$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f3e5bf7c-d63c-4e09-9a38-8f26d5a70736.roa File: f3e5bf7c-d63c-4e09-9a38-8f26d5a70736.roa (raw, json) Hash identifier: WOKYkjPPSZRm6l+23JyYDXdhUPMMhz96FdjvJDdSFGI= Subject key identifier: 64:18:73:4B:EC:00:D7:B0:03:EA:1B:E2:28:6E:44:1A:94:1D:F3:93 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 30AE1B8FC508219D9D41E22BB0358E65698D1CEC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f3e5bf7c-d63c-4e09-9a38-8f26d5a70736.roa Signing time: Fri 05 Apr 2024 00:00:00 +0000 ROA not before: Fri 05 Apr 2024 00:00:00 +0000 ROA not after: Fri 10 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 18.34.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:ae:1b:8f:c5:08:21:9d:9d:41:e2:2b:b0:35:8e:65:69:8d:1c:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 5 00:00:00 2024 GMT Not After : May 10 23:59:59 2024 GMT Subject: serialNumber=d7a8de67c2199b0bfaf340d39d7f88ea082dcf8fc2d8a4debc53fd0b73db2686, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4a:b7:41:c2:32:3a:01:b7:a1:ee:40:72:46: e9:24:d2:fa:c4:7d:78:7f:2f:07:0c:2e:d9:0f:45: 0b:ba:21:ec:b9:1a:ce:70:70:f9:ed:d3:2e:b6:4a: f2:3f:1d:88:ff:95:d5:66:24:21:57:33:c2:56:b4: 76:34:ae:5c:64:12:05:f7:13:e5:63:04:54:f2:89: 6d:d5:b8:5b:34:19:df:fc:e4:ce:42:51:ff:7d:f6: 41:60:fb:4f:e7:a7:c4:f8:c4:cd:61:39:dc:09:4c: 28:ec:c8:d0:a6:61:2c:15:da:51:1d:6d:fe:b5:26: dd:fd:c1:5c:37:c9:6f:a8:71:79:38:d2:5d:28:b8: 97:01:89:c1:0b:72:49:ad:13:e5:8a:66:a5:36:e4: 50:34:38:82:45:71:51:73:1c:71:90:c6:99:bf:94: 53:56:54:1e:5b:db:2b:85:b1:b9:8f:9b:74:a1:da: 4f:df:09:81:4d:0a:a9:9e:78:32:62:58:4b:ef:a2: da:9e:0d:6e:6a:2e:c9:a6:ef:b6:f6:27:d4:f8:54: 8d:09:00:6b:df:a8:ba:41:7e:75:37:ad:d7:50:33: 49:6c:2c:e7:22:80:6b:19:0a:d1:d3:59:1b:93:81: 11:27:0b:ee:db:ff:48:20:7d:94:90:af:ca:7a:4a: 09:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:18:73:4B:EC:00:D7:B0:03:EA:1B:E2:28:6E:44:1A:94:1D:F3:93 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f3e5bf7c-d63c-4e09-9a38-8f26d5a70736.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.34.72.0/21 Signature Algorithm: sha256WithRSAEncryption 92:5a:4d:a8:98:1f:ea:ac:39:d5:f5:c0:00:e4:77:d3:15:47: bb:57:4f:bc:06:38:16:de:97:2b:3a:a7:8f:9b:64:63:37:68: ff:74:ce:a6:54:7e:2f:eb:87:50:4b:25:65:7c:d5:1a:cc:78: bd:3e:1b:98:6c:ce:d1:9a:1c:24:f5:79:a1:48:34:39:f1:6a: 61:59:36:ba:b6:89:34:40:b0:33:99:24:d1:84:9a:46:48:5b: b0:df:36:4a:4c:69:ce:74:ac:c7:bf:46:02:b6:ea:6e:ad:df: 96:f9:25:69:b9:93:b5:56:40:76:94:de:7c:16:87:4b:db:15: e4:24:6b:35:a4:5b:88:7d:7e:b5:63:a3:0a:5d:56:3a:9e:9a: a3:3e:0c:36:ee:1e:93:9a:76:de:a7:3d:39:24:4c:7a:ab:7f: 4c:81:47:94:3e:30:0f:d3:b5:67:0d:88:b6:47:e6:46:7e:e7: dd:d2:c8:14:ff:fd:9a:36:19:ab:14:28:95:6c:fc:de:b1:4f: 29:f2:01:90:0d:64:af:43:d4:d1:02:d4:81:71:e1:78:45:8c: b3:ab:90:41:6d:d4:42:36:d7:d7:f1:87:5f:6a:58:67:64:bd: cb:17:e0:20:08:6c:3a:72:5c:a3:ff:f7:59:65:48:3b:8f:21: c8:4b:dc:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMK4bj8UIIZ2dQeIrsDWOZWmNHOwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDA1MDAwMDAwWhcNMjQwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2E4ZGU2N2MyMTk5YjBiZmFmMzQwZDM5ZDdmODhlYTA4 MmRjZjhmYzJkOGE0ZGViYzUzZmQwYjczZGIyNjg2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMSrdBwjI6Abeh7kByRukk0vrEfXh/LwcMLtkPRQu6Iey5 Gs5wcPnt0y62SvI/HYj/ldVmJCFXM8JWtHY0rlxkEgX3E+VjBFTyiW3VuFs0Gd/8 5M5CUf999kFg+0/np8T4xM1hOdwJTCjsyNCmYSwV2lEdbf61Jt39wVw3yW+ocXk4 0l0ouJcBicELckmtE+WKZqU25FA0OIJFcVFzHHGQxpm/lFNWVB5b2yuFsbmPm3Sh 2k/fCYFNCqmeeDJiWEvvotqeDW5qLsmm77b2J9T4VI0JAGvfqLpBfnU3rddQM0ls LOcigGsZCtHTWRuTgREnC+7b/0ggfZSQr8p6SgnHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZBhzS+wA17AD6hviKG5EGpQd85MwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YzZTViZjdjLWQ2M2MtNGUwOS05YTM4LThmMjZkNWE3MDczNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMSIkgwDQYJKoZIhvcNAQELBQADggEBAJJaTaiYH+qsOdX1wADkd9MVR7tX T7wGOBbelys6p4+bZGM3aP90zqZUfi/rh1BLJWV81RrMeL0+G5hsztGaHCT1eaFI NDnxamFZNrq2iTRAsDOZJNGEmkZIW7DfNkpMac50rMe/RgK26m6t35b5JWm5k7VW QHaU3nwWh0vbFeQkazWkW4h9frVjowpdVjqemqM+DDbuHpOadt6nPTkkTHqrf0yB R5Q+MA/TtWcNiLZH5kZ+593SyBT//Zo2GasUKJVs/N6xTynyAZANZK9D1NEC1IFx 4XhFjLOrkEFt1EI219fxh19qWGdkvcsX4CAIbDpyXKP/91llSDuPIchL3JI= -----END CERTIFICATE-----Generated at Fri Apr 26 11:01:07 2024 by rpki-client on console-ams.rpki-client.org