$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2436557-e77c-47a5-bc46-c7c52f740770.roa File: d2436557-e77c-47a5-bc46-c7c52f740770.roa (raw, json) Hash identifier: OJlu0VcQnAkdYXnSgVp3xn8KmRCBqKJhlXXqcYObIp4= Subject key identifier: C0:F6:93:71:A5:01:D7:50:61:AC:5B:86:E1:09:12:33:9F:70:2F:C0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1BCD35DF9E0E3CE2B80562CEE1B9D0B9FB283B5C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2436557-e77c-47a5-bc46-c7c52f740770.roa Signing time: Wed 03 Apr 2024 00:00:00 +0000 ROA not before: Wed 03 Apr 2024 00:00:00 +0000 ROA not after: Wed 08 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 18.58.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:cd:35:df:9e:0e:3c:e2:b8:05:62:ce:e1:b9:d0:b9:fb:28:3b:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 3 00:00:00 2024 GMT Not After : May 8 23:59:59 2024 GMT Subject: serialNumber=44a83492d28cd0db597e3dc9c68745d85f1bcece0099f46002a5f64d4c41c0a7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3b:e2:7b:4c:90:b4:d3:5f:9a:7e:90:50:dc: f0:e8:de:f4:1d:95:b4:74:b5:12:a9:4e:a2:84:bd: 60:98:62:d5:33:ce:8b:a0:89:55:15:ca:93:79:8d: e0:14:b5:9b:ba:fc:6c:81:5d:76:6a:92:21:f0:13: ba:79:dc:1c:df:6a:f4:45:c3:f6:03:c6:ce:ce:a8: 3f:12:b3:2e:8a:e8:a0:21:cc:d7:f3:94:c7:f5:ea: 5d:42:f8:1f:32:f5:14:10:e8:9b:b9:a8:12:1a:e2: 4f:77:9c:fc:e4:5a:a9:d4:ce:34:d6:cc:ea:c0:f6: a5:58:c7:83:e9:ca:42:8a:fd:02:ed:ba:97:f2:fa: 6c:6e:c7:d1:d5:c2:71:80:a7:7a:38:2d:38:a7:e2: 1f:b2:61:ba:be:00:b7:9f:42:0e:17:6d:7b:74:25: bf:27:14:44:7b:64:47:53:80:19:34:32:5c:0b:08: 23:ad:16:1c:e8:a5:e2:cd:9d:39:80:5f:c3:cf:12: 80:4e:42:91:78:2c:04:66:fe:35:d3:79:38:4e:c7: 0f:5a:fd:1b:bb:ba:1a:a0:37:93:82:9e:cd:6d:90: f8:bc:37:b1:6f:61:17:88:ee:b3:69:2c:4e:4f:b5: 91:32:2e:8a:cc:fe:ba:73:ad:2d:76:d7:00:f1:25: 89:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F6:93:71:A5:01:D7:50:61:AC:5B:86:E1:09:12:33:9F:70:2F:C0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2436557-e77c-47a5-bc46-c7c52f740770.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.58.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3b:d1:84:99:7a:01:af:4e:56:d0:46:42:23:5e:c1:d6:4a:f1: e8:31:75:31:e7:1d:cf:a4:e2:43:93:af:d4:d6:58:9c:7b:f0: 7a:74:d5:b5:6e:58:81:68:1e:c9:8d:38:8a:bf:4a:e2:4c:69: 24:7d:ed:e1:98:a4:61:d1:d9:7f:9b:83:59:82:ec:13:6d:a0: 78:d1:48:f6:ec:07:be:35:f6:76:10:e2:53:61:de:9e:a8:4f: 73:d3:ff:98:2c:80:a7:7c:ac:68:17:6a:8d:63:09:97:b7:ca: 50:0b:ee:44:25:c8:95:98:53:46:4f:19:79:3b:14:1b:ff:81: 23:53:e4:7a:75:fc:73:13:6b:a4:13:af:ba:c1:61:0a:35:8f: 8f:49:9c:a9:e0:ae:6b:c6:45:19:2d:86:0d:a0:6a:a0:13:3e: 11:81:94:38:bf:45:52:29:c6:17:c9:e9:bb:20:4a:d0:5e:b6: fe:44:29:08:03:54:a8:85:16:ce:0e:6b:4c:e5:f2:d3:a8:51: 79:0a:e5:9c:1d:0c:33:83:11:61:97:1a:3a:6e:be:37:77:f2: 59:01:b2:f2:80:ef:78:67:98:4b:1c:90:8a:be:31:38:e2:01: a2:c5:c5:39:d2:fb:90:e3:2b:70:ff:c7:10:f0:d8:70:70:83: ed:a1:8d:b4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUG801354OPOK4BWLO4bnQufsoO1wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAzMDAwMDAwWhcNMjQwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGE4MzQ5MmQyOGNkMGRiNTk3ZTNkYzljNjg3NDVkODVm MWJjZWNlMDA5OWY0NjAwMmE1ZjY0ZDRjNDFjMGE3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpO+J7TJC001+afpBQ3PDo3vQdlbR0tRKpTqKEvWCYYtUz zougiVUVypN5jeAUtZu6/GyBXXZqkiHwE7p53BzfavRFw/YDxs7OqD8Ssy6K6KAh zNfzlMf16l1C+B8y9RQQ6Ju5qBIa4k93nPzkWqnUzjTWzOrA9qVYx4PpykKK/QLt upfy+mxux9HVwnGAp3o4LTin4h+yYbq+ALefQg4XbXt0Jb8nFER7ZEdTgBk0MlwL CCOtFhzopeLNnTmAX8PPEoBOQpF4LARm/jXTeThOxw9a/Ru7uhqgN5OCns1tkPi8 N7FvYReI7rNpLE5PtZEyLorM/rpzrS121wDxJYlTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwPaTcaUB11BhrFuG4QkSM59wL8AwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QyNDM2NTU3LWU3N2MtNDdhNS1iYzQ2LWM3YzUyZjc0MDc3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASOjANBgkqhkiG9w0BAQsFAAOCAQEAO9GEmXoBr05W0EZCI17B1krx6DF1 Mecdz6TiQ5Ov1NZYnHvwenTVtW5YgWgeyY04ir9K4kxpJH3t4ZikYdHZf5uDWYLs E22geNFI9uwHvjX2dhDiU2HenqhPc9P/mCyAp3ysaBdqjWMJl7fKUAvuRCXIlZhT Rk8ZeTsUG/+BI1PkenX8cxNrpBOvusFhCjWPj0mcqeCua8ZFGS2GDaBqoBM+EYGU OL9FUinGF8npuyBK0F62/kQpCANUqIUWzg5rTOXy06hReQrlnB0MM4MRYZcaOm6+ N3fyWQGy8oDveGeYSxyQir4xOOIBosXFOdL7kOMrcP/HEPDYcHCD7aGNtA== -----END CERTIFICATE-----Generated at Fri Apr 19 00:32:25 2024 by rpki-client on console-fra.rpki-client.org