$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b88a91dd-515f-4266-821b-b14645dd88f8.roa File: b88a91dd-515f-4266-821b-b14645dd88f8.roa (raw, json) Hash identifier: HO+oajTi5WGibOs4LXud+zrOGA7CQy/H3vYIhbzUXT4= Subject key identifier: 9D:2C:F7:5C:77:79:22:14:DD:95:46:F7:4A:AA:17:0E:CF:9F:89:E1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 573C56987098024FF490ABFD63DD5931BC117A51 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b88a91dd-515f-4266-821b-b14645dd88f8.roa Signing time: Mon 29 Apr 2024 00:00:00 +0000 ROA not before: Mon 29 Apr 2024 00:00:00 +0000 ROA not after: Mon 03 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.119.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 09 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:3c:56:98:70:98:02:4f:f4:90:ab:fd:63:dd:59:31:bc:11:7a:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 29 00:00:00 2024 GMT Not After : Jun 3 23:59:59 2024 GMT Subject: serialNumber=07782dbadf81c3a8a28a7b45409d5dc44740a222352c1aac25cb7693b71fe1fa, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:98:f0:28:37:71:5c:ee:ab:1f:e8:07:01:7f: f1:7f:35:71:74:da:9d:4b:32:a9:df:ed:4e:3a:24: d9:dd:d1:7b:b2:05:5c:1b:c6:39:28:d6:9a:ca:20: 71:1a:93:a5:f8:d1:c9:2e:6c:88:65:39:bb:4a:18: bf:d0:94:29:9a:1b:db:00:42:d6:2f:3f:de:b0:5b: a4:e9:28:db:6c:0c:d6:29:cb:4e:59:c5:79:aa:1c: d0:80:1b:5e:07:e2:d2:f2:29:62:1b:de:cb:10:7e: a3:79:9c:81:85:4c:e9:3e:df:cb:59:0a:ec:d0:f1: 99:5a:18:de:48:72:69:5b:72:60:65:28:0d:c9:4e: 79:1f:69:61:d7:4c:a4:04:09:d4:ff:d7:8f:1d:60: f4:1b:57:99:dc:a1:97:3e:aa:d8:4f:0b:b7:47:fd: a2:24:b8:da:4c:95:7d:4c:20:06:ca:7e:7e:8e:4d: d7:8f:e9:e9:e9:f5:e1:4b:13:36:e0:cf:d4:6b:e8: 3b:aa:4a:ed:fd:d8:14:66:b2:78:e6:3f:0e:9f:49: 07:19:22:c8:d3:b7:fc:bd:fb:25:cd:04:54:cf:21: 7f:0d:8f:a2:9e:d0:5f:b5:75:98:72:54:77:a6:57: 62:5c:dd:c9:a2:6d:a1:50:c2:10:31:6b:78:f7:71: e8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:2C:F7:5C:77:79:22:14:DD:95:46:F7:4A:AA:17:0E:CF:9F:89:E1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b88a91dd-515f-4266-821b-b14645dd88f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.119.152.0/22 Signature Algorithm: sha256WithRSAEncryption 27:c6:e3:ab:1e:8f:67:d0:3c:60:7a:e2:9d:f6:33:9a:59:39: ca:d0:61:c3:02:d6:ee:3c:1a:1f:2a:2f:f0:53:60:a5:ed:59: 29:23:f9:48:1c:cd:3e:36:bd:64:bc:a6:4b:20:1d:dc:0f:14: c9:3d:c0:2e:84:6d:e0:83:e0:9d:f5:8c:f9:d3:dc:6f:39:a8: c7:23:2f:2a:c3:31:45:fe:ec:72:77:6e:30:9e:e0:4f:8d:59: 61:e4:a2:5a:27:24:90:f6:cf:96:a4:32:31:b0:36:fe:1b:6e: 86:04:23:9e:49:f0:be:c4:28:43:fe:04:99:57:a5:01:a5:16: d3:80:60:8d:00:59:c5:e1:69:de:10:08:75:66:04:89:a4:44: 5d:46:ba:7a:4f:e8:69:8b:85:b8:c3:d5:58:c7:21:39:e3:e8: 5d:4b:81:af:59:d0:9e:49:a3:c1:53:43:2b:e6:91:c1:99:89: 81:0f:93:72:d4:4a:ec:69:de:cd:d5:93:f1:d2:de:44:33:5a: e2:c6:e7:19:8a:26:71:74:8a:58:8a:dc:96:ac:d5:24:e6:ba: 51:1f:db:0f:56:42:61:c3:e3:50:00:5f:ec:3a:8e:2c:99:b2: 55:83:76:71:d0:ee:4e:67:fc:af:18:92:85:03:bd:63:a1:f2: cd:86:4d:3e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVzxWmHCYAk/0kKv9Y91ZMbwRelEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDI5MDAwMDAwWhcNMjQwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzc4MmRiYWRmODFjM2E4YTI4YTdiNDU0MDlkNWRjNDQ3 NDBhMjIyMzUyYzFhYWMyNWNiNzY5M2I3MWZlMWZhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkmPAoN3Fc7qsf6AcBf/F/NXF02p1LMqnf7U46JNnd0Xuy BVwbxjko1prKIHEak6X40ckubIhlObtKGL/QlCmaG9sAQtYvP96wW6TpKNtsDNYp y05ZxXmqHNCAG14H4tLyKWIb3ssQfqN5nIGFTOk+38tZCuzQ8ZlaGN5IcmlbcmBl KA3JTnkfaWHXTKQECdT/148dYPQbV5ncoZc+qthPC7dH/aIkuNpMlX1MIAbKfn6O TdeP6enp9eFLEzbgz9Rr6DuqSu392BRmsnjmPw6fSQcZIsjTt/y9+yXNBFTPIX8N j6Ke0F+1dZhyVHemV2Jc3cmibaFQwhAxa3j3cegrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnSz3XHd5IhTdlUb3SqoXDs+fieEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I4OGE5MWRkLTUxNWYtNDI2Ni04MjFiLWIxNDY0NWRkODhmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0d5gwDQYJKoZIhvcNAQELBQADggEBACfG46sej2fQPGB64p32M5pZOcrQ YcMC1u48Gh8qL/BTYKXtWSkj+UgczT42vWS8pksgHdwPFMk9wC6EbeCD4J31jPnT 3G85qMcjLyrDMUX+7HJ3bjCe4E+NWWHkolonJJD2z5akMjGwNv4bboYEI55J8L7E KEP+BJlXpQGlFtOAYI0AWcXhad4QCHVmBImkRF1GunpP6GmLhbjD1VjHITnj6F1L ga9Z0J5Jo8FTQyvmkcGZiYEPk3LUSuxp3s3Vk/HS3kQzWuLG5xmKJnF0iliK3Jas 1STmulEf2w9WQmHD41AAX+w6jiyZslWDdnHQ7k5n/K8YkoUDvWOh8s2GTT4= -----END CERTIFICATE-----Generated at Wed May 8 01:49:35 2024 by rpki-client on console-fra.rpki-client.org