$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9704cb85-9984-4aac-adeb-bf848308e753.roa File: 9704cb85-9984-4aac-adeb-bf848308e753.roa (raw, json) Hash identifier: ZDH2BRDpFfafsBSAkFrSMbusVnPJssAzQIYTtZtoATo= Subject key identifier: EB:F5:31:B2:0F:E0:57:E6:2F:A8:AC:F3:7E:1B:8F:15:B1:0B:5B:52 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6587D301F71E38EA21C3062583CAE638F8D35B3C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9704cb85-9984-4aac-adeb-bf848308e753.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 150.222.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:87:d3:01:f7:1e:38:ea:21:c3:06:25:83:ca:e6:38:f8:d3:5b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=3f568507e7e73f33c1daaadd53d99a9d4bd465912ee443f5d73cbe2dd05e9d4f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:72:fd:d9:c8:eb:4a:88:67:f8:b4:17:b4:1a: 3d:01:52:ef:62:55:a5:3f:b4:86:72:f8:95:db:cd: e2:1e:37:14:96:3c:77:35:56:5f:60:a1:90:b7:5e: 43:cd:3d:11:41:49:12:47:85:83:20:7e:22:31:66: f9:98:cb:2d:d3:35:11:99:31:47:12:4f:12:dc:5d: 47:50:80:27:20:51:e5:5e:5a:26:d3:f0:11:c4:ca: dd:44:3e:ab:07:11:1b:3b:e0:37:ae:8d:ae:8b:2b: 00:7b:dc:65:c4:a5:a2:3d:3f:76:71:4a:ea:e4:c1: 6a:6e:d1:46:5f:89:01:51:0a:5a:27:3f:57:b3:1c: d9:fe:d9:82:5d:8f:66:d8:fd:0a:a3:96:90:5d:78: 9b:d0:b8:37:29:10:79:10:ab:1b:d6:0c:8d:ca:24: f8:19:29:a0:45:8b:f5:d7:e8:b9:47:f8:a3:4f:fd: 56:cc:38:d5:03:76:aa:b7:1f:56:27:ea:60:d9:d0: 3a:43:ed:ad:7e:bd:fb:88:68:4b:00:cb:85:62:87: 85:13:e0:25:fc:64:55:22:b5:ab:dc:4a:2e:3f:3b: 90:b7:3b:c8:1c:48:b1:45:b1:e1:9d:4e:43:82:fe: 61:ba:45:cf:38:d5:d8:a2:f2:93:51:d7:44:d7:c1: b4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F5:31:B2:0F:E0:57:E6:2F:A8:AC:F3:7E:1B:8F:15:B1:0B:5B:52 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9704cb85-9984-4aac-adeb-bf848308e753.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.222.26.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:e2:a2:01:be:16:1c:03:f9:09:ee:83:a4:14:89:8a:91:4d: 6d:27:73:51:f8:da:78:0c:4c:24:59:a4:84:86:d4:c0:64:24: 80:3e:3e:97:5b:94:df:8b:cd:d6:21:82:16:dd:dc:b3:f9:d9: 34:49:35:6a:f6:bb:71:23:4e:55:2b:ed:7c:a6:0a:84:be:8f: 05:48:af:29:83:15:86:aa:05:fd:bc:df:49:bc:a0:fa:ed:e8: fd:9e:3a:2e:5b:96:78:83:26:55:aa:a9:01:7d:61:eb:47:94: 7a:01:8e:dd:19:9e:18:7f:5a:62:16:8c:d2:29:68:6c:ef:24: 80:55:d5:32:e8:ce:81:b8:5d:98:7b:cd:f1:ce:93:d5:fa:4c: 39:fe:3e:c9:01:ee:79:cc:11:72:72:ce:54:a3:65:ad:8c:fd: 2a:79:97:7a:f3:31:9d:c6:2e:85:02:f5:99:14:f7:89:7b:67: 35:cd:71:0b:5e:f0:bd:1a:ce:8b:7b:8e:ee:a2:8a:02:28:3f: 6b:8e:19:ed:87:fc:aa:4b:67:b4:bd:e4:e2:77:b8:82:8c:7d: 89:78:9a:39:fe:68:87:d6:f6:68:73:fa:62:12:9c:df:0b:2b: 49:8d:b3:d2:bb:58:86:44:2a:60:ad:54:5b:71:c1:cd:15:74: db:d1:93:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZYfTAfceOOohwwYlg8rmOPjTWzwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjU2ODUwN2U3ZTczZjMzYzFkYWFhZGQ1M2Q5OWE5ZDRi ZDQ2NTkxMmVlNDQzZjVkNzNjYmUyZGQwNWU5ZDRmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCicv3ZyOtKiGf4tBe0Gj0BUu9iVaU/tIZy+JXbzeIeNxSW PHc1Vl9goZC3XkPNPRFBSRJHhYMgfiIxZvmYyy3TNRGZMUcSTxLcXUdQgCcgUeVe WibT8BHEyt1EPqsHERs74Deuja6LKwB73GXEpaI9P3ZxSurkwWpu0UZfiQFRClon P1ezHNn+2YJdj2bY/QqjlpBdeJvQuDcpEHkQqxvWDI3KJPgZKaBFi/XX6LlH+KNP /VbMONUDdqq3H1Yn6mDZ0DpD7a1+vfuIaEsAy4Vih4UT4CX8ZFUitavcSi4/O5C3 O8gcSLFFseGdTkOC/mG6Rc841dii8pNR10TXwbTbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6/Uxsg/gV+YvqKzzfhuPFbELW1IwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk3MDRjYjg1LTk5ODQtNGFhYy1hZGViLWJmODQ4MzA4ZTc1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACW3howDQYJKoZIhvcNAQELBQADggEBAC3iogG+FhwD+Qnug6QUiYqRTW0n c1H42ngMTCRZpISG1MBkJIA+PpdblN+LzdYhghbd3LP52TRJNWr2u3EjTlUr7Xym CoS+jwVIrymDFYaqBf2830m8oPrt6P2eOi5blniDJlWqqQF9YetHlHoBjt0Znhh/ WmIWjNIpaGzvJIBV1TLozoG4XZh7zfHOk9X6TDn+PskB7nnMEXJyzlSjZa2M/Sp5 l3rzMZ3GLoUC9ZkU94l7ZzXNcQte8L0azot7ju6iigIoP2uOGe2H/KpLZ7S95OJ3 uIKMfYl4mjn+aIfW9mhz+mISnN8LK0mNs9K7WIZEKmCtVFtxwc0VdNvRk7I= -----END CERTIFICATE-----Generated at Wed May 1 20:48:58 2024 by rpki-client on console-ams.rpki-client.org