$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d22611eb-98da-4dc9-9c35-427f7a496dff.roa File: d22611eb-98da-4dc9-9c35-427f7a496dff.roa (raw, json) Hash identifier: tECHfObhdzaG/xnFVoTau3UqS5+yC8VClnjsaM8cOMc= Subject key identifier: EC:E0:98:14:D1:F9:31:06:72:84:76:22:1F:09:CD:46:8C:43:FC:36 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7361FB0517EFA65B67262ACF282DBFF0A5808C32 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d22611eb-98da-4dc9-9c35-427f7a496dff.roa Signing time: Tue 02 Apr 2024 00:00:00 +0000 ROA not before: Tue 02 Apr 2024 00:00:00 +0000 ROA not after: Tue 07 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:61:fb:05:17:ef:a6:5b:67:26:2a:cf:28:2d:bf:f0:a5:80:8c:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 2 00:00:00 2024 GMT Not After : May 7 23:59:59 2024 GMT Subject: serialNumber=6b3a2f11f0bf73ad5110a775a362904a61905f834b15c796d2631c2f523bf461, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e1:d5:ca:b2:a4:26:0d:e8:5b:dc:cc:ac:8f: 84:91:13:a6:7a:9b:9c:da:96:1a:b2:5d:43:f6:4a: 5e:7c:4e:cb:18:08:2c:80:76:0e:0e:6b:27:70:78: 56:ee:8b:0b:5e:19:50:1c:17:8d:4c:3e:47:59:b0: ac:f4:f1:81:9c:c5:eb:04:4a:a4:b3:0d:75:97:4a: f6:8b:09:6e:11:99:b6:aa:df:07:51:25:56:1c:de: 1e:d6:2a:b9:e5:ce:dd:72:36:af:4b:bd:73:0c:72: 3a:4b:72:69:4d:08:f3:6b:1d:f3:49:b5:48:44:f7: 01:10:3a:4e:f8:f1:ce:3b:9f:7d:72:cb:55:5a:8b: 90:77:d7:4b:cd:b2:39:6f:78:08:ee:ed:76:cf:dd: c4:99:42:d2:3a:f2:68:2e:50:72:7f:6d:d8:08:fb: 85:67:ed:02:d7:c4:b3:a5:18:24:c4:2b:01:71:d6: 33:ec:b4:fb:4c:65:f2:95:a9:29:38:07:32:b5:94: 8d:48:87:3b:02:d4:85:9a:3c:aa:6d:51:bb:c5:44: fd:a1:a9:d6:2b:fe:44:d1:40:3b:93:ce:5d:a6:dd: 56:14:6f:9a:c5:e1:a3:f7:5c:20:f5:b3:80:14:d7: 09:b8:1a:2d:e5:01:84:be:20:8c:72:98:93:9d:1a: 87:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:E0:98:14:D1:F9:31:06:72:84:76:22:1F:09:CD:46:8C:43:FC:36 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d22611eb-98da-4dc9-9c35-427f7a496dff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.84.0/22 Signature Algorithm: sha256WithRSAEncryption 72:b0:2d:8f:21:65:47:08:25:71:b0:56:0f:9a:b3:db:11:fe: 40:e4:7e:b8:7c:eb:2a:24:8c:f5:d5:f7:0b:15:ca:42:8f:fc: 48:11:aa:e3:33:0f:6e:8d:b3:0f:d3:2b:4f:23:b1:6f:93:93: 62:ac:89:17:c1:cc:05:3d:14:cc:fa:e9:97:63:7a:76:4f:21: bb:e8:49:cd:a3:db:38:2f:c1:78:f8:13:71:60:8e:6c:de:52: 21:51:d6:70:7e:26:98:cf:ca:8c:ed:db:03:b8:74:7e:eb:02: 32:3c:1f:f5:25:7e:2e:f8:60:25:ef:d5:fb:27:51:a3:7f:e8: 37:25:c6:e9:ad:aa:2b:ca:6b:a0:32:37:93:d0:69:a8:a6:7b: c3:ee:76:3e:5f:01:2e:de:61:83:83:1a:9a:bf:f0:fb:d0:dc: 93:46:db:e8:9c:90:a0:99:d9:fb:7d:fd:6d:8b:30:fc:3a:3e: 60:66:11:9f:e4:7c:7e:a7:5e:85:d3:88:a4:fe:a8:b6:cb:c8: 8d:d7:d2:02:00:73:1c:ef:0a:3d:c2:d1:53:d6:a8:d3:7e:0f: 44:76:9b:45:14:44:24:b8:fa:99:e3:e4:99:43:2e:9e:cb:b4: 35:85:5e:8e:53:89:27:f3:0d:21:d4:9c:c8:1f:70:ed:a5:2e: 54:44:81:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc2H7BRfvpltnJirPKC2/8KWAjDIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAyMDAwMDAwWhcNMjQwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjNhMmYxMWYwYmY3M2FkNTExMGE3NzVhMzYyOTA0YTYx OTA1ZjgzNGIxNWM3OTZkMjYzMWMyZjUyM2JmNDYxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC14dXKsqQmDehb3Mysj4SRE6Z6m5zalhqyXUP2Sl58TssY CCyAdg4OaydweFbuiwteGVAcF41MPkdZsKz08YGcxesESqSzDXWXSvaLCW4Rmbaq 3wdRJVYc3h7WKrnlzt1yNq9LvXMMcjpLcmlNCPNrHfNJtUhE9wEQOk748c47n31y y1Vai5B310vNsjlveAju7XbP3cSZQtI68mguUHJ/bdgI+4Vn7QLXxLOlGCTEKwFx 1jPstPtMZfKVqSk4BzK1lI1IhzsC1IWaPKptUbvFRP2hqdYr/kTRQDuTzl2m3VYU b5rF4aP3XCD1s4AU1wm4Gi3lAYS+IIxymJOdGodfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7OCYFNH5MQZyhHYiHwnNRoxD/DYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QyMjYxMWViLTk4ZGEtNGRjOS05YzM1LTQyN2Y3YTQ5NmRmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI28FQwDQYJKoZIhvcNAQELBQADggEBAHKwLY8hZUcIJXGwVg+as9sR/kDk frh86yokjPXV9wsVykKP/EgRquMzD26Nsw/TK08jsW+Tk2KsiRfBzAU9FMz66Zdj enZPIbvoSc2j2zgvwXj4E3FgjmzeUiFR1nB+JpjPyozt2wO4dH7rAjI8H/Ulfi74 YCXv1fsnUaN/6DclxumtqivKa6AyN5PQaaime8Pudj5fAS7eYYODGpq/8PvQ3JNG 2+ickKCZ2ft9/W2LMPw6PmBmEZ/kfH6nXoXTiKT+qLbLyI3X0gIAcxzvCj3C0VPW qNN+D0R2m0UURCS4+pnj5JlDLp7LtDWFXo5TiSfzDSHUnMgfcO2lLlREgXM= -----END CERTIFICATE-----Generated at Wed Apr 24 16:35:42 2024 by rpki-client on console-fra.rpki-client.org