$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/88f09a26-8b70-4d31-b73b-01df50c56e50.roa File: 88f09a26-8b70-4d31-b73b-01df50c56e50.roa (raw, json) Hash identifier: DBjryB4LGn2dh7T0JNzVy+7YCLWqOH5Gn436x6xqQGM= Subject key identifier: 81:2A:5C:B5:98:DF:C2:82:37:06:97:B1:4D:B9:CC:86:18:75:CE:02 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 208EEE993094E4DDD2F9FE385D9D03C871E7E25B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/88f09a26-8b70-4d31-b73b-01df50c56e50.roa Signing time: Wed 03 Apr 2024 00:00:00 +0000 ROA not before: Wed 03 Apr 2024 00:00:00 +0000 ROA not after: Wed 08 May 2024 23:59:59 +0000 asID: 6167 IP address blocks: 155.146.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:8e:ee:99:30:94:e4:dd:d2:f9:fe:38:5d:9d:03:c8:71:e7:e2:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 3 00:00:00 2024 GMT Not After : May 8 23:59:59 2024 GMT Subject: serialNumber=85ad3112df97b3e7e7c14f915887157a604aa2187b3b2fcde9d7774fc36be0b9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7c:30:3c:9d:cd:28:e7:7c:06:f6:0b:9c:b3: 61:39:51:34:e3:ed:0e:dd:57:eb:3f:3e:e6:de:10: 86:4b:3d:61:3a:39:53:b2:91:be:ed:c4:db:09:7b: 96:10:5a:fb:5d:5a:ae:1c:f8:80:8b:45:18:fa:5e: 74:6c:5b:b4:15:b6:13:14:b6:7e:d6:24:4d:dd:a1: d8:97:d5:18:ba:c6:8c:46:1d:4a:e0:2b:26:e9:09: 5c:f0:b5:69:16:0a:f7:65:9a:f0:c2:73:ff:35:21: 2a:7f:8e:5a:36:26:8a:c1:b5:7d:cd:0a:6c:2b:94: 68:c0:11:00:53:02:57:65:8e:8a:c4:d5:7f:1a:73: 37:06:f0:dd:6b:2a:f5:02:37:e5:fa:6d:db:59:53: 5c:4b:cb:1c:41:87:d4:de:45:2e:aa:4e:33:a2:72: 58:02:39:dd:be:4f:8e:6c:a7:14:be:13:a7:68:f9: cf:43:42:52:f6:f7:f8:b2:2f:2f:e0:8a:a8:d1:d2: 76:63:b4:c2:d3:77:38:55:11:43:e3:e7:6a:31:1a: 8e:d6:55:e7:fa:18:59:aa:15:c0:c9:bf:7e:90:82: 60:fe:24:59:04:a3:4d:ed:85:31:f9:a1:b8:c9:d6: 75:8e:06:b6:31:6d:65:0a:7d:4a:d6:88:a5:5c:9d: 22:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2A:5C:B5:98:DF:C2:82:37:06:97:B1:4D:B9:CC:86:18:75:CE:02 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/88f09a26-8b70-4d31-b73b-01df50c56e50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.146.128.0/20 Signature Algorithm: sha256WithRSAEncryption 72:0c:f3:1c:50:7a:07:74:0a:c3:92:af:62:07:38:a2:38:01: 61:06:f1:8f:fd:39:c4:64:bb:cd:78:20:89:cd:73:71:d2:24: 84:fc:f8:1c:e8:f6:fd:5b:82:26:4b:95:bb:9d:a7:f2:e8:de: 62:2c:c5:d5:d0:ad:06:cc:42:b9:bd:26:90:a3:7a:96:5d:b8: 50:c6:4e:37:f9:d4:e7:d6:38:63:fb:e8:84:5b:b4:3a:b1:72: 51:2b:5c:19:f3:0c:1f:8e:33:ed:c5:27:10:80:35:45:86:95: 8f:8b:9d:7c:b7:d7:75:72:2c:c8:1a:8b:b2:a3:a7:8d:6c:06: c8:d9:f0:ce:d4:3e:e5:6f:8f:cf:af:76:3f:ae:3f:60:26:ea: 13:9c:3d:cc:b5:9a:68:16:bf:1f:4d:13:b1:b6:0c:e1:fe:27: 8f:e2:aa:a9:1c:1d:1c:42:9f:ef:3c:62:98:17:77:ac:5f:52: 33:e4:cc:66:89:ba:2a:35:ca:52:0c:9b:13:15:7d:be:79:24: c4:62:d4:74:70:ab:6a:ce:7b:05:aa:a2:e4:c9:8e:e5:31:35: e5:b7:9e:2f:88:33:f9:f0:88:6b:17:65:85:45:09:72:a5:15: 53:02:91:8d:cf:4f:25:29:48:bb:3b:4e:25:d0:db:43:77:42: d6:89:ba:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUII7umTCU5N3S+f44XZ0DyHHn4lswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAzMDAwMDAwWhcNMjQwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NWFkMzExMmRmOTdiM2U3ZTdjMTRmOTE1ODg3MTU3YTYw NGFhMjE4N2IzYjJmY2RlOWQ3Nzc0ZmMzNmJlMGI5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6fDA8nc0o53wG9gucs2E5UTTj7Q7dV+s/PubeEIZLPWE6 OVOykb7txNsJe5YQWvtdWq4c+ICLRRj6XnRsW7QVthMUtn7WJE3dodiX1Ri6xoxG HUrgKybpCVzwtWkWCvdlmvDCc/81ISp/jlo2JorBtX3NCmwrlGjAEQBTAldljorE 1X8aczcG8N1rKvUCN+X6bdtZU1xLyxxBh9TeRS6qTjOiclgCOd2+T45spxS+E6do +c9DQlL29/iyLy/giqjR0nZjtMLTdzhVEUPj52oxGo7WVef6GFmqFcDJv36QgmD+ JFkEo03thTH5objJ1nWOBrYxbWUKfUrWiKVcnSKLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgSpctZjfwoI3BpexTbnMhhh1zgIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg4ZjA5YTI2LThiNzAtNGQzMS1iNzNiLTAxZGY1MGM1NmU1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASbkoAwDQYJKoZIhvcNAQELBQADggEBAHIM8xxQegd0CsOSr2IHOKI4AWEG 8Y/9OcRku814IInNc3HSJIT8+Bzo9v1bgiZLlbudp/Lo3mIsxdXQrQbMQrm9JpCj epZduFDGTjf51OfWOGP76IRbtDqxclErXBnzDB+OM+3FJxCANUWGlY+LnXy313Vy LMgai7Kjp41sBsjZ8M7UPuVvj8+vdj+uP2Am6hOcPcy1mmgWvx9NE7G2DOH+J4/i qqkcHRxCn+88YpgXd6xfUjPkzGaJuio1ylIMmxMVfb55JMRi1HRwq2rOewWqouTJ juUxNeW3ni+IM/nwiGsXZYVFCXKlFVMCkY3PTyUpSLs7TiXQ20N3QtaJupk= -----END CERTIFICATE-----Generated at Fri Apr 26 11:01:04 2024 by rpki-client on console-ams.rpki-client.org