$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/30da754c-e379-4f87-a689-1b75fbd72179.roa File: 30da754c-e379-4f87-a689-1b75fbd72179.roa (raw, json) Hash identifier: Izsgt3bKWpiHGAspEpkpNDFgmHL1HwY/s4CGW13+xmM= Subject key identifier: DC:79:59:6A:91:7F:AF:9D:5A:E8:48:A8:DB:4C:58:4F:A9:03:99:70 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 052BBFB36136F41A6F3BD2F138F37F8F4A849464 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/30da754c-e379-4f87-a689-1b75fbd72179.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 208.64.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:2b:bf:b3:61:36:f4:1a:6f:3b:d2:f1:38:f3:7f:8f:4a:84:94:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=04db1f061a6b150faf25380808bfda1c0adce3f66dccc028e4e97dc8650b8d23, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:eb:bd:36:94:a1:43:03:16:51:8f:70:47:e1: 0c:9e:e9:b2:86:f5:1f:88:36:14:29:d5:99:79:e8: cb:d6:a0:11:df:c3:0a:2f:b7:8a:0b:89:09:30:1f: dc:f4:fb:ac:af:3a:42:c9:a9:df:ae:e2:20:92:9f: 5e:73:49:d2:4d:ec:f6:61:c8:82:0f:24:d4:f7:49: a9:a7:35:e3:94:41:ba:ac:79:50:e4:20:33:70:fb: 2f:0e:85:5b:99:b6:f8:9e:07:c3:66:05:37:4e:9b: 53:7c:cd:33:67:51:60:43:7c:02:ae:ff:ee:65:38: 39:69:c5:4c:1a:3b:b6:8c:07:d9:bf:fa:a3:f1:e6: 9d:6e:c1:c4:dd:fa:e4:80:05:db:1c:2a:a0:c0:cd: c4:b5:bd:eb:36:4e:3b:8d:ca:79:e8:dc:f3:07:b7: e5:74:a3:d9:23:51:69:26:8a:90:3a:cb:76:2f:53: 4f:18:96:85:d6:af:66:44:aa:9e:a7:be:ef:22:5d: b1:37:44:64:f3:3f:9e:91:a7:8a:b4:6c:1e:47:3a: dd:b1:8d:53:03:62:af:55:72:ae:ff:85:b9:47:b8: b1:be:cb:9d:79:ba:ec:d8:f5:a4:b3:30:5c:a3:43: 52:ea:22:dd:ee:85:23:3a:d0:b0:0b:ec:c4:f1:41: 50:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:79:59:6A:91:7F:AF:9D:5A:E8:48:A8:DB:4C:58:4F:A9:03:99:70 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/30da754c-e379-4f87-a689-1b75fbd72179.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.64.224.0/21 Signature Algorithm: sha256WithRSAEncryption 6e:55:8b:60:ba:1b:74:cd:6f:32:33:61:78:8a:7d:4a:73:61: 2c:0b:41:30:c9:57:77:85:67:d6:34:e2:cc:51:78:43:9a:2b: 9c:f1:d2:7f:2c:c1:78:21:0b:4d:f9:3c:fd:e1:c0:b8:99:79: a5:41:ba:5d:80:5e:c7:42:d9:fa:b2:90:d9:de:34:ce:d4:f9: 15:97:66:c4:7b:a0:f8:02:aa:3e:be:df:5d:fa:c4:54:7c:23: fc:13:49:12:c6:3a:04:66:b8:b4:51:3c:9f:78:c3:e7:bb:f2: 07:b6:a8:f5:43:80:e0:52:08:54:3e:a4:bc:f6:16:13:62:af: be:5e:18:0d:e2:ec:c6:c2:db:0e:52:b4:06:ad:e9:ed:e9:32: 7e:40:b8:2b:1a:30:2c:13:0d:e2:ca:56:e3:1b:79:3a:2e:11: 70:73:62:c4:14:d9:dd:5d:be:d4:16:48:f4:a0:46:80:5f:9a: f4:15:a2:21:62:d2:c9:db:69:2e:23:d9:36:3b:c4:f7:7c:45: 7a:5f:ce:e6:e5:35:9d:21:43:e8:8c:b3:48:5c:ca:f1:8b:03: e0:68:15:7d:22:56:24:a3:15:87:bf:bb:50:e9:74:e7:15:b1: ac:9a:ee:fb:ca:21:93:a5:b2:00:24:2c:6b:33:3e:ea:0d:08: 5d:ae:f1:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBSu/s2E29BpvO9LxOPN/j0qElGQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNGRiMWYwNjFhNmIxNTBmYWYyNTM4MDgwOGJmZGExYzBh ZGNlM2Y2NmRjY2MwMjhlNGU5N2RjODY1MGI4ZDIzMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCM6702lKFDAxZRj3BH4Qye6bKG9R+INhQp1Zl56MvWoBHf wwovt4oLiQkwH9z0+6yvOkLJqd+u4iCSn15zSdJN7PZhyIIPJNT3SamnNeOUQbqs eVDkIDNw+y8OhVuZtvieB8NmBTdOm1N8zTNnUWBDfAKu/+5lODlpxUwaO7aMB9m/ +qPx5p1uwcTd+uSABdscKqDAzcS1ves2TjuNynno3PMHt+V0o9kjUWkmipA6y3Yv U08YloXWr2ZEqp6nvu8iXbE3RGTzP56Rp4q0bB5HOt2xjVMDYq9Vcq7/hblHuLG+ y515uuzY9aSzMFyjQ1LqIt3uhSM60LAL7MTxQVClAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3HlZapF/r51a6Eio20xYT6kDmXAwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzMwZGE3NTRjLWUzNzktNGY4Ny1hNjg5LTFiNzVmYmQ3MjE3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPQQOAwDQYJKoZIhvcNAQELBQADggEBAG5Vi2C6G3TNbzIzYXiKfUpzYSwL QTDJV3eFZ9Y04sxReEOaK5zx0n8swXghC035PP3hwLiZeaVBul2AXsdC2fqykNne NM7U+RWXZsR7oPgCqj6+3136xFR8I/wTSRLGOgRmuLRRPJ94w+e78ge2qPVDgOBS CFQ+pLz2FhNir75eGA3i7MbC2w5StAat6e3pMn5AuCsaMCwTDeLKVuMbeTouEXBz YsQU2d1dvtQWSPSgRoBfmvQVoiFi0snbaS4j2TY7xPd8RXpfzublNZ0hQ+iMs0hc yvGLA+BoFX0iViSjFYe/u1DpdOcVsaya7vvKIZOlsgAkLGszPuoNCF2u8VM= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org