$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/df187bb2-02cd-4a0e-a508-bb3e29e6ed81.roa File: df187bb2-02cd-4a0e-a508-bb3e29e6ed81.roa (raw, json) Hash identifier: IA3s7DYHBPBxYm4NSK9l8QOACoxr6M1UA8Nsuu5sBao= Subject key identifier: 4B:BB:E9:54:5E:68:FE:D3:C7:94:13:4B:90:9E:3A:BA:4A:B1:CD:FE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7DD2B3279D4C29D9EAC5418051D6E4701F501613 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/df187bb2-02cd-4a0e-a508-bb3e29e6ed81.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:d2:b3:27:9d:4c:29:d9:ea:c5:41:80:51:d6:e4:70:1f:50:16:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=3165b6878a0fb319badb69d93db64dd9c6b14af48f6bba06e6872a62f8225ad0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d5:b2:6e:ab:52:26:3a:5b:8c:04:80:29:6e: ac:d9:4b:0e:fa:a9:be:fa:2c:d5:50:68:47:24:68: ce:ef:05:cd:b6:f7:dd:19:66:4b:da:f8:f6:d3:25: 3e:ab:0a:9c:3d:7f:b1:fb:b0:b0:10:0a:4c:e4:88: 0b:ff:e4:83:e4:b0:9f:70:92:b7:27:7b:de:89:98: 8d:c9:7e:49:6e:4f:2a:2b:b9:7c:24:01:7e:8e:00: 20:b5:30:d3:b6:8b:3c:0d:8f:ab:d0:a5:dd:32:32: b6:fd:af:38:d7:67:7b:fd:16:96:7c:1e:b9:b1:cd: 68:75:26:f2:f3:92:bd:e1:7c:65:92:b0:f0:5b:93: 47:ee:1a:05:9f:1b:35:45:00:f7:0a:77:8a:4a:e2: 2c:fe:08:8e:07:17:af:ab:95:ae:48:c9:6b:86:24: 49:59:53:50:44:b3:e8:e1:25:ef:45:a0:d7:b9:45: fe:30:f4:e6:95:d4:14:69:52:68:b4:dc:49:61:56: da:9b:66:08:e0:31:df:3e:fc:7a:f8:07:c7:72:32: 72:e3:4c:9d:b6:08:51:15:32:9c:7a:27:0d:ac:6f: 84:be:f9:96:9f:bb:bb:c1:c0:61:c2:2f:4d:24:c9: 0f:7b:3f:b1:0d:1a:dc:90:d0:33:2e:6c:d5:24:7a: 6c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:BB:E9:54:5E:68:FE:D3:C7:94:13:4B:90:9E:3A:BA:4A:B1:CD:FE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/df187bb2-02cd-4a0e-a508-bb3e29e6ed81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.57.0/24 Signature Algorithm: sha256WithRSAEncryption 87:81:59:45:a1:29:c0:a0:e5:4b:90:14:cf:93:c9:aa:59:e2: 33:1f:ee:eb:31:a7:2e:87:ac:b4:28:b4:db:a6:a6:7e:82:d3: b2:13:34:03:e5:92:28:6f:61:a0:b3:64:42:5d:eb:21:9a:ff: 5f:5c:f8:fb:2e:02:ac:3c:35:5e:14:33:7a:86:4e:16:ed:c1: e7:a8:14:6e:78:a5:19:7a:65:bc:09:42:59:6c:02:1b:41:50: 14:58:c7:2b:04:9d:0c:2a:e6:6d:23:d1:cc:7b:8e:17:98:43: fb:2e:d1:76:c2:81:1c:b7:95:2d:54:07:cd:5d:7e:d2:8b:2b: f2:0d:73:39:e5:05:d6:99:6c:e6:54:d5:30:1b:a7:76:e1:dd: 02:e2:28:a0:37:46:ce:ec:e7:30:61:8a:d5:f3:1f:6a:04:b1: d4:04:cf:c4:cc:86:53:76:f5:37:ab:f6:e6:7c:78:07:36:6a: e2:fb:72:7e:32:c9:8b:fa:59:c5:59:43:6d:72:04:6a:78:53: 2a:f2:06:e8:d6:3b:3c:fb:e5:24:9c:f7:06:b5:03:57:21:97: 14:21:c7:bd:97:40:d2:4f:9a:4f:30:cc:ff:b2:2d:cc:d8:66: e7:71:19:20:62:0a:4f:d4:c4:b4:43:c8:e8:e4:9e:9d:65:dd: 76:a1:79:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfdKzJ51MKdnqxUGAUdbkcB9QFhMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTY1YjY4NzhhMGZiMzE5YmFkYjY5ZDkzZGI2NGRkOWM2 YjE0YWY0OGY2YmJhMDZlNjg3MmE2MmY4MjI1YWQwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh1bJuq1ImOluMBIApbqzZSw76qb76LNVQaEckaM7vBc22 990ZZkva+PbTJT6rCpw9f7H7sLAQCkzkiAv/5IPksJ9wkrcne96JmI3JfkluTyor uXwkAX6OACC1MNO2izwNj6vQpd0yMrb9rzjXZ3v9FpZ8HrmxzWh1JvLzkr3hfGWS sPBbk0fuGgWfGzVFAPcKd4pK4iz+CI4HF6+rla5IyWuGJElZU1BEs+jhJe9FoNe5 Rf4w9OaV1BRpUmi03ElhVtqbZgjgMd8+/Hr4B8dyMnLjTJ22CFEVMpx6Jw2sb4S+ +Zafu7vBwGHCL00kyQ97P7ENGtyQ0DMubNUkemzRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS7vpVF5o/tPHlBNLkJ46ukqxzf4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RmMTg3YmIyLTAyY2QtNGEwZS1hNTA4LWJiM2UyOWU2ZWQ4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA28DkwDQYJKoZIhvcNAQELBQADggEBAIeBWUWhKcCg5UuQFM+TyapZ4jMf 7usxpy6HrLQotNumpn6C07ITNAPlkihvYaCzZEJd6yGa/19c+PsuAqw8NV4UM3qG ThbtweeoFG54pRl6ZbwJQllsAhtBUBRYxysEnQwq5m0j0cx7jheYQ/su0XbCgRy3 lS1UB81dftKLK/INcznlBdaZbOZU1TAbp3bh3QLiKKA3Rs7s5zBhitXzH2oEsdQE z8TMhlN29Ter9uZ8eAc2auL7cn4yyYv6WcVZQ21yBGp4UyryBujWOzz75SSc9wa1 A1chlxQhx72XQNJPmk8wzP+yLczYZudxGSBiCk/UxLRDyOjknp1l3XaheRw= -----END CERTIFICATE-----Generated at Thu Nov 21 21:41:29 2024 by rpki-client on console-ams.rpki-client.org