$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ae729738-d220-40d1-8420-ba0e211ac920.roa File: ae729738-d220-40d1-8420-ba0e211ac920.roa (raw, json) Hash identifier: jFepd2G8wnChSSGyQNyBcS+cw9HF3eExzGYyUl0o83Q= Subject key identifier: 27:FC:7A:6E:BE:81:32:B7:BF:E5:5C:88:B2:EA:B7:FD:3A:60:82:BD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7F1712F1D40FCFFD41B6F9E3FB7882F5A43901B9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ae729738-d220-40d1-8420-ba0e211ac920.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 161.191.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:17:12:f1:d4:0f:cf:fd:41:b6:f9:e3:fb:78:82:f5:a4:39:01:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=8fa47fc9cae92eee6980a5a209f07f9f7e3bfd35279220cb49440fd04d499f74, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:f2:ea:3a:aa:40:7b:16:91:c9:82:99:c9:d7: 24:ec:42:39:5c:51:76:2c:0a:08:fb:6b:1f:41:d9: 16:68:c2:99:e7:83:ea:fe:03:19:70:47:05:b4:ba: 4a:d9:c2:83:d9:7a:a9:2a:14:76:a1:86:84:0b:e4: 17:55:d0:0d:4b:15:29:77:34:52:da:25:aa:59:e1: 9d:13:fc:34:b3:c3:eb:5e:71:01:1a:6c:6e:c2:f8: cc:8b:1b:d6:a9:29:d9:c0:6e:a5:de:45:ee:3e:7f: 68:8b:a3:f5:5d:14:78:26:55:7e:63:4f:9b:f7:b5: 01:4c:14:51:61:40:54:ca:19:77:6b:4b:f5:1f:e6: eb:0a:66:8f:b3:64:92:bb:4e:8c:97:95:a8:2d:6a: bd:fc:e0:bb:3a:1b:92:68:84:f9:97:99:5d:12:90: 77:ff:ad:ed:20:d9:ce:ce:67:cd:d5:78:f5:0a:79: a4:ad:46:b6:0c:52:92:f1:ae:6c:fa:b9:56:5f:46: d5:fe:56:9d:bf:38:79:cc:1a:af:6e:cb:6f:44:44: 11:a6:3f:4a:1b:b2:2a:98:67:00:b0:4f:fc:e7:b7: d8:8b:ab:0f:65:63:5c:bc:ca:35:2e:f9:9a:49:13: e5:96:aa:04:ea:18:07:f3:f3:0a:01:6c:99:77:05: fb:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FC:7A:6E:BE:81:32:B7:BF:E5:5C:88:B2:EA:B7:FD:3A:60:82:BD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ae729738-d220-40d1-8420-ba0e211ac920.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.191.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9e:f6:1e:da:d7:51:d2:8e:d4:2f:3b:43:e5:2e:97:d6:34:2b: 56:a6:0c:c5:89:3f:2f:c8:87:ee:68:df:70:02:0b:00:5d:43: 72:b9:3c:7e:1b:fc:da:8a:40:be:78:55:ff:4f:42:e1:73:89: 2e:9f:92:e4:42:45:75:4a:e9:60:e9:be:91:06:d6:c7:c9:33: 8f:32:24:bd:08:81:6f:15:67:3d:f4:de:fd:95:28:01:84:3b: 26:f5:d2:34:09:58:00:7f:42:70:37:bc:d3:6d:d9:22:32:bc: d6:ea:7e:d8:d5:dc:0b:98:58:32:fa:c3:93:98:56:03:40:16: 8e:06:f5:07:79:9a:9c:d0:b6:4d:a4:23:99:82:d4:3f:5d:fb: d7:d4:ae:76:07:a7:ae:f1:0c:4a:1d:75:27:10:91:59:da:bc: 2a:c2:b4:48:ab:27:e4:78:77:a7:7a:d1:6a:c2:e5:94:9d:ba: 40:f9:7b:04:ba:aa:46:b6:a7:f2:55:96:26:a8:d2:f1:91:35: ed:11:35:4d:46:ac:42:0c:50:76:df:8a:35:91:93:56:28:d3: 5c:b4:25:3e:57:34:52:d7:5a:28:8d:c5:86:f6:83:e2:7e:83: de:9d:01:3a:ec:48:c8:fd:a5:d5:d7:76:69:4e:8f:a0:7c:46: db:84:7e:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfxcS8dQPz/1Btvnj+3iC9aQ5AbkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZmE0N2ZjOWNhZTkyZWVlNjk4MGE1YTIwOWYwN2Y5Zjdl M2JmZDM1Mjc5MjIwY2I0OTQ0MGZkMDRkNDk5Zjc0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD48uo6qkB7FpHJgpnJ1yTsQjlcUXYsCgj7ax9B2RZowpnn g+r+AxlwRwW0ukrZwoPZeqkqFHahhoQL5BdV0A1LFSl3NFLaJapZ4Z0T/DSzw+te cQEabG7C+MyLG9apKdnAbqXeRe4+f2iLo/VdFHgmVX5jT5v3tQFMFFFhQFTKGXdr S/Uf5usKZo+zZJK7ToyXlagtar384Ls6G5JohPmXmV0SkHf/re0g2c7OZ83VePUK eaStRrYMUpLxrmz6uVZfRtX+Vp2/OHnMGq9uy29ERBGmP0obsiqYZwCwT/znt9iL qw9lY1y8yjUu+ZpJE+WWqgTqGAfz8woBbJl3BfuHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJ/x6br6BMre/5VyIsuq3/Tpggr0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FlNzI5NzM4LWQyMjAtNDBkMS04NDIwLWJhMGUyMTFhYzkyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwChvzANBgkqhkiG9w0BAQsFAAOCAQEAnvYe2tdR0o7ULztD5S6X1jQrVqYM xYk/L8iH7mjfcAILAF1Dcrk8fhv82opAvnhV/09C4XOJLp+S5EJFdUrpYOm+kQbW x8kzjzIkvQiBbxVnPfTe/ZUoAYQ7JvXSNAlYAH9CcDe8023ZIjK81up+2NXcC5hY MvrDk5hWA0AWjgb1B3manNC2TaQjmYLUP13719SudgenrvEMSh11JxCRWdq8KsK0 SKsn5Hh3p3rRasLllJ26QPl7BLqqRran8lWWJqjS8ZE17RE1TUasQgxQdt+KNZGT VijTXLQlPlc0UtdaKI3FhvaD4n6D3p0BOuxIyP2l1dd2aU6PoHxG24R+Kw== -----END CERTIFICATE-----Generated at Thu Apr 25 22:33:17 2024 by rpki-client on console-fra.rpki-client.org