$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/2c6b5cab-535d-421c-a4b6-8b3e972531f3.roa File: 2c6b5cab-535d-421c-a4b6-8b3e972531f3.roa (raw, json) Hash identifier: pAhZxmy9W7KxciwxFB79PB9rIUYs8qh4IcJ4TaMuFKI= Subject key identifier: 90:F7:AC:C3:C7:E5:FD:8F:7F:67:E2:04:0D:45:44:7D:1F:3F:59:55 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 4C61EDF3314B5707A67EB6018B3986894337DFA9 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/2c6b5cab-535d-421c-a4b6-8b3e972531f3.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 108.166.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:61:ed:f3:31:4b:57:07:a6:7e:b6:01:8b:39:86:89:43:37:df:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=f86bd30fedf16f3f2de81523d4462492fc6edbf7dec456327ae1573b84de6731, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:36:93:31:05:5e:d8:5a:bb:ce:57:51:71:51: e2:10:9a:39:93:40:28:f0:87:0b:68:7d:f8:4e:9a: d9:97:81:4f:07:03:58:45:98:1b:04:8c:6f:b1:87: 60:1b:0d:c0:f7:3e:c8:06:8b:d1:58:8a:32:06:45: b8:0c:78:6f:d3:ea:ca:62:1b:22:cf:6f:b3:a9:f6: 23:ed:2e:77:a6:8e:ef:2c:23:bb:0a:af:42:5e:58: c2:83:4e:1b:b9:c4:c2:a6:a7:b3:0e:82:a4:85:3b: 1a:03:ac:b3:5f:fa:69:3e:2a:9c:0f:a4:a4:6b:01: 28:13:03:0a:d8:92:63:d8:c7:52:92:70:b0:74:eb: 2b:10:69:0a:45:c5:76:2b:68:91:78:2c:09:1d:aa: 69:6e:e8:4f:df:bc:b4:94:ec:ff:e6:e5:e0:42:3f: de:38:1b:b2:24:6f:2e:96:c7:6e:56:ad:41:ef:13: 75:89:b9:7d:02:73:20:a6:01:c6:43:57:d5:f0:b5: 6c:df:5d:b9:07:b6:b4:b2:03:45:8d:e1:5c:67:ef: 1b:32:0f:c5:e4:a9:02:17:7e:8e:b4:ed:a4:6a:eb: f2:ff:b2:d3:6a:b2:65:6a:bf:53:f6:59:c9:72:9a: f9:91:b6:ed:63:e3:bc:0d:73:04:a8:fb:b5:a5:3c: 6d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F7:AC:C3:C7:E5:FD:8F:7F:67:E2:04:0D:45:44:7D:1F:3F:59:55 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/2c6b5cab-535d-421c-a4b6-8b3e972531f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.166.192.0/19 Signature Algorithm: sha256WithRSAEncryption 01:d7:9b:f9:83:70:d2:dc:93:ca:f1:da:61:a3:2b:0a:51:e4: 3d:c3:58:0c:52:b2:33:57:a7:56:7f:0c:a1:28:46:cb:f0:9b: f3:09:ab:29:a6:5a:e1:b4:a3:60:62:d8:48:91:ee:8b:49:b7: c8:13:f8:90:54:8d:68:11:c1:a1:11:2f:53:b8:20:72:65:2b: db:d9:e4:c9:41:b3:d6:26:67:e8:09:3e:52:16:86:55:03:25: e6:e4:e4:8f:93:10:a6:07:70:7c:ea:1c:c7:27:d4:b8:19:ce: 27:98:91:18:c0:ef:14:25:0e:8c:6a:1f:9e:9e:1e:fa:ea:9f: ed:1d:bf:73:ff:d5:92:71:9d:18:44:aa:93:6d:cd:37:e5:1b: e2:56:91:2b:9a:dd:78:23:36:47:69:f9:de:57:ff:b7:ce:9c: 9a:ca:ad:b6:36:10:0a:0b:38:9c:72:bb:80:16:65:7a:0e:d6: 09:74:c9:64:f2:2a:1b:4e:41:a5:dc:97:b9:26:fd:00:b9:58: d2:ed:d9:57:0f:96:c9:2d:aa:9c:1e:a9:f2:b2:23:37:5c:69: 97:5a:f8:7f:92:3c:f0:2c:fb:05:7c:c5:96:de:e0:1b:04:d4: 39:37:80:e7:69:4a:53:e8:77:27:85:a9:27:2c:9f:04:27:97: fe:d1:c8:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTGHt8zFLVwemfrYBizmGiUM336kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmODZiZDMwZmVkZjE2ZjNmMmRlODE1MjNkNDQ2MjQ5MmZj NmVkYmY3ZGVjNDU2MzI3YWUxNTczYjg0ZGU2NzMxMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4NpMxBV7YWrvOV1FxUeIQmjmTQCjwhwtoffhOmtmXgU8H A1hFmBsEjG+xh2AbDcD3PsgGi9FYijIGRbgMeG/T6spiGyLPb7Op9iPtLnemju8s I7sKr0JeWMKDThu5xMKmp7MOgqSFOxoDrLNf+mk+KpwPpKRrASgTAwrYkmPYx1KS cLB06ysQaQpFxXYraJF4LAkdqmlu6E/fvLSU7P/m5eBCP944G7Ikby6Wx25WrUHv E3WJuX0CcyCmAcZDV9XwtWzfXbkHtrSyA0WN4Vxn7xsyD8XkqQIXfo607aRq6/L/ stNqsmVqv1P2WclymvmRtu1j47wNcwSo+7WlPG0dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkPesw8fl/Y9/Z+IEDUVEfR8/WVUwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzJjNmI1Y2FiLTUzNWQtNDIxYy1hNGI2LThiM2U5NzI1MzFmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVspsAwDQYJKoZIhvcNAQELBQADggEBAAHXm/mDcNLck8rx2mGjKwpR5D3D WAxSsjNXp1Z/DKEoRsvwm/MJqymmWuG0o2Bi2EiR7otJt8gT+JBUjWgRwaERL1O4 IHJlK9vZ5MlBs9YmZ+gJPlIWhlUDJebk5I+TEKYHcHzqHMcn1LgZzieYkRjA7xQl DoxqH56eHvrqn+0dv3P/1ZJxnRhEqpNtzTflG+JWkSua3XgjNkdp+d5X/7fOnJrK rbY2EAoLOJxyu4AWZXoO1gl0yWTyKhtOQaXcl7km/QC5WNLt2VcPlsktqpweqfKy IzdcaZda+H+SPPAs+wV8xZbe4BsE1Dk3gOdpSlPodyeFqScsnwQnl/7RyKc= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org