$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a20e26ec-e0a9-4c77-825a-4fd10ca9c51c.roa File: a20e26ec-e0a9-4c77-825a-4fd10ca9c51c.roa (raw, json) Hash identifier: PRY7Sc027Tl7tIdijXWvnFfE0QnccobbHiwYeq1A9k4= Subject key identifier: DC:BE:4F:4A:43:52:57:C7:AC:D0:20:6F:73:33:60:55:DD:68:FD:77 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2B1EC84BCFD6809401311711ABB1D5B90588A6A7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a20e26ec-e0a9-4c77-825a-4fd10ca9c51c.roa Signing time: Tue 02 Apr 2024 00:00:00 +0000 ROA not before: Tue 02 Apr 2024 00:00:00 +0000 ROA not after: Tue 07 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 54.174.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:1e:c8:4b:cf:d6:80:94:01:31:17:11:ab:b1:d5:b9:05:88:a6:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 2 00:00:00 2024 GMT Not After : May 7 23:59:59 2024 GMT Subject: serialNumber=418c9ef6807ae9d969e4b1ef77cfa1313f25e2ba168799cf0e841c296a6eb6ce, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d6:81:af:94:0b:ab:1b:0c:08:b9:43:f7:b4: 1e:7f:37:71:dd:be:7b:36:03:3d:c6:ea:e0:a3:36: cb:a9:ac:4c:0b:28:14:db:d5:9a:a0:19:61:1f:cf: 12:56:01:35:25:d8:f1:ea:03:84:ce:67:c5:e7:e5: 3d:65:17:44:84:03:bf:05:fb:04:ca:50:cb:55:2f: 67:7c:8f:73:8a:40:b4:cc:43:48:92:3f:59:7f:4d: cf:b0:05:69:b8:5f:9a:4a:30:25:73:be:99:cd:ef: 32:6f:69:62:cb:fa:0f:84:94:1b:30:b8:3b:66:ff: f5:81:c7:02:23:1e:92:26:82:db:68:f7:20:82:9c: e0:1c:fc:7f:6c:66:df:60:57:93:2c:c9:60:58:93: 2f:88:ee:4b:64:3a:0b:67:e0:23:c5:70:13:74:99: 9b:11:0f:30:d5:ca:3c:95:bb:e1:63:97:47:f8:04: 01:ce:ee:6e:bb:c4:cf:b4:b5:74:e4:a6:fb:e5:38: c7:c4:20:a2:ad:8e:e7:0d:06:00:5a:bb:95:e0:00: ea:37:45:87:eb:2e:75:bd:d7:60:fe:37:df:b8:11: 42:58:4b:bc:0e:e8:a4:af:f2:d6:48:5f:4d:22:58: bb:56:20:3b:61:a2:ec:ce:58:77:ee:7c:b3:66:f6: 32:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BE:4F:4A:43:52:57:C7:AC:D0:20:6F:73:33:60:55:DD:68:FD:77 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a20e26ec-e0a9-4c77-825a-4fd10ca9c51c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.174.0.0/15 Signature Algorithm: sha256WithRSAEncryption 9e:cb:77:95:15:b0:93:31:e7:09:7e:8b:6e:a0:40:76:fb:66: f1:89:86:1a:53:29:4e:57:ba:8d:a1:ea:f6:c9:11:1e:3f:e4: 1f:02:57:f6:fc:46:fc:35:b4:5b:97:01:f1:7a:75:06:86:7f: ce:0d:8c:f6:0e:70:2e:f4:52:59:66:a0:31:f9:31:9d:dc:e0: 78:99:72:29:5e:31:3e:4f:9e:46:dd:50:4c:84:96:7b:27:6e: dc:7a:8d:0b:52:a0:8a:f3:d6:75:3b:57:78:c9:0d:2e:33:e2: f3:2a:f5:f6:9e:b4:1c:d2:c6:23:e7:3a:1e:e2:20:6d:fd:36: 69:4a:5b:b4:d9:3d:81:c0:63:c4:f2:f2:59:6e:8f:e3:f0:78: d8:e6:d9:66:f1:88:6b:4b:b1:7f:7b:59:3c:8c:6f:35:9e:dc: ae:64:8b:b3:1b:ad:95:af:50:6a:04:97:e3:8d:2d:70:59:88: 63:a4:3d:1a:e5:1e:c0:fd:43:3b:6a:6d:c2:cc:b6:95:8f:cc: 24:76:74:e9:a6:81:51:24:cd:77:8c:05:d2:e8:36:f8:6c:8c: 48:75:bf:1e:94:6f:06:78:75:70:00:25:aa:2e:e0:10:fb:13: 5b:83:f6:f6:42:01:f0:ed:1d:c6:e5:47:6e:1c:fc:bc:31:f2: e0:37:81:74 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKx7IS8/WgJQBMRcRq7HVuQWIpqcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAyMDAwMDAwWhcNMjQwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MThjOWVmNjgwN2FlOWQ5NjllNGIxZWY3N2NmYTEzMTNm MjVlMmJhMTY4Nzk5Y2YwZTg0MWMyOTZhNmViNmNlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCX1oGvlAurGwwIuUP3tB5/N3Hdvns2Az3G6uCjNsuprEwL KBTb1ZqgGWEfzxJWATUl2PHqA4TOZ8Xn5T1lF0SEA78F+wTKUMtVL2d8j3OKQLTM Q0iSP1l/Tc+wBWm4X5pKMCVzvpnN7zJvaWLL+g+ElBswuDtm//WBxwIjHpImgtto 9yCCnOAc/H9sZt9gV5MsyWBYky+I7ktkOgtn4CPFcBN0mZsRDzDVyjyVu+Fjl0f4 BAHO7m67xM+0tXTkpvvlOMfEIKKtjucNBgBau5XgAOo3RYfrLnW912D+N9+4EUJY S7wO6KSv8tZIX00iWLtWIDthouzOWHfufLNm9jJLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3L5PSkNSV8es0CBvczNgVd1o/XcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2EyMGUyNmVjLWUwYTktNGM3Ny04MjVhLTRmZDEwY2E5YzUxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2rjANBgkqhkiG9w0BAQsFAAOCAQEAnst3lRWwkzHnCX6LbqBAdvtm8YmG GlMpTle6jaHq9skRHj/kHwJX9vxG/DW0W5cB8Xp1BoZ/zg2M9g5wLvRSWWagMfkx ndzgeJlyKV4xPk+eRt1QTISWeydu3HqNC1KgivPWdTtXeMkNLjPi8yr19p60HNLG I+c6HuIgbf02aUpbtNk9gcBjxPLyWW6P4/B42ObZZvGIa0uxf3tZPIxvNZ7crmSL sxutla9QagSX440tcFmIY6Q9GuUewP1DO2ptwsy2lY/MJHZ06aaBUSTNd4wF0ug2 +GyMSHW/HpRvBnh1cAAlqi7gEPsTW4P29kIB8O0dxuVHbhz8vDHy4DeBdA== -----END CERTIFICATE-----Generated at Fri Apr 26 11:01:05 2024 by rpki-client on console-ams.rpki-client.org