$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/1995d476-ecff-4abc-b727-7d6ba57a824e.roa File: 1995d476-ecff-4abc-b727-7d6ba57a824e.roa (raw, json) Hash identifier: ZjnZ6rpspInJKK9V1XsZHt6asIh76gwKVvcQsiLLO8U= Subject key identifier: D8:08:B3:1C:E9:FC:12:FF:EA:B0:9C:1B:39:12:D2:02:1B:A3:62:89 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 56E521711E3959502E6027EEC6ED5DD37C886D5E Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/1995d476-ecff-4abc-b727-7d6ba57a824e.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 96.45.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:e5:21:71:1e:39:59:50:2e:60:27:ee:c6:ed:5d:d3:7c:88:6d:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=f03370ac9092d5ee6e147b05e213a9aded4f70a5df1ea1f1623eca1d9deb2d1b, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ad:88:e7:1e:b3:4e:ed:f1:0b:df:0e:41:59: 40:07:74:8e:f2:d2:4e:ba:0a:b2:c1:b2:5f:2b:93: c9:71:49:a8:74:b7:54:0f:3f:44:20:a9:07:bd:5d: 28:a9:ce:34:d2:ec:26:f6:83:25:4d:08:dc:18:65: b5:d3:65:32:c0:af:a3:a5:b5:c6:1f:5c:9e:96:eb: 84:ca:bd:41:6a:c1:93:ec:6c:87:ba:34:e9:83:3b: 7c:ba:3b:de:43:05:1d:dc:29:b7:a8:2d:32:06:1d: 6f:97:9d:ac:57:08:47:c2:16:7c:ab:c0:97:31:14: e1:6e:c4:e7:fd:85:a0:79:19:63:ca:0e:54:0d:f9: d2:ef:6b:30:7e:8f:b0:b5:21:38:36:f8:01:61:e4: 57:ce:30:e3:b1:88:ec:47:43:d9:67:53:f3:d7:7e: fe:a1:9a:18:c6:21:6a:08:88:14:4b:d0:bc:7a:91: 79:c5:26:85:d8:11:66:b7:c0:99:50:d8:99:99:e0: 8c:10:c0:28:38:91:d8:92:08:1f:31:67:ee:e8:78: 76:b6:47:45:af:7c:9c:3b:c9:c7:d3:ea:78:cb:68: 0a:0e:c1:c7:a5:24:a8:f5:59:0f:23:75:16:a4:9f: 16:48:ba:41:69:c6:5f:8f:40:81:f4:bb:4c:77:f0: 51:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:08:B3:1C:E9:FC:12:FF:EA:B0:9C:1B:39:12:D2:02:1B:A3:62:89 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/1995d476-ecff-4abc-b727-7d6ba57a824e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.45.160.0/20 Signature Algorithm: sha256WithRSAEncryption 71:ad:8b:4a:54:0e:d3:0c:04:45:25:65:a2:3a:af:d9:93:04: 92:f0:66:53:29:7b:08:fe:c9:cb:a0:f9:82:c6:8e:82:02:ce: dc:0b:7f:13:19:85:c1:7d:76:35:be:7d:3a:7f:1d:ee:ae:1b: 2c:27:64:75:04:ee:23:64:56:bd:b3:e7:65:81:f1:eb:af:3a: 2c:42:8c:10:72:96:d8:f5:56:2e:27:59:9c:a8:0d:0a:aa:22: f7:2d:71:52:6d:cb:7d:9e:47:2a:c4:5c:98:3a:59:ab:4b:16: a6:12:17:78:b2:93:95:3c:13:9a:bc:43:e6:d5:ef:08:aa:27: 2f:df:d2:c0:e6:03:ab:0f:4f:c2:9f:4c:df:aa:de:da:d3:77: c4:05:f6:48:2d:cf:4e:d4:08:30:bf:24:c8:11:f3:d4:d8:18: ae:1b:47:d6:4c:79:13:d7:ae:68:0e:50:e8:e0:d1:e4:42:fe: 4c:63:0e:71:68:2c:41:99:3b:09:93:ad:fd:44:64:cd:ad:bc: 78:39:d5:7b:0e:8e:c9:60:bb:c2:50:ce:29:f5:26:36:1b:fe: 30:fe:0e:5b:40:b1:38:e1:06:2c:44:5e:7e:39:34:70:2b:4a: 12:a4:29:d0:ab:54:14:1e:1c:50:f5:6a:3a:85:89:e0:60:84: 5d:88:dc:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVuUhcR45WVAuYCfuxu1d03yIbV4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDMzNzBhYzkwOTJkNWVlNmUxNDdiMDVlMjEzYTlhZGVk NGY3MGE1ZGYxZWExZjE2MjNlY2ExZDlkZWIyZDFiMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyrYjnHrNO7fEL3w5BWUAHdI7y0k66CrLBsl8rk8lxSah0 t1QPP0QgqQe9XSipzjTS7Cb2gyVNCNwYZbXTZTLAr6OltcYfXJ6W64TKvUFqwZPs bIe6NOmDO3y6O95DBR3cKbeoLTIGHW+XnaxXCEfCFnyrwJcxFOFuxOf9haB5GWPK DlQN+dLvazB+j7C1ITg2+AFh5FfOMOOxiOxHQ9lnU/PXfv6hmhjGIWoIiBRL0Lx6 kXnFJoXYEWa3wJlQ2JmZ4IwQwCg4kdiSCB8xZ+7oeHa2R0WvfJw7ycfT6njLaAoO wcelJKj1WQ8jdRaknxZIukFpxl+PQIH0u0x38FGjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2AizHOn8Ev/qsJwbORLSAhujYokwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzE5OTVkNDc2LWVjZmYtNGFiYy1iNzI3LTdkNmJhNTdhODI0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARgLaAwDQYJKoZIhvcNAQELBQADggEBAHGti0pUDtMMBEUlZaI6r9mTBJLw ZlMpewj+ycug+YLGjoICztwLfxMZhcF9djW+fTp/He6uGywnZHUE7iNkVr2z52WB 8euvOixCjBByltj1Vi4nWZyoDQqqIvctcVJty32eRyrEXJg6WatLFqYSF3iyk5U8 E5q8Q+bV7wiqJy/f0sDmA6sPT8KfTN+q3trTd8QF9kgtz07UCDC/JMgR89TYGK4b R9ZMeRPXrmgOUOjg0eRC/kxjDnFoLEGZOwmTrf1EZM2tvHg51XsOjslgu8JQzin1 JjYb/jD+DltAsTjhBixEXn45NHArShKkKdCrVBQeHFD1ajqFieBghF2I3CA= -----END CERTIFICATE-----Generated at Thu May 9 15:20:43 2024 by rpki-client on console-fra.rpki-client.org