$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eaba9a30-cf2d-4dfd-be79-b67511f92aef.roa File: eaba9a30-cf2d-4dfd-be79-b67511f92aef.roa (raw, json) Hash identifier: MZCqdGGKjSGe0+aHQLKSqeWjRMbNA6TMOfnq/Rn/FdA= Subject key identifier: 22:61:01:A7:A4:26:B5:34:46:9F:AA:4E:B7:15:4C:F5:0D:14:99:96 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4FF63A2191F86F22EF960D01C7B957A334A5B42F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eaba9a30-cf2d-4dfd-be79-b67511f92aef.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:f6:3a:21:91:f8:6f:22:ef:96:0d:01:c7:b9:57:a3:34:a5:b4:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=d9aa1059729fc5a469338825017f9ec42b16750f0a3c741503c5c633039e434d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ad:34:c4:80:30:6e:3b:a4:3d:6e:66:38:ef: b5:5a:9d:84:91:34:9e:74:d0:a4:0d:8f:87:47:14: 44:22:7b:d7:b1:38:d9:3e:a0:84:77:0f:23:37:07: 92:69:73:b2:29:87:52:36:a3:ff:59:2f:9f:b8:82: f4:fc:08:e0:c6:28:3c:63:d4:44:7f:e4:33:60:07: b5:d5:e7:6f:75:4e:bb:6b:2c:30:3b:21:56:2f:94: 07:42:fb:4c:e0:27:77:96:8c:4d:39:f8:a1:d2:06: 41:19:fa:ed:f1:7f:9d:5e:e8:3e:63:35:43:e5:5d: c1:4d:16:8c:a3:2f:36:95:3e:d5:00:86:e6:81:21: 29:84:75:a4:e2:ca:5f:c0:77:65:04:6b:95:aa:ec: e3:63:3d:f1:4f:7f:d9:3e:6b:59:40:b9:af:30:23: 6f:0a:c0:19:f7:d6:2c:26:7c:d8:3e:5f:7e:54:6b: 63:03:da:84:d2:43:04:03:a4:da:64:53:73:4e:0c: 6e:1b:09:ee:2e:69:2e:32:9e:57:c2:75:4e:38:0d: b9:93:e7:6c:f1:13:a7:ee:c6:34:07:1f:f1:45:b0: 8b:ba:ff:04:cb:3b:af:d3:b6:d4:2c:c7:b0:ef:70: 36:21:2a:58:2e:b2:7d:4a:87:c6:23:81:19:9a:83: 30:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:61:01:A7:A4:26:B5:34:46:9F:AA:4E:B7:15:4C:F5:0D:14:99:96 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eaba9a30-cf2d-4dfd-be79-b67511f92aef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.249.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:84:b1:e3:19:47:1c:8c:af:08:36:7d:09:34:3b:b1:43:8b: 75:99:65:51:f9:81:29:ad:ea:bf:57:ad:70:7d:9c:90:0f:27: 88:b9:06:24:2e:f6:fe:27:db:3a:54:94:63:92:ff:30:c3:aa: 2f:c9:88:1b:0d:e9:24:85:c1:ca:ce:af:56:14:c9:a3:6a:a8: b3:9e:cc:7d:a3:81:c7:73:d5:b8:ee:3b:3f:14:6c:fc:2b:45: 4d:fa:d0:b4:30:ad:65:4d:f7:cc:d7:65:29:49:b3:46:76:b4: a9:11:61:0b:1f:6a:1c:61:5c:d3:90:2e:84:59:75:fc:c4:ad: d7:20:54:ff:5b:30:c8:0a:ca:36:13:0f:ee:bd:d1:82:f7:3c: 31:4b:b8:1f:bd:36:53:88:f3:da:70:a7:e2:b5:a9:bb:d6:b4: 69:44:88:ca:43:0e:ea:f6:e5:cc:06:c2:21:b6:65:1a:33:92: 8e:5c:6a:a6:6f:cb:2b:f2:bc:fe:93:7a:3a:b7:8f:f0:7d:15: 10:5f:89:cb:38:b7:27:34:fc:6a:ca:19:b4:ee:79:49:b4:66: 17:78:50:0a:c3:fa:dc:03:b8:63:89:70:00:bd:71:0c:25:ad: 10:7d:60:93:58:ec:9a:12:82:fb:2f:84:14:f4:3e:e8:99:38: 82:19:b0:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT/Y6IZH4byLvlg0Bx7lXozSltC8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWFhMTA1OTcyOWZjNWE0NjkzMzg4MjUwMTdmOWVjNDJi MTY3NTBmMGEzYzc0MTUwM2M1YzYzMzAzOWU0MzRkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKrTTEgDBuO6Q9bmY477VanYSRNJ500KQNj4dHFEQie9ex ONk+oIR3DyM3B5Jpc7Iph1I2o/9ZL5+4gvT8CODGKDxj1ER/5DNgB7XV5291Trtr LDA7IVYvlAdC+0zgJ3eWjE05+KHSBkEZ+u3xf51e6D5jNUPlXcFNFoyjLzaVPtUA huaBISmEdaTiyl/Ad2UEa5Wq7ONjPfFPf9k+a1lAua8wI28KwBn31iwmfNg+X35U a2MD2oTSQwQDpNpkU3NODG4bCe4uaS4ynlfCdU44DbmT52zxE6fuxjQHH/FFsIu6 /wTLO6/TttQsx7DvcDYhKlgusn1Kh8YjgRmagzB1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUImEBp6QmtTRGn6pOtxVM9Q0UmZYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2VhYmE5YTMwLWNmMmQtNGRmZC1iZTc5LWI2NzUxMWY5MmFlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0X/kwDQYJKoZIhvcNAQELBQADggEBAByEseMZRxyMrwg2fQk0O7FDi3WZ ZVH5gSmt6r9XrXB9nJAPJ4i5BiQu9v4n2zpUlGOS/zDDqi/JiBsN6SSFwcrOr1YU yaNqqLOezH2jgcdz1bjuOz8UbPwrRU360LQwrWVN98zXZSlJs0Z2tKkRYQsfahxh XNOQLoRZdfzErdcgVP9bMMgKyjYTD+690YL3PDFLuB+9NlOI89pwp+K1qbvWtGlE iMpDDur25cwGwiG2ZRozko5caqZvyyvyvP6Tejq3j/B9FRBfics4tyc0/GrKGbTu eUm0Zhd4UArD+twDuGOJcAC9cQwlrRB9YJNY7JoSgvsvhBT0PuiZOIIZsC0= -----END CERTIFICATE-----Generated at Fri Apr 19 00:32:25 2024 by rpki-client on console-fra.rpki-client.org