$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f237b201-0dd6-490c-989e-3ebef7971ef5.roa File: f237b201-0dd6-490c-989e-3ebef7971ef5.roa (raw, json) Hash identifier: zDoJsWU8Tk7lFk6jWviH7qInzHqLMfqhLyPc5VxPE1w= Subject key identifier: EC:1F:E7:4D:1C:3D:98:31:EC:2F:E6:73:C9:05:6E:60:CC:8F:4D:B1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2021602953ED01706D39C4E5437A26DE9961B524 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f237b201-0dd6-490c-989e-3ebef7971ef5.roa Signing time: Wed 17 Apr 2024 00:00:00 +0000 ROA not before: Wed 17 Apr 2024 00:00:00 +0000 ROA not after: Wed 22 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 18.35.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 09 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:21:60:29:53:ed:01:70:6d:39:c4:e5:43:7a:26:de:99:61:b5:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 17 00:00:00 2024 GMT Not After : May 22 23:59:59 2024 GMT Subject: serialNumber=461dfb7da61f8ceb0bbe93bb7ddc089ab767101134e8038f6fe7e9569f91196e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7b:13:6d:74:61:c0:3c:e0:c3:7f:50:c8:78: c8:4f:4e:e3:8b:d8:35:d4:c4:c2:bf:63:87:72:96: 0e:9d:49:b2:dc:ae:79:53:d6:2e:99:a2:68:1b:78: 80:cb:7d:24:ba:68:d7:f3:9f:63:ec:d4:3d:64:28: 5d:53:27:38:73:18:34:27:0b:dd:2f:97:af:bd:04: 60:fc:17:00:8f:7f:84:32:1f:6b:80:7f:5f:76:17: 73:72:d2:fd:12:92:64:5e:1d:46:a8:f3:8c:2b:44: db:0b:b2:65:b9:20:64:6b:f7:41:5d:cf:31:d7:78: 39:0e:21:8c:17:3d:39:4f:f7:9a:1f:d1:45:08:5e: c0:33:b2:41:eb:18:1a:e2:90:06:c1:81:63:40:e8: 23:fb:f0:89:e1:8c:c6:16:d8:b5:5d:a5:54:bf:ed: 55:b9:29:34:13:b2:c6:e8:cd:b5:75:af:f7:cd:53: 48:1f:f9:40:04:ef:58:c7:c7:5b:83:b4:97:e4:1d: 78:f5:29:c8:5f:f0:f6:2b:a7:e7:7f:a8:4d:a2:73: 93:11:7f:21:f3:71:8f:11:6f:64:0f:36:e9:56:3c: a2:30:2c:fd:c6:d8:6e:7c:d3:d5:c8:78:3a:d9:37: c3:3d:eb:64:c9:40:d9:bf:3c:9f:0c:36:f8:1a:70: 01:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:1F:E7:4D:1C:3D:98:31:EC:2F:E6:73:C9:05:6E:60:CC:8F:4D:B1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f237b201-0dd6-490c-989e-3ebef7971ef5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.35.96.0/21 Signature Algorithm: sha256WithRSAEncryption 68:cc:56:f6:45:24:0c:3b:8a:94:29:08:09:72:79:20:b8:e2: 30:f2:c1:da:53:d0:27:93:5f:5f:25:1a:be:1f:a1:80:8a:8c: f0:99:f7:12:c1:e9:66:90:20:03:3a:e8:43:f5:87:95:b3:11: 6a:31:73:fd:b3:08:25:8f:e0:9f:22:42:e6:e6:b8:db:47:7c: 81:50:e9:bf:96:0a:80:f8:e4:9f:da:19:6c:dd:84:ce:e0:54: c7:fe:59:d0:e8:06:7a:22:a5:cb:f9:8b:2c:f7:f0:fc:e8:80: 35:cc:28:f8:2e:57:89:36:ff:03:c1:88:92:ca:f8:db:65:c7: 78:c9:80:92:bf:ed:1a:15:65:37:49:ef:50:c4:6e:4b:ba:3c: 29:41:c5:31:43:1b:ac:d4:ab:7f:d0:6d:1a:bb:02:c2:ac:e6: f1:ba:45:96:39:5c:21:28:c6:1f:8e:9c:f1:24:94:cb:c8:d4: e6:af:67:b9:9c:63:7e:87:c0:78:15:bc:b9:48:cc:19:af:15: 90:5f:11:51:ae:44:25:ae:cd:a2:7e:a3:a1:11:da:29:2a:f5: 02:4c:9d:d1:fa:0a:cb:40:f5:c4:88:6b:67:17:6c:d7:6a:05: 80:f9:c6:3c:08:e8:a4:a9:fb:49:1b:5e:f0:7d:35:6d:62:5a: c3:6d:62:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUICFgKVPtAXBtOcTlQ3om3plhtSQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDE3MDAwMDAwWhcNMjQwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjFkZmI3ZGE2MWY4Y2ViMGJiZTkzYmI3ZGRjMDg5YWI3 NjcxMDExMzRlODAzOGY2ZmU3ZTk1NjlmOTExOTZlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5exNtdGHAPODDf1DIeMhPTuOL2DXUxMK/Y4dylg6dSbLc rnlT1i6ZomgbeIDLfSS6aNfzn2Ps1D1kKF1TJzhzGDQnC90vl6+9BGD8FwCPf4Qy H2uAf192F3Ny0v0SkmReHUao84wrRNsLsmW5IGRr90FdzzHXeDkOIYwXPTlP95of 0UUIXsAzskHrGBrikAbBgWNA6CP78InhjMYW2LVdpVS/7VW5KTQTssbozbV1r/fN U0gf+UAE71jHx1uDtJfkHXj1Kchf8PYrp+d/qE2ic5MRfyHzcY8Rb2QPNulWPKIw LP3G2G5809XIeDrZN8M962TJQNm/PJ8MNvgacAG1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7B/nTRw9mDHsL+ZzyQVuYMyPTbEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YyMzdiMjAxLTBkZDYtNDkwYy05ODllLTNlYmVmNzk3MWVmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMSI2AwDQYJKoZIhvcNAQELBQADggEBAGjMVvZFJAw7ipQpCAlyeSC44jDy wdpT0CeTX18lGr4foYCKjPCZ9xLB6WaQIAM66EP1h5WzEWoxc/2zCCWP4J8iQubm uNtHfIFQ6b+WCoD45J/aGWzdhM7gVMf+WdDoBnoipcv5iyz38PzogDXMKPguV4k2 /wPBiJLK+Ntlx3jJgJK/7RoVZTdJ71DEbku6PClBxTFDG6zUq3/QbRq7AsKs5vG6 RZY5XCEoxh+OnPEklMvI1OavZ7mcY36HwHgVvLlIzBmvFZBfEVGuRCWuzaJ+o6ER 2ikq9QJMndH6CstA9cSIa2cXbNdqBYD5xjwI6KSp+0kbXvB9NW1iWsNtYjw= -----END CERTIFICATE-----Generated at Wed May 8 01:07:54 2024 by rpki-client on console-ams.rpki-client.org