$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7705f4fb-e823-492c-bd5e-623dff4808a3.roa File: 7705f4fb-e823-492c-bd5e-623dff4808a3.roa (raw, json) Hash identifier: Wl8CikES/FYVWUVwa2woggAnBIpEIDn6V2WKjY332rk= Subject key identifier: A5:35:00:88:DC:82:BB:E1:5B:81:53:C0:65:30:EE:25:9C:79:3B:91 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 478E923151CCEAB3437D4ED7BCCF6A9B63AAF9BE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7705f4fb-e823-492c-bd5e-623dff4808a3.roa Signing time: Mon 01 Apr 2024 00:00:00 +0000 ROA not before: Mon 01 Apr 2024 00:00:00 +0000 ROA not after: Mon 06 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 18.89.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:8e:92:31:51:cc:ea:b3:43:7d:4e:d7:bc:cf:6a:9b:63:aa:f9:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 1 00:00:00 2024 GMT Not After : May 6 23:59:59 2024 GMT Subject: serialNumber=e3d122447b8525d81e85686485c688037df597547224bd4b32cf80758236e5b5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:13:18:3c:ce:ff:6a:8a:57:56:63:de:cf:83: 30:17:47:12:ef:4f:6d:40:19:f0:38:41:54:6a:9a: f8:2f:c9:35:b6:93:c9:bf:3f:24:88:d2:df:c1:65: 8d:dd:4d:0d:ec:9e:00:45:ad:9f:a2:3b:ad:3e:9e: 42:36:24:aa:d6:47:72:95:c7:64:b1:fe:b9:a1:dc: a0:ef:95:7e:0b:8c:6f:fb:62:d2:06:72:39:49:ae: 7e:95:2b:1c:55:61:c7:58:cb:7c:f7:ee:9d:34:8b: 96:a3:e9:68:c1:df:14:25:a6:40:92:4b:64:b2:1b: d0:19:fa:9b:4b:0b:90:21:a6:51:d9:e3:42:d2:5b: 65:52:5f:f7:7c:4f:97:fa:04:1f:91:eb:44:41:7a: ec:67:00:24:ee:d6:ea:34:1b:67:80:b0:fb:6e:1c: e8:4d:93:89:aa:48:1d:83:eb:e0:d7:92:53:76:b3: b7:40:e5:fd:b1:82:c6:b3:b5:e9:03:39:3b:81:6f: f7:e8:cf:2f:9e:16:e1:1a:b5:19:a7:24:2c:5a:90: 0c:91:42:a1:9c:43:d3:24:e7:2d:47:94:f1:7c:37: 84:f3:20:02:d5:30:93:ed:8c:c6:ab:d1:19:77:d6: 73:d9:1b:34:0b:75:3e:c0:4f:57:d4:50:0c:ce:dd: b6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:35:00:88:DC:82:BB:E1:5B:81:53:C0:65:30:EE:25:9C:79:3B:91 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7705f4fb-e823-492c-bd5e-623dff4808a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.89.0.0/18 Signature Algorithm: sha256WithRSAEncryption 0c:4a:05:72:4f:91:7e:c7:5c:ed:bc:28:3d:b0:24:a1:2c:0e: dc:fd:cd:6e:d1:cc:f1:62:6a:1c:9f:d9:c4:6f:55:46:fd:ca: 85:2b:63:ff:53:fb:07:06:a0:5e:89:ad:5a:fd:68:c0:49:0b: 17:3c:58:b3:a4:36:eb:1a:c4:aa:78:0b:1c:e5:8b:8f:d8:22: a8:16:37:ec:19:a4:a7:d4:35:1f:fe:91:66:57:96:4c:d9:0b: 21:01:79:48:9e:2f:81:33:4c:98:9d:d6:4f:c0:4e:8b:bb:fe: dc:95:5c:f2:c6:42:60:49:5c:7d:bb:9f:f8:b4:ef:a5:19:2f: b5:e3:5f:3d:ba:c2:22:98:05:c8:4d:52:90:3e:c2:06:ba:54: f5:6f:ed:e3:ca:24:97:b9:2a:39:b1:a9:a9:1c:50:a4:58:82: 9c:ad:9e:f9:2a:05:b6:12:85:10:15:fc:a9:8e:2e:24:86:ad: d8:53:04:f9:bc:e2:52:0b:14:a5:4d:f1:9a:ae:98:c1:10:da: fe:e1:20:21:65:68:bb:8e:c8:8c:d3:b3:e8:9f:d9:61:2d:96: 13:8e:59:30:15:8e:b4:05:79:8b:93:36:98:b7:e2:bc:a4:c6: 31:ca:bd:d6:be:f8:2e:8d:f6:1f:e3:9d:65:1f:f6:c2:8d:4a: b5:de:9c:2b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR46SMVHM6rNDfU7XvM9qm2Oq+b4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAxMDAwMDAwWhcNMjQwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlM2QxMjI0NDdiODUyNWQ4MWU4NTY4NjQ4NWM2ODgwMzdk ZjU5NzU0NzIyNGJkNGIzMmNmODA3NTgyMzZlNWI1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqExg8zv9qildWY97PgzAXRxLvT21AGfA4QVRqmvgvyTW2 k8m/PySI0t/BZY3dTQ3sngBFrZ+iO60+nkI2JKrWR3KVx2Sx/rmh3KDvlX4LjG/7 YtIGcjlJrn6VKxxVYcdYy3z37p00i5aj6WjB3xQlpkCSS2SyG9AZ+ptLC5AhplHZ 40LSW2VSX/d8T5f6BB+R60RBeuxnACTu1uo0G2eAsPtuHOhNk4mqSB2D6+DXklN2 s7dA5f2xgsaztekDOTuBb/fozy+eFuEatRmnJCxakAyRQqGcQ9Mk5y1HlPF8N4Tz IALVMJPtjMar0Rl31nPZGzQLdT7AT1fUUAzO3baXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpTUAiNyCu+FbgVPAZTDuJZx5O5EwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc3MDVmNGZiLWU4MjMtNDkyYy1iZDVlLTYyM2RmZjQ4MDhhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYSWQAwDQYJKoZIhvcNAQELBQADggEBAAxKBXJPkX7HXO28KD2wJKEsDtz9 zW7RzPFiahyf2cRvVUb9yoUrY/9T+wcGoF6JrVr9aMBJCxc8WLOkNusaxKp4Cxzl i4/YIqgWN+wZpKfUNR/+kWZXlkzZCyEBeUieL4EzTJid1k/ATou7/tyVXPLGQmBJ XH27n/i076UZL7XjXz26wiKYBchNUpA+wga6VPVv7ePKJJe5KjmxqakcUKRYgpyt nvkqBbYShRAV/KmOLiSGrdhTBPm84lILFKVN8ZqumMEQ2v7hICFlaLuOyIzTs+if 2WEtlhOOWTAVjrQFeYuTNpi34rykxjHKvda++C6N9h/jnWUf9sKNSrXenCs= -----END CERTIFICATE-----Generated at Fri Apr 19 00:52:21 2024 by rpki-client on console-ams.rpki-client.org