$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c25e168e-b858-4af0-b1a1-cf163e4d2802.roa File: c25e168e-b858-4af0-b1a1-cf163e4d2802.roa (raw, json) Hash identifier: RoA527aqljOOOYQd16ac6lKGOwv96VmACMcQQyr+Opw= Subject key identifier: 4C:7B:04:7A:AD:21:EC:F5:63:57:00:CD:53:87:62:7E:92:7B:B3:49 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 533D43E94712FED29CA1F333071AA5F609839298 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c25e168e-b858-4af0-b1a1-cf163e4d2802.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 15.213.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:3d:43:e9:47:12:fe:d2:9c:a1:f3:33:07:1a:a5:f6:09:83:92:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=5f887c1482d3d32a039c513b4a2d1db5445019ad7161662277a8bd02023a4985, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:07:6d:c4:67:f8:58:43:51:86:c9:d6:91:21: 84:14:0e:46:ff:38:c4:a7:bb:ca:6a:98:ef:cc:30: 3e:04:da:be:7a:46:d3:b9:c8:6c:2e:ee:9f:db:f2: f9:59:90:ed:fd:a4:0a:fa:51:74:08:d8:65:97:a6: 3a:f9:2a:ef:94:c2:53:20:99:03:f1:ae:65:54:7d: 9e:b8:e7:38:f7:70:4d:dd:95:88:77:e5:56:9d:0a: fe:bb:3c:75:a8:7e:46:13:c2:d0:6a:76:53:25:de: f4:03:6b:9a:6c:5c:e2:04:65:d5:7d:55:59:65:cd: 7c:d5:72:82:b0:24:86:02:78:9e:52:b6:fe:54:0a: 8c:90:22:76:23:04:f2:35:ce:3f:19:89:af:73:5c: 11:4b:15:97:33:2b:3e:a5:3d:90:3b:21:52:6d:7f: dc:ea:aa:5a:a6:8e:25:e9:fc:30:bf:3e:ea:a0:1e: 65:66:59:46:44:4f:cb:02:59:5e:91:bf:0e:08:de: 98:8c:c6:f7:41:a8:35:72:65:e9:15:21:ae:64:70: 99:cc:8f:e4:6a:44:a0:31:dc:12:66:9e:17:f3:f6: a2:71:95:03:bb:cc:9f:85:f1:aa:01:f6:77:2b:19: a5:b6:09:c6:55:77:db:18:17:36:6c:a8:bf:b7:bd: 68:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:7B:04:7A:AD:21:EC:F5:63:57:00:CD:53:87:62:7E:92:7B:B3:49 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c25e168e-b858-4af0-b1a1-cf163e4d2802.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.213.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:fc:f6:0a:52:02:29:62:d9:36:51:32:1e:7b:2b:e3:e6:9b: a8:87:d5:06:8a:75:1a:8f:e8:73:fa:b6:30:21:55:db:d4:a0: 62:ab:30:11:59:8d:d3:d0:1d:60:8c:14:10:06:13:23:7e:27: 22:7c:20:1e:30:ae:4b:3e:ca:27:3b:b6:eb:8f:6f:ee:6e:a1: b7:ad:ec:87:b5:25:f5:b8:08:7c:96:d1:88:d4:2e:1d:8f:53: 0d:3e:a0:4a:e5:f2:ab:74:20:53:cd:c1:9f:ef:d6:26:84:5c: 81:bf:c8:d0:a9:f4:40:a5:02:9f:41:7f:39:34:cf:59:60:f7: 98:9f:3a:df:35:52:98:64:aa:84:8d:9e:db:2d:22:d4:76:a0: 51:52:a6:ba:64:69:68:42:69:7f:cf:05:76:59:7f:07:fb:7a: f5:07:19:8a:d0:16:9a:9c:dd:8f:a8:96:52:4c:c1:ba:02:6e: 7a:ba:28:ec:ba:09:97:ed:18:6b:1d:1b:b8:0c:7f:5a:2b:46: 08:7b:d0:e7:13:a8:63:c6:d7:24:ee:c4:da:ab:21:22:c6:bc: e5:10:fa:71:31:fe:72:3c:4f:a5:f9:9c:c1:44:7b:0e:c0:39: 99:dd:d1:a8:76:56:7e:83:fb:fb:bf:0d:6b:b4:c4:47:27:00: e4:be:df:76 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUz1D6UcS/tKcofMzBxql9gmDkpgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Zjg4N2MxNDgyZDNkMzJhMDM5YzUxM2I0YTJkMWRiNTQ0 NTAxOWFkNzE2MTY2MjI3N2E4YmQwMjAyM2E0OTg1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQB23EZ/hYQ1GGydaRIYQUDkb/OMSnu8pqmO/MMD4E2r56 RtO5yGwu7p/b8vlZkO39pAr6UXQI2GWXpjr5Ku+UwlMgmQPxrmVUfZ645zj3cE3d lYh35VadCv67PHWofkYTwtBqdlMl3vQDa5psXOIEZdV9VVllzXzVcoKwJIYCeJ5S tv5UCoyQInYjBPI1zj8Zia9zXBFLFZczKz6lPZA7IVJtf9zqqlqmjiXp/DC/Puqg HmVmWUZET8sCWV6Rvw4I3piMxvdBqDVyZekVIa5kcJnMj+RqRKAx3BJmnhfz9qJx lQO7zJ+F8aoB9ncrGaW2CcZVd9sYFzZsqL+3vWixAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTHsEeq0h7PVjVwDNU4difpJ7s0kwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2MyNWUxNjhlLWI4NTgtNGFmMC1iMWExLWNmMTYzZTRkMjgwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP1TANBgkqhkiG9w0BAQsFAAOCAQEAFfz2ClICKWLZNlEyHnsr4+abqIfV Bop1Go/oc/q2MCFV29SgYqswEVmN09AdYIwUEAYTI34nInwgHjCuSz7KJzu2649v 7m6ht63sh7Ul9bgIfJbRiNQuHY9TDT6gSuXyq3QgU83Bn+/WJoRcgb/I0Kn0QKUC n0F/OTTPWWD3mJ863zVSmGSqhI2e2y0i1HagUVKmumRpaEJpf88Fdll/B/t69QcZ itAWmpzdj6iWUkzBugJueroo7LoJl+0Yax0buAx/WitGCHvQ5xOoY8bXJO7E2qsh Isa85RD6cTH+cjxPpfmcwUR7DsA5md3RqHZWfoP7+78Na7TERycA5L7fdg== -----END CERTIFICATE-----Generated at Sun Nov 24 21:44:41 2024 by rpki-client on console-ams.rpki-client.org