$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9573e417-8a8e-4504-baca-49cf9f2bf215.roa File: 9573e417-8a8e-4504-baca-49cf9f2bf215.roa (raw, json) Hash identifier: BpwndCvrT6rnsw+WaOO2akpKRQPfXcwHeo3US7av/x8= Subject key identifier: E1:F3:95:A7:35:B2:52:2B:F0:02:BF:5A:78:F4:38:F7:ED:C5:2C:07 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2B27298FC951505E0A76F3716030D8604E231F22 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9573e417-8a8e-4504-baca-49cf9f2bf215.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 54.240.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:27:29:8f:c9:51:50:5e:0a:76:f3:71:60:30:d8:60:4e:23:1f:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=2eb402b5823f3b17e570c7a1df42c388d53dc1127cd653812b216afaacb05226, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3f:3c:57:06:e0:7e:73:58:61:50:6b:8d:89: 8c:3d:91:33:bd:b0:a8:2a:06:aa:51:f6:50:ae:26: da:e1:ee:20:f2:49:2c:67:0b:20:91:d6:c3:3e:95: 70:28:9b:ee:4e:ac:a8:9d:06:1f:4c:ee:aa:f0:d6: dd:77:e7:eb:3e:b3:aa:92:c4:f8:c7:11:2f:2d:f9: 02:6b:71:2f:33:55:61:54:ae:0e:d4:53:8e:76:cc: 2a:72:05:f6:12:c8:58:9e:65:61:62:0d:d3:8c:77: f1:10:b8:e7:02:ad:09:0e:cd:43:3f:57:dc:86:b4: 74:13:b7:58:aa:e3:86:f3:c2:91:ca:26:35:ee:61: ad:25:eb:cb:a2:0e:0f:a7:76:e4:d3:37:1d:c2:43: ec:3d:8e:99:32:72:03:3f:41:d7:49:7c:7d:40:0e: e9:df:b3:e3:4d:fc:6f:e6:bb:06:14:31:7b:a0:6b: 75:25:72:a3:f5:a4:21:52:c5:17:b4:8e:44:14:c2: 41:61:53:94:e6:43:40:12:da:d0:a3:6e:c9:9c:68: 3a:d1:dd:c1:30:7b:12:92:53:6f:1c:9c:9c:28:40: f7:56:4e:cc:c2:83:f5:fd:27:07:eb:1f:15:d7:78: 10:b7:b2:5c:6c:81:73:a3:b1:7b:ae:46:8d:b7:41: 5a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F3:95:A7:35:B2:52:2B:F0:02:BF:5A:78:F4:38:F7:ED:C5:2C:07 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9573e417-8a8e-4504-baca-49cf9f2bf215.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.8.0/21 Signature Algorithm: sha256WithRSAEncryption 9f:6e:c2:7b:32:cf:b1:dc:70:ed:c3:28:90:8c:43:67:5b:51: d9:b5:ce:5e:be:e8:56:11:9b:1e:42:fa:fe:0e:cf:dd:1c:a6: d7:01:14:71:8f:1e:18:9f:94:6d:ac:c6:07:91:56:11:da:6f: c3:13:55:39:12:a7:e9:47:af:c7:a3:ae:51:e9:df:5a:78:6a: 57:6d:47:15:d2:04:3f:f5:19:aa:ec:9a:ac:e3:41:5f:07:94: c6:c5:97:1c:3e:85:a7:ce:2a:07:27:78:23:00:4f:d5:59:64: 58:01:7f:82:51:d5:26:50:fe:34:17:25:5d:43:03:1e:03:e4: 35:f3:56:f3:52:af:49:dd:a5:ac:51:f2:19:a3:ad:0e:07:b8: f1:b7:7a:b5:94:ac:48:05:eb:da:ae:9f:07:b4:89:f3:64:c0: 42:56:96:f1:93:b9:92:3d:76:07:0d:ca:05:f6:e0:79:7c:43: e8:48:ba:b4:cb:63:ff:15:2f:64:0b:02:07:4b:5b:a5:5c:41: b3:7f:75:88:7d:3a:7a:ec:5a:c8:cf:e0:65:f4:80:b8:00:34: b9:56:4e:a0:42:c4:d4:13:bb:8f:4a:7e:93:11:aa:af:ea:f8: bc:13:c2:70:ec:4d:2e:5e:d0:65:5f:f9:dd:8e:4d:a5:54:f0: 5b:86:b9:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKycpj8lRUF4KdvNxYDDYYE4jHyIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZWI0MDJiNTgyM2YzYjE3ZTU3MGM3YTFkZjQyYzM4OGQ1 M2RjMTEyN2NkNjUzODEyYjIxNmFmYWFjYjA1MjI2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEPzxXBuB+c1hhUGuNiYw9kTO9sKgqBqpR9lCuJtrh7iDy SSxnCyCR1sM+lXAom+5OrKidBh9M7qrw1t135+s+s6qSxPjHES8t+QJrcS8zVWFU rg7UU452zCpyBfYSyFieZWFiDdOMd/EQuOcCrQkOzUM/V9yGtHQTt1iq44bzwpHK JjXuYa0l68uiDg+nduTTNx3CQ+w9jpkycgM/QddJfH1ADunfs+NN/G/muwYUMXug a3UlcqP1pCFSxRe0jkQUwkFhU5TmQ0AS2tCjbsmcaDrR3cEwexKSU28cnJwoQPdW TszCg/X9JwfrHxXXeBC3slxsgXOjsXuuRo23QVodAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4fOVpzWyUivwAr9aePQ49+3FLAcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk1NzNlNDE3LThhOGUtNDUwNC1iYWNhLTQ5Y2Y5ZjJiZjIxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM28AgwDQYJKoZIhvcNAQELBQADggEBAJ9uwnsyz7HccO3DKJCMQ2dbUdm1 zl6+6FYRmx5C+v4Oz90cptcBFHGPHhiflG2sxgeRVhHab8MTVTkSp+lHr8ejrlHp 31p4aldtRxXSBD/1GarsmqzjQV8HlMbFlxw+hafOKgcneCMAT9VZZFgBf4JR1SZQ /jQXJV1DAx4D5DXzVvNSr0ndpaxR8hmjrQ4HuPG3erWUrEgF69qunwe0ifNkwEJW lvGTuZI9dgcNygX24Hl8Q+hIurTLY/8VL2QLAgdLW6VcQbN/dYh9OnrsWsjP4GX0 gLgANLlWTqBCxNQTu49KfpMRqq/q+LwTwnDsTS5e0GVf+d2OTaVU8FuGuXo= -----END CERTIFICATE-----Generated at Wed Apr 24 16:35:40 2024 by rpki-client on console-fra.rpki-client.org