$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa File: af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa (raw, json) Hash identifier: tnxQxnkE/rGCctI9yf8E/utNrkWj2MRH/6raQWAJHOU= Subject key identifier: 02:41:9C:54:70:40:3E:61:C4:69:38:5B:FC:A9:B5:51:82:4D:59:93 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7063492558732068219B45FF4A050DE82665842A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:63:49:25:58:73:20:68:21:9b:45:ff:4a:05:0d:e8:26:65:84:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=a7caace18407d8772ddcfd17bc90acd72d1242697056c2fbb34295f864b8b252, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:28:10:89:3b:63:a9:0b:50:ea:17:40:d2:7b: 55:fa:93:c5:53:b5:9b:f3:94:4f:c7:ce:b5:dd:59: c4:c3:fe:ac:b4:65:36:dc:58:00:cc:10:85:4e:41: 70:b0:59:69:41:f7:a5:2f:c2:06:ad:ff:60:6f:43: bb:38:5c:b3:3a:d1:6d:1b:55:25:0c:3e:9d:ed:20: 2a:f7:8a:b9:56:c5:80:18:79:f3:15:7b:db:66:e8: f3:03:5f:cb:70:6f:5e:05:c6:ea:5a:20:f5:8a:34: 7f:54:0a:36:8f:2f:52:eb:1d:73:ed:34:41:5b:0d: 2e:fa:d7:d7:bf:b0:42:6c:58:f6:7b:c6:74:c7:45: 67:a5:92:2b:50:3a:0c:e6:8b:40:7a:84:d8:11:74: d7:45:18:6e:7d:f5:84:5e:1f:f5:e2:53:03:3e:6a: ae:73:2f:c4:65:ce:b6:65:30:9c:39:03:76:a3:3e: 47:1f:95:d9:ef:12:9c:b5:25:44:7d:0d:30:a4:19: d5:87:40:7f:7a:b8:f9:ed:32:63:f7:1d:4e:0b:2e: 8c:4d:5c:34:84:cc:09:22:4d:aa:3d:30:24:53:db: 5e:68:51:48:a3:41:d1:3c:c3:e1:97:00:da:aa:7f: f4:27:bf:c2:cc:ad:9b:a3:48:29:2a:64:22:68:53: e6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:41:9C:54:70:40:3E:61:C4:69:38:5B:FC:A9:B5:51:82:4D:59:93 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.192.0/22 Signature Algorithm: sha256WithRSAEncryption 41:e6:99:0b:33:fc:6b:ab:18:56:5b:c5:96:28:b6:ca:e1:72: 15:40:81:c1:b0:79:e7:94:32:fb:65:79:f7:a9:08:30:be:ef: 2f:9d:d5:7f:5d:2b:11:f6:77:50:c1:ae:8b:8b:2f:f6:f6:0f: 60:ac:19:00:00:7a:3e:50:ed:ca:b0:2e:5d:82:de:b5:31:c6: 74:1d:34:ad:dc:f1:8b:e0:92:4d:e2:1e:41:cc:2a:e7:ef:9e: 34:15:67:2d:a1:23:88:2f:39:23:31:3a:0d:54:e0:2c:0e:53: 51:76:2b:f8:9c:1d:6a:5e:7c:8a:0d:21:b0:82:2d:a7:66:7f: bc:67:a6:aa:1f:ac:9a:19:81:0f:57:ff:96:46:ec:af:fd:aa: 84:23:fe:6b:7c:df:34:eb:81:1d:24:c7:3c:03:b2:e6:06:8e: 5c:0c:4d:e5:25:74:3c:80:a2:f3:a4:65:c6:f9:73:27:f1:52: fd:68:75:e4:94:31:bc:fc:1e:e6:c9:c6:f8:a5:ab:8b:eb:cd: bf:5a:38:a8:20:42:43:11:34:ec:c7:ad:a3:d1:fe:96:1b:97: 9c:ba:d7:b1:e2:98:6e:7a:94:aa:eb:a4:d4:bc:ed:0b:16:77: a4:47:50:bc:2a:2c:8c:ca:b3:d0:57:8b:32:95:49:94:36:ab: 77:dc:ed:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcGNJJVhzIGghm0X/SgUN6CZlhCowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhN2NhYWNlMTg0MDdkODc3MmRkY2ZkMTdiYzkwYWNkNzJk MTI0MjY5NzA1NmMyZmJiMzQyOTVmODY0YjhiMjUyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtKBCJO2OpC1DqF0DSe1X6k8VTtZvzlE/HzrXdWcTD/qy0 ZTbcWADMEIVOQXCwWWlB96Uvwgat/2BvQ7s4XLM60W0bVSUMPp3tICr3irlWxYAY efMVe9tm6PMDX8twb14FxupaIPWKNH9UCjaPL1LrHXPtNEFbDS7619e/sEJsWPZ7 xnTHRWelkitQOgzmi0B6hNgRdNdFGG599YReH/XiUwM+aq5zL8RlzrZlMJw5A3aj PkcfldnvEpy1JUR9DTCkGdWHQH96uPntMmP3HU4LLoxNXDSEzAkiTao9MCRT215o UUijQdE8w+GXANqqf/Qnv8LMrZujSCkqZCJoU+arAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAkGcVHBAPmHEaThb/Km1UYJNWZMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FmNDhhNDcxLTQ3YWQtNDViNC05MmJhLTdkZWU1ZDRhNGNhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIP3MAwDQYJKoZIhvcNAQELBQADggEBAEHmmQsz/GurGFZbxZYotsrhchVA gcGweeeUMvtlefepCDC+7y+d1X9dKxH2d1DBrouLL/b2D2CsGQAAej5Q7cqwLl2C 3rUxxnQdNK3c8Yvgkk3iHkHMKufvnjQVZy2hI4gvOSMxOg1U4CwOU1F2K/icHWpe fIoNIbCCLadmf7xnpqofrJoZgQ9X/5ZG7K/9qoQj/mt83zTrgR0kxzwDsuYGjlwM TeUldDyAovOkZcb5cyfxUv1odeSUMbz8HubJxvilq4vrzb9aOKggQkMRNOzHraPR /pYbl5y617HimG56lKrrpNS87QsWd6RHULwqLIzKs9BXizKVSZQ2q3fc7SA= -----END CERTIFICATE-----Generated at Sun Nov 24 22:11:36 2024 by rpki-client on console-fra.rpki-client.org