$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f8bf5cbc-4970-45b0-8a9d-2e191dbb50a9.roa File: f8bf5cbc-4970-45b0-8a9d-2e191dbb50a9.roa (raw, json) Hash identifier: LdeZ9DnRT3uKYt6jSwqNPzKD3HQSZUf7Fb8LfDXKHHU= Subject key identifier: 89:1F:33:64:23:42:44:4C:8D:62:BE:A8:39:C8:88:61:41:3F:94:12 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 69AE6FD83D1D044DA2A3D4E88061206094E43B4E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f8bf5cbc-4970-45b0-8a9d-2e191dbb50a9.roa Signing time: Tue 02 Apr 2024 00:00:00 +0000 ROA not before: Tue 02 Apr 2024 00:00:00 +0000 ROA not after: Tue 07 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Apr 2024 12:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:ae:6f:d8:3d:1d:04:4d:a2:a3:d4:e8:80:61:20:60:94:e4:3b:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Apr 2 00:00:00 2024 GMT Not After : May 7 23:59:59 2024 GMT Subject: serialNumber=e6c08dbe6e67eeccdadcde56aceaacd8f7649677f10504b31591908f6b2a89c7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:7c:6b:aa:b6:7b:f6:f5:30:8e:22:fe:06:09: f5:39:2b:3c:18:76:fb:6b:93:48:f3:e9:b2:a9:e0: ea:9d:ad:4b:47:c3:f7:46:43:e9:c0:7f:05:0d:be: 9b:96:32:df:d9:64:98:4f:35:05:b1:eb:90:8a:6c: ab:2d:1b:0f:41:36:73:38:58:fd:75:9e:2f:ba:32: d7:24:0f:1a:61:1d:fa:12:dd:1f:5d:f0:b4:bc:99: a4:6a:0d:fa:4c:d6:47:5c:17:a0:57:2d:7d:84:9d: 58:d4:84:df:1d:fe:47:bb:c8:ed:0a:ab:6a:8b:5e: 62:9d:99:d2:3f:c9:86:81:af:18:2a:94:d2:52:9a: 0c:55:42:a8:99:d0:61:e1:ac:2b:04:46:0c:74:9d: 4d:7c:3a:7c:0e:a5:9f:2a:90:18:e4:9b:3b:38:bf: 74:ec:f7:08:cd:d4:8c:17:64:f3:e4:03:fb:b9:b1: e2:77:b7:64:49:82:ff:6c:b6:57:7c:72:d7:f6:69: b5:b2:27:8e:04:ae:ca:7c:77:27:c0:31:3d:d5:dc: c2:09:c7:b7:eb:a1:63:1e:7c:43:69:f9:5e:13:7d: ee:0f:66:6a:44:cf:a8:49:e3:eb:84:70:d0:81:66: 57:86:88:99:ac:76:f9:e9:19:a8:a0:ac:0b:1c:0d: d9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:1F:33:64:23:42:44:4C:8D:62:BE:A8:39:C8:88:61:41:3F:94:12 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f8bf5cbc-4970-45b0-8a9d-2e191dbb50a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.239.0/24 Signature Algorithm: sha256WithRSAEncryption 65:21:67:f9:f5:a0:39:1c:63:34:41:16:9b:89:4b:15:c3:ee: 4e:29:ae:f1:60:c1:a5:96:1f:74:e9:17:37:93:54:0a:86:66: 50:78:f8:48:4b:41:e4:c9:e3:77:be:7c:38:de:63:fd:3f:a6: 47:49:6d:07:62:45:a7:38:13:ad:78:a4:08:21:da:b9:51:8d: 89:ae:fc:be:ae:f6:7a:90:2a:3a:d0:ce:3a:8d:b2:4f:6c:e7: bd:8a:bc:36:ce:93:91:2b:6e:b4:8b:5e:0d:8f:6a:56:22:9c: e2:61:e7:56:26:18:2c:7a:eb:36:4c:57:09:ed:b1:e1:04:5c: 5c:7a:49:1d:3e:4b:b9:7b:5c:dd:19:33:18:e2:f5:17:8a:79: 90:9f:27:5d:c4:35:4b:90:4c:52:1f:e8:ac:b6:d4:e9:af:19: 1c:fd:0c:d7:08:d0:98:be:de:4a:a2:ca:c9:49:ef:f4:c3:6f: fd:e8:02:bc:70:cd:c3:ec:68:5d:ae:d7:24:73:cd:ee:41:da: ad:3d:eb:87:e6:cd:b1:44:19:b1:cd:58:19:7e:3b:82:8d:60: 3e:bf:2d:2b:4c:66:80:76:dd:68:02:68:66:80:f2:a0:75:de: b1:e2:24:37:25:ac:b3:5a:61:6d:11:d6:bd:3e:8c:5f:d7:62: 09:2f:d5:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaa5v2D0dBE2io9TogGEgYJTkO04wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQwNDAyMDAwMDAwWhcNMjQwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmMwOGRiZTZlNjdlZWNjZGFkY2RlNTZhY2VhYWNkOGY3 NjQ5Njc3ZjEwNTA0YjMxNTkxOTA4ZjZiMmE4OWM3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDofGuqtnv29TCOIv4GCfU5KzwYdvtrk0jz6bKp4OqdrUtH w/dGQ+nAfwUNvpuWMt/ZZJhPNQWx65CKbKstGw9BNnM4WP11ni+6MtckDxphHfoS 3R9d8LS8maRqDfpM1kdcF6BXLX2EnVjUhN8d/ke7yO0Kq2qLXmKdmdI/yYaBrxgq lNJSmgxVQqiZ0GHhrCsERgx0nU18OnwOpZ8qkBjkmzs4v3Ts9wjN1IwXZPPkA/u5 seJ3t2RJgv9stld8ctf2abWyJ44Ersp8dyfAMT3V3MIJx7froWMefENp+V4Tfe4P ZmpEz6hJ4+uEcNCBZleGiJmsdvnpGaigrAscDdmDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiR8zZCNCREyNYr6oOciIYUE/lBIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Y4YmY1Y2JjLTQ5NzAtNDViMC04YTlkLTJlMTkxZGJiNTBhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0X+8wDQYJKoZIhvcNAQELBQADggEBAGUhZ/n1oDkcYzRBFpuJSxXD7k4p rvFgwaWWH3TpFzeTVAqGZlB4+EhLQeTJ43e+fDjeY/0/pkdJbQdiRac4E614pAgh 2rlRjYmu/L6u9nqQKjrQzjqNsk9s572KvDbOk5ErbrSLXg2PalYinOJh51YmGCx6 6zZMVwntseEEXFx6SR0+S7l7XN0ZMxji9ReKeZCfJ13ENUuQTFIf6Ky21OmvGRz9 DNcI0Ji+3kqiyslJ7/TDb/3oArxwzcPsaF2u1yRzze5B2q0964fmzbFEGbHNWBl+ O4KNYD6/LStMZoB23WgCaGaA8qB13rHiJDclrLNaYW0R1r0+jF/XYgkv1SA= -----END CERTIFICATE-----Generated at Tue Apr 16 01:22:06 2024 by rpki-client on console-ams.rpki-client.org