$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/04e19545-af94-4ea1-bd3f-cb204999d28f.roa File: 04e19545-af94-4ea1-bd3f-cb204999d28f.roa (raw, json) Hash identifier: UmbkegQbSAqan1o+vjmV/9hWVwslzPcGS/DQnmFreLw= Subject key identifier: AF:4C:CF:3E:1B:2E:6F:39:DB:6C:D3:F2:1E:F3:6D:80:23:D7:69:60 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 7281D30E61271C46E76E0A1A30D66876334D97F8 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/04e19545-af94-4ea1-bd3f-cb204999d28f.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 35916 IP address blocks: 23.234.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:81:d3:0e:61:27:1c:46:e7:6e:0a:1a:30:d6:68:76:33:4d:97:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=7361168eed16f2a137e8ce0370f0f69e4281801a94569b12af98cadd65ab426c, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:52:5a:de:8f:65:c5:d7:f3:4c:20:b1:38:9b: 5a:cf:3a:c1:90:ca:80:54:9e:9c:6c:16:e0:24:6b: 77:6b:69:a8:c6:bd:81:8f:07:0f:44:c0:4a:39:26: 06:26:fe:5f:07:a2:00:22:81:f5:de:b9:16:63:b7: 70:eb:3f:a8:57:36:55:3f:af:50:72:01:d1:ca:9a: 17:1a:11:e2:d3:a3:30:1f:29:47:6d:62:fc:13:f8: 3c:ca:1d:b2:8d:1f:9a:40:06:fc:5c:5a:c6:73:76: 11:2d:82:12:01:a6:48:c8:bf:15:29:2a:bb:7b:bf: 8f:71:5b:dd:2a:a4:4f:a5:c8:4e:c3:f0:27:9c:85: bf:66:93:94:7b:3d:12:80:d6:f0:16:96:b2:dc:b2: 9c:e1:b9:20:98:55:ed:01:9e:7a:bd:ae:41:c3:f9: ba:ec:8d:72:d8:0d:3b:bf:26:ef:36:95:4d:d6:2d: 82:bf:3f:de:38:3c:53:a4:9d:9e:e7:32:c2:dc:98: 7d:65:0a:42:c5:f6:0d:a2:24:26:64:c4:84:4d:85: 8a:06:cb:7e:00:1e:87:62:d6:37:fc:bc:93:f5:d1: dc:28:c2:3d:9d:00:3b:19:d0:46:cd:2f:5a:3c:b6: 53:c2:02:85:2d:e9:89:8a:cc:88:a6:84:0b:10:62: 37:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:4C:CF:3E:1B:2E:6F:39:DB:6C:D3:F2:1E:F3:6D:80:23:D7:69:60 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/04e19545-af94-4ea1-bd3f-cb204999d28f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.234.195.0/24 Signature Algorithm: sha256WithRSAEncryption 83:54:72:ea:e0:cc:55:1a:49:7f:32:7f:aa:d9:1d:ac:39:ae: 84:36:a2:69:19:f7:5e:d5:1e:1c:84:04:e7:b4:01:cd:01:94: 35:03:60:03:51:9d:25:ad:d0:71:3a:e2:20:a5:f2:2c:bc:22: 0b:71:f4:13:49:ac:73:44:8b:65:1a:76:49:c8:ce:e2:f5:6c: 85:bb:9c:06:1c:0f:13:e1:9b:80:49:cc:8b:fe:89:b7:ca:de: 8e:1c:1e:8c:4e:36:64:87:06:ad:29:d1:59:c1:a6:cb:a1:c6: bf:3d:c4:a5:af:1a:bf:bb:57:7e:92:88:86:b1:fd:14:2a:10: d2:63:f1:dc:6b:bb:78:3d:c2:dd:1a:32:1e:1d:7e:b1:94:ad: 6e:7b:c0:2f:f4:20:90:f8:65:6c:1f:5f:5b:61:64:42:95:64: d0:fe:ad:ed:12:e0:9b:72:3f:fa:fa:60:43:26:8e:96:3a:45: 63:d8:f1:2f:69:c1:a8:3b:ca:69:3f:7d:4b:53:46:e2:00:91: e2:17:34:98:46:06:cc:5e:46:ba:f6:3a:de:20:dc:6a:79:bd: 52:c7:62:b5:f3:10:74:ac:89:4c:00:bf:61:5d:d7:e9:5f:0a: 6a:2a:71:a5:39:27:1c:b4:46:fb:bb:e6:44:80:1c:8b:bb:ae: 38:d2:ba:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcoHTDmEnHEbnbgoaMNZodjNNl/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzYxMTY4ZWVkMTZmMmExMzdlOGNlMDM3MGYwZjY5ZTQy ODE4MDFhOTQ1NjliMTJhZjk4Y2FkZDY1YWI0MjZjMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4Ulrej2XF1/NMILE4m1rPOsGQyoBUnpxsFuAka3draajG vYGPBw9EwEo5JgYm/l8HogAigfXeuRZjt3DrP6hXNlU/r1ByAdHKmhcaEeLTozAf KUdtYvwT+DzKHbKNH5pABvxcWsZzdhEtghIBpkjIvxUpKrt7v49xW90qpE+lyE7D 8Cechb9mk5R7PRKA1vAWlrLcspzhuSCYVe0Bnnq9rkHD+brsjXLYDTu/Ju82lU3W LYK/P944PFOknZ7nMsLcmH1lCkLF9g2iJCZkxIRNhYoGy34AHodi1jf8vJP10dwo wj2dADsZ0EbNL1o8tlPCAoUt6YmKzIimhAsQYjenAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUr0zPPhsubznbbNPyHvNtgCPXaWAwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzA0ZTE5NTQ1LWFmOTQtNGVhMS1iZDNmLWNiMjA0OTk5ZDI4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX6sMwDQYJKoZIhvcNAQELBQADggEBAINUcurgzFUaSX8yf6rZHaw5roQ2 omkZ917VHhyEBOe0Ac0BlDUDYANRnSWt0HE64iCl8iy8Igtx9BNJrHNEi2UadknI zuL1bIW7nAYcDxPhm4BJzIv+ibfK3o4cHoxONmSHBq0p0VnBpsuhxr89xKWvGr+7 V36SiIax/RQqENJj8dxru3g9wt0aMh4dfrGUrW57wC/0IJD4ZWwfX1thZEKVZND+ re0S4JtyP/r6YEMmjpY6RWPY8S9pwag7ymk/fUtTRuIAkeIXNJhGBsxeRrr2Ot4g 3Gp5vVLHYrXzEHSsiUwAv2Fd1+lfCmoqcaU5Jxy0Rvu75kSAHIu7rjjSup8= -----END CERTIFICATE-----Generated at Fri May 3 00:07:10 2024 by rpki-client on console-ams.rpki-client.org