$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cc5218f3-03a1-418a-87c2-9325b453b998.roa File: cc5218f3-03a1-418a-87c2-9325b453b998.roa (raw, json) Hash identifier: i9Xsia9PUaa/OBDTNU1kzgQ0qiCEH5R/+citVTJisMw= Subject key identifier: 31:C1:20:43:A0:4B:B0:5F:E1:8D:C3:23:C6:43:42:CC:5C:4E:E5:7C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 21C116182B02D35D8668F727CC91A3E0446E8A9C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cc5218f3-03a1-418a-87c2-9325b453b998.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c1:16:18:2b:02:d3:5d:86:68:f7:27:cc:91:a3:e0:44:6e:8a:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=12894ca60f10f2c4fd85fec8bd0c23dfd200fc36adc97bad2b95376613730838, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d6:6f:96:d4:bd:f0:18:54:b5:6f:aa:5f:a9: dd:a7:7d:9b:c1:1b:5d:4e:44:dd:24:62:89:d3:b3: a0:8e:04:15:32:00:d9:cd:02:a1:7d:35:fa:70:75: f6:63:f1:c1:18:06:0d:8a:13:78:95:0a:35:97:05: 51:fb:17:bd:40:92:c2:a1:1c:9c:29:1e:4f:66:53: ef:2e:97:d6:9e:a6:f1:b5:a7:a3:28:99:ce:04:45: 4c:17:fc:7d:81:40:56:5d:09:62:52:03:c8:89:58: 15:c0:5e:f2:19:09:1b:5b:3a:9b:99:5b:42:c0:73: 0a:48:a0:37:64:73:2c:57:fb:40:81:5b:4a:ee:bb: b9:5f:b5:76:6e:d7:63:27:ec:c5:21:51:26:3f:33: 68:f8:de:e1:c9:d9:b5:ad:7f:f3:bd:d9:c9:0f:cc: 42:2e:7f:0f:ec:8a:29:18:73:58:6e:cc:36:b5:7d: 52:61:53:4d:39:29:a0:c4:26:44:49:08:b0:37:f8: 05:98:96:03:03:cf:73:fb:81:7b:dd:75:24:c0:11: 16:7d:0e:6b:42:c2:b1:99:cf:2d:03:8e:ab:a3:03: 27:c1:52:a0:8a:1d:ed:cc:e7:54:94:03:e2:cd:ee: 46:94:00:30:54:d2:ce:31:58:45:7f:2d:29:43:bc: 02:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C1:20:43:A0:4B:B0:5F:E1:8D:C3:23:C6:43:42:CC:5C:4E:E5:7C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cc5218f3-03a1-418a-87c2-9325b453b998.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.144.0/23 Signature Algorithm: sha256WithRSAEncryption ac:f6:5f:c0:e6:e2:51:c7:0e:05:f4:3b:31:e2:39:e1:62:ed: b2:c4:ef:c6:2d:11:1e:cd:9e:6f:06:67:a8:ea:56:fb:41:11: 80:58:cc:a4:5f:c6:93:e9:1a:e7:bb:88:80:16:0c:ec:00:a6: 0b:6e:6f:11:85:d6:38:54:94:93:c2:2b:a0:f7:78:7b:11:6c: fa:ba:7a:f7:76:6a:60:25:a3:39:60:a6:54:ac:20:0e:56:2e: 7f:91:f2:1b:9a:86:dc:db:9b:bd:2b:a9:db:40:3f:a7:35:d6: af:a0:f8:28:d3:51:2f:fe:92:d3:67:6f:95:d0:83:b6:78:39: 0d:be:41:ab:37:a8:f2:a2:c6:08:18:7c:55:39:14:b7:d5:73: c2:a3:0b:8b:15:25:59:75:da:e1:c3:27:82:de:73:1a:52:33: c7:47:23:3e:63:e3:05:4f:c5:fc:32:2f:12:70:3e:aa:40:e9: f9:0d:88:3b:30:2c:58:11:55:63:92:76:b4:2d:2a:23:f2:47: 9e:5e:3d:b5:ec:d0:9a:cc:ef:03:be:ce:d8:39:e9:a3:13:b6: 28:13:32:4c:58:b8:c9:31:72:bb:a2:2c:8c:64:d6:3b:e5:bc: 60:14:e9:c7:a2:54:4c:83:90:85:28:30:4b:0a:75:68:da:ac: 85:6e:a2:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIcEWGCsC012GaPcnzJGj4ERuipwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjg5NGNhNjBmMTBmMmM0ZmQ4NWZlYzhiZDBjMjNkZmQy MDBmYzM2YWRjOTdiYWQyYjk1Mzc2NjEzNzMwODM4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDs1m+W1L3wGFS1b6pfqd2nfZvBG11ORN0kYonTs6COBBUy ANnNAqF9NfpwdfZj8cEYBg2KE3iVCjWXBVH7F71AksKhHJwpHk9mU+8ul9aepvG1 p6Momc4ERUwX/H2BQFZdCWJSA8iJWBXAXvIZCRtbOpuZW0LAcwpIoDdkcyxX+0CB W0ruu7lftXZu12Mn7MUhUSY/M2j43uHJ2bWtf/O92ckPzEIufw/siikYc1huzDa1 fVJhU005KaDEJkRJCLA3+AWYlgMDz3P7gXvddSTAERZ9DmtCwrGZzy0DjqujAyfB UqCKHe3M51SUA+LN7kaUADBU0s4xWEV/LSlDvAI/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMcEgQ6BLsF/hjcMjxkNCzFxO5XwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NjNTIxOGYzLTAzYTEtNDE4YS04N2MyLTkzMjViNDUzYjk5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE0XpAwDQYJKoZIhvcNAQELBQADggEBAKz2X8Dm4lHHDgX0OzHiOeFi7bLE 78YtER7Nnm8GZ6jqVvtBEYBYzKRfxpPpGue7iIAWDOwApgtubxGF1jhUlJPCK6D3 eHsRbPq6evd2amAlozlgplSsIA5WLn+R8huahtzbm70rqdtAP6c11q+g+CjTUS/+ ktNnb5XQg7Z4OQ2+Qas3qPKixggYfFU5FLfVc8KjC4sVJVl12uHDJ4LecxpSM8dH Iz5j4wVPxfwyLxJwPqpA6fkNiDswLFgRVWOSdrQtKiPyR55ePbXs0JrM7wO+ztg5 6aMTtigTMkxYuMkxcruiLIxk1jvlvGAU6ceiVEyDkIUoMEsKdWjarIVuok4= -----END CERTIFICATE-----Generated at Fri Apr 26 11:01:06 2024 by rpki-client on console-ams.rpki-client.org