm2XlmbHMVnJpFmiitVaw= Subject key identifier: B8:E6:1B:02:55:11:D7:D4:7E:37:AE:6C:23:91:CE:0B:4C:88:34:04 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 51CA84889BEDAFDBB9FE18EC5C9FDC1876C8F4E6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/71b069da-cb61-4657-b888-4f53d5a18907.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 15.190.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ca:84:88:9b:ed:af:db:b9:fe:18:ec:5c:9f:dc:18:76:c8:f4:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=9532326c019608dc42147e1bdb774a8699b9710f705fea5c83945dd2c0141d48, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5f:bb:83:41:a7:2f:a2:a2:42:5f:5e:3e:9e: c8:a5:40:d6:65:f3:eb:48:d0:0f:0e:95:b3:23:cf: 7f:30:1c:6a:d0:cf:1e:3c:51:b9:f7:eb:5a:95:fc: 57:ab:9c:06:6a:02:8d:57:ae:73:00:ec:b1:c8:1e: 73:9f:95:b2:8f:85:ae:fe:39:43:93:8e:6d:c0:1d: f2:d2:87:70:2b:64:2c:18:53:63:34:53:9f:0a:0a: 3d:66:04:cb:3e:0b:38:e6:00:3b:53:68:d3:3c:fe: 94:25:94:f4:f1:57:9d:a1:38:d4:87:ca:30:51:1a: e5:e5:8a:5b:d2:1f:04:27:d5:2e:cf:28:3b:75:db: 24:ef:b1:d8:81:ed:33:31:d2:3a:6f:f7:dc:02:60: 2e:ca:6b:b6:a0:eb:c9:29:e2:20:e6:7f:7b:97:83: 21:49:63:ee:83:71:c5:86:fd:25:4a:93:76:25:2c: 9e:bc:aa:c0:cd:dc:6b:d2:d3:f6:4e:87:a4:fb:4a: 37:a9:73:cc:78:ba:69:5a:25:13:f5:92:d8:e1:47: c0:92:11:66:9d:d1:3a:7a:d8:37:bc:04:2c:32:7b: 13:98:15:04:9d:38:af:8d:5a:dc:c4:73:6c:39:be: a5:75:35:e1:6c:7e:92:9f:bb:66:8d:70:49:56:95: 53:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E6:1B:02:55:11:D7:D4:7E:37:AE:6C:23:91:CE:0B:4C:88:34:04 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/71b069da-cb61-4657-b888-4f53d5a18907.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.190.16.0/20 Signature Algorithm: sha256WithRSAEncryption 8e:52:52:0c:46:7c:9d:a5:a9:38:0d:d5:00:c3:7c:75:be:90: 02:57:b2:e4:8e:68:b4:a4:6b:17:46:fa:dd:b1:b9:de:ab:dc: 35:6f:c8:b3:ae:94:ac:3e:02:4b:e9:04:bd:71:5c:d8:ca:9a: df:bf:03:05:2e:9e:fd:f4:bd:e6:6e:8d:d7:33:91:54:45:95: 94:96:2e:eb:08:5e:8a:26:1b:98:7b:67:57:d2:a2:af:17:cd: c9:64:21:10:c9:52:ac:1c:f6:de:3b:3c:ee:0b:35:ac:3e:7e: 3c:46:a0:34:07:28:90:77:aa:6c:d9:04:f0:49:16:b6:8b:e8: 43:03:b6:4e:a8:c9:ba:c2:ac:1b:96:0e:12:01:36:34:d0:53: c8:6a:87:95:37:22:76:f1:6c:c8:cd:66:2b:79:dd:11:07:d0: 5e:7e:ac:94:77:e0:95:f9:4c:df:18:6b:0c:3d:9a:68:5c:86: cd:1d:55:9b:ee:dc:34:2f:98:ef:3d:f9:20:b4:b9:29:15:19: 0a:c9:6f:14:3b:bd:b6:f8:b1:a1:ec:95:29:17:a4:8d:43:d6: b8:5f:d2:b7:ca:cd:a8:ee:17:02:42:c9:b0:04:3e:21:72:83: cd:68:8a:a3:2e:ee:59:9a:cb:5f:27:5f:ca:10:d9:e4:69:77: f8:ad:e9:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUcqEiJvtr9u5/hjsXJ/cGHbI9OYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTMyMzI2YzAxOTYwOGRjNDIxNDdlMWJkYjc3NGE4Njk5 Yjk3MTBmNzA1ZmVhNWM4Mzk0NWRkMmMwMTQxZDQ4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8X7uDQacvoqJCX14+nsilQNZl8+tI0A8OlbMjz38wHGrQ zx48Ubn361qV/FernAZqAo1XrnMA7LHIHnOflbKPha7+OUOTjm3AHfLSh3ArZCwY U2M0U58KCj1mBMs+CzjmADtTaNM8/pQllPTxV52hONSHyjBRGuXlilvSHwQn1S7P KDt12yTvsdiB7TMx0jpv99wCYC7Ka7ag68kp4iDmf3uXgyFJY+6DccWG/SVKk3Yl LJ68qsDN3GvS0/ZOh6T7Sjepc8x4umlaJRP1ktjhR8CSEWad0Tp62De8BCwyexOY FQSdOK+NWtzEc2w5vqV1NeFsfpKfu2aNcElWlVMXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuOYbAlUR19R+N65sI5HOC0yINAQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzcxYjA2OWRhLWNiNjEtNDY1Ny1iODg4LTRmNTNkNWExODkwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQPvhAwDQYJKoZIhvcNAQELBQADggEBAI5SUgxGfJ2lqTgN1QDDfHW+kAJX suSOaLSkaxdG+t2xud6r3DVvyLOulKw+AkvpBL1xXNjKmt+/AwUunv30veZujdcz kVRFlZSWLusIXoomG5h7Z1fSoq8XzclkIRDJUqwc9t47PO4LNaw+fjxGoDQHKJB3 qmzZBPBJFraL6EMDtk6oybrCrBuWDhIBNjTQU8hqh5U3InbxbMjNZit53REH0F5+ rJR34JX5TN8Yaww9mmhchs0dVZvu3DQvmO89+SC0uSkVGQrJbxQ7vbb4saHslSkX pI1D1rhf0rfKzajuFwJCybAEPiFyg81oiqMu7lmay18nX8oQ2eRpd/it6UI= -----END CERTIFICATE-----Generated at Thu Apr 25 22:33:16 2024 by rpki-client on console-fra.rpki-client.org