$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/31761a5e-0700-4e58-b178-fa30794a314e.roa File: 31761a5e-0700-4e58-b178-fa30794a314e.roa (raw, json) Hash identifier: lYvGf020wzCD/ejTJz01eesC5JYpO5Jo2ejT+/hxfMw= Subject key identifier: D5:A6:68:D9:29:33:33:51:4E:F9:CA:31:D7:6E:CB:56:82:B7:EA:A8 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 4EB9FF17BF16DCD2C659082F682DC780BE31B5A1 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/31761a5e-0700-4e58-b178-fa30794a314e.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 96.45.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:b9:ff:17:bf:16:dc:d2:c6:59:08:2f:68:2d:c7:80:be:31:b5:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=6fe702fe18e6627451ae7f6cf3eececfff4d58f112bfb15c6d53578d9d286b30, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3b:9c:d8:e4:d3:81:06:e5:9d:d8:61:ea:15: f9:06:cf:30:90:36:ab:01:1a:af:c1:79:66:00:c3: 62:b9:e8:c1:ad:2e:b5:1d:a9:0f:c0:48:9e:76:64: 37:cc:05:0f:c7:63:76:77:39:24:6f:ec:c2:f0:da: 86:93:02:17:14:84:7f:2e:1d:4b:cc:8e:2b:1e:90: 5f:18:78:d5:e3:2b:85:40:36:69:b6:35:81:8b:5a: 97:d3:26:66:0e:2e:9a:43:2b:74:c8:98:8b:16:0e: 4d:c0:da:11:ba:2e:bb:3e:42:6f:f6:df:7a:12:e5: b0:ea:b3:28:b6:54:3d:01:60:d6:0a:6b:88:6d:3f: f0:df:db:aa:87:00:3c:bf:db:40:35:3e:01:20:de: 7b:6f:db:4e:95:6d:51:1e:33:3d:72:d3:9a:1d:ee: c2:d0:41:aa:67:98:b8:38:7a:12:f0:c1:63:4f:64: 09:bd:55:2a:c8:40:f6:9f:2d:c6:47:ce:a9:86:ac: b8:07:1b:6e:36:84:ca:f2:ff:52:38:32:d1:bd:09: 53:6d:00:6a:e4:95:33:a7:99:5d:05:6f:d5:71:a6: 44:fb:8d:55:e9:02:84:62:4a:6b:2f:98:a0:d5:0b: 2f:6e:58:74:7c:d5:1f:e6:2f:69:4f:6f:95:91:6b: 04:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A6:68:D9:29:33:33:51:4E:F9:CA:31:D7:6E:CB:56:82:B7:EA:A8 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/31761a5e-0700-4e58-b178-fa30794a314e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.45.160.0/20 Signature Algorithm: sha256WithRSAEncryption 8a:6a:5c:53:1d:80:f1:df:83:24:70:c2:86:49:71:42:60:4c: 8d:8a:85:28:f1:7f:01:7d:a3:0d:6d:5f:bd:6a:1b:2a:4d:a7: b3:1c:f6:4d:35:16:25:b9:4f:db:05:70:b7:71:3f:d0:1c:33: f2:81:61:7c:f8:24:4b:9a:ae:80:12:f7:8d:53:ce:1c:96:a7: 4a:85:62:a6:06:f5:d7:e6:fd:51:1f:92:dc:00:f6:71:53:db: 48:99:a8:31:f2:86:c5:42:de:48:99:54:52:17:00:48:b7:2b: d6:1a:a5:06:9e:5a:2e:d9:17:7d:3a:df:a2:d6:3a:56:2e:61: f4:30:e8:f5:f7:7d:88:81:9e:b4:53:bb:ae:b8:4a:33:51:8f: 5c:8e:8b:07:7d:65:ca:72:7e:54:19:a9:a2:88:bc:da:64:fd: 69:bb:68:ec:51:4f:50:c9:ec:28:e4:79:0e:ed:15:75:52:b7: ce:16:ba:dc:8f:62:41:9e:94:d1:1a:3d:5c:a2:f6:95:38:47: eb:e1:cb:37:df:7b:f7:01:6d:a5:62:0e:b8:e3:b4:93:a8:f6: c1:04:12:f1:b9:07:d0:c7:07:22:bf:91:3e:d3:28:f3:e9:f9: 00:0c:81:0b:f0:4b:9a:fd:91:93:1f:d6:f4:6a:93:ea:d6:f9: d9:8c:7e:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTrn/F78W3NLGWQgvaC3HgL4xtaEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZmU3MDJmZTE4ZTY2Mjc0NTFhZTdmNmNmM2VlY2VjZmZm NGQ1OGYxMTJiZmIxNWM2ZDUzNTc4ZDlkMjg2YjMwMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1O5zY5NOBBuWd2GHqFfkGzzCQNqsBGq/BeWYAw2K56MGt LrUdqQ/ASJ52ZDfMBQ/HY3Z3OSRv7MLw2oaTAhcUhH8uHUvMjisekF8YeNXjK4VA Nmm2NYGLWpfTJmYOLppDK3TImIsWDk3A2hG6Lrs+Qm/233oS5bDqsyi2VD0BYNYK a4htP/Df26qHADy/20A1PgEg3ntv206VbVEeMz1y05od7sLQQapnmLg4ehLwwWNP ZAm9VSrIQPafLcZHzqmGrLgHG242hMry/1I4MtG9CVNtAGrklTOnmV0Fb9VxpkT7 jVXpAoRiSmsvmKDVCy9uWHR81R/mL2lPb5WRawRjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1aZo2SkzM1FO+cox127LVoK36qgwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzMxNzYxYTVlLTA3MDAtNGU1OC1iMTc4LWZhMzA3OTRhMzE0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARgLaAwDQYJKoZIhvcNAQELBQADggEBAIpqXFMdgPHfgyRwwoZJcUJgTI2K hSjxfwF9ow1tX71qGypNp7Mc9k01FiW5T9sFcLdxP9AcM/KBYXz4JEuaroAS941T zhyWp0qFYqYG9dfm/VEfktwA9nFT20iZqDHyhsVC3kiZVFIXAEi3K9YapQaeWi7Z F30636LWOlYuYfQw6PX3fYiBnrRTu664SjNRj1yOiwd9ZcpyflQZqaKIvNpk/Wm7 aOxRT1DJ7CjkeQ7tFXVSt84WutyPYkGelNEaPVyi9pU4R+vhyzffe/cBbaViDrjj tJOo9sEEEvG5B9DHByK/kT7TKPPp+QAMgQvwS5r9kZMf1vRqk+rW+dmMfhU= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org