$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bedd4620-fa90-4fab-8cf2-33541daccdc8.roa File: bedd4620-fa90-4fab-8cf2-33541daccdc8.roa (raw, json) Hash identifier: 1FsawlqPNfoGziYZWAFthzuJIUBS65CAm25dLr4vcsw= Subject key identifier: 83:77:DF:6F:C6:68:67:AE:BB:1B:8D:35:A0:98:75:D6:9D:CD:40:23 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0F5A6E6DE31E2B2E9B85BC355D7B770628A0228F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bedd4620-fa90-4fab-8cf2-33541daccdc8.roa Signing time: Tue 02 Apr 2024 00:00:00 +0000 ROA not before: Tue 02 Apr 2024 00:00:00 +0000 ROA not after: Tue 07 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.239.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:5a:6e:6d:e3:1e:2b:2e:9b:85:bc:35:5d:7b:77:06:28:a0:22:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 2 00:00:00 2024 GMT Not After : May 7 23:59:59 2024 GMT Subject: serialNumber=27d59bcb6d87da922572cfcb171834587ec7ab9f2388ef1f71ada60e197f7e94, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c1:15:5c:c6:2a:f3:e6:fa:c6:67:aa:90:7e: 2f:97:2c:15:a7:62:10:1b:85:e4:1d:0f:d3:be:52: e5:f4:92:12:da:a1:6a:99:c1:ef:41:03:34:23:d6: ab:15:2b:c0:4a:b6:a7:e9:cd:d5:c6:9d:c5:35:00: 09:f3:2f:c3:ab:f2:10:78:37:1c:d1:0e:7c:da:ed: fc:6a:2c:5e:ee:69:f2:0d:67:6b:4b:bb:5c:06:9e: 62:03:52:11:d4:53:39:0f:7e:a7:f0:c7:46:63:5f: 5f:22:eb:bf:0e:36:78:a5:0d:5f:c7:6b:56:d7:af: 71:14:d6:a2:6e:2d:c8:e4:11:04:11:b9:ef:0e:b6: 7e:11:83:3a:7c:89:8b:33:1c:e4:71:18:4f:fc:00: d0:86:38:77:b1:c5:26:05:94:ae:28:56:c1:1e:78: 36:78:27:45:48:2a:b9:36:10:e2:26:4f:07:f5:42: 24:75:62:26:75:d9:7d:5a:7b:5e:d5:16:84:d7:e6: a4:90:f8:f4:4e:8b:23:26:9e:f1:ab:1f:da:97:c6: 4d:e9:d4:1c:e6:96:6d:76:3c:d1:00:17:6a:92:3b: c9:ea:1b:bc:28:0e:51:07:8d:da:e5:ac:92:5c:7b: db:0e:6c:33:98:2c:46:c9:9d:97:77:87:39:da:4d: d7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:77:DF:6F:C6:68:67:AE:BB:1B:8D:35:A0:98:75:D6:9D:CD:40:23 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bedd4620-fa90-4fab-8cf2-33541daccdc8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.239.99.0/24 Signature Algorithm: sha256WithRSAEncryption 56:76:cc:a4:7b:0d:e6:19:61:30:c9:68:a9:e7:88:7a:31:b4: 08:fe:07:a1:d0:d8:73:92:2c:7c:7f:9f:59:bf:99:98:f5:75: ea:59:31:b1:a9:75:a5:61:e1:a3:ec:31:ed:fc:cf:e8:6c:8c: 2e:02:0a:cd:86:00:fd:56:00:06:63:41:b4:58:56:58:fc:db: c1:9b:28:15:f1:a9:9b:22:6c:08:a5:38:91:7b:58:9c:df:54: 20:48:f8:a7:ee:eb:08:03:1f:99:e1:ef:22:a2:5f:8d:44:f6: f4:72:e1:06:33:69:df:96:fa:99:b1:2c:43:e5:ab:0b:f5:73: 2b:53:db:7b:31:2b:65:80:c5:d0:d0:7a:d4:d6:fa:58:a2:e1: 93:f8:d2:64:23:4f:0c:c5:7a:d0:87:ff:13:b4:dd:9d:05:cd: 85:3b:66:de:a3:bc:5f:36:9e:e4:64:87:c6:fd:62:41:82:f0: be:bf:0d:57:77:df:77:7c:ac:97:6b:79:85:be:1d:55:48:90: cd:6a:1d:21:3c:e8:51:0e:94:d3:44:08:33:f8:6b:60:c7:99: a2:b6:8e:a1:3b:67:7c:b3:65:18:ce:f7:a1:95:c9:a2:91:16: be:e7:aa:b7:df:16:77:00:98:69:cc:4a:3a:e3:4d:0f:4f:a4: af:ff:e8:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD1pubeMeKy6bhbw1XXt3BiigIo8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAyMDAwMDAwWhcNMjQwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyN2Q1OWJjYjZkODdkYTkyMjU3MmNmY2IxNzE4MzQ1ODdl YzdhYjlmMjM4OGVmMWY3MWFkYTYwZTE5N2Y3ZTk0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1wRVcxirz5vrGZ6qQfi+XLBWnYhAbheQdD9O+UuX0khLa oWqZwe9BAzQj1qsVK8BKtqfpzdXGncU1AAnzL8Or8hB4NxzRDnza7fxqLF7uafIN Z2tLu1wGnmIDUhHUUzkPfqfwx0ZjX18i678ONnilDV/Ha1bXr3EU1qJuLcjkEQQR ue8Otn4Rgzp8iYszHORxGE/8ANCGOHexxSYFlK4oVsEeeDZ4J0VIKrk2EOImTwf1 QiR1YiZ12X1ae17VFoTX5qSQ+PROiyMmnvGrH9qXxk3p1Bzmlm12PNEAF2qSO8nq G7woDlEHjdrlrJJce9sObDOYLEbJnZd3hznaTdejAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg3ffb8ZoZ667G401oJh11p3NQCMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JlZGQ0NjIwLWZhOTAtNGZhYi04Y2YyLTMzNTQxZGFjY2RjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA272MwDQYJKoZIhvcNAQELBQADggEBAFZ2zKR7DeYZYTDJaKnniHoxtAj+ B6HQ2HOSLHx/n1m/mZj1depZMbGpdaVh4aPsMe38z+hsjC4CCs2GAP1WAAZjQbRY Vlj828GbKBXxqZsibAilOJF7WJzfVCBI+Kfu6wgDH5nh7yKiX41E9vRy4QYzad+W +pmxLEPlqwv1cytT23sxK2WAxdDQetTW+lii4ZP40mQjTwzFetCH/xO03Z0FzYU7 Zt6jvF82nuRkh8b9YkGC8L6/DVd333d8rJdreYW+HVVIkM1qHSE86FEOlNNECDP4 a2DHmaK2jqE7Z3yzZRjO96GVyaKRFr7nqrffFncAmGnMSjrjTQ9PpK//6PA= -----END CERTIFICATE-----Generated at Sat Apr 20 03:57:26 2024 by rpki-client on console-fra.rpki-client.org