$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cef8d8e1-26f9-4f5b-a428-0989b643436b.roa File: cef8d8e1-26f9-4f5b-a428-0989b643436b.roa (raw, json) Hash identifier: +2B9tELY/5S2/wQDNrhqslCUQrmnzR1+zPR99F50uMY= Subject key identifier: A4:6D:E6:C4:9B:43:3E:56:5C:89:A3:D1:CC:D8:29:24:36:16:BB:30 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5763152E374FFB8CDB7A6D4AFA4D602EC631F73F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cef8d8e1-26f9-4f5b-a428-0989b643436b.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.144.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Apr 2024 12:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:63:15:2e:37:4f:fb:8c:db:7a:6d:4a:fa:4d:60:2e:c6:31:f7:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=3ab444b6cbddf0de461135314efb1c086ae9cf7fe28f846067e1343627651c8d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:94:76:cd:ca:03:8b:2e:bb:18:d9:5e:98:24: da:d1:bf:e1:c6:17:5e:a0:a6:04:1b:8a:2b:79:46: 32:1b:1c:6c:11:c8:8b:4f:e9:4a:67:af:b0:56:54: 83:8d:37:93:d9:10:99:53:a0:5a:b7:12:52:88:ee: df:fa:92:e4:ba:47:aa:f6:ee:e5:15:10:60:fa:b8: 94:ca:08:93:40:29:0a:34:0b:a1:d6:2e:54:bb:33: aa:d5:33:23:e4:fa:4d:28:98:b8:7f:00:fe:36:f3: 18:1c:f1:55:53:bb:78:cf:1c:9d:f3:d6:c0:b8:d9: 84:2f:4f:39:87:83:24:98:53:38:80:11:8d:9b:8d: 7d:42:19:9f:c8:a2:fa:12:9c:7a:fc:6f:b8:b1:08: 10:e2:40:ad:ab:30:70:eb:c3:c8:97:b2:5d:5d:67: 20:e6:0f:bd:1b:e7:45:4c:4d:eb:ce:01:24:9c:f7: 8b:9b:8d:dc:cf:fd:ed:d7:df:1a:ae:30:fa:27:18: 63:b8:3c:8e:5d:71:ab:7b:e7:b0:d4:d1:3e:f5:09: cd:1d:c1:b4:84:1a:72:3a:0a:61:e4:cd:23:22:78: 36:a2:0a:8c:07:e4:4c:8c:ff:db:f2:33:3e:5e:be: 83:e2:93:6e:5b:09:bc:e0:f7:2a:41:88:71:3c:22: 43:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:6D:E6:C4:9B:43:3E:56:5C:89:A3:D1:CC:D8:29:24:36:16:BB:30 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cef8d8e1-26f9-4f5b-a428-0989b643436b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.144.128.0/17 Signature Algorithm: sha256WithRSAEncryption 96:60:a4:f8:4e:1f:b1:2e:72:e7:3a:5f:76:37:69:4a:14:48: 1b:ce:78:bb:04:33:0a:d0:d9:e6:ef:12:99:bb:d5:8e:74:6a: 77:32:d9:42:c9:c3:95:d3:69:5b:e4:f7:f0:81:1e:64:6b:69: 29:62:d0:61:5f:30:ee:1f:71:f4:7e:cc:e9:3e:92:ba:f2:f7: 79:6d:29:66:f3:7f:87:eb:35:2f:44:7c:0f:a5:a7:f5:75:c3: 1d:d5:9d:83:9f:e9:81:96:cb:e4:cb:51:9a:21:47:68:73:74: 19:6e:4c:1b:01:01:ff:7b:60:e5:ff:01:a9:6d:b8:da:51:dd: 76:8d:57:8c:b8:c3:b6:fc:49:b8:8b:27:60:50:e0:55:89:d9: 75:7a:5f:ef:01:39:07:ae:a0:bb:eb:39:d8:38:51:59:87:5b: 1c:a2:a8:2b:17:c6:b0:5f:a8:8d:8c:41:d5:ff:0f:98:3a:a6: a4:ef:62:75:88:bc:a2:01:89:07:29:05:f2:a3:0c:d8:85:81: b5:f7:14:d8:ea:ed:8c:4b:57:1a:dd:51:97:8a:15:8b:6f:73: 29:47:65:1a:5c:8a:31:84:7c:c4:a2:0b:c9:5e:c5:15:61:58: 78:8b:8f:ce:3e:e4:f3:b8:2f:c8:9b:a9:bb:19:32:8c:bf:d1: 89:74:dd:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV2MVLjdP+4zbem1K+k1gLsYx9z8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYWI0NDRiNmNiZGRmMGRlNDYxMTM1MzE0ZWZiMWMwODZh ZTljZjdmZTI4Zjg0NjA2N2UxMzQzNjI3NjUxYzhkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8lHbNygOLLrsY2V6YJNrRv+HGF16gpgQbiit5RjIbHGwR yItP6Upnr7BWVIONN5PZEJlToFq3ElKI7t/6kuS6R6r27uUVEGD6uJTKCJNAKQo0 C6HWLlS7M6rVMyPk+k0omLh/AP428xgc8VVTu3jPHJ3z1sC42YQvTzmHgySYUziA EY2bjX1CGZ/IovoSnHr8b7ixCBDiQK2rMHDrw8iXsl1dZyDmD70b50VMTevOASSc 94ubjdzP/e3X3xquMPonGGO4PI5dcat757DU0T71Cc0dwbSEGnI6CmHkzSMieDai CowH5EyM/9vyMz5evoPik25bCbzg9ypBiHE8IkM1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpG3mxJtDPlZciaPRzNgpJDYWuzAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NlZjhkOGUxLTI2ZjktNGY1Yi1hNDI4LTA5ODliNjQzNDM2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc0kIAwDQYJKoZIhvcNAQELBQADggEBAJZgpPhOH7Eucuc6X3Y3aUoUSBvO eLsEMwrQ2ebvEpm71Y50ancy2ULJw5XTaVvk9/CBHmRraSli0GFfMO4fcfR+zOk+ krry93ltKWbzf4frNS9EfA+lp/V1wx3VnYOf6YGWy+TLUZohR2hzdBluTBsBAf97 YOX/AaltuNpR3XaNV4y4w7b8SbiLJ2BQ4FWJ2XV6X+8BOQeuoLvrOdg4UVmHWxyi qCsXxrBfqI2MQdX/D5g6pqTvYnWIvKIBiQcpBfKjDNiFgbX3FNjq7YxLVxrdUZeK FYtvcylHZRpcijGEfMSiC8lexRVhWHiLj84+5PO4L8ibqbsZMoy/0Yl03ZE= -----END CERTIFICATE-----Generated at Tue Apr 16 01:22:03 2024 by rpki-client on console-ams.rpki-client.org