$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f875bf9a-f7e0-409a-86c0-d6c5efb92968.roa File: f875bf9a-f7e0-409a-86c0-d6c5efb92968.roa (raw, json) Hash identifier: Utn1pQlK+cSLE1MJ00batO6gdi8cCGDGL5400f64iwU= Subject key identifier: 22:33:90:A2:33:6A:C7:AB:D8:32:4A:EE:98:01:95:48:72:22:B8:45 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4B00B6E483B59696838DD6980117D9EFB9F96BEB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f875bf9a-f7e0-409a-86c0-d6c5efb92968.roa Signing time: Sat 20 Apr 2024 00:00:00 +0000 ROA not before: Sat 20 Apr 2024 00:00:00 +0000 ROA not after: Sat 25 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.93.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 05 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:00:b6:e4:83:b5:96:96:83:8d:d6:98:01:17:d9:ef:b9:f9:6b:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 20 00:00:00 2024 GMT Not After : May 25 23:59:59 2024 GMT Subject: serialNumber=1d8085be08e3cc18ccd7f05d3ed369082a5ba80e5d2e6f1383bd6cd6d0006714, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:08:45:b6:d9:bc:be:91:b9:9f:03:38:4d:78: ae:7b:4b:a1:1a:e9:c6:04:50:3e:32:17:0a:14:44: 64:12:97:c7:ef:64:57:38:7e:77:e8:92:c3:75:cb: df:44:58:8b:f8:36:e6:75:fa:9b:50:3f:c0:7b:b0: cb:28:09:36:2a:56:5a:c6:e7:b6:88:2b:91:5a:95: 7e:cc:7d:85:fb:b2:d1:e1:56:56:da:1f:43:2d:95: cb:c2:f0:01:24:2c:56:40:1a:04:6f:87:d4:a6:de: 2b:dc:1a:b3:5b:05:97:b6:1f:e2:0f:38:eb:ca:17: 64:c5:40:94:6c:f2:bb:25:0d:b5:d1:47:dc:c1:b4: e7:0a:c7:c1:77:8b:bd:3c:44:6f:59:d9:90:83:d6: 47:06:df:b2:d5:ad:0a:98:b3:35:b1:1e:47:29:f4: cd:c3:46:e8:9b:13:b5:ef:0a:57:7e:6b:64:29:5c: 5c:56:7e:d4:57:1d:00:53:0a:e2:7d:2b:74:e5:eb: 35:50:fc:bc:4e:d7:05:cb:36:c2:02:ca:e9:c6:c3: ec:ed:90:0b:e7:25:2e:55:73:25:43:37:ca:c6:f4: 96:70:e7:c7:18:92:27:b0:eb:58:da:c5:93:db:c1: 6e:9d:b0:3e:e4:dc:e2:d5:da:8e:37:4e:5c:bc:1c: bd:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:33:90:A2:33:6A:C7:AB:D8:32:4A:EE:98:01:95:48:72:22:B8:45 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f875bf9a-f7e0-409a-86c0-d6c5efb92968.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.93.36.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:18:8a:41:27:7b:b5:f8:c4:74:48:3e:dc:13:a0:94:16:1a: f8:e2:e7:22:6f:02:ad:60:ac:29:06:e2:16:b0:ba:e4:56:ed: 9a:4b:a3:fd:87:8f:ee:5b:e2:ac:3c:8f:17:e4:52:35:b4:41: 77:cc:fc:a7:c7:c8:61:ec:70:41:70:71:40:fd:87:70:89:85: 0d:56:a7:ec:84:ce:03:81:c4:a9:e1:29:01:27:37:d0:97:eb: 72:89:73:da:04:48:8e:04:a5:83:58:83:6a:e9:c4:1f:06:8a: ce:4e:02:26:73:21:28:43:1f:ee:d3:63:68:a7:e3:af:23:ae: b1:b2:26:30:4e:a8:43:c5:e4:0c:5c:99:cb:20:32:09:d2:fb: 8a:6e:34:47:68:a2:35:e7:74:28:7d:3a:15:80:cd:f3:21:ff: a7:3a:1f:ff:ff:43:52:8f:e1:36:ce:e4:07:2a:16:fa:8e:c3: 4c:0c:eb:fc:82:1a:47:ec:6f:90:2a:b7:7f:5d:00:83:e5:7b: ff:e3:c1:89:8e:63:4d:ee:d2:a0:bf:51:bc:ab:80:e3:5e:69: 20:b0:d1:19:c0:2d:c4:1a:69:3a:9f:da:21:73:9a:07:4a:1d: 73:ca:9d:06:3f:14:85:ee:a6:c9:29:7b:cf:42:32:8e:85:04: 10:ff:58:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSwC25IO1lpaDjdaYARfZ77n5a+swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDIwMDAwMDAwWhcNMjQwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDgwODViZTA4ZTNjYzE4Y2NkN2YwNWQzZWQzNjkwODJh NWJhODBlNWQyZTZmMTM4M2JkNmNkNmQwMDA2NzE0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMCEW22by+kbmfAzhNeK57S6Ea6cYEUD4yFwoURGQSl8fv ZFc4fnfoksN1y99EWIv4NuZ1+ptQP8B7sMsoCTYqVlrG57aIK5FalX7MfYX7stHh VlbaH0MtlcvC8AEkLFZAGgRvh9Sm3ivcGrNbBZe2H+IPOOvKF2TFQJRs8rslDbXR R9zBtOcKx8F3i708RG9Z2ZCD1kcG37LVrQqYszWxHkcp9M3DRuibE7XvCld+a2Qp XFxWftRXHQBTCuJ9K3Tl6zVQ/LxO1wXLNsICyunGw+ztkAvnJS5VcyVDN8rG9JZw 58cYkiew61jaxZPbwW6dsD7k3OLV2o43Tly8HL1nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIjOQojNqx6vYMkrumAGVSHIiuEUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Y4NzViZjlhLWY3ZTAtNDA5YS04NmMwLWQ2YzVlZmI5Mjk2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0XSQwDQYJKoZIhvcNAQELBQADggEBABoYikEne7X4xHRIPtwToJQWGvji 5yJvAq1grCkG4hawuuRW7ZpLo/2Hj+5b4qw8jxfkUjW0QXfM/KfHyGHscEFwcUD9 h3CJhQ1Wp+yEzgOBxKnhKQEnN9CX63KJc9oESI4EpYNYg2rpxB8Gis5OAiZzIShD H+7TY2in468jrrGyJjBOqEPF5AxcmcsgMgnS+4puNEdoojXndCh9OhWAzfMh/6c6 H///Q1KP4TbO5AcqFvqOw0wM6/yCGkfsb5Aqt39dAIPle//jwYmOY03u0qC/Ubyr gONeaSCw0RnALcQaaTqf2iFzmgdKHXPKnQY/FIXupskpe89CMo6FBBD/WDs= -----END CERTIFICATE-----Generated at Fri May 3 01:29:35 2024 by rpki-client on console-fra.rpki-client.org