$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/22561c5c-2b09-4057-b42a-3ebbf04ebfe3.roa File: 22561c5c-2b09-4057-b42a-3ebbf04ebfe3.roa (raw, json) Hash identifier: +Jqu7FcmHR9jTr6Kqy4cRJm7jtxfRyc82Bq9/5JRLG4= Subject key identifier: 48:88:0A:C4:5D:F1:8B:41:AE:C8:5B:73:C3:CC:D2:F1:B4:EB:10:60 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 5C45FB8D18EA746217BAB91365C525C2F44FEE3D Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/22561c5c-2b09-4057-b42a-3ebbf04ebfe3.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 23.234.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:45:fb:8d:18:ea:74:62:17:ba:b9:13:65:c5:25:c2:f4:4f:ee:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=48a2c65dc081f87074ca4bff7bd86dcf9d2bac966bcde5b2cc7f950620f69d94, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5d:fe:7d:a8:7f:96:41:24:30:cf:fa:18:d7: a6:06:ee:f1:01:2d:78:36:1e:e5:e0:d4:1e:50:56: 56:d6:db:bd:94:f1:0f:bb:57:9a:14:e0:1e:22:d0: 77:d7:a6:ad:0d:0c:d9:0b:dd:92:6c:7d:e1:cd:ea: 09:a0:cd:40:1e:3f:cb:c4:b3:bf:47:ca:15:55:1b: a4:10:df:e2:6b:a0:3c:60:3c:97:24:14:cf:db:d2: f8:d4:36:50:c4:08:b6:44:d7:3d:b9:85:aa:9a:47: 9e:a6:8b:6c:ae:6c:c6:fc:54:a0:22:a2:c2:6c:31: eb:38:a1:6b:88:0c:32:15:c8:45:33:a0:0b:f8:1e: ec:1f:8e:3f:bb:29:da:0e:c9:62:30:41:23:ca:13: 63:56:1a:da:05:86:77:56:83:6c:68:bf:e9:0b:bd: 3c:4b:e4:47:8d:d4:db:e9:b4:33:0d:c3:d0:88:d0: 4f:6b:f4:91:3a:55:df:8c:b5:1f:7e:27:d7:b9:e2: cd:62:43:a8:a7:b7:c0:c3:4c:69:3c:5c:78:42:4c: b3:9d:66:8d:db:a6:24:b1:cf:63:02:fe:c9:65:99: 66:da:22:b9:0b:0b:c1:fb:1c:bb:87:81:8e:c4:eb: b5:be:dc:ca:e5:bd:dc:4c:d2:c6:76:c7:77:ff:82: f0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:88:0A:C4:5D:F1:8B:41:AE:C8:5B:73:C3:CC:D2:F1:B4:EB:10:60 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/22561c5c-2b09-4057-b42a-3ebbf04ebfe3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.234.210.0/24 Signature Algorithm: sha256WithRSAEncryption 51:55:d7:3a:25:8e:b4:6b:32:e7:30:83:48:f9:3b:75:e9:04: 53:d4:39:68:60:91:f6:a6:5c:40:33:65:76:10:1f:ce:30:d0: 0c:f6:d8:34:12:f1:68:a7:b4:3e:f8:b4:d5:07:56:e0:06:88: 39:1e:a7:fb:38:72:9d:39:de:90:ef:98:35:ac:2e:d2:1d:65: 7c:59:9a:e7:21:ae:6a:a5:46:8c:eb:3a:ce:cf:73:bb:71:18: ea:9a:b2:5e:ce:7b:0b:52:5e:f9:29:76:19:71:99:f7:c2:da: fc:a9:af:98:72:59:68:97:d4:f1:7a:ac:23:ea:bd:1a:08:a4: 02:99:5e:9f:1e:ac:f2:8e:9e:97:86:f0:8e:46:11:92:5c:58: 7f:d4:81:82:b6:0c:d3:f6:cb:49:b1:5d:25:ae:95:82:2e:a9: 27:6c:f5:e7:dc:d8:44:26:bb:dd:d6:e6:49:e3:e8:5c:a0:89: 99:ec:0a:31:36:2b:ef:5f:e1:7b:5a:20:0a:b4:51:4b:44:82: 79:44:d6:da:de:00:a2:8a:38:6b:4b:92:e8:3f:17:f3:e4:e6: 3f:6e:39:e0:88:a7:b5:56:df:31:e7:17:2c:bf:f0:b5:35:d5: c3:02:a0:5e:7f:93:d3:0d:c2:ff:06:0e:66:b0:c9:5f:10:e4: 51:84:67:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXEX7jRjqdGIXurkTZcUlwvRP7j0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGEyYzY1ZGMwODFmODcwNzRjYTRiZmY3YmQ4NmRjZjlk MmJhYzk2NmJjZGU1YjJjYzdmOTUwNjIwZjY5ZDk0MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9Xf59qH+WQSQwz/oY16YG7vEBLXg2HuXg1B5QVlbW272U 8Q+7V5oU4B4i0HfXpq0NDNkL3ZJsfeHN6gmgzUAeP8vEs79HyhVVG6QQ3+JroDxg PJckFM/b0vjUNlDECLZE1z25haqaR56mi2yubMb8VKAiosJsMes4oWuIDDIVyEUz oAv4Huwfjj+7KdoOyWIwQSPKE2NWGtoFhndWg2xov+kLvTxL5EeN1NvptDMNw9CI 0E9r9JE6Vd+MtR9+J9e54s1iQ6int8DDTGk8XHhCTLOdZo3bpiSxz2MC/sllmWba IrkLC8H7HLuHgY7E67W+3MrlvdxM0sZ2x3f/gvB7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSIgKxF3xi0GuyFtzw8zS8bTrEGAwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzIyNTYxYzVjLTJiMDktNDA1Ny1iNDJhLTNlYmJmMDRlYmZlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX6tIwDQYJKoZIhvcNAQELBQADggEBAFFV1zoljrRrMucwg0j5O3XpBFPU OWhgkfamXEAzZXYQH84w0Az22DQS8WintD74tNUHVuAGiDkep/s4cp053pDvmDWs LtIdZXxZmuchrmqlRozrOs7Pc7txGOqasl7OewtSXvkpdhlxmffC2vypr5hyWWiX 1PF6rCPqvRoIpAKZXp8erPKOnpeG8I5GEZJcWH/UgYK2DNP2y0mxXSWulYIuqSds 9efc2EQmu93W5knj6FygiZnsCjE2K+9f4XtaIAq0UUtEgnlE1treAKKKOGtLkug/ F/Pk5j9uOeCIp7VW3zHnFyy/8LU11cMCoF5/k9MNwv8GDmawyV8Q5FGEZx8= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org