$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d849dfb2-18a7-45c2-bded-030e7caa25b3.roa File: d849dfb2-18a7-45c2-bded-030e7caa25b3.roa (raw, json) Hash identifier: Xc3ygtsOz9jnau/bFqNWUnVMkePf21ETdTX1jTr8aCw= Subject key identifier: E6:DE:FB:ED:9A:48:5C:BA:6F:E6:62:43:92:D3:25:11:50:B1:DF:7A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7380FA79E45E1CAD6DAF148ACCE5BF81A6A07CFB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d849dfb2-18a7-45c2-bded-030e7caa25b3.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 18.184.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:80:fa:79:e4:5e:1c:ad:6d:af:14:8a:cc:e5:bf:81:a6:a0:7c:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=fbb73b39f02209aad1ebff17ff763774111be017f5805a1957f43f0118cc6a20, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:7b:a3:d0:58:1c:29:d3:d2:c8:60:7f:c0:2f: 65:18:73:2e:ae:b8:d8:b4:92:1b:6b:a0:39:37:05: 91:8c:bb:7c:6f:b0:67:00:ef:d3:a0:7d:e4:95:5b: 82:6e:9f:d2:51:74:f7:45:4f:a1:37:c4:3b:c4:01: e3:2c:79:b5:6f:7d:69:54:6a:2a:67:3f:d3:25:8f: 10:79:cb:e8:cd:4c:12:2f:93:0a:c8:09:0e:4a:7e: e8:ea:cf:c6:35:7a:38:12:17:18:5a:6c:c4:e7:0a: ef:b9:67:5a:f3:11:e8:90:46:ae:a0:3c:66:83:f8: 66:76:e2:9e:bd:e3:d9:24:16:03:00:2f:de:71:e8: 80:1c:62:3f:6c:a2:ca:59:eb:b4:d7:a2:74:51:c0: 96:64:60:18:07:ba:c2:00:03:e7:60:aa:e7:10:2f: 12:e3:ee:9e:da:8e:ef:23:0f:03:5f:66:79:ca:8f: aa:72:bc:13:b2:1f:bb:6e:d5:40:fd:52:72:0a:da: ef:b5:2b:aa:d4:99:d8:5b:52:cf:ec:18:22:85:19: 0e:ec:41:a1:c9:eb:ad:74:95:cd:7d:11:a3:83:78: 54:3a:38:16:25:e9:a8:e4:b2:23:ce:20:32:e1:fa: c0:e1:81:32:58:18:e8:d3:6a:f7:54:05:85:b8:be: 7e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DE:FB:ED:9A:48:5C:BA:6F:E6:62:43:92:D3:25:11:50:B1:DF:7A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d849dfb2-18a7-45c2-bded-030e7caa25b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.184.0.0/15 Signature Algorithm: sha256WithRSAEncryption 61:88:81:ff:12:7b:eb:20:f6:d0:a6:72:0f:d1:1c:f0:df:4d: c7:28:cf:84:43:c7:27:fa:3a:0e:f6:e6:f5:9a:24:79:a9:65: 09:76:50:e5:b8:e1:0a:1c:70:3f:43:c4:d6:b3:5f:00:7e:0d: 8a:30:0f:56:a4:94:fe:ca:06:86:15:3b:9d:fe:db:cb:77:40: 40:69:93:68:b6:8d:1b:69:86:dc:2d:47:e4:97:5a:05:9e:4e: 90:23:11:dd:a2:a9:37:56:23:a4:70:35:fe:95:6c:13:e3:11: 07:e1:89:bd:14:8a:18:60:91:21:c8:40:bd:53:e1:03:2c:6c: 79:36:67:68:d5:a6:ac:70:f2:55:4e:f5:9c:89:cc:e0:d7:84: 0e:85:5b:22:9c:9e:0f:38:8a:bf:fa:ed:81:84:69:e3:96:32: ed:c0:fa:8d:92:8f:b0:dc:3e:57:b1:6b:85:db:f8:21:67:07: ec:ef:df:71:24:d1:b7:d6:b5:47:ce:46:c4:82:d6:46:cb:7f: a0:4f:a0:4d:69:f0:ad:98:2b:6b:5a:09:2b:f5:23:cb:d3:28: d5:57:bc:70:75:70:8b:ed:21:f9:67:b7:c9:e6:c0:65:a3:eb: ee:9e:a5:ab:28:07:3d:06:a5:00:bd:86:b9:39:48:a6:26:08: 1e:6a:4f:20 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUc4D6eeReHK1trxSKzOW/gaagfPswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYmI3M2IzOWYwMjIwOWFhZDFlYmZmMTdmZjc2Mzc3NDEx MWJlMDE3ZjU4MDVhMTk1N2Y0M2YwMTE4Y2M2YTIwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxe6PQWBwp09LIYH/AL2UYcy6uuNi0khtroDk3BZGMu3xv sGcA79OgfeSVW4Jun9JRdPdFT6E3xDvEAeMsebVvfWlUaipnP9MljxB5y+jNTBIv kwrICQ5Kfujqz8Y1ejgSFxhabMTnCu+5Z1rzEeiQRq6gPGaD+GZ24p6949kkFgMA L95x6IAcYj9sospZ67TXonRRwJZkYBgHusIAA+dgqucQLxLj7p7aju8jDwNfZnnK j6pyvBOyH7tu1UD9UnIK2u+1K6rUmdhbUs/sGCKFGQ7sQaHJ6610lc19EaODeFQ6 OBYl6ajksiPOIDLh+sDhgTJYGOjTavdUBYW4vn6jAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5t777ZpIXLpv5mJDktMlEVCx33owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q4NDlkZmIyLTE4YTctNDVjMi1iZGVkLTAzMGU3Y2FhMjViMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwESuDANBgkqhkiG9w0BAQsFAAOCAQEAYYiB/xJ76yD20KZyD9Ec8N9NxyjP hEPHJ/o6Dvbm9ZokeallCXZQ5bjhChxwP0PE1rNfAH4NijAPVqSU/soGhhU7nf7b y3dAQGmTaLaNG2mG3C1H5JdaBZ5OkCMR3aKpN1YjpHA1/pVsE+MRB+GJvRSKGGCR IchAvVPhAyxseTZnaNWmrHDyVU71nInM4NeEDoVbIpyeDziKv/rtgYRp45Yy7cD6 jZKPsNw+V7Frhdv4IWcH7O/fcSTRt9a1R85GxILWRst/oE+gTWnwrZgra1oJK/Uj y9Mo1Ve8cHVwi+0h+We3yebAZaPr7p6lqygHPQalAL2GuTlIpiYIHmpPIA== -----END CERTIFICATE-----Generated at Fri Apr 19 00:32:25 2024 by rpki-client on console-fra.rpki-client.org