$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c25e168e-b858-4af0-b1a1-cf163e4d2802.roa File: c25e168e-b858-4af0-b1a1-cf163e4d2802.roa (raw, json) Hash identifier: MB7O3bULyBVob9hFlIk09IHE4kz4KrIU4gKDJJvIo0E= Subject key identifier: 85:23:92:27:28:2B:F9:86:7F:14:BF:2D:58:5F:F0:17:7D:8E:61:4C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 20A5C12E8B44A894B2799F61E247BF586DA8F24D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c25e168e-b858-4af0-b1a1-cf163e4d2802.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 15.213.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Apr 2024 12:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:a5:c1:2e:8b:44:a8:94:b2:79:9f:61:e2:47:bf:58:6d:a8:f2:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=7b4d6c58d0a3ea4e8ff1d59f54ba6851da04c90eca27715e56f62c0b3259feae, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:db:9f:f4:a4:a6:b0:52:6c:c2:99:95:83:ca: 33:bd:ff:4b:23:dc:c1:f9:b2:70:55:fe:3f:f6:4a: 44:b1:6d:36:ec:e8:13:80:96:fe:9b:87:10:14:fd: 17:45:e0:54:d4:c4:72:a4:45:14:9d:73:6d:05:d6: 47:3e:c6:54:eb:24:a9:6c:1c:fd:38:25:e7:72:e5: f5:71:c6:a9:fc:d7:1e:91:0e:b8:db:82:55:ab:12: a2:50:38:8f:86:a4:f4:6c:62:12:29:6c:16:e5:7a: e2:c8:e4:d7:84:5f:f3:14:b4:bb:4b:d4:48:b7:a8: bc:17:33:b8:6f:23:d9:64:f2:b8:ec:b6:dc:a8:08: 60:af:30:14:e2:cf:de:cb:45:15:fe:6f:0d:95:ca: ea:52:12:96:dc:d6:ae:ea:c5:4a:ac:d9:6a:e3:06: 8a:a0:5c:80:e6:93:25:aa:f5:cc:b9:96:33:81:33: 65:a4:96:46:cd:4c:b4:23:b3:0c:69:40:f3:89:d6: 1b:6d:a9:63:9d:92:43:a4:66:f2:a4:ca:92:58:b6: ea:5e:4a:02:ae:95:32:32:ef:33:73:94:4d:be:2b: cf:b1:18:52:01:1d:62:a5:cd:0f:09:8c:cb:aa:44: b2:02:eb:bf:0b:5e:19:e3:10:49:2a:94:c3:ac:82: 83:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:23:92:27:28:2B:F9:86:7F:14:BF:2D:58:5F:F0:17:7D:8E:61:4C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c25e168e-b858-4af0-b1a1-cf163e4d2802.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.213.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:8b:c1:0e:30:14:72:3f:95:7c:fe:93:2b:96:8c:8c:c8:0e: 6f:1a:96:a6:ae:c4:9c:a6:ba:72:f9:68:c2:9e:97:d8:ec:cb: 77:65:ca:c9:19:4b:c3:e8:8e:a3:e5:c5:23:b1:8b:60:fd:4a: ae:be:ff:f0:a0:3f:47:1c:ad:54:06:d2:be:ea:c9:c0:c3:38: 59:9f:52:0b:29:a8:59:9d:f3:ba:4e:d9:6f:a9:35:e6:76:d5: 74:f7:61:8d:07:7a:0f:4e:76:ff:b9:fb:d9:80:c1:1c:55:2c: 1a:9a:80:b2:3d:d0:e5:c0:36:9f:89:87:c9:4a:a7:1b:4a:a5: 27:b1:cf:d8:82:99:8a:b0:d3:06:b7:7e:43:c3:21:28:bb:7d: 03:25:06:24:a0:cd:fa:c8:f9:7d:1c:33:37:9e:e0:8c:97:6d: 31:49:35:b2:e2:42:41:87:91:87:cb:67:e8:14:2f:99:cf:da: 0f:cf:2e:a1:a3:b8:6e:45:ef:41:a1:81:a0:1e:30:1c:47:ca: 9e:d3:da:53:44:d7:44:71:62:c1:2f:04:72:f7:e8:05:8f:14: ee:23:74:6b:97:ac:ea:b4:44:d6:95:08:4c:05:7d:41:25:72: 9e:99:4d:09:a7:80:00:78:89:2e:23:9f:b1:20:e0:d8:20:35: f3:ae:0c:af -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIKXBLotEqJSyeZ9h4ke/WG2o8k0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjRkNmM1OGQwYTNlYTRlOGZmMWQ1OWY1NGJhNjg1MWRh MDRjOTBlY2EyNzcxNWU1NmY2MmMwYjMyNTlmZWFlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD125/0pKawUmzCmZWDyjO9/0sj3MH5snBV/j/2SkSxbTbs 6BOAlv6bhxAU/RdF4FTUxHKkRRSdc20F1kc+xlTrJKlsHP04Jedy5fVxxqn81x6R DrjbglWrEqJQOI+GpPRsYhIpbBbleuLI5NeEX/MUtLtL1Ei3qLwXM7hvI9lk8rjs ttyoCGCvMBTiz97LRRX+bw2VyupSEpbc1q7qxUqs2WrjBoqgXIDmkyWq9cy5ljOB M2WklkbNTLQjswxpQPOJ1httqWOdkkOkZvKkypJYtupeSgKulTIy7zNzlE2+K8+x GFIBHWKlzQ8JjMuqRLIC678LXhnjEEkqlMOsgoNrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhSOSJygr+YZ/FL8tWF/wF32OYUwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2MyNWUxNjhlLWI4NTgtNGFmMC1iMWExLWNmMTYzZTRkMjgwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP1TANBgkqhkiG9w0BAQsFAAOCAQEAjYvBDjAUcj+VfP6TK5aMjMgObxqW pq7EnKa6cvlowp6X2OzLd2XKyRlLw+iOo+XFI7GLYP1Krr7/8KA/RxytVAbSvurJ wMM4WZ9SCymoWZ3zuk7Zb6k15nbVdPdhjQd6D052/7n72YDBHFUsGpqAsj3Q5cA2 n4mHyUqnG0qlJ7HP2IKZirDTBrd+Q8MhKLt9AyUGJKDN+sj5fRwzN57gjJdtMUk1 suJCQYeRh8tn6BQvmc/aD88uoaO4bkXvQaGBoB4wHEfKntPaU0TXRHFiwS8Ecvfo BY8U7iN0a5es6rRE1pUITAV9QSVynplNCaeAAHiJLiOfsSDg2CA1864Mrw== -----END CERTIFICATE-----Generated at Tue Apr 16 01:22:02 2024 by rpki-client on console-ams.rpki-client.org