$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c9ee27b7-1b8f-47bf-aec1-3f1055f8bc7b.roa File: c9ee27b7-1b8f-47bf-aec1-3f1055f8bc7b.roa (raw, json) Hash identifier: 6s+AAGD/Kyl2f3920u+9FMF0C8zFFnukTiAJHrhEruw= Subject key identifier: 83:F1:C1:FE:CE:12:95:26:B6:2D:68:0D:0D:8E:31:38:24:FA:1A:15 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 04078424F1FB64B08AF8016DD9B6A80A6A377388 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c9ee27b7-1b8f-47bf-aec1-3f1055f8bc7b.roa Signing time: Mon 29 Apr 2024 00:00:00 +0000 ROA not before: Mon 29 Apr 2024 00:00:00 +0000 ROA not after: Mon 03 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 161.188.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:07:84:24:f1:fb:64:b0:8a:f8:01:6d:d9:b6:a8:0a:6a:37:73:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 29 00:00:00 2024 GMT Not After : Jun 3 23:59:59 2024 GMT Subject: serialNumber=71b28c2aa2ec347377fc0e2a9fe3694d35b64c4893d431559c179f04cc06743c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:05:e5:39:ab:5e:0c:9a:97:46:f8:4e:1b:b4: db:19:a7:88:f2:bb:e4:1a:fa:bd:23:5d:7d:50:0a: 0c:a6:6e:63:a1:9d:be:22:34:7e:bb:be:62:16:27: 77:cd:ac:6b:b6:60:6f:0b:eb:ec:e7:f9:0f:a9:8a: 0b:72:7e:6d:32:b9:ef:7b:12:58:b6:45:44:02:b5: 29:f6:a3:df:06:0e:d7:56:07:50:2b:ca:5d:70:41: d1:d9:00:b2:92:f8:a2:18:81:32:ea:03:1c:79:44: 7d:eb:47:a1:6a:ff:8b:cb:2e:42:99:26:1d:ef:e9: 43:f1:eb:ca:15:20:93:b8:b6:e2:97:2a:1a:56:f8: 79:0f:4e:7c:88:e5:f8:d0:14:3e:36:9b:43:17:17: 03:cd:1a:86:30:4e:16:4a:78:ef:4a:8f:43:04:d6: 91:49:5e:63:fb:7b:b2:8d:be:8a:a8:0d:75:f2:6e: 73:c1:11:71:a2:ce:a4:4c:80:83:ac:be:b2:13:0d: 4c:34:35:84:86:ef:eb:9c:12:b3:5e:ab:22:d6:35: 4b:1d:48:c9:2b:4d:63:36:92:a1:c9:1b:49:2f:ac: 7c:c8:37:59:27:46:e0:0a:3c:6c:ed:b2:52:37:49: c8:6c:7f:4c:fa:b0:4f:9e:89:18:ef:91:00:75:49: 3a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:F1:C1:FE:CE:12:95:26:B6:2D:68:0D:0D:8E:31:38:24:FA:1A:15 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c9ee27b7-1b8f-47bf-aec1-3f1055f8bc7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.182.0/23 Signature Algorithm: sha256WithRSAEncryption a1:0e:a4:a5:bf:87:6c:c1:b3:ad:5a:79:7a:06:12:f3:1a:93: 77:62:9a:c4:fa:54:70:be:73:56:f5:cc:94:60:63:23:fc:4e: fe:94:d9:6d:36:9c:9c:22:d0:c1:a6:d9:3b:f0:3b:ce:b1:4d: da:ea:c7:74:23:49:81:f2:69:60:6a:bd:6a:04:62:11:f6:6d: 15:d5:2e:98:d3:9b:d0:be:c9:3d:e9:67:ca:f0:2f:63:e5:d8: 1d:8c:e4:ca:7b:d2:eb:b3:c4:d8:54:e8:c3:3c:3b:fb:da:49: 1b:ae:03:48:5c:36:e8:29:f0:05:93:b3:8b:77:e7:7a:ff:18: 8b:7c:01:5a:a9:64:a2:c5:d2:46:b0:9a:64:1a:fb:fd:17:72: d5:87:3b:1f:a4:72:13:0e:dc:27:8f:2a:12:3e:ec:8b:d2:bb: 1d:78:07:7e:70:ef:2e:d7:d9:43:e3:39:f1:3a:84:64:6a:22: 29:82:0e:e2:41:17:47:ab:10:c7:c0:58:08:23:c1:c9:c0:cc: f9:9e:21:f5:9c:57:36:e2:43:af:56:a5:65:ac:53:8c:15:8a: c3:76:2d:6d:87:d6:17:80:c1:7d:a5:1b:70:02:42:d5:11:a5: f1:79:36:fe:09:57:fc:ff:df:9f:8f:b4:af:47:ef:c7:c4:37: c8:65:ea:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBAeEJPH7ZLCK+AFt2baoCmo3c4gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDI5MDAwMDAwWhcNMjQwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWIyOGMyYWEyZWMzNDczNzdmYzBlMmE5ZmUzNjk0ZDM1 YjY0YzQ4OTNkNDMxNTU5YzE3OWYwNGNjMDY3NDNjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkBeU5q14MmpdG+E4btNsZp4jyu+Qa+r0jXX1QCgymbmOh nb4iNH67vmIWJ3fNrGu2YG8L6+zn+Q+pigtyfm0yue97Eli2RUQCtSn2o98GDtdW B1Aryl1wQdHZALKS+KIYgTLqAxx5RH3rR6Fq/4vLLkKZJh3v6UPx68oVIJO4tuKX KhpW+HkPTnyI5fjQFD42m0MXFwPNGoYwThZKeO9Kj0ME1pFJXmP7e7KNvoqoDXXy bnPBEXGizqRMgIOsvrITDUw0NYSG7+ucErNeqyLWNUsdSMkrTWM2kqHJG0kvrHzI N1knRuAKPGztslI3Schsf0z6sE+eiRjvkQB1STqlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg/HB/s4SlSa2LWgNDY4xOCT6GhUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2M5ZWUyN2I3LTFiOGYtNDdiZi1hZWMxLTNmMTA1NWY4YmM3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGhvLYwDQYJKoZIhvcNAQELBQADggEBAKEOpKW/h2zBs61aeXoGEvMak3di msT6VHC+c1b1zJRgYyP8Tv6U2W02nJwi0MGm2TvwO86xTdrqx3QjSYHyaWBqvWoE YhH2bRXVLpjTm9C+yT3pZ8rwL2Pl2B2M5Mp70uuzxNhU6MM8O/vaSRuuA0hcNugp 8AWTs4t353r/GIt8AVqpZKLF0kawmmQa+/0XctWHOx+kchMO3CePKhI+7IvSux14 B35w7y7X2UPjOfE6hGRqIimCDuJBF0erEMfAWAgjwcnAzPmeIfWcVzbiQ69WpWWs U4wVisN2LW2H1heAwX2lG3ACQtURpfF5Nv4JV/z/35+PtK9H78fEN8hl6hk= -----END CERTIFICATE-----Generated at Wed May 1 19:13:25 2024 by rpki-client on console-fra.rpki-client.org