$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/85bfc804-a2b4-4976-a32e-f8c8576e63aa.roa File: 85bfc804-a2b4-4976-a32e-f8c8576e63aa.roa (raw, json) Hash identifier: jTkC+1ZlbuxLHb+cKfT7HqJf/OczTHmg/heNh4dcQ2k= Subject key identifier: 60:05:31:DE:63:86:8B:4A:74:AD:58:56:6A:2F:B6:0F:F5:6A:65:9B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 64E65F2D1A429AD6E82DEBF322D9EBF2A64DAA30 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/85bfc804-a2b4-4976-a32e-f8c8576e63aa.roa Signing time: Wed 03 Apr 2024 00:00:00 +0000 ROA not before: Wed 03 Apr 2024 00:00:00 +0000 ROA not after: Wed 08 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 18.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e6:5f:2d:1a:42:9a:d6:e8:2d:eb:f3:22:d9:eb:f2:a6:4d:aa:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 3 00:00:00 2024 GMT Not After : May 8 23:59:59 2024 GMT Subject: serialNumber=1821c991e2ae195dfb40eb51ca942de2a2a96924257d12cf0573104624de0912, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ba:73:92:45:91:ec:13:e5:4c:06:22:6b:dd: eb:00:8e:c4:4a:eb:de:61:91:d0:f5:8c:7d:74:42: 84:c0:13:6c:5e:b9:eb:79:5a:35:20:48:77:48:b1: d4:cd:3a:14:29:c6:d8:2f:70:9c:32:4f:b4:7d:d3: f4:be:60:90:f8:bd:06:f4:8b:5b:1b:d7:0e:de:57: 8d:e6:24:1a:c9:0e:cb:56:ca:c2:da:ab:9b:0c:dd: c5:f7:12:30:fd:b2:fd:72:ff:4e:6e:bb:91:e8:9f: b7:8f:19:fb:32:05:ac:3e:da:e1:66:9b:13:db:c1: a2:bc:da:84:dd:30:12:86:51:48:7a:44:32:aa:6e: d2:f0:df:58:58:bd:f1:37:78:24:c2:23:12:1f:d7: b1:eb:f5:3d:15:60:09:37:76:65:87:eb:fa:34:61: 74:01:be:85:92:f9:2a:3e:16:00:88:a8:da:e5:7b: 66:67:5a:4e:55:73:92:69:9f:29:ca:c1:8f:a9:d2: a2:ed:1f:f6:51:ff:1e:06:72:a5:25:af:8e:82:c5: 35:34:77:89:f7:26:3e:96:fd:93:2f:cb:26:81:0d: 01:3b:c3:ae:0d:f8:0e:f5:d5:18:80:f3:57:cc:6b: 45:c7:45:8c:21:69:53:62:89:ef:d0:58:a5:8d:39: c8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:05:31:DE:63:86:8B:4A:74:AD:58:56:6A:2F:B6:0F:F5:6A:65:9B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/85bfc804-a2b4-4976-a32e-f8c8576e63aa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption 90:75:28:48:3f:56:a2:1a:e5:89:4a:46:be:26:82:44:f9:28: a3:9c:c0:dd:3e:c1:03:fa:1d:36:dc:ce:b9:b9:7d:78:4d:9d: 41:6e:74:11:da:d7:f9:4c:41:f7:48:c8:b1:0a:a7:8b:2b:dd: 41:42:5d:a0:d1:53:d6:68:ea:83:f8:42:e4:49:3b:1f:bb:b2: 48:22:95:19:d3:65:14:9b:4e:6d:0b:43:60:f3:76:47:e9:f8: 44:d2:17:14:48:91:b8:51:b5:5b:eb:ee:b5:4c:b8:d5:66:b2: 49:6f:90:01:29:4b:a7:02:2b:4b:ac:db:74:cb:e2:8e:90:37: d9:c2:5c:59:2d:5a:f5:9f:48:a8:c3:ec:68:7a:f0:05:2d:31: 84:8f:d2:20:d4:b3:2a:6e:e0:30:d9:f4:1e:3d:f2:0a:70:86: b6:c5:ba:63:9c:3a:9b:05:15:f4:4e:47:a2:ca:80:9a:ab:9b: 60:13:95:63:30:fb:d1:bd:5e:a7:17:dd:df:ac:6d:af:1e:d9: 3f:33:6e:54:ab:52:ed:f4:58:0a:52:e1:e7:ce:c2:0a:70:64: 4b:a9:1f:2f:98:8b:19:61:3b:af:7f:34:60:e0:b2:65:04:ff: 04:eb:29:27:8c:c1:d5:ea:be:24:e6:11:bd:cf:24:0a:ba:c9: ff:c9:3f:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZOZfLRpCmtboLevzItnr8qZNqjAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAzMDAwMDAwWhcNMjQwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxODIxYzk5MWUyYWUxOTVkZmI0MGViNTFjYTk0MmRlMmEy YTk2OTI0MjU3ZDEyY2YwNTczMTA0NjI0ZGUwOTEyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiunOSRZHsE+VMBiJr3esAjsRK695hkdD1jH10QoTAE2xe uet5WjUgSHdIsdTNOhQpxtgvcJwyT7R90/S+YJD4vQb0i1sb1w7eV43mJBrJDstW ysLaq5sM3cX3EjD9sv1y/05uu5Hon7ePGfsyBaw+2uFmmxPbwaK82oTdMBKGUUh6 RDKqbtLw31hYvfE3eCTCIxIf17Hr9T0VYAk3dmWH6/o0YXQBvoWS+So+FgCIqNrl e2ZnWk5Vc5JpnynKwY+p0qLtH/ZR/x4GcqUlr46CxTU0d4n3Jj6W/ZMvyyaBDQE7 w64N+A711RiA81fMa0XHRYwhaVNiie/QWKWNOchBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYAUx3mOGi0p0rVhWai+2D/VqZZswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg1YmZjODA0LWEyYjQtNDk3Ni1hMzJlLWY4Yzg1NzZlNjNhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASvDANBgkqhkiG9w0BAQsFAAOCAQEAkHUoSD9WohrliUpGviaCRPkoo5zA 3T7BA/odNtzOubl9eE2dQW50EdrX+UxB90jIsQqniyvdQUJdoNFT1mjqg/hC5Ek7 H7uySCKVGdNlFJtObQtDYPN2R+n4RNIXFEiRuFG1W+vutUy41WaySW+QASlLpwIr S6zbdMvijpA32cJcWS1a9Z9IqMPsaHrwBS0xhI/SINSzKm7gMNn0Hj3yCnCGtsW6 Y5w6mwUV9E5HosqAmqubYBOVYzD70b1epxfd36xtrx7ZPzNuVKtS7fRYClLh587C CnBkS6kfL5iLGWE7r380YOCyZQT/BOspJ4zB1eq+JOYRvc8kCrrJ/8k/mA== -----END CERTIFICATE-----Generated at Sat Apr 20 05:36:25 2024 by rpki-client on console-ams.rpki-client.org