$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f293a620-0635-4a5a-9c8a-813c14a1700b.roa File: f293a620-0635-4a5a-9c8a-813c14a1700b.roa (raw, json) Hash identifier: l4fKxbjmltYDrRgJzgwU+RF6rv3OLvanFFvt/Vr3A6o= Subject key identifier: 47:5A:D4:C4:B7:92:89:2B:A8:8A:EB:A3:5F:24:87:FB:5A:FC:FD:77 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 773B9FA727C38FDC2BFEDA52B80E7664220F14FD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f293a620-0635-4a5a-9c8a-813c14a1700b.roa Signing time: Tue 02 Apr 2024 00:00:00 +0000 ROA not before: Tue 02 Apr 2024 00:00:00 +0000 ROA not after: Tue 07 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 3.5.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:3b:9f:a7:27:c3:8f:dc:2b:fe:da:52:b8:0e:76:64:22:0f:14:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 2 00:00:00 2024 GMT Not After : May 7 23:59:59 2024 GMT Subject: serialNumber=596e0e1a56929832c4af84985e8435e019b471bba2d6b6df7cdf0e5b828b95a7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b8:e4:7d:43:0b:18:15:09:68:ae:99:c5:78: d1:bc:bd:77:13:91:d5:87:7a:cf:b7:e0:45:71:76: bf:53:38:19:80:54:3f:da:c4:ab:c6:e5:fd:8f:ec: 8a:cf:0b:1b:de:e0:c3:1d:af:0f:40:14:57:a8:77: bc:da:97:fc:5a:44:13:72:88:53:fa:4d:67:3d:7a: 20:fc:8a:30:c5:e8:be:db:ab:5f:a4:60:75:cf:db: 99:19:72:f5:da:62:70:0a:70:1d:8b:08:2b:aa:fc: 91:bb:78:fa:3b:70:cb:ac:c1:91:71:44:7c:5d:e5: 75:e0:ab:38:85:18:96:f3:c7:80:4f:1c:aa:ff:82: 82:52:dd:8b:e3:e9:ee:ba:f4:06:00:3f:3f:31:41: d5:85:56:cc:81:8e:04:5a:ca:fe:99:4c:62:79:d1: c7:a5:75:7b:3a:60:42:89:dc:05:e8:3c:42:f0:b1: bc:5d:e6:20:cf:5a:91:8a:4b:87:76:6a:76:95:48: d3:4b:d4:d1:40:b4:dc:0a:06:7c:af:8a:a5:20:20: e7:e5:8a:3f:39:27:bc:a2:59:9f:81:c9:5d:fd:4e: d0:62:4c:43:96:33:3a:1b:66:cc:b1:02:59:19:1f: ad:eb:2f:15:dc:1c:a8:e8:86:ed:9e:9a:c2:d2:ca: 64:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5A:D4:C4:B7:92:89:2B:A8:8A:EB:A3:5F:24:87:FB:5A:FC:FD:77 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f293a620-0635-4a5a-9c8a-813c14a1700b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.5.76.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:6b:97:9d:16:75:99:43:df:4e:7f:a2:51:04:ff:58:61:35: f0:5d:bd:d8:87:d4:92:70:a5:5f:5f:7a:86:33:25:c5:35:c6: 2d:b2:de:1d:83:09:4a:c5:62:c0:4a:73:9f:34:26:67:d5:7e: 68:da:a5:60:ea:52:08:02:e7:ed:17:49:30:4e:1e:f3:47:33: f3:bf:af:09:6d:9b:f5:16:d5:1e:92:2f:b8:87:cb:4c:49:20: 52:8f:0e:af:63:e0:17:9c:65:4a:9e:8e:b8:d6:f5:2c:28:9a: 93:39:2a:9b:86:af:33:ca:b7:fb:a9:33:5e:cd:d6:87:d8:ad: dd:6c:86:a7:fa:ca:d5:45:4b:4f:14:1e:3e:9d:71:a7:ab:77: b0:28:c2:ca:eb:5b:e0:fa:94:8d:ba:5d:fd:3f:e8:81:fc:4e: cb:4e:cb:c2:24:62:85:85:87:71:64:a5:19:e5:85:bd:53:77: 97:5b:78:24:78:d8:e9:03:06:a9:15:65:04:e2:c9:62:25:9f: 1f:2f:04:6a:43:79:c6:03:47:5c:02:31:fe:95:9c:5b:23:60: 57:19:12:bd:5e:14:b9:f2:0e:48:ed:d1:b3:de:2b:d1:f5:cb: 2e:43:ec:a9:7f:62:f0:82:68:a0:3a:b9:ed:3f:2b:fe:08:81: cc:03:26:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdzufpyfDj9wr/tpSuA52ZCIPFP0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAyMDAwMDAwWhcNMjQwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTZlMGUxYTU2OTI5ODMyYzRhZjg0OTg1ZTg0MzVlMDE5 YjQ3MWJiYTJkNmI2ZGY3Y2RmMGU1YjgyOGI5NWE3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNuOR9QwsYFQlorpnFeNG8vXcTkdWHes+34EVxdr9TOBmA VD/axKvG5f2P7IrPCxve4MMdrw9AFFeod7zal/xaRBNyiFP6TWc9eiD8ijDF6L7b q1+kYHXP25kZcvXaYnAKcB2LCCuq/JG7ePo7cMuswZFxRHxd5XXgqziFGJbzx4BP HKr/goJS3Yvj6e669AYAPz8xQdWFVsyBjgRayv6ZTGJ50celdXs6YEKJ3AXoPELw sbxd5iDPWpGKS4d2anaVSNNL1NFAtNwKBnyviqUgIOflij85J7yiWZ+ByV39TtBi TEOWMzobZsyxAlkZH63rLxXcHKjohu2emsLSymSxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR1rUxLeSiSuoiuujXySH+1r8/XcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YyOTNhNjIwLTA2MzUtNGE1YS05YzhhLTgxM2MxNGExNzAwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIDBUwwDQYJKoZIhvcNAQELBQADggEBAA5rl50WdZlD305/olEE/1hhNfBd vdiH1JJwpV9feoYzJcU1xi2y3h2DCUrFYsBKc580JmfVfmjapWDqUggC5+0XSTBO HvNHM/O/rwltm/UW1R6SL7iHy0xJIFKPDq9j4BecZUqejrjW9SwompM5KpuGrzPK t/upM17N1ofYrd1shqf6ytVFS08UHj6dcaerd7AowsrrW+D6lI26Xf0/6IH8TstO y8IkYoWFh3FkpRnlhb1Td5dbeCR42OkDBqkVZQTiyWIlnx8vBGpDecYDR1wCMf6V nFsjYFcZEr1eFLnyDkjt0bPeK9H1yy5D7Kl/YvCCaKA6ue0/K/4IgcwDJiw= -----END CERTIFICATE-----Generated at Thu Apr 25 22:33:20 2024 by rpki-client on console-fra.rpki-client.org