$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/35b5ff99-6710-4a59-87a7-3d72e194e45d.roa File: 35b5ff99-6710-4a59-87a7-3d72e194e45d.roa (raw, json) Hash identifier: aAL6lygy4Nil3LgeRTgivu2fS6/RUsYGriZhKo8Ir6I= Subject key identifier: CB:46:E7:F5:F2:ED:C7:7F:2E:E1:2E:35:43:75:9A:04:45:94:7A:FD Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 34F83F4EA37BA98189EBFB33E82739E5CEB2152A Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/35b5ff99-6710-4a59-87a7-3d72e194e45d.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 198.211.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:f8:3f:4e:a3:7b:a9:81:89:eb:fb:33:e8:27:39:e5:ce:b2:15:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=0aa63ca20ac37160f53ccd4939b78a53ef548481d4465ca04abfe257f589af69, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c0:0a:03:c7:95:82:e2:89:da:e3:9d:44:73: 00:f1:9f:94:1b:f5:b6:e0:00:09:f8:f4:1f:ad:a1: b0:ce:b3:43:9e:5e:62:43:6c:39:1f:a3:08:05:de: d8:c3:8d:e4:2c:b0:36:a8:4d:1e:d5:db:ba:44:36: c3:9b:4a:9d:29:8c:5f:b6:f8:7c:2f:d1:e1:32:08: a0:a6:d6:90:56:df:bc:1a:27:5d:57:49:36:ce:ba: 94:72:b7:1b:23:51:c4:f5:19:ab:94:e5:d6:06:d4: 48:09:68:0a:3f:cb:25:f9:1b:68:85:d5:2d:8e:51: 21:23:98:09:bf:e1:f2:a0:ea:cd:3a:8d:0b:37:56: 51:ff:1a:7d:f7:08:cf:c8:68:c5:b9:b5:b4:bc:97: 4d:56:cb:aa:40:41:3e:09:65:b1:eb:42:b4:40:82: 48:4b:66:85:53:9a:fd:5c:3f:70:1b:3c:a0:00:3c: 86:11:a0:f2:95:41:0b:e2:cb:ec:cf:88:92:3d:73: b2:e5:5f:99:3f:d6:38:4c:b6:ef:fd:d5:53:35:18: 82:d2:6b:96:d9:54:d5:fd:5f:08:63:84:de:4f:a6: d9:9a:c5:cf:28:21:4b:57:ce:93:a2:71:ab:c8:ae: a8:99:49:22:0c:3a:d5:c6:1a:04:fe:35:93:31:ca: 1d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:46:E7:F5:F2:ED:C7:7F:2E:E1:2E:35:43:75:9A:04:45:94:7A:FD X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/35b5ff99-6710-4a59-87a7-3d72e194e45d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.211.33.0/24 Signature Algorithm: sha256WithRSAEncryption 59:97:13:ea:6c:ac:1e:d5:bc:18:78:ea:ba:37:24:9f:8d:4b: 96:ae:0e:0a:84:f0:1d:bf:57:51:15:ed:d7:19:f8:43:35:b9: ae:33:0d:ab:72:9d:95:35:5a:42:ff:8d:b8:e1:c1:c0:5b:d0: 6c:56:a1:95:17:18:c6:92:4f:38:96:f3:5f:64:c4:c3:db:e2: 4d:fa:e9:ab:21:61:06:48:14:6c:24:5f:4f:ab:ea:90:6f:3f: 92:d2:5d:8e:1b:54:2c:6c:3c:e3:3b:27:de:b0:d9:f1:ef:c8: 04:b4:52:73:9a:be:fb:8b:4e:95:03:d8:73:5e:8c:d1:b1:5d: bf:81:b4:b3:54:fa:f2:e0:eb:a2:3a:08:36:8a:14:50:57:11: bb:b1:17:82:c9:0e:2d:56:1e:88:df:6a:37:ff:5c:38:f4:ac: cc:e3:51:27:af:59:fc:4c:e7:be:40:55:80:cb:2e:7e:e0:29: 0b:30:2d:e1:2f:82:9a:91:d6:75:6b:54:5f:88:37:97:49:df: f3:ac:7d:13:f5:37:58:db:39:68:20:d0:d0:db:5d:74:97:32: 9b:6f:9d:6a:10:ce:a8:2b:2a:ba:d6:b8:39:ae:97:3a:68:a8: d7:9b:4b:f6:97:7f:5c:57:a0:1f:8b:b8:91:c3:91:2d:a4:89: bf:1b:b4:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNPg/TqN7qYGJ6/sz6Cc55c6yFSowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYWE2M2NhMjBhYzM3MTYwZjUzY2NkNDkzOWI3OGE1M2Vm NTQ4NDgxZDQ0NjVjYTA0YWJmZTI1N2Y1ODlhZjY5MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYwAoDx5WC4ona451EcwDxn5Qb9bbgAAn49B+tobDOs0Oe XmJDbDkfowgF3tjDjeQssDaoTR7V27pENsObSp0pjF+2+Hwv0eEyCKCm1pBW37wa J11XSTbOupRytxsjUcT1GauU5dYG1EgJaAo/yyX5G2iF1S2OUSEjmAm/4fKg6s06 jQs3VlH/Gn33CM/IaMW5tbS8l01Wy6pAQT4JZbHrQrRAgkhLZoVTmv1cP3AbPKAA PIYRoPKVQQviy+zPiJI9c7LlX5k/1jhMtu/91VM1GILSa5bZVNX9XwhjhN5Pptma xc8oIUtXzpOicavIrqiZSSIMOtXGGgT+NZMxyh2PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUy0bn9fLtx38u4S41Q3WaBEWUev0wHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzM1YjVmZjk5LTY3MTAtNGE1OS04N2E3LTNkNzJlMTk0ZTQ1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADG0yEwDQYJKoZIhvcNAQELBQADggEBAFmXE+psrB7VvBh46ro3JJ+NS5au DgqE8B2/V1EV7dcZ+EM1ua4zDatynZU1WkL/jbjhwcBb0GxWoZUXGMaSTziW819k xMPb4k366ashYQZIFGwkX0+r6pBvP5LSXY4bVCxsPOM7J96w2fHvyAS0UnOavvuL TpUD2HNejNGxXb+BtLNU+vLg66I6CDaKFFBXEbuxF4LJDi1WHojfajf/XDj0rMzj USevWfxM575AVYDLLn7gKQswLeEvgpqR1nVrVF+IN5dJ3/OsfRP1N1jbOWgg0NDb XXSXMptvnWoQzqgrKrrWuDmulzpoqNebS/aXf1xXoB+LuJHDkS2kib8btO8= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org