$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/99e1c169-d92e-43fa-a1ba-37559c29d98e.roa File: 99e1c169-d92e-43fa-a1ba-37559c29d98e.roa (raw, json) Hash identifier: e5VyOcupTwA5NC2Q0jLGlPt8+ap4bMCBkcinH1KoXjU= Subject key identifier: 61:75:83:8C:BE:B0:AA:4F:80:DA:B4:10:F8:85:51:FF:5C:9C:8F:37 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 441E2ACFDE5C82BC6BC4798A93671F3501070E8C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/99e1c169-d92e-43fa-a1ba-37559c29d98e.roa Signing time: Fri 06 Sep 2024 00:00:00 +0000 ROA not before: Fri 06 Sep 2024 00:00:00 +0000 ROA not after: Fri 11 Oct 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.220.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Sep 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:1e:2a:cf:de:5c:82:bc:6b:c4:79:8a:93:67:1f:35:01:07:0e:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 6 00:00:00 2024 GMT Not After : Oct 11 23:59:59 2024 GMT Subject: serialNumber=3e9c1484f471441e1402d23fd051269dc43d7de746048f4fa2984c4ada5c2fc3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:83:66:be:e0:f2:ad:49:e0:92:25:a2:8c:68: a4:12:5a:9a:55:e8:22:e5:52:58:89:93:0b:ad:43: a5:23:a6:05:2c:f7:e5:0a:6d:b1:55:3f:df:b0:13: 38:75:47:f0:93:f3:f0:6f:00:76:7e:d9:74:07:1e: fb:92:03:4c:ed:8a:5e:63:09:ef:f5:15:16:7f:89: 40:2a:3e:16:8b:f6:69:8a:a0:3a:88:dc:60:d9:a6: 2a:94:65:12:3f:2d:07:15:33:7f:cd:f4:6b:df:7d: 0b:09:9f:73:95:c1:cd:7e:b0:fb:00:a6:f7:b5:9e: 7f:2f:67:9c:25:97:7f:1d:00:49:d1:db:60:01:86: e5:b6:d6:b1:8e:77:7e:6a:af:8b:cf:8c:2f:f1:d3: c2:8b:24:7e:37:6e:fd:d2:ab:bd:ce:d2:f6:7a:6e: 2b:71:6c:04:f7:e2:c3:c1:e9:75:09:12:b8:f9:19: a7:ec:c4:d3:96:2e:fb:c7:ae:8a:ee:d8:dd:ef:a0: df:ae:77:42:6b:00:89:01:54:06:4b:87:80:d1:6c: 6f:de:d1:45:95:df:26:3c:23:b4:6b:72:c5:68:38: ad:19:a2:a0:30:32:ad:75:0b:5c:1d:87:36:e4:fa: e9:e2:b2:3c:47:cf:37:20:1c:b5:33:c4:38:30:0a: 64:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:75:83:8C:BE:B0:AA:4F:80:DA:B4:10:F8:85:51:FF:5C:9C:8F:37 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/99e1c169-d92e-43fa-a1ba-37559c29d98e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.220.0.0/15 Signature Algorithm: sha256WithRSAEncryption 3b:29:aa:9e:2d:52:b8:db:b3:a4:83:ac:5d:f8:70:b8:76:be: ce:23:c4:27:17:a3:8a:ef:44:08:91:25:32:1c:3a:53:e2:1f: 1c:ee:20:bf:ac:99:30:ab:98:e8:1e:5c:78:b7:e6:41:09:41: 1a:3d:4f:74:2d:86:45:d7:7f:50:a5:71:8c:1d:cd:03:50:16: ba:f6:18:75:04:4d:35:3d:a4:4e:00:d4:11:3e:d1:4e:56:28: 05:e8:d3:66:0f:04:33:10:e8:4b:a1:9b:84:bd:43:f0:64:c8: ed:bb:f9:74:7a:04:e6:dd:8b:8f:b6:5c:1c:d4:3f:ba:a2:1f: c7:6c:0a:a4:f4:07:48:66:80:a8:a8:ee:98:97:87:64:2b:dc: 57:f8:23:f4:48:24:d2:ea:54:b2:58:30:9d:e0:7b:5c:86:20: 04:7e:1a:fd:38:84:62:0d:3c:68:0f:2a:a0:ac:7a:b5:74:79: a8:c6:83:37:88:1c:05:f3:91:68:4d:7d:de:3a:40:a2:83:93: e3:de:7c:c6:17:fa:6a:59:ae:ad:3a:d1:8b:a0:56:a3:2e:1e: 53:55:68:ea:b4:61:0d:84:3a:71:4d:7c:9f:0f:51:d7:ce:2e: d3:51:d5:78:d8:b3:c4:af:58:3f:7f:f1:0c:d3:2c:f5:97:50: ce:76:fb:3a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURB4qz95cgrxrxHmKk2cfNQEHDowwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwOTA2MDAwMDAwWhcNMjQxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTljMTQ4NGY0NzE0NDFlMTQwMmQyM2ZkMDUxMjY5ZGM0 M2Q3ZGU3NDYwNDhmNGZhMjk4NGM0YWRhNWMyZmMzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRg2a+4PKtSeCSJaKMaKQSWppV6CLlUliJkwutQ6UjpgUs 9+UKbbFVP9+wEzh1R/CT8/BvAHZ+2XQHHvuSA0ztil5jCe/1FRZ/iUAqPhaL9mmK oDqI3GDZpiqUZRI/LQcVM3/N9GvffQsJn3OVwc1+sPsApve1nn8vZ5wll38dAEnR 22ABhuW21rGOd35qr4vPjC/x08KLJH43bv3Sq73O0vZ6bitxbAT34sPB6XUJErj5 GafsxNOWLvvHroru2N3voN+ud0JrAIkBVAZLh4DRbG/e0UWV3yY8I7RrcsVoOK0Z oqAwMq11C1wdhzbk+unisjxHzzcgHLUzxDgwCmQTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYXWDjL6wqk+A2rQQ+IVR/1ycjzcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk5ZTFjMTY5LWQ5MmUtNDNmYS1hMWJhLTM3NTU5YzI5ZDk4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE23DANBgkqhkiG9w0BAQsFAAOCAQEAOymqni1SuNuzpIOsXfhwuHa+ziPE Jxejiu9ECJElMhw6U+IfHO4gv6yZMKuY6B5ceLfmQQlBGj1PdC2GRdd/UKVxjB3N A1AWuvYYdQRNNT2kTgDUET7RTlYoBejTZg8EMxDoS6GbhL1D8GTI7bv5dHoE5t2L j7ZcHNQ/uqIfx2wKpPQHSGaAqKjumJeHZCvcV/gj9Egk0upUslgwneB7XIYgBH4a /TiEYg08aA8qoKx6tXR5qMaDN4gcBfORaE193jpAooOT4958xhf6almurTrRi6BW oy4eU1Vo6rRhDYQ6cU18nw9R184u01HVeNizxK9YP3/xDNMs9ZdQznb7Og== -----END CERTIFICATE-----Generated at Sat Sep 7 01:40:16 2024 by rpki-client on console-ams.rpki-client.org