$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/2ce4daac-22af-4730-a30e-6a0b07f75a25.roa File: 2ce4daac-22af-4730-a30e-6a0b07f75a25.roa (raw, json) Hash identifier: Nfc2TQKjyYqcxrzzalGC3pc031eZGlM2mvDWnRVGJJQ= Subject key identifier: DC:69:B3:EA:13:9D:05:01:4F:C9:F3:73:C9:05:B9:58:FE:D5:D2:73 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 4EC4C1382E839DF3A09915F078DEB5A93F4F9EB8 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/2ce4daac-22af-4730-a30e-6a0b07f75a25.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 395681 IP address blocks: 66.152.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 08 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:c4:c1:38:2e:83:9d:f3:a0:99:15:f0:78:de:b5:a9:3f:4f:9e:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=040e110c3833993604c5a398ce13f89d05067d9dc3980daeb83f6de79964d95f, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5e:7e:01:d2:93:81:be:78:42:0b:f0:ac:b7: 87:a5:0e:3c:0b:d0:c8:8a:4c:0d:38:3a:0f:da:64: eb:fc:e9:55:e8:3c:f0:83:46:e3:e2:99:de:06:9d: 54:97:5a:20:de:36:ce:54:77:c1:77:e0:9f:b2:f6: f4:7a:24:d7:23:9e:92:49:0e:bb:b7:12:d3:ac:39: 68:55:9b:e5:dc:15:39:1b:7f:dc:a0:20:16:31:2f: 79:f0:20:3a:38:43:d7:eb:39:7a:c2:df:92:a1:a9: 90:30:2f:72:11:7a:4c:9d:1a:d1:2b:63:a0:bd:7b: a9:16:05:ec:9e:5d:9f:3e:ef:74:ac:da:58:16:90: a4:e6:da:72:cc:2c:dc:5b:d8:a5:f4:5f:27:d7:2f: 13:ff:66:a9:43:1a:6e:96:f1:22:b2:0c:f9:9d:75: db:72:d3:17:a2:05:2e:be:05:dd:cb:d7:f2:0e:be: be:63:4c:53:e7:a1:b5:86:78:ac:4e:2f:2c:8d:2c: 29:7f:9d:e3:26:22:8e:72:61:90:55:4d:b6:a1:6b: 6e:52:68:ab:cc:e8:53:8d:f4:27:81:32:f2:06:e3: ad:d5:c7:72:15:3f:2e:35:c2:ac:8f:6e:f2:f8:65: 79:cc:10:77:9e:3d:ca:82:b3:8b:7d:fb:cc:85:93: 81:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:69:B3:EA:13:9D:05:01:4F:C9:F3:73:C9:05:B9:58:FE:D5:D2:73 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/2ce4daac-22af-4730-a30e-6a0b07f75a25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.152.164.0/24 Signature Algorithm: sha256WithRSAEncryption 10:bc:fd:11:da:1a:65:ab:f2:0a:e4:e3:a6:bf:6d:55:52:2d: f8:f2:0b:60:b0:9f:f5:a0:11:1e:b7:59:e1:63:0d:6b:bc:e8: 1f:23:a3:fc:80:9c:b6:92:ae:71:a4:69:00:9e:fb:48:59:a2: 02:37:c2:9b:8b:df:32:c3:f1:8d:97:b1:6e:9d:61:f1:94:bb: 47:5d:ec:9f:b2:6a:3e:23:c8:c1:6b:71:fe:05:97:79:6d:03: 2d:83:48:38:9e:8c:06:27:b2:a5:7e:1a:89:a9:5b:00:7e:89: f2:26:34:eb:d2:b7:09:ae:fc:41:c7:9e:1a:5b:6e:19:7a:c7: 21:b5:c2:11:25:7b:98:c8:99:09:78:4a:1a:1e:7c:47:f4:1f: 9f:ce:82:b0:d1:9d:94:35:a0:04:39:90:03:0f:6c:de:f8:f8: 66:b6:b5:07:52:de:38:c8:02:63:98:46:fc:7e:c1:3c:ec:12: 3f:32:8a:b4:d3:d0:00:9f:59:ca:dc:01:d0:15:c6:c0:39:88: 10:e8:e4:75:56:59:04:52:7e:84:77:52:4b:c4:9c:2c:41:65: 64:28:83:d0:14:94:45:87:59:e8:17:eb:75:c4:2d:9e:46:f9: 39:22:d4:da:4d:3b:a7:b9:42:78:1b:9b:b1:eb:ca:49:96:2f: 1a:d2:be:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTsTBOC6DnfOgmRXweN61qT9PnrgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDBlMTEwYzM4MzM5OTM2MDRjNWEzOThjZTEzZjg5ZDA1 MDY3ZDlkYzM5ODBkYWViODNmNmRlNzk5NjRkOTVmMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyXn4B0pOBvnhCC/Cst4elDjwL0MiKTA04Og/aZOv86VXo PPCDRuPimd4GnVSXWiDeNs5Ud8F34J+y9vR6JNcjnpJJDru3EtOsOWhVm+XcFTkb f9ygIBYxL3nwIDo4Q9frOXrC35KhqZAwL3IRekydGtErY6C9e6kWBeyeXZ8+73Ss 2lgWkKTm2nLMLNxb2KX0XyfXLxP/ZqlDGm6W8SKyDPmdddty0xeiBS6+Bd3L1/IO vr5jTFPnobWGeKxOLyyNLCl/neMmIo5yYZBVTbaha25SaKvM6FON9CeBMvIG463V x3IVPy41wqyPbvL4ZXnMEHeePcqCs4t9+8yFk4GXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3Gmz6hOdBQFPyfNzyQW5WP7V0nMwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzJjZTRkYWFjLTIyYWYtNDczMC1hMzBlLTZhMGIwN2Y3NWEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABCmKQwDQYJKoZIhvcNAQELBQADggEBABC8/RHaGmWr8grk46a/bVVSLfjy C2Cwn/WgER63WeFjDWu86B8jo/yAnLaSrnGkaQCe+0hZogI3wpuL3zLD8Y2XsW6d YfGUu0dd7J+yaj4jyMFrcf4Fl3ltAy2DSDiejAYnsqV+GompWwB+ifImNOvStwmu /EHHnhpbbhl6xyG1whEle5jImQl4ShoefEf0H5/OgrDRnZQ1oAQ5kAMPbN74+Ga2 tQdS3jjIAmOYRvx+wTzsEj8yirTT0ACfWcrcAdAVxsA5iBDo5HVWWQRSfoR3UkvE nCxBZWQog9AUlEWHWegX63XELZ5G+Tki1NpNO6e5Qngbm7HrykmWLxrSvn8= -----END CERTIFICATE-----Generated at Tue May 7 01:57:25 2024 by rpki-client on console-fra.rpki-client.org