$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8eb7c3f-f729-4c08-a203-7e1f1afe5e4f.roa File: c8eb7c3f-f729-4c08-a203-7e1f1afe5e4f.roa (raw, json) Hash identifier: 19emKDNz6Br1gp3SJW2krLjmtnC6n4qx0Lgq8fbv520= Subject key identifier: 1F:28:2C:0F:56:4D:9E:81:C7:E5:AE:D2:3F:9D:E7:15:A3:39:E1:96 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0F28BE1F5889094FE65B4085ED9D01BCD1F14E19 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8eb7c3f-f729-4c08-a203-7e1f1afe5e4f.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:28:be:1f:58:89:09:4f:e6:5b:40:85:ed:9d:01:bc:d1:f1:4e:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=e04882d3eab1416f7f659ae0ef76cf342d726b7971aab8ece5d2b695cd49f910, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:14:77:4e:62:f8:de:bc:03:88:aa:b5:bf:3a: 1a:2d:db:35:36:76:d3:c1:d2:19:9b:f5:cc:e8:78: 57:d1:7c:8a:5a:33:ff:05:48:6d:fe:03:ee:bf:a0: fc:56:11:14:fc:4b:e3:e3:74:55:4b:b4:6d:73:1b: 73:45:e1:6f:8e:ad:5a:bf:7b:2a:30:3e:90:67:2a: 99:0a:a4:ee:96:36:3f:43:f4:28:04:03:15:36:d7: 94:7e:05:c7:89:5c:c4:d9:f2:77:c5:11:bb:a3:c4: 48:6b:9e:80:68:8c:00:f4:3d:a9:7c:bd:66:ac:4c: 76:6d:69:05:02:52:d6:07:96:ac:96:22:ba:0d:8e: e3:ee:d9:87:42:d2:bb:62:e1:86:8b:8e:a9:29:07: d3:5c:ce:89:97:11:d0:fc:bf:e8:fd:26:62:b8:41: 4e:96:05:30:eb:f1:57:c5:56:73:cf:f5:6d:c2:32: 65:b1:04:79:29:b4:2d:f5:cb:3c:d6:06:ad:be:d8: a1:e9:d3:5f:86:a0:0c:8b:68:0c:d3:84:7a:58:6f: 06:ad:0c:42:79:c5:77:d9:38:8c:91:42:e4:e3:c9: 37:a5:48:7c:59:2e:28:0f:2a:49:4c:92:31:d9:30: d3:34:e1:88:45:cd:a8:7a:1a:fe:c7:df:48:65:b0: a5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:28:2C:0F:56:4D:9E:81:C7:E5:AE:D2:3F:9D:E7:15:A3:39:E1:96 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8eb7c3f-f729-4c08-a203-7e1f1afe5e4f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.128.0/18 Signature Algorithm: sha256WithRSAEncryption 8f:d8:fb:a7:5d:3a:8f:96:23:c6:4e:f5:a0:b0:08:d7:f2:fa: f4:fa:9c:b8:11:7b:5f:ab:87:01:30:6b:a7:df:a7:28:1a:80: b4:55:af:31:32:67:6b:6b:18:a3:94:cc:af:d6:c2:49:ba:4c: b1:f7:64:3d:41:4f:6c:de:e2:a5:25:dc:37:2b:d5:fd:b8:ac: 2b:d8:87:a4:f6:11:76:91:4c:3a:b9:55:2a:cb:6f:55:b2:1f: 61:27:ab:8a:ad:ce:7a:77:39:89:96:29:13:14:b9:35:45:1f: ce:f5:b7:ac:34:65:f8:bc:fd:fe:38:f2:21:c7:0f:d8:f0:2a: f7:b8:3e:3b:cb:3a:bb:d3:03:1e:4f:c5:21:c6:94:a5:e8:0e: 8a:f4:bf:1e:1c:b0:8a:7d:e1:74:1a:38:c6:cd:12:bb:d8:f6: a6:42:f0:c8:c7:87:b0:e8:e4:37:f5:6c:c9:d6:17:11:63:c9: 95:1a:77:eb:0b:b4:a9:c5:c4:a2:3b:e4:d6:4a:bb:ae:1b:c5: 39:83:f5:a1:f4:43:e3:f8:e0:f4:ee:7a:01:42:51:ad:e3:90: c2:cf:67:a8:2e:6d:a9:cf:1b:d2:b8:d2:a0:ae:2b:bf:3e:e5: 1d:3b:30:90:62:88:bd:f5:58:d9:7e:b6:f7:20:85:08:18:23: 1b:74:1f:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDyi+H1iJCU/mW0CF7Z0BvNHxThkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDQ4ODJkM2VhYjE0MTZmN2Y2NTlhZTBlZjc2Y2YzNDJk NzI2Yjc5NzFhYWI4ZWNlNWQyYjY5NWNkNDlmOTEwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKFHdOYvjevAOIqrW/Ohot2zU2dtPB0hmb9czoeFfRfIpa M/8FSG3+A+6/oPxWERT8S+PjdFVLtG1zG3NF4W+OrVq/eyowPpBnKpkKpO6WNj9D 9CgEAxU215R+BceJXMTZ8nfFEbujxEhrnoBojAD0Pal8vWasTHZtaQUCUtYHlqyW IroNjuPu2YdC0rti4YaLjqkpB9NczomXEdD8v+j9JmK4QU6WBTDr8VfFVnPP9W3C MmWxBHkptC31yzzWBq2+2KHp01+GoAyLaAzThHpYbwatDEJ5xXfZOIyRQuTjyTel SHxZLigPKklMkjHZMNM04YhFzah6Gv7H30hlsKUPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHygsD1ZNnoHH5a7SP53nFaM54ZYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2M4ZWI3YzNmLWY3MjktNGMwOC1hMjAzLTdlMWYxYWZlNWU0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY28IAwDQYJKoZIhvcNAQELBQADggEBAI/Y+6ddOo+WI8ZO9aCwCNfy+vT6 nLgRe1+rhwEwa6ffpygagLRVrzEyZ2trGKOUzK/Wwkm6TLH3ZD1BT2ze4qUl3Dcr 1f24rCvYh6T2EXaRTDq5VSrLb1WyH2Enq4qtznp3OYmWKRMUuTVFH871t6w0Zfi8 /f448iHHD9jwKve4PjvLOrvTAx5PxSHGlKXoDor0vx4csIp94XQaOMbNErvY9qZC 8MjHh7Do5Df1bMnWFxFjyZUad+sLtKnFxKI75NZKu64bxTmD9aH0Q+P44PTuegFC Ua3jkMLPZ6gubanPG9K40qCuK78+5R07MJBiiL31WNl+tvcghQgYIxt0H+M= -----END CERTIFICATE-----Generated at Thu Apr 25 22:33:18 2024 by rpki-client on console-fra.rpki-client.org