$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2ae2f04-9714-4f68-bb04-060e900bec23.roa File: d2ae2f04-9714-4f68-bb04-060e900bec23.roa (raw, json) Hash identifier: hknySW2WzLlaqamYqFXPRklMQ0e+dp+1+JJ89RZ7q/g= Subject key identifier: 7D:69:07:81:75:19:8A:4F:BA:54:07:25:B4:4F:9A:ED:B9:A8:F1:A5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 70D33D290B8BFA061737DB0E375CD03FFC446718 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2ae2f04-9714-4f68-bb04-060e900bec23.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 18.164.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Apr 2024 12:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:d3:3d:29:0b:8b:fa:06:17:37:db:0e:37:5c:d0:3f:fc:44:67:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=5c0b510266048ffb522ed359c811da643b3f952c4330fa21edf153d94976a54f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:f2:24:56:18:4c:2f:b8:e5:8b:df:60:4c:4c: f2:3f:b0:e6:7d:bf:9a:ac:b3:51:70:02:03:ef:3c: 6b:7e:0f:be:1d:93:db:0e:9e:95:2a:ca:d1:e0:26: 39:22:9e:a1:17:5c:a6:fc:9c:59:0d:53:65:5c:aa: 14:04:d9:02:3f:96:3e:2c:71:49:11:4f:1c:bf:a7: 85:02:b7:ad:cc:68:08:2e:39:38:49:44:9b:87:f1: 5a:7e:75:f9:bb:3e:5b:b1:06:be:b8:97:50:d7:be: 4e:6b:49:02:6e:cf:a4:c9:0a:bb:ce:c8:52:8b:8b: cb:8f:bf:c5:3e:e6:34:aa:57:2e:6c:73:56:2b:1d: 2b:89:60:6f:97:9a:8a:2c:0c:80:35:00:0e:30:bc: ad:92:3e:d3:fc:df:9f:3b:f0:bb:01:a3:65:d9:c1: e3:e7:3d:1a:25:5e:7a:27:a9:ae:ee:12:3c:7c:60: ef:5b:f5:ad:32:57:8c:57:dc:a5:1f:01:b3:01:25: f9:fc:7a:60:42:a0:a0:ad:da:c3:9a:0f:a2:8d:31: 27:25:0f:1e:fa:5c:40:e3:01:ae:a8:fd:55:02:42: 4c:de:c3:e1:e5:ad:42:e9:39:6c:49:65:63:12:84: f0:9c:28:c8:6e:fb:97:a8:29:16:d2:77:39:fb:de: ed:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:69:07:81:75:19:8A:4F:BA:54:07:25:B4:4F:9A:ED:B9:A8:F1:A5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2ae2f04-9714-4f68-bb04-060e900bec23.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.164.0.0/14 Signature Algorithm: sha256WithRSAEncryption 58:bb:14:b4:62:a7:54:80:18:c7:89:75:e9:f8:af:bc:46:74: a0:21:97:b6:0d:d5:88:39:74:90:a6:3d:9c:5b:24:9a:87:5f: 76:03:69:ce:e1:ab:3b:1e:b4:67:6b:9a:71:11:63:03:43:91: 4c:9c:b9:a9:8e:42:28:11:26:95:0d:41:34:f6:48:73:ae:49: dc:c0:9f:e6:05:f5:30:b0:92:7e:79:b8:d7:57:7a:b0:ac:99: a5:95:5c:e0:f1:41:9c:3f:37:03:4b:3f:dc:02:9f:96:8b:29: 3d:22:e5:f9:fb:f7:e6:68:e7:69:cf:53:9e:7f:64:b5:94:e2: 85:ff:32:f1:c2:93:5e:34:27:fb:f1:46:ef:16:b3:4c:a3:fe: fa:6a:d3:c2:54:7e:87:63:28:5c:ef:d0:c4:cc:87:de:29:31: 0d:d1:b4:c6:fa:96:eb:5e:a3:84:40:9b:5c:8e:09:d2:3b:77: 9c:3e:df:f7:5e:c2:9f:45:a4:7a:b0:d5:8f:a4:9f:99:13:98: 5f:83:55:ea:71:27:14:37:d4:2c:59:f5:08:5e:da:54:a1:49: af:78:c3:81:08:e5:e1:a4:72:4c:3e:bb:3a:71:5a:e3:81:24: 67:ca:48:1d:3a:44:5c:e8:58:c1:03:d9:18:23:19:6e:2a:43: e6:66:f6:f7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcNM9KQuL+gYXN9sON1zQP/xEZxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzBiNTEwMjY2MDQ4ZmZiNTIyZWQzNTljODExZGE2NDNi M2Y5NTJjNDMzMGZhMjFlZGYxNTNkOTQ5NzZhNTRmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCW8iRWGEwvuOWL32BMTPI/sOZ9v5qss1FwAgPvPGt+D74d k9sOnpUqytHgJjkinqEXXKb8nFkNU2VcqhQE2QI/lj4scUkRTxy/p4UCt63MaAgu OThJRJuH8Vp+dfm7PluxBr64l1DXvk5rSQJuz6TJCrvOyFKLi8uPv8U+5jSqVy5s c1YrHSuJYG+XmoosDIA1AA4wvK2SPtP835878LsBo2XZwePnPRolXnonqa7uEjx8 YO9b9a0yV4xX3KUfAbMBJfn8emBCoKCt2sOaD6KNMSclDx76XEDjAa6o/VUCQkze w+HlrULpOWxJZWMShPCcKMhu+5eoKRbSdzn73u1DAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfWkHgXUZik+6VAcltE+a7bmo8aUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QyYWUyZjA0LTk3MTQtNGY2OC1iYjA0LTA2MGU5MDBiZWMyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwISpDANBgkqhkiG9w0BAQsFAAOCAQEAWLsUtGKnVIAYx4l16fivvEZ0oCGX tg3ViDl0kKY9nFskmodfdgNpzuGrOx60Z2uacRFjA0ORTJy5qY5CKBEmlQ1BNPZI c65J3MCf5gX1MLCSfnm411d6sKyZpZVc4PFBnD83A0s/3AKflospPSLl+fv35mjn ac9Tnn9ktZTihf8y8cKTXjQn+/FG7xazTKP++mrTwlR+h2MoXO/QxMyH3ikxDdG0 xvqW616jhECbXI4J0jt3nD7f917Cn0WkerDVj6SfmROYX4NV6nEnFDfULFn1CF7a VKFJr3jDgQjl4aRyTD67OnFa44EkZ8pIHTpEXOhYwQPZGCMZbipD5mb29w== -----END CERTIFICATE-----Generated at Tue Apr 16 01:22:03 2024 by rpki-client on console-ams.rpki-client.org