$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/da391d06-7bbc-481b-a4f5-529518e8fc2a.roa File: da391d06-7bbc-481b-a4f5-529518e8fc2a.roa (raw, json) Hash identifier: IngU1kLJKGXKsDWwYpIsEE37iJ38srpvXchA1Pxyr4E= Subject key identifier: FD:29:7E:BC:8F:96:DA:9C:2E:BE:13:02:21:29:F5:B0:FF:29:13:41 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 21AEB47FEAF9845C527CA4FFEF24C6180B0A85A1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/da391d06-7bbc-481b-a4f5-529518e8fc2a.roa Signing time: Wed 03 Apr 2024 00:00:00 +0000 ROA not before: Wed 03 Apr 2024 00:00:00 +0000 ROA not after: Wed 08 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 152.155.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ae:b4:7f:ea:f9:84:5c:52:7c:a4:ff:ef:24:c6:18:0b:0a:85:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 3 00:00:00 2024 GMT Not After : May 8 23:59:59 2024 GMT Subject: serialNumber=76fde6d929115674c760cb5133e3350e45bb88fb5833e02a8f237bec77af9fb5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d4:08:8e:ce:6c:f9:04:33:ad:f9:01:82:a3: ff:fc:74:16:40:2b:21:4e:fe:20:df:33:ba:cd:98: fe:69:c2:b5:55:7d:4d:58:f7:f1:54:1f:69:74:e3: a8:c1:86:f8:70:50:45:e6:bd:48:2c:a4:57:9c:b4: d5:40:68:d0:30:03:1f:4a:2d:02:a7:70:4e:f9:a9: d9:76:a1:aa:58:a1:39:91:78:24:90:d6:b3:8d:c9: 47:1e:53:73:ec:50:15:e3:50:05:26:e5:74:38:7a: 38:b1:f3:18:ac:8a:c1:d9:c8:17:b8:9f:c0:2f:b4: 17:71:ac:c9:99:f8:0c:61:01:43:22:31:ad:00:29: 74:be:e4:75:aa:82:b3:f5:30:f1:6a:3d:99:5f:1a: 22:e7:0f:98:0a:42:f3:c7:7e:4b:28:97:60:7e:51: 31:1d:37:74:3d:43:bc:79:ed:4f:ae:82:49:d6:21: 32:03:1d:eb:e9:f3:31:85:8f:97:65:84:00:3a:38: ad:8b:fe:4c:d7:78:af:b1:40:a8:3e:ec:d6:bf:99: 67:2e:93:39:2b:d0:c4:22:ec:dc:c8:1f:82:34:2d: f3:86:08:b3:fa:d0:90:9b:da:de:3f:f8:d6:e1:0e: 0c:11:6e:e8:15:72:af:3a:e7:f2:10:dd:c2:14:ee: 3c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:29:7E:BC:8F:96:DA:9C:2E:BE:13:02:21:29:F5:B0:FF:29:13:41 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/da391d06-7bbc-481b-a4f5-529518e8fc2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.155.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:99:16:d9:a6:9f:77:77:68:ef:41:30:c3:4e:01:66:59:97: 70:68:60:79:60:4c:dc:cf:33:91:99:60:d6:c8:27:69:19:04: eb:67:3f:15:fa:f7:a7:e4:df:55:42:a7:24:d3:e8:f0:76:3e: 00:fd:cf:81:db:e5:6e:c1:2f:26:1e:0f:15:18:72:db:64:32: 2e:17:3a:0b:f7:29:3b:3f:8e:48:68:6a:b9:96:a4:60:3b:e4: 11:42:10:f7:ff:1f:00:98:0a:a9:ae:82:0b:f5:d9:24:f2:92: a3:f5:79:aa:fb:85:34:be:af:ef:3f:9b:36:d9:33:ab:c0:32: 85:10:4d:e3:48:50:52:65:a1:75:a5:0d:30:84:bc:7a:e3:fd: d7:20:b2:2b:52:62:71:26:34:90:c0:11:5e:19:17:d5:b4:44: f7:a0:8f:87:cc:0b:71:b0:eb:62:f3:ba:7f:c3:33:2a:8a:35: 63:5a:2e:a2:8d:42:65:ab:43:50:e4:a9:d1:07:fd:68:60:7c: 4f:47:78:cf:25:27:f0:46:a8:be:36:b5:33:98:25:36:07:da: b6:ff:1e:6a:b9:4d:aa:78:8c:f5:bd:c7:86:39:0a:bd:e1:25: c6:05:00:e3:9e:79:16:b8:b7:51:cf:b6:55:53:21:f5:7e:d0: f8:f8:ab:b4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIa60f+r5hFxSfKT/7yTGGAsKhaEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAzMDAwMDAwWhcNMjQwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmZkZTZkOTI5MTE1Njc0Yzc2MGNiNTEzM2UzMzUwZTQ1 YmI4OGZiNTgzM2UwMmE4ZjIzN2JlYzc3YWY5ZmI1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDN1AiOzmz5BDOt+QGCo//8dBZAKyFO/iDfM7rNmP5pwrVV fU1Y9/FUH2l046jBhvhwUEXmvUgspFectNVAaNAwAx9KLQKncE75qdl2oapYoTmR eCSQ1rONyUceU3PsUBXjUAUm5XQ4ejix8xisisHZyBe4n8AvtBdxrMmZ+AxhAUMi Ma0AKXS+5HWqgrP1MPFqPZlfGiLnD5gKQvPHfksol2B+UTEdN3Q9Q7x57U+ugknW ITIDHevp8zGFj5dlhAA6OK2L/kzXeK+xQKg+7Na/mWcukzkr0MQi7NzIH4I0LfOG CLP60JCb2t4/+NbhDgwRbugVcq865/IQ3cIU7jwBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/Sl+vI+W2pwuvhMCISn1sP8pE0EwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RhMzkxZDA2LTdiYmMtNDgxYi1hNGY1LTUyOTUxOGU4ZmMyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCYmzANBgkqhkiG9w0BAQsFAAOCAQEAAJkW2aafd3do70Eww04BZlmXcGhg eWBM3M8zkZlg1sgnaRkE62c/Ffr3p+TfVUKnJNPo8HY+AP3PgdvlbsEvJh4PFRhy 22QyLhc6C/cpOz+OSGhquZakYDvkEUIQ9/8fAJgKqa6CC/XZJPKSo/V5qvuFNL6v 7z+bNtkzq8AyhRBN40hQUmWhdaUNMIS8euP91yCyK1JicSY0kMARXhkX1bRE96CP h8wLcbDrYvO6f8MzKoo1Y1ouoo1CZatDUOSp0Qf9aGB8T0d4zyUn8Eaovja1M5gl Ngfatv8earlNqniM9b3HhjkKveElxgUA4555Fri3Uc+2VVMh9X7Q+PirtA== -----END CERTIFICATE-----Generated at Fri Apr 26 11:01:07 2024 by rpki-client on console-ams.rpki-client.org