$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2f710f0-4b88-4fa8-bb88-7bc510420227.roa File: d2f710f0-4b88-4fa8-bb88-7bc510420227.roa (raw, json) Hash identifier: vtPQJidv2gQaOZok7cxuP6qrtgRLsqVmcHeiOkxkoes= Subject key identifier: F0:A3:E1:72:CC:AD:B2:2C:AE:37:38:EC:AA:AB:04:27:C3:33:83:95 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 41176F236B0DB56C4B9EACB9BA65080540BDA4DA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2f710f0-4b88-4fa8-bb88-7bc510420227.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 15.146.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:17:6f:23:6b:0d:b5:6c:4b:9e:ac:b9:ba:65:08:05:40:bd:a4:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=f61a72c39c33a48b9dbf97f3678087dc4ef3673e2d8afbc550827361e5f96fbb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:52:01:39:2a:a5:27:3e:bc:e3:62:16:0f:88: 25:a1:f4:45:48:4b:e8:ff:a7:e4:fe:27:60:94:05: 34:5d:93:fd:5d:6a:fa:44:5b:17:9c:7d:03:e7:4e: cb:ed:ad:bf:39:5c:15:91:d4:28:36:ce:c8:73:f4: 34:87:0b:be:6c:d3:c6:80:ed:be:36:a9:2a:af:7c: 85:e8:b8:44:f5:31:72:e0:ec:51:f4:9d:4b:00:ba: 5c:6d:8e:43:37:ba:9c:c0:68:ac:d9:de:db:04:5d: e1:00:bb:4b:9a:da:8e:76:c8:9a:7b:3f:b2:cb:d8: 53:12:7f:4d:ad:e4:ad:c3:33:37:58:ea:ff:bc:b2: df:65:9e:ab:dd:ef:a1:75:73:eb:ad:6f:e7:28:90: 55:b0:e6:d6:38:ec:37:41:f5:13:12:19:57:7a:92: 88:ac:7c:d6:53:5d:c0:25:fb:e3:09:ba:db:b9:de: a2:21:04:7d:3d:79:49:5e:6d:09:92:ba:7d:82:24: e7:ae:4a:44:5a:4c:40:1c:35:bc:f0:bd:6d:7c:e3: af:a4:8c:17:bd:7b:7d:e0:22:f4:a6:10:95:01:d0: 2e:d4:3a:94:33:5b:a9:f5:49:83:d4:28:fd:30:54: 7e:1a:eb:21:50:e4:c6:cd:49:76:a6:9a:ed:b1:38: 27:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:A3:E1:72:CC:AD:B2:2C:AE:37:38:EC:AA:AB:04:27:C3:33:83:95 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2f710f0-4b88-4fa8-bb88-7bc510420227.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.146.0.0/16 Signature Algorithm: sha256WithRSAEncryption ae:e9:1b:d9:26:40:aa:74:a5:c2:a8:3e:d0:f7:43:af:3a:89: bf:c6:e2:a7:3f:f4:35:74:ee:2b:cd:0f:13:59:75:bc:48:d1: 7d:db:5c:67:87:ac:19:71:5e:bc:cd:49:c8:2d:74:f1:47:de: 37:35:8f:83:47:8e:ea:2a:4e:c7:65:af:e9:20:27:33:c4:1e: a3:7f:44:a4:98:1e:a0:f7:37:60:a6:1a:87:41:d3:60:b1:12: 85:79:cd:10:48:d5:1c:55:20:b1:78:a7:d7:33:02:4f:ff:29: ae:8e:3c:c3:1e:4c:fc:e6:c1:69:ac:28:6f:77:43:47:95:95: 82:1e:ac:1f:18:cf:a2:73:d3:7c:e7:2d:3a:c8:ec:9f:f8:57: e3:71:4b:13:37:4c:ff:3b:96:16:f6:bd:d1:84:d1:a5:1d:11: 05:90:36:80:47:f7:82:98:89:1d:ca:e0:39:3a:5f:81:eb:f0: 4d:4a:05:70:68:29:62:ab:ed:74:f9:ed:c9:28:39:8d:79:a0: 29:22:12:39:12:8a:ba:2d:01:d2:b4:63:f4:c0:25:78:14:c6: b6:56:0f:e4:eb:79:8e:0c:a0:59:9c:92:63:c1:5f:8b:70:69: de:f5:0a:a4:43:e0:44:c5:8f:57:90:3c:01:de:2a:d6:c0:3b: 09:7f:eb:62 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQRdvI2sNtWxLnqy5umUIBUC9pNowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjFhNzJjMzljMzNhNDhiOWRiZjk3ZjM2NzgwODdkYzRl ZjM2NzNlMmQ4YWZiYzU1MDgyNzM2MWU1Zjk2ZmJiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4UgE5KqUnPrzjYhYPiCWh9EVIS+j/p+T+J2CUBTRdk/1d avpEWxecfQPnTsvtrb85XBWR1Cg2zshz9DSHC75s08aA7b42qSqvfIXouET1MXLg 7FH0nUsAulxtjkM3upzAaKzZ3tsEXeEAu0ua2o52yJp7P7LL2FMSf02t5K3DMzdY 6v+8st9lnqvd76F1c+utb+cokFWw5tY47DdB9RMSGVd6koisfNZTXcAl++MJutu5 3qIhBH09eUlebQmSun2CJOeuSkRaTEAcNbzwvW1846+kjBe9e33gIvSmEJUB0C7U OpQzW6n1SYPUKP0wVH4a6yFQ5MbNSXammu2xOCf/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8KPhcsytsiyuNzjsqqsEJ8Mzg5UwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QyZjcxMGYwLTRiODgtNGZhOC1iYjg4LTdiYzUxMDQyMDIyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPkjANBgkqhkiG9w0BAQsFAAOCAQEArukb2SZAqnSlwqg+0PdDrzqJv8bi pz/0NXTuK80PE1l1vEjRfdtcZ4esGXFevM1JyC108UfeNzWPg0eO6ipOx2Wv6SAn M8Qeo39EpJgeoPc3YKYah0HTYLEShXnNEEjVHFUgsXin1zMCT/8pro48wx5M/ObB aawob3dDR5WVgh6sHxjPonPTfOctOsjsn/hX43FLEzdM/zuWFva90YTRpR0RBZA2 gEf3gpiJHcrgOTpfgevwTUoFcGgpYqvtdPntySg5jXmgKSISORKKui0B0rRj9MAl eBTGtlYP5Ot5jgygWZySY8Ffi3Bp3vUKpEPgRMWPV5A8Ad4q1sA7CX/rYg== -----END CERTIFICATE-----Generated at Fri Apr 19 00:32:25 2024 by rpki-client on console-fra.rpki-client.org