$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c68d9cd4-d843-492f-af03-7c73b5515ca0.roa File: c68d9cd4-d843-492f-af03-7c73b5515ca0.roa (raw, json) Hash identifier: w2QZxQE1zmjd3uJeS8w858Pg8CR45+hanGFOnYwvl0k= Subject key identifier: EF:46:7F:0E:03:DA:AD:AC:0E:50:6C:19:0B:43:28:5A:0A:9E:FB:A0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 188EFBF8BA39B369F7862DBF7274F165FCAAE205 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c68d9cd4-d843-492f-af03-7c73b5515ca0.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 13.228.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:8e:fb:f8:ba:39:b3:69:f7:86:2d:bf:72:74:f1:65:fc:aa:e2:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=4b1c50cac663985e28d33cdf0e16fada86e40bcd94297aac814c1dae02f5cd86, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:04:1f:0a:43:25:4f:eb:ad:32:40:c0:8c:c2: 7f:1b:cc:71:ae:29:06:eb:f3:22:df:9e:43:07:08: db:eb:3f:89:59:97:86:c4:d9:38:e4:92:5a:5a:e3: ad:03:08:2e:8b:93:7f:f4:6a:c8:43:a0:76:ba:8e: 3e:b2:b8:bf:06:9f:5c:92:b7:66:16:df:1e:b4:9d: a1:80:3f:77:89:2d:dd:01:98:af:f4:0c:8e:f1:b0: 0c:3e:14:a1:8c:78:12:6a:8f:27:9f:fc:9a:79:28: b3:51:68:d7:65:11:a6:1e:6b:42:41:bb:c6:bf:c5: b0:f9:7a:c2:f5:31:20:86:c1:49:de:3e:84:0d:09: 64:7f:5a:6b:57:bd:20:e9:85:c7:91:1b:80:c2:70: 2f:4c:a9:f3:68:38:45:f0:70:47:5f:eb:af:e7:50: cc:5c:80:3d:10:10:27:a2:47:86:fa:69:ed:6a:47: a6:bd:2a:63:31:65:7d:37:dd:7e:ae:60:f8:7e:fd: 9d:0a:8a:5d:03:a8:89:20:d4:02:e6:92:c1:25:08: 79:6f:b8:63:79:74:c2:65:42:4b:1b:5b:db:c3:c4: 71:5f:99:03:e3:39:9e:c5:49:9f:91:cd:02:4c:07: c8:d0:c3:17:3c:02:68:e6:6e:19:7e:00:06:4e:ae: b6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:46:7F:0E:03:DA:AD:AC:0E:50:6C:19:0B:43:28:5A:0A:9E:FB:A0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c68d9cd4-d843-492f-af03-7c73b5515ca0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.228.0.0/15 Signature Algorithm: sha256WithRSAEncryption 86:79:54:68:0c:6b:16:d2:98:3c:b9:68:2f:ea:bf:89:b4:81: 95:58:4d:e0:e0:c9:9d:74:b7:c6:40:3a:0e:c9:4c:d2:7b:d2: 82:22:12:4a:9a:71:63:de:28:95:37:a3:a1:f3:01:32:1a:56: 0e:03:b4:5c:48:5f:10:d5:84:3c:5d:61:e7:4a:32:dc:27:c3: a6:a1:6d:d9:bd:3b:3d:94:2c:5a:cb:66:4c:ed:48:84:35:d7: 56:58:1d:1e:59:99:0b:f6:c5:45:78:66:fc:da:66:f5:cc:27: 6c:ca:98:5b:81:97:8a:db:d8:e1:68:c4:6c:e2:24:33:6d:86: 0e:14:fa:bd:81:8d:da:b1:8b:4c:86:ae:ac:53:66:a8:5a:28: 70:01:f8:40:87:c4:64:93:d9:ba:3c:ae:66:ba:73:a4:a7:92: 56:41:51:a3:80:f1:50:04:53:f7:75:2c:1e:d6:57:09:73:90: d4:b5:7e:4e:aa:65:a1:8a:b5:48:dd:8f:44:ad:69:91:03:fe: c0:65:61:34:22:ee:b1:c1:0b:11:2e:b9:07:84:f7:26:0e:ff: 65:2b:9d:ec:82:ac:b6:81:d4:bf:2b:42:91:fc:3f:b8:8b:bc: 55:b2:f9:88:01:56:d1:60:b7:52:61:3d:95:24:43:91:d1:22: 4d:ff:bc:03 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGI77+Lo5s2n3hi2/cnTxZfyq4gUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjFjNTBjYWM2NjM5ODVlMjhkMzNjZGYwZTE2ZmFkYTg2 ZTQwYmNkOTQyOTdhYWM4MTRjMWRhZTAyZjVjZDg2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKBB8KQyVP660yQMCMwn8bzHGuKQbr8yLfnkMHCNvrP4lZ l4bE2Tjkklpa460DCC6Lk3/0ashDoHa6jj6yuL8Gn1ySt2YW3x60naGAP3eJLd0B mK/0DI7xsAw+FKGMeBJqjyef/Jp5KLNRaNdlEaYea0JBu8a/xbD5esL1MSCGwUne PoQNCWR/WmtXvSDphceRG4DCcC9MqfNoOEXwcEdf66/nUMxcgD0QECeiR4b6ae1q R6a9KmMxZX033X6uYPh+/Z0Kil0DqIkg1ALmksElCHlvuGN5dMJlQksbW9vDxHFf mQPjOZ7FSZ+RzQJMB8jQwxc8Amjmbhl+AAZOrrZRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU70Z/DgParawOUGwZC0MoWgqe+6AwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2M2OGQ5Y2Q0LWQ4NDMtNDkyZi1hZjAzLTdjNzNiNTUxNWNhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEN5DANBgkqhkiG9w0BAQsFAAOCAQEAhnlUaAxrFtKYPLloL+q/ibSBlVhN 4ODJnXS3xkA6DslM0nvSgiISSppxY94olTejofMBMhpWDgO0XEhfENWEPF1h50oy 3CfDpqFt2b07PZQsWstmTO1IhDXXVlgdHlmZC/bFRXhm/Npm9cwnbMqYW4GXitvY 4WjEbOIkM22GDhT6vYGN2rGLTIaurFNmqFoocAH4QIfEZJPZujyuZrpzpKeSVkFR o4DxUART93UsHtZXCXOQ1LV+TqploYq1SN2PRK1pkQP+wGVhNCLuscELES65B4T3 Jg7/ZSud7IKstoHUvytCkfw/uIu8VbL5iAFW0WC3UmE9lSRDkdEiTf+8Aw== -----END CERTIFICATE-----Generated at Thu Apr 25 22:33:18 2024 by rpki-client on console-fra.rpki-client.org