$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/3be75ad7-e4d5-4636-b9ca-fcafe47ec558.roa File: 3be75ad7-e4d5-4636-b9ca-fcafe47ec558.roa (raw, json) Hash identifier: eJZ5+5urdgWzbqiQsxbAT34B33aUCaELB2M6O8UI49c= Subject key identifier: 1B:BE:A3:51:62:E3:87:30:2A:CD:EE:2E:B7:77:56:F3:A6:2C:32:26 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 3DA3D1B9E2552A61F5DE7B4299F892E550C23693 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/3be75ad7-e4d5-4636-b9ca-fcafe47ec558.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 66.152.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:a3:d1:b9:e2:55:2a:61:f5:de:7b:42:99:f8:92:e5:50:c2:36:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=61844f7659c5755b49efdbe38c764f3facefe5120b40fb9d13fdc2896fa4a7df, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6d:63:21:2c:b9:fc:c9:8e:c7:f6:eb:0a:ff: af:d9:80:24:2b:e2:4f:b0:1c:23:17:a6:d0:3d:ff: 83:28:1d:66:b0:5f:e7:ff:db:d4:82:5c:ec:1d:94: 39:94:9c:40:30:89:80:6b:ae:b6:f9:91:b7:ee:cb: 1d:06:f6:20:a2:ec:60:2d:5f:3a:e2:b0:d7:ca:72: bc:4e:2a:cd:a7:54:5f:cb:89:50:d2:e9:4c:3e:4a: 1e:00:5b:b9:92:a6:0d:47:28:08:1a:ef:e4:a1:be: f6:8b:f7:65:c7:d8:46:e9:87:26:22:bc:f0:18:b8: 47:d2:f0:65:54:39:80:a0:a5:5d:f6:9a:16:0b:9e: 95:76:1e:f9:93:7b:1f:47:71:ef:90:13:d1:fc:a4: 3d:14:34:84:e1:e0:e7:91:2b:a9:69:18:69:51:48: 45:24:bd:10:4d:ce:2f:05:3d:ff:1b:8c:24:70:ac: d2:50:23:e3:af:5b:f5:39:b9:4b:19:7c:6d:e8:79: d1:57:4e:ea:5d:b5:04:7c:9b:b6:b6:9d:b3:bc:48: ea:5a:7e:33:cd:a9:25:68:10:d2:b0:dc:a8:2a:c9: 6f:e2:22:2f:fb:16:c9:e5:b0:bb:34:ce:fc:4c:15: 92:d6:d2:a0:ac:44:0e:5a:04:33:56:0a:3f:99:f3: fa:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:BE:A3:51:62:E3:87:30:2A:CD:EE:2E:B7:77:56:F3:A6:2C:32:26 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/3be75ad7-e4d5-4636-b9ca-fcafe47ec558.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.152.181.0/24 Signature Algorithm: sha256WithRSAEncryption 82:c4:bc:ec:62:44:30:61:47:11:f6:50:35:e9:fa:5a:49:56: 47:a8:d0:61:c3:e7:1d:29:03:ca:e8:18:58:9b:6c:89:65:4c: 49:26:ee:55:67:c5:44:67:2d:14:b1:2e:46:a7:3a:e8:a3:5b: 37:35:d8:5b:86:5c:99:0d:f2:e4:b5:9f:74:fe:eb:be:e6:0f: ea:b4:ab:c7:2c:18:64:d6:94:1c:b4:99:76:67:61:87:31:b4: 80:d5:c3:f6:65:cf:64:37:83:5d:78:1a:c6:66:42:66:e7:84: cc:d9:a1:61:63:5a:d7:c2:dd:4d:28:11:1a:88:b7:a5:c0:02: db:9e:ed:05:7e:97:2f:4f:e9:29:e7:ad:18:d9:ba:dc:8c:3e: d9:f4:6a:2f:84:e3:93:9a:4b:16:8f:59:8d:4b:34:c9:88:c1: fc:55:20:49:ce:40:0b:f6:81:b5:54:48:11:2d:2e:47:66:d0: e7:3a:df:2b:37:47:9a:64:ef:f6:4c:ab:d3:49:48:03:87:61: 7f:8a:9f:c0:30:6e:e9:fa:20:2a:36:02:ca:fd:80:e1:18:c8: f8:17:bc:33:16:58:6d:b6:4d:c6:85:4b:cd:17:38:3a:bd:fe: 8b:9f:08:26:45:a7:68:37:cf:a4:10:4c:dd:72:9e:35:1c:c6: 1f:e8:6c:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPaPRueJVKmH13ntCmfiS5VDCNpMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTg0NGY3NjU5YzU3NTViNDllZmRiZTM4Yzc2NGYzZmFj ZWZlNTEyMGI0MGZiOWQxM2ZkYzI4OTZmYTRhN2RmMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlbWMhLLn8yY7H9usK/6/ZgCQr4k+wHCMXptA9/4MoHWaw X+f/29SCXOwdlDmUnEAwiYBrrrb5kbfuyx0G9iCi7GAtXzrisNfKcrxOKs2nVF/L iVDS6Uw+Sh4AW7mSpg1HKAga7+ShvvaL92XH2EbphyYivPAYuEfS8GVUOYCgpV32 mhYLnpV2HvmTex9Hce+QE9H8pD0UNITh4OeRK6lpGGlRSEUkvRBNzi8FPf8bjCRw rNJQI+OvW/U5uUsZfG3oedFXTupdtQR8m7a2nbO8SOpafjPNqSVoENKw3KgqyW/i Ii/7FsnlsLs0zvxMFZLW0qCsRA5aBDNWCj+Z8/rlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG76jUWLjhzAqze4ut3dW86YsMiYwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzNiZTc1YWQ3LWU0ZDUtNDYzNi1iOWNhLWZjYWZlNDdlYzU1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABCmLUwDQYJKoZIhvcNAQELBQADggEBAILEvOxiRDBhRxH2UDXp+lpJVkeo 0GHD5x0pA8roGFibbIllTEkm7lVnxURnLRSxLkanOuijWzc12FuGXJkN8uS1n3T+ 677mD+q0q8csGGTWlBy0mXZnYYcxtIDVw/Zlz2Q3g114GsZmQmbnhMzZoWFjWtfC 3U0oERqIt6XAAtue7QV+ly9P6SnnrRjZutyMPtn0ai+E45OaSxaPWY1LNMmIwfxV IEnOQAv2gbVUSBEtLkdm0Oc63ys3R5pk7/ZMq9NJSAOHYX+Kn8Awbun6ICo2Asr9 gOEYyPgXvDMWWG22TcaFS80XODq9/oufCCZFp2g3z6QQTN1ynjUcxh/obKs= -----END CERTIFICATE-----Generated at Fri May 3 00:07:10 2024 by rpki-client on console-ams.rpki-client.org