$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb258d00-a862-481d-8718-8a1465583f90.roa File: bb258d00-a862-481d-8718-8a1465583f90.roa (raw, json) Hash identifier: Y7+Ac0KDLLxKlOecFZALN932kPnzWzE8vSauA/o3+nI= Subject key identifier: D7:89:28:3E:0D:AA:B4:16:84:11:36:9E:35:72:D0:28:41:0A:E8:D7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6D75465C2E4C3BFDCBABE7DAB4DA6E30DA64B2BD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb258d00-a862-481d-8718-8a1465583f90.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.93.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:75:46:5c:2e:4c:3b:fd:cb:ab:e7:da:b4:da:6e:30:da:64:b2:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=9f8ef517ecbdd8698b86d2a09c07be1c9842bd293e1b235797d1c7bb8aa48df6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fc:4d:81:12:64:c8:eb:dd:ff:15:f1:34:26: 22:61:9b:c9:29:ab:8d:e9:6c:eb:c2:eb:30:b3:79: e3:c1:19:92:83:ee:f8:b1:d5:ec:8c:ae:da:11:27: 95:18:18:f1:f4:08:a6:80:00:d4:bb:00:ba:a4:eb: 2a:ea:35:9d:b7:c3:77:ba:78:78:98:5e:43:f8:ab: 4c:0f:27:de:d4:d8:3a:46:cb:82:fd:73:f9:2d:2d: 09:b0:cd:62:bc:f0:db:ca:90:6e:a8:88:e3:b8:a6: c3:7e:80:01:7b:cb:ec:a6:d4:54:bd:bb:67:d4:31: 38:eb:4c:d1:1e:a9:30:de:c6:65:2f:80:d6:23:0c: 39:c5:95:9b:07:0e:c0:25:30:4b:5c:a9:18:e5:bd: 5b:f9:e1:4b:12:d5:29:5f:aa:62:6d:0f:aa:39:2a: dd:d0:91:f7:c4:fa:6f:90:9b:ae:01:7d:f4:6b:10: f2:9e:29:37:40:33:f6:4d:0d:2f:b5:a5:de:5e:53: d4:6d:82:12:52:e7:6c:7d:de:cb:b8:9e:b5:48:4c: 3d:7d:08:59:bd:76:e1:aa:49:be:27:47:7c:87:32: 21:65:97:ea:1c:80:ea:77:7d:9a:9c:a9:92:69:9d: 9d:3d:4d:d2:0c:03:7b:be:4e:e8:ce:31:ad:be:df: ba:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:89:28:3E:0D:AA:B4:16:84:11:36:9E:35:72:D0:28:41:0A:E8:D7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb258d00-a862-481d-8718-8a1465583f90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.93.255.0/24 Signature Algorithm: sha256WithRSAEncryption ac:f5:e8:32:e2:55:00:ae:11:e3:7e:b7:ce:a0:5b:15:d6:f6: 02:9f:06:31:df:94:ff:59:3e:1d:d7:a9:33:1c:be:45:ff:66: 38:86:e2:66:96:7b:e2:59:8c:7a:fb:4d:21:14:b3:f4:2d:f1: 43:36:a1:bf:ea:d3:44:65:c6:60:b8:ef:7a:a2:68:e0:a3:00: a4:f2:1c:e3:87:93:09:01:aa:27:60:de:85:7f:e4:4f:eb:5b: 8f:c6:02:30:58:df:14:39:e8:25:eb:ee:09:ec:db:d9:75:29: b7:a8:ed:a6:d5:35:0d:ed:10:96:6f:86:3f:05:a1:fc:1d:4e: 37:1d:3b:5e:8b:1c:a0:f0:fa:e7:8b:ae:0e:72:f7:a1:47:77: d8:94:69:c2:29:41:7b:08:87:03:1a:55:f5:21:14:30:0f:b6: ee:3c:52:dc:bd:76:6f:c4:92:79:7e:0c:50:4b:d8:37:87:ed: 45:07:39:54:e3:d1:0d:43:54:da:ba:0b:36:8a:f0:c6:34:08: 8b:74:50:d9:f4:e0:03:1f:00:3c:b7:f4:d7:69:fd:da:19:7a: 25:0e:06:c5:bd:24:b3:8c:7b:a0:c2:3f:79:b2:e5:82:49:b2: ef:b3:e7:73:5c:e4:8b:ac:51:f5:25:07:f1:3f:45:03:94:4e: 68:0b:ee:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbXVGXC5MO/3Lq+fatNpuMNpksr0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjhlZjUxN2VjYmRkODY5OGI4NmQyYTA5YzA3YmUxYzk4 NDJiZDI5M2UxYjIzNTc5N2QxYzdiYjhhYTQ4ZGY2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCg/E2BEmTI693/FfE0JiJhm8kpq43pbOvC6zCzeePBGZKD 7vix1eyMrtoRJ5UYGPH0CKaAANS7ALqk6yrqNZ23w3e6eHiYXkP4q0wPJ97U2DpG y4L9c/ktLQmwzWK88NvKkG6oiOO4psN+gAF7y+ym1FS9u2fUMTjrTNEeqTDexmUv gNYjDDnFlZsHDsAlMEtcqRjlvVv54UsS1SlfqmJtD6o5Kt3QkffE+m+Qm64BffRr EPKeKTdAM/ZNDS+1pd5eU9RtghJS52x93su4nrVITD19CFm9duGqSb4nR3yHMiFl l+ocgOp3fZqcqZJpnZ09TdIMA3u+TujOMa2+37r5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU14koPg2qtBaEETaeNXLQKEEK6NcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JiMjU4ZDAwLWE4NjItNDgxZC04NzE4LThhMTQ2NTU4M2Y5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0Xf8wDQYJKoZIhvcNAQELBQADggEBAKz16DLiVQCuEeN+t86gWxXW9gKf BjHflP9ZPh3XqTMcvkX/ZjiG4maWe+JZjHr7TSEUs/Qt8UM2ob/q00RlxmC473qi aOCjAKTyHOOHkwkBqidg3oV/5E/rW4/GAjBY3xQ56CXr7gns29l1Kbeo7abVNQ3t EJZvhj8FofwdTjcdO16LHKDw+ueLrg5y96FHd9iUacIpQXsIhwMaVfUhFDAPtu48 Uty9dm/Eknl+DFBL2DeH7UUHOVTj0Q1DVNq6CzaK8MY0CIt0UNn04AMfADy39Ndp /doZeiUOBsW9JLOMe6DCP3my5YJJsu+z53Nc5IusUfUlB/E/RQOUTmgL7pU= -----END CERTIFICATE-----Generated at Wed May 1 19:13:23 2024 by rpki-client on console-fra.rpki-client.org