$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b45f103a-0170-4a83-a7bd-d45bc17fd673.roa File: b45f103a-0170-4a83-a7bd-d45bc17fd673.roa (raw, json) Hash identifier: AAKfoBU56F3CZUXeAaclnRwUiDWLNt1KrVF9OWIscEM= Subject key identifier: D5:BC:B8:48:42:10:2F:14:11:AF:3C:D7:AE:36:B4:8C:C4:25:36:4C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 793A2E7EBDDDCA0B7984A91ED2EDDA1C1A2EE58F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b45f103a-0170-4a83-a7bd-d45bc17fd673.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.219.184.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:3a:2e:7e:bd:dd:ca:0b:79:84:a9:1e:d2:ed:da:1c:1a:2e:e5:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=cede81af2982b5512bcfae2d30f78acb124232ff7a7c37394b3d2d78c029eef2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:96:9a:2b:c8:20:38:e5:4a:17:35:1d:c1:51: 72:96:5e:69:90:f3:2a:9a:85:20:17:3d:d7:7d:d8: 66:65:f6:7b:e4:ea:84:83:ce:a1:dd:c6:74:8f:fa: aa:f6:7c:8c:21:42:18:0e:33:fe:e9:46:26:36:7f: 37:d6:86:99:6a:f7:a7:35:bb:11:68:ec:15:5f:a3: 38:30:95:98:b0:cf:13:c6:37:d9:fa:c8:02:e0:58: 94:6c:8e:9b:89:63:d1:64:3f:45:e8:61:90:47:5f: 35:ad:f1:36:6d:cf:13:01:a7:0d:94:f7:85:79:39: 64:31:14:7e:75:b6:1a:42:a6:26:03:81:28:e4:d3: 39:c2:8d:bc:2f:09:61:39:95:12:37:ce:41:e6:ba: f8:68:31:32:a4:56:eb:86:1c:3f:5d:2e:7a:c9:b8: 65:83:cb:5b:47:ec:a3:9f:90:86:74:25:64:4e:ff: 57:23:22:45:25:7f:c6:95:fc:a8:68:d9:57:20:ff: 84:cd:f8:a0:a1:e7:69:33:42:0e:e6:81:9f:66:4f: cf:34:19:35:20:f1:b7:c0:e2:6b:a1:7f:e0:dd:0c: 5b:97:89:09:87:84:f4:f9:94:a3:99:ea:6e:3e:82: 0b:08:54:9b:1f:81:39:eb:b1:97:5e:d5:dc:57:6c: 49:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BC:B8:48:42:10:2F:14:11:AF:3C:D7:AE:36:B4:8C:C4:25:36:4C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b45f103a-0170-4a83-a7bd-d45bc17fd673.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.219.184.0/21 Signature Algorithm: sha256WithRSAEncryption 32:9c:48:40:26:f2:a2:7e:54:98:d9:36:08:17:05:3d:87:ff: ac:12:12:bb:88:0f:b7:c1:ac:9d:76:0c:a3:53:5d:ff:8c:cf: ef:99:14:58:1a:0e:59:3c:b5:fa:ee:ca:e0:e2:f9:dd:fa:94: a5:08:6f:3b:84:8f:a3:74:6c:04:72:4d:27:cf:a1:04:3e:1a: 6a:3f:47:2a:31:f3:d9:5b:70:11:e3:08:ac:9c:e1:79:c4:72: 35:1d:38:e1:2b:58:c7:15:3c:7c:a7:ae:45:36:7b:eb:8c:78: 55:3b:cc:99:b3:25:f5:00:17:e9:bb:d9:85:73:c0:8e:40:fd: f4:e8:d2:a1:8b:98:4e:d0:e4:b6:63:58:3c:00:f1:b1:5e:5c: 49:17:a0:d9:3f:82:66:70:51:51:4a:df:d5:60:f0:9d:03:ef: bf:ed:da:ff:1e:8b:0e:9a:0e:34:ce:63:83:2b:69:0f:38:48: 8c:bd:64:72:95:74:8b:4b:66:70:d3:f6:1d:fa:d6:93:f5:51: 9d:cb:90:c7:8e:18:3d:53:40:a1:ea:13:e5:73:20:66:84:59: 19:af:9b:5f:0c:69:31:0b:ed:5e:65:2c:7d:f6:1f:83:01:38: a9:46:f7:51:24:77:26:af:66:9c:fd:dd:f3:c4:e3:32:79:ef: a1:67:f0:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeToufr3dygt5hKke0u3aHBou5Y8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWRlODFhZjI5ODJiNTUxMmJjZmFlMmQzMGY3OGFjYjEy NDIzMmZmN2E3YzM3Mzk0YjNkMmQ3OGMwMjllZWYyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6lporyCA45UoXNR3BUXKWXmmQ8yqahSAXPdd92GZl9nvk 6oSDzqHdxnSP+qr2fIwhQhgOM/7pRiY2fzfWhplq96c1uxFo7BVfozgwlZiwzxPG N9n6yALgWJRsjpuJY9FkP0XoYZBHXzWt8TZtzxMBpw2U94V5OWQxFH51thpCpiYD gSjk0znCjbwvCWE5lRI3zkHmuvhoMTKkVuuGHD9dLnrJuGWDy1tH7KOfkIZ0JWRO /1cjIkUlf8aV/Kho2Vcg/4TN+KCh52kzQg7mgZ9mT880GTUg8bfA4muhf+DdDFuX iQmHhPT5lKOZ6m4+ggsIVJsfgTnrsZde1dxXbEkhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1by4SEIQLxQRrzzXrja0jMQlNkwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I0NWYxMDNhLTAxNzAtNGE4My1hN2JkLWQ0NWJjMTdmZDY3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM027gwDQYJKoZIhvcNAQELBQADggEBADKcSEAm8qJ+VJjZNggXBT2H/6wS EruID7fBrJ12DKNTXf+Mz++ZFFgaDlk8tfruyuDi+d36lKUIbzuEj6N0bARyTSfP oQQ+Gmo/Ryox89lbcBHjCKyc4XnEcjUdOOErWMcVPHynrkU2e+uMeFU7zJmzJfUA F+m72YVzwI5A/fTo0qGLmE7Q5LZjWDwA8bFeXEkXoNk/gmZwUVFK39Vg8J0D77/t 2v8eiw6aDjTOY4MraQ84SIy9ZHKVdItLZnDT9h361pP1UZ3LkMeOGD1TQKHqE+Vz IGaEWRmvm18MaTEL7V5lLH32H4MBOKlG91EkdyavZpz93fPE4zJ576Fn8OA= -----END CERTIFICATE-----Generated at Sat Apr 20 03:57:26 2024 by rpki-client on console-fra.rpki-client.org