$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/99e1c169-d92e-43fa-a1ba-37559c29d98e.roa File: 99e1c169-d92e-43fa-a1ba-37559c29d98e.roa (raw, json) Hash identifier: M27bTplLCIpNQ/4FRpS1RgsbXloCpaG0GX+nI3o4ZsY= Subject key identifier: 9A:8C:64:59:F5:7C:EE:ED:73:3B:C0:13:3D:D7:17:DE:1C:81:0B:28 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 51AD8133A1A4F3708C7C78800202CD054138FE4B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/99e1c169-d92e-43fa-a1ba-37559c29d98e.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.220.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ad:81:33:a1:a4:f3:70:8c:7c:78:80:02:02:cd:05:41:38:fe:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=73f85bed1239d2cb068c59c957d110a225aafef257ba6ae2dd7c6e6709ab526f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:30:3d:87:05:8e:f4:c7:0a:52:5e:51:15:ad: 4f:8f:2b:98:fc:31:7a:e8:3e:fb:ab:1d:91:c8:e4: a4:a0:e1:06:3b:cb:56:ed:86:fc:b7:37:50:ca:22: fe:d4:94:e7:7d:9e:92:39:8a:06:20:0b:c0:fc:62: b2:7f:45:ec:9c:08:88:3f:04:c1:c9:cf:b1:b7:db: 32:57:8e:d0:bf:8a:0c:0f:6d:0a:03:2e:4e:ec:4b: f7:57:72:d5:53:b3:7c:fa:fc:ca:c4:ca:3b:71:b9: c0:97:e6:9b:5c:d3:d5:71:90:38:3a:30:d7:aa:69: 16:8a:e4:dc:75:eb:14:63:f0:eb:79:ba:35:ea:1b: 81:05:54:a0:52:c2:92:0b:64:b2:71:cb:c0:9d:b6: d1:93:62:0f:f9:7f:8a:6a:fa:4d:05:23:57:2b:37: 07:25:eb:a0:17:bd:3e:1f:27:73:35:91:c1:b0:ca: 0f:34:59:eb:f6:d2:04:61:25:fa:a1:8c:45:41:1e: b8:e1:f1:bf:0d:4b:87:42:c6:73:b5:d2:a2:e3:b9: 55:01:db:6a:b4:b8:98:77:3a:ec:eb:c0:89:fb:99: 57:46:6b:87:74:51:d3:1b:50:67:fb:dd:e5:96:7d: 0f:a3:80:83:20:1e:f6:da:08:c5:46:5c:8c:87:af: 34:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:8C:64:59:F5:7C:EE:ED:73:3B:C0:13:3D:D7:17:DE:1C:81:0B:28 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/99e1c169-d92e-43fa-a1ba-37559c29d98e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.220.0.0/15 Signature Algorithm: sha256WithRSAEncryption 2b:b6:66:2e:9e:d8:d3:d6:83:1b:fc:6b:3b:85:c6:5f:15:2d: 6b:90:c5:29:6b:9e:51:50:d8:7e:e5:cd:c8:9a:d0:c7:21:d9: e5:ff:bd:24:4d:16:a0:bb:9c:d4:c2:4a:37:ae:42:75:93:82: 6f:c7:33:e0:f8:fc:09:3e:bd:66:46:d1:04:07:31:be:5d:35: f0:7c:4d:c1:92:bd:aa:a9:7e:90:6d:cd:d4:d4:7d:19:e7:c4: 83:17:57:c3:e2:44:a6:71:9e:cc:d5:8a:a9:bf:a8:7c:1c:ac: 90:18:e6:dd:33:6d:c2:6f:5c:7c:4f:a5:aa:5e:61:57:8a:12: 9c:3d:76:8f:a9:a6:d0:4b:b6:22:c5:d3:66:44:28:93:46:f9: b7:13:96:a6:11:30:5e:f6:cb:04:c2:a6:ff:a4:ae:13:87:eb: 4f:40:4f:10:5b:5e:71:d3:26:e5:d8:58:f2:e7:ba:b7:06:39: 99:a9:f3:fe:bc:45:47:aa:7a:8b:83:6d:03:64:80:6b:b3:9e: e0:78:2d:93:1e:9b:3d:d8:7d:a6:7c:e3:35:b1:b5:0d:9f:6a: c2:28:01:6e:9f:cf:60:80:7d:f1:86:42:c4:8a:fb:47:7d:59: 12:ea:db:a9:bd:50:89:f9:bd:8e:5d:2b:94:8e:d7:7f:e5:4b: 96:5d:25:13 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUa2BM6Gk83CMfHiAAgLNBUE4/kswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3M2Y4NWJlZDEyMzlkMmNiMDY4YzU5Yzk1N2QxMTBhMjI1 YWFmZWYyNTdiYTZhZTJkZDdjNmU2NzA5YWI1MjZmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUMD2HBY70xwpSXlEVrU+PK5j8MXroPvurHZHI5KSg4QY7 y1bthvy3N1DKIv7UlOd9npI5igYgC8D8YrJ/ReycCIg/BMHJz7G32zJXjtC/igwP bQoDLk7sS/dXctVTs3z6/MrEyjtxucCX5ptc09VxkDg6MNeqaRaK5Nx16xRj8Ot5 ujXqG4EFVKBSwpILZLJxy8CdttGTYg/5f4pq+k0FI1crNwcl66AXvT4fJ3M1kcGw yg80Wev20gRhJfqhjEVBHrjh8b8NS4dCxnO10qLjuVUB22q0uJh3OuzrwIn7mVdG a4d0UdMbUGf73eWWfQ+jgIMgHvbaCMVGXIyHrzTxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmoxkWfV87u1zO8ATPdcX3hyBCygwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk5ZTFjMTY5LWQ5MmUtNDNmYS1hMWJhLTM3NTU5YzI5ZDk4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE23DANBgkqhkiG9w0BAQsFAAOCAQEAK7ZmLp7Y09aDG/xrO4XGXxUta5DF KWueUVDYfuXNyJrQxyHZ5f+9JE0WoLuc1MJKN65CdZOCb8cz4Pj8CT69ZkbRBAcx vl018HxNwZK9qql+kG3N1NR9GefEgxdXw+JEpnGezNWKqb+ofByskBjm3TNtwm9c fE+lql5hV4oSnD12j6mm0Eu2IsXTZkQok0b5txOWphEwXvbLBMKm/6SuE4frT0BP EFtecdMm5dhY8ue6twY5manz/rxFR6p6i4NtA2SAa7Oe4Hgtkx6bPdh9pnzjNbG1 DZ9qwigBbp/PYIB98YZCxIr7R31ZEurbqb1Qifm9jl0rlI7Xf+VLll0lEw== -----END CERTIFICATE-----Generated at Thu Apr 25 16:40:29 2024 by rpki-client on console-ams.rpki-client.org