$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ef01ff91-ace4-4a1d-9968-09b693936e0a.roa File: ef01ff91-ace4-4a1d-9968-09b693936e0a.roa (raw, json) Hash identifier: ocYyR+WAj9HVe8e+RAeTLEw5kbMGSE42aVBVIyKCq3E= Subject key identifier: B8:D1:F0:2B:00:8B:97:9F:FC:B1:DE:F6:71:D2:CC:95:BE:83:6D:F7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4E05B09617BFEB0BD7FB18271A0FF9C1D343BFD3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ef01ff91-ace4-4a1d-9968-09b693936e0a.roa Signing time: Wed 03 Apr 2024 00:00:00 +0000 ROA not before: Wed 03 Apr 2024 00:00:00 +0000 ROA not after: Wed 08 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 18.183.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:05:b0:96:17:bf:eb:0b:d7:fb:18:27:1a:0f:f9:c1:d3:43:bf:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 3 00:00:00 2024 GMT Not After : May 8 23:59:59 2024 GMT Subject: serialNumber=e97ac891cabfbcb1733311d2106272c370194f8ec7ec34f967b7514ad2cb5383, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8b:61:a4:9f:05:f4:54:09:3d:c7:30:5c:1b: 9a:f0:cb:ea:e9:e9:83:85:eb:10:18:27:a8:79:e2: a6:61:5e:00:01:65:ef:69:c7:6e:5c:45:92:84:c5: 24:0b:48:97:66:b9:42:81:bd:62:dd:6f:5b:c0:be: aa:f7:a3:9b:92:7b:4a:cb:34:e3:ee:39:fc:7b:4d: 0d:29:b4:64:a0:f6:05:39:76:e7:0a:00:6e:fc:72: 9a:b5:73:68:2e:19:30:79:37:41:0c:9b:d9:23:4d: 4e:30:24:63:4d:b8:4d:0c:76:bc:03:d7:f8:55:41: c8:86:d8:a2:a9:16:6b:75:32:02:0f:39:30:1b:bb: f2:b7:5f:a7:ac:20:3c:ab:ac:2b:cf:ef:11:94:c5: 67:08:1a:f2:ba:6b:22:ce:53:dd:af:f5:b3:73:b5: 91:c6:aa:ca:b4:4a:97:12:76:9b:a9:3f:33:97:5b: 42:38:1b:20:19:8a:d0:94:3d:86:e2:65:1d:0b:70: 9f:80:4d:7a:d7:25:28:1d:51:3b:b3:79:36:e1:25: 2a:af:d6:2f:c1:38:b5:bd:f6:f2:ae:43:50:62:b7: 10:6d:06:35:48:03:db:aa:38:aa:48:26:ca:13:da: 6f:71:4e:7d:4c:51:19:e5:84:89:92:6c:d7:52:61: 48:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D1:F0:2B:00:8B:97:9F:FC:B1:DE:F6:71:D2:CC:95:BE:83:6D:F7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ef01ff91-ace4-4a1d-9968-09b693936e0a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.183.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2c:e1:52:11:57:eb:18:9f:61:4e:93:2a:9d:2d:96:bc:31:5b: d6:1c:82:ed:df:e2:8a:f6:6e:f9:c5:69:17:d3:ed:69:17:3e: d1:e0:e2:97:19:05:60:c2:4c:ca:37:20:50:eb:73:82:ab:38: bf:f6:da:36:1b:26:c7:f2:87:ba:c0:38:ae:47:40:3b:e6:be: 9f:48:19:84:d8:21:e3:43:a1:e7:84:3d:88:a7:84:9f:7c:31: 04:8e:94:a7:44:80:24:82:eb:d5:24:2d:d4:1a:d7:26:e2:28: 78:98:5a:31:bd:6c:08:5b:d3:5a:6d:4e:af:5f:9e:5b:99:97: ca:f7:73:fb:13:f1:14:37:ab:2a:ca:e3:f9:33:37:aa:55:2d: cb:a6:c5:df:bf:7c:08:d3:06:e6:15:24:36:c0:0a:fc:4d:b3: 89:60:8f:cf:f8:23:a6:7e:b3:07:44:97:f0:86:0e:b1:c6:f9: f9:00:5c:f1:42:4a:92:e6:ae:90:e8:4b:a2:79:d1:91:e1:24: dc:fc:06:f5:06:6e:21:ea:1d:c1:3c:0c:d5:3e:23:8c:85:d0: f2:c1:44:2e:a7:ef:54:bd:8b:66:b2:b7:d7:55:07:81:de:f5: 81:75:c2:8b:b8:16:6f:cb:b2:d0:0e:7e:6a:7b:83:93:9d:a2: 46:3d:c4:f1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTgWwlhe/6wvX+xgnGg/5wdNDv9MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAzMDAwMDAwWhcNMjQwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTdhYzg5MWNhYmZiY2IxNzMzMzExZDIxMDYyNzJjMzcw MTk0ZjhlYzdlYzM0Zjk2N2I3NTE0YWQyY2I1MzgzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzi2GknwX0VAk9xzBcG5rwy+rp6YOF6xAYJ6h54qZhXgAB Ze9px25cRZKExSQLSJdmuUKBvWLdb1vAvqr3o5uSe0rLNOPuOfx7TQ0ptGSg9gU5 ducKAG78cpq1c2guGTB5N0EMm9kjTU4wJGNNuE0MdrwD1/hVQciG2KKpFmt1MgIP OTAbu/K3X6esIDyrrCvP7xGUxWcIGvK6ayLOU92v9bNztZHGqsq0SpcSdpupPzOX W0I4GyAZitCUPYbiZR0LcJ+ATXrXJSgdUTuzeTbhJSqv1i/BOLW99vKuQ1BitxBt BjVIA9uqOKpIJsoT2m9xTn1MURnlhImSbNdSYUgpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuNHwKwCLl5/8sd72cdLMlb6DbfcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2VmMDFmZjkxLWFjZTQtNGExZC05OTY4LTA5YjY5MzkzNmUwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAStzANBgkqhkiG9w0BAQsFAAOCAQEALOFSEVfrGJ9hTpMqnS2WvDFb1hyC 7d/iivZu+cVpF9PtaRc+0eDilxkFYMJMyjcgUOtzgqs4v/baNhsmx/KHusA4rkdA O+a+n0gZhNgh40Oh54Q9iKeEn3wxBI6Up0SAJILr1SQt1BrXJuIoeJhaMb1sCFvT Wm1Or1+eW5mXyvdz+xPxFDerKsrj+TM3qlUty6bF3798CNMG5hUkNsAK/E2ziWCP z/gjpn6zB0SX8IYOscb5+QBc8UJKkuaukOhLonnRkeEk3PwG9QZuIeodwTwM1T4j jIXQ8sFELqfvVL2LZrK311UHgd71gXXCi7gWb8uy0A5+anuDk52iRj3E8Q== -----END CERTIFICATE-----Generated at Thu Apr 25 22:33:19 2024 by rpki-client on console-fra.rpki-client.org