$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a43f6dc4-7103-435e-a8a5-d25ff6b03557.roa File: a43f6dc4-7103-435e-a8a5-d25ff6b03557.roa (raw, json) Hash identifier: 7AxBxiCPUiNjLz/5CzHm1yhQMbILcPpZpTnyySQ9Suo= Subject key identifier: E3:3F:6B:AD:50:03:7D:C9:6D:C1:73:EF:84:39:06:DF:8B:2E:50:AD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4ED8FDD808A179E708F645AE23DD24F52C3AC7A9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a43f6dc4-7103-435e-a8a5-d25ff6b03557.roa Signing time: Tue 09 Jul 2024 00:00:00 +0000 ROA not before: Tue 09 Jul 2024 00:00:00 +0000 ROA not after: Tue 13 Aug 2024 23:59:59 +0000 asID: 16509 IP address blocks: 3.2.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 28 Jul 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d8:fd:d8:08:a1:79:e7:08:f6:45:ae:23:dd:24:f5:2c:3a:c7:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 9 00:00:00 2024 GMT Not After : Aug 13 23:59:59 2024 GMT Subject: serialNumber=02082bb3d51c57835fd8d6f95408e9115cc750eb854a342dbc6beca534f909ec, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a9:52:3d:ce:c2:eb:5f:e0:08:9e:57:dd:c9: 11:64:58:19:85:19:30:fc:2d:8b:36:aa:91:1b:41: a4:34:94:94:24:fe:84:ef:e5:bb:5f:59:80:78:bb: f0:e1:ad:27:e0:42:a2:5d:83:5c:f0:e9:65:4c:bf: 74:26:a6:b0:84:8a:7a:19:b8:8b:b6:10:ad:56:40: ed:e9:af:9d:26:b8:41:54:a9:16:50:3d:d7:00:45: aa:e5:77:47:06:3f:c5:b5:eb:d7:e5:5a:71:c7:3f: 95:c6:c8:d6:e6:cd:be:44:10:d8:d2:e1:17:eb:3b: 7c:77:03:a5:e3:26:80:8a:27:0f:e5:87:c7:f0:54: 18:c2:5b:f9:0e:3a:a1:3b:17:08:ed:d6:65:4d:ae: 6e:72:c5:ec:7f:23:9f:91:80:60:1d:8f:70:1f:72: 7b:6a:57:e4:50:99:fb:81:98:84:d0:65:64:b4:a1: 69:3f:f0:23:36:14:90:65:8f:3f:e0:f6:b4:77:02: d4:11:1a:0b:25:27:32:22:52:6c:f9:2d:42:ca:2b: fc:12:2d:f6:18:8a:dc:dd:fd:48:a0:24:ec:5d:be: 2c:44:39:f4:f6:17:94:8c:30:c6:4e:e4:d8:f8:b0: d4:9d:a4:12:e9:50:ff:9e:48:b0:52:bf:d7:99:64: 33:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:3F:6B:AD:50:03:7D:C9:6D:C1:73:EF:84:39:06:DF:8B:2E:50:AD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a43f6dc4-7103-435e-a8a5-d25ff6b03557.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.2.48.0/24 Signature Algorithm: sha256WithRSAEncryption b4:3f:00:49:d2:66:75:8b:fd:d0:28:88:75:42:93:b6:d0:f7: b0:c9:4e:18:32:36:eb:f0:3c:47:49:7d:16:29:dc:ca:ad:44: b7:06:25:e4:ad:02:22:52:10:b2:65:12:40:5b:dd:d7:39:3f: c6:a4:93:1e:b0:06:15:d6:27:27:c5:e1:44:ea:ca:8f:ab:07: d6:ed:b3:dc:46:4b:bf:35:5f:cf:de:40:3e:48:0f:c6:fd:af: c6:8f:53:bd:e2:21:07:2b:02:02:5a:55:b2:95:63:4c:be:32: 0a:80:8e:49:a9:3d:41:ae:f3:cf:7b:b2:6e:f0:54:a7:a8:13: e4:fd:42:86:87:57:59:18:d0:27:f7:86:12:74:d7:64:88:a9: e9:d1:04:0a:49:4f:77:35:ec:2b:49:88:5a:90:bd:e8:76:2f: c7:09:d8:73:53:50:7d:03:32:66:b1:64:7a:39:07:3d:d0:a9: 91:96:b9:b9:2e:4c:73:72:74:f8:81:85:c7:6c:2d:0e:ef:8c: 7c:53:95:2a:8a:95:c2:dc:32:f8:a3:55:31:54:1b:49:39:ab: 59:9a:65:60:de:9d:a2:2a:b6:5f:b0:25:61:e0:4b:88:55:d1: e1:6f:ea:c6:15:9e:f4:af:fa:6b:26:c8:8a:73:c7:71:fe:3c: c1:3a:af:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTtj92AiheecI9kWuI90k9Sw6x6kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNzA5MDAwMDAwWhcNMjQwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjA4MmJiM2Q1MWM1NzgzNWZkOGQ2Zjk1NDA4ZTkxMTVj Yzc1MGViODU0YTM0MmRiYzZiZWNhNTM0ZjkwOWVjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZqVI9zsLrX+AInlfdyRFkWBmFGTD8LYs2qpEbQaQ0lJQk /oTv5btfWYB4u/DhrSfgQqJdg1zw6WVMv3QmprCEinoZuIu2EK1WQO3pr50muEFU qRZQPdcARarld0cGP8W169flWnHHP5XGyNbmzb5EENjS4RfrO3x3A6XjJoCKJw/l h8fwVBjCW/kOOqE7Fwjt1mVNrm5yxex/I5+RgGAdj3AfcntqV+RQmfuBmITQZWS0 oWk/8CM2FJBljz/g9rR3AtQRGgslJzIiUmz5LULKK/wSLfYYitzd/UigJOxdvixE OfT2F5SMMMZO5Nj4sNSdpBLpUP+eSLBSv9eZZDORAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4z9rrVADfcltwXPvhDkG34suUK0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E0M2Y2ZGM0LTcxMDMtNDM1ZS1hOGE1LWQyNWZmNmIwMzU1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADAjAwDQYJKoZIhvcNAQELBQADggEBALQ/AEnSZnWL/dAoiHVCk7bQ97DJ ThgyNuvwPEdJfRYp3MqtRLcGJeStAiJSELJlEkBb3dc5P8akkx6wBhXWJyfF4UTq yo+rB9bts9xGS781X8/eQD5ID8b9r8aPU73iIQcrAgJaVbKVY0y+MgqAjkmpPUGu 8897sm7wVKeoE+T9QoaHV1kY0Cf3hhJ012SIqenRBApJT3c17CtJiFqQveh2L8cJ 2HNTUH0DMmaxZHo5Bz3QqZGWubkuTHNydPiBhcdsLQ7vjHxTlSqKlcLcMvijVTFU G0k5q1maZWDenaIqtl+wJWHgS4hV0eFv6sYVnvSv+msmyIpzx3H+PME6r2k= -----END CERTIFICATE-----Generated at Fri Jul 26 00:25:39 2024 by rpki-client on console-ams.rpki-client.org