$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/df187bb2-02cd-4a0e-a508-bb3e29e6ed81.roa File: df187bb2-02cd-4a0e-a508-bb3e29e6ed81.roa (raw, json) Hash identifier: tjY6MCD0K5v93loLbYh4Je8N+7CfaZoY8LxkDnXeGWw= Subject key identifier: 2D:EF:56:99:89:86:19:16:3B:E2:B2:FD:00:DD:7C:D4:02:AE:B2:28 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0C00852317E33EEC05C03FD6FC376A57787BEBC7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/df187bb2-02cd-4a0e-a508-bb3e29e6ed81.roa Signing time: Tue 02 Apr 2024 00:00:00 +0000 ROA not before: Tue 02 Apr 2024 00:00:00 +0000 ROA not after: Tue 07 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:00:85:23:17:e3:3e:ec:05:c0:3f:d6:fc:37:6a:57:78:7b:eb:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 2 00:00:00 2024 GMT Not After : May 7 23:59:59 2024 GMT Subject: serialNumber=cd6ee1495ba95c55861aaee0acc38660f68107a56117fa2fd0396ef32b3b7cb5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:65:5e:17:94:d3:d7:8f:a8:54:e9:98:fc:ce: 50:70:18:f3:ab:82:2f:79:8d:8b:74:90:fe:c8:41: ba:8f:ba:56:11:43:b4:d7:f8:66:61:34:72:b3:e2: b8:87:73:e7:b3:4f:12:0f:0c:4c:1e:dc:de:15:13: e2:0c:a3:c9:24:e4:26:58:61:0d:75:70:6a:a3:5b: 8a:d1:ea:b8:a6:fb:32:ad:ea:66:5c:5c:94:b2:27: a3:72:53:9e:83:ae:ab:b5:1d:d2:41:5c:f9:31:9c: 55:73:3c:ac:cf:32:a1:5f:78:0f:1d:1c:a6:c5:7b: dd:63:e1:51:90:81:cd:4d:ed:f1:79:4b:2f:c0:86: 32:55:f9:56:a3:05:05:32:24:8f:40:f5:af:1c:d8: a6:9e:fb:fb:d5:c3:af:81:07:86:75:62:d6:de:70: 25:c0:37:74:74:1f:03:40:c4:6e:ae:11:20:ad:a0: e4:96:d5:d2:cb:b9:61:07:63:f2:d5:04:35:7c:49: cf:bf:c0:6f:ee:62:46:61:5e:7e:42:d4:ef:22:3b: e7:b3:6c:56:dd:11:96:1a:e8:f1:06:8c:26:72:25: d6:a2:9a:5e:59:03:a0:c5:78:67:2d:0a:bc:b5:39: c5:f0:72:4c:60:43:55:1f:2a:2b:5b:7d:3f:81:8b: e7:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:EF:56:99:89:86:19:16:3B:E2:B2:FD:00:DD:7C:D4:02:AE:B2:28 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/df187bb2-02cd-4a0e-a508-bb3e29e6ed81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.57.0/24 Signature Algorithm: sha256WithRSAEncryption 37:44:ec:1d:36:aa:ad:c8:a6:f6:33:a8:04:1e:4b:bb:74:61: 3a:a4:3d:9f:82:94:24:ad:d8:02:03:5f:63:dd:78:03:d0:f1: ed:ee:41:67:44:c5:e1:39:f7:4a:af:47:26:b5:fc:c6:16:05: 97:e5:93:8c:06:03:0d:b6:35:9a:e6:8a:74:40:3b:27:73:04: df:9f:4b:b7:9f:13:ce:82:1e:8f:0f:f1:4a:da:7e:4a:94:a9: c4:52:4e:ff:d7:66:15:a2:05:b5:dd:33:7c:d0:4d:83:b4:21: 84:63:7f:73:e3:8b:01:4d:30:8b:77:40:cd:22:da:67:04:52: 39:56:55:59:43:8a:78:20:e8:90:7e:de:73:86:60:ff:1f:36: ee:f2:03:1f:19:bf:01:d0:b0:03:21:30:7b:28:b8:35:fc:ae: 37:04:47:52:b4:ae:be:98:eb:62:05:a1:ec:1a:72:91:9c:e6: 60:7c:63:d9:10:cb:3e:4e:43:c2:09:21:cb:48:ed:4c:72:ed: cd:32:bf:f6:09:fe:f9:f5:65:e5:fe:d3:65:56:23:69:88:d6: 03:d0:5f:c9:52:43:40:e0:5f:3e:48:f9:64:32:89:2c:0e:71: ba:b4:03:53:82:f6:20:58:d5:fc:01:d3:73:c0:4b:fc:0f:2d: d7:1e:6e:3e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDACFIxfjPuwFwD/W/DdqV3h768cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAyMDAwMDAwWhcNMjQwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDZlZTE0OTViYTk1YzU1ODYxYWFlZTBhY2MzODY2MGY2 ODEwN2E1NjExN2ZhMmZkMDM5NmVmMzJiM2I3Y2I1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvZV4XlNPXj6hU6Zj8zlBwGPOrgi95jYt0kP7IQbqPulYR Q7TX+GZhNHKz4riHc+ezTxIPDEwe3N4VE+IMo8kk5CZYYQ11cGqjW4rR6rim+zKt 6mZcXJSyJ6NyU56Drqu1HdJBXPkxnFVzPKzPMqFfeA8dHKbFe91j4VGQgc1N7fF5 Sy/AhjJV+VajBQUyJI9A9a8c2Kae+/vVw6+BB4Z1YtbecCXAN3R0HwNAxG6uESCt oOSW1dLLuWEHY/LVBDV8Sc+/wG/uYkZhXn5C1O8iO+ezbFbdEZYa6PEGjCZyJdai ml5ZA6DFeGctCry1OcXwckxgQ1UfKitbfT+Bi+eHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULe9WmYmGGRY74rL9AN181AKusigwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RmMTg3YmIyLTAyY2QtNGEwZS1hNTA4LWJiM2UyOWU2ZWQ4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA28DkwDQYJKoZIhvcNAQELBQADggEBADdE7B02qq3IpvYzqAQeS7t0YTqk PZ+ClCSt2AIDX2PdeAPQ8e3uQWdExeE590qvRya1/MYWBZflk4wGAw22NZrminRA OydzBN+fS7efE86CHo8P8UrafkqUqcRSTv/XZhWiBbXdM3zQTYO0IYRjf3PjiwFN MIt3QM0i2mcEUjlWVVlDingg6JB+3nOGYP8fNu7yAx8ZvwHQsAMhMHsouDX8rjcE R1K0rr6Y62IFoewacpGc5mB8Y9kQyz5OQ8IJIctI7Uxy7c0yv/YJ/vn1ZeX+02VW I2mI1gPQX8lSQ0DgXz5I+WQyiSwOcbq0A1OC9iBY1fwB03PAS/wPLdcebj4= -----END CERTIFICATE-----Generated at Wed Apr 24 16:35:42 2024 by rpki-client on console-fra.rpki-client.org