$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/484fd16f-3ea0-482d-8a18-ca583f177d04.roa File: 484fd16f-3ea0-482d-8a18-ca583f177d04.roa (raw, json) Hash identifier: vE9ixrQkons7w/1cLVG6yaWb1jPTBOC1WIg1FHmHO7k= Subject key identifier: 95:45:91:64:8C:3A:1B:91:06:EB:2F:FC:F4:06:F7:1E:8D:F4:D4:11 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 627B0482381B2A87131EE99362FA7AEE3D7B80B2 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/484fd16f-3ea0-482d-8a18-ca583f177d04.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 43.226.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:7b:04:82:38:1b:2a:87:13:1e:e9:93:62:fa:7a:ee:3d:7b:80:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=639dd87572b55d72314261ae087dffc9c8c9c6a02736a1f41e9c76b22e2865de, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:aa:14:8b:60:3e:b1:5b:1e:39:df:eb:49:69: 4e:16:c2:48:af:85:aa:96:8d:78:06:74:b8:19:d4: 68:84:cc:05:fe:d5:13:69:a7:16:f2:0c:f4:97:75: 50:13:e2:95:66:be:aa:70:d3:50:a9:0d:41:7f:de: 1f:c1:4c:cf:cb:bb:22:bf:bd:9b:7f:d1:07:52:56: 42:f1:19:bd:a5:41:d9:0e:82:86:99:7b:47:f0:67: 75:10:aa:7e:a2:e1:9f:2a:7c:88:97:11:94:30:75: 7e:ea:28:57:da:c6:0d:fd:8d:21:b5:44:dc:98:46: 66:e0:71:25:4e:bb:14:69:41:eb:8b:62:bf:de:69: 8d:39:d9:c6:cb:76:13:43:8c:d7:f0:c7:2d:fc:4b: 63:a4:a1:42:cb:63:21:08:28:34:f8:c3:c0:9a:76: 38:30:ca:a2:27:93:05:f7:ec:6a:3c:bc:c2:b1:98: 73:fd:85:58:0e:f6:74:8e:a1:76:c9:7f:90:b8:18: 74:bb:ef:47:71:c1:57:c9:e9:53:ac:45:90:64:65: ad:90:24:2b:2f:c9:60:bf:1e:f3:40:36:b0:09:47: 69:ad:2b:ef:e1:aa:44:65:3a:69:d0:fb:19:f6:93: be:2d:df:99:af:95:6b:63:62:49:7d:c6:26:cf:14: 7d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:45:91:64:8C:3A:1B:91:06:EB:2F:FC:F4:06:F7:1E:8D:F4:D4:11 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/484fd16f-3ea0-482d-8a18-ca583f177d04.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.24.0/24 Signature Algorithm: sha256WithRSAEncryption 54:0a:01:7b:6d:fe:16:c8:9e:3e:2c:b6:60:8b:9d:d2:18:b1: 07:83:ac:c6:c0:22:29:13:5a:4b:8e:97:9a:2f:bd:bc:32:20: 0f:83:d0:92:34:7a:38:73:bb:c1:89:31:36:ba:69:a7:4c:c5: be:76:71:e8:15:b4:31:11:74:d1:d5:76:b1:0e:9a:83:2c:49: 09:5c:51:62:fd:4f:10:61:98:2c:97:c3:33:09:3a:07:29:e0: 66:39:bb:12:fe:f7:0d:d1:6e:f3:d8:e6:64:16:5a:1c:83:8b: d4:0b:43:2d:cc:1d:1a:2d:69:5f:a1:a0:69:9e:5d:ed:f7:1f: bf:20:7a:87:24:65:dc:b0:39:12:a3:ec:9a:e2:b3:c6:ff:9e: fd:21:ac:38:af:49:9b:b1:2d:b6:11:5f:b5:02:b7:e9:8c:fe: 1a:c4:c7:15:d9:18:ca:31:0b:51:bb:49:d4:36:ad:f2:72:bf: ec:b6:78:82:f0:e9:16:a3:35:69:13:83:64:1a:47:18:84:e6: 07:a4:ea:90:42:17:a3:26:15:dc:f9:38:e7:65:7e:86:35:9c: b3:65:70:85:58:be:93:f2:0c:b8:a9:7f:82:7e:96:4b:14:9b: 2b:3a:b8:30:e7:60:5d:9d:0a:cc:4c:ab:25:59:c8:79:1f:12: 4f:51:9a:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYnsEgjgbKocTHumTYvp67j17gLIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MzlkZDg3NTcyYjU1ZDcyMzE0MjYxYWUwODdkZmZjOWM4 YzljNmEwMjczNmExZjQxZTljNzZiMjJlMjg2NWRlMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzqhSLYD6xWx453+tJaU4WwkivhaqWjXgGdLgZ1GiEzAX+ 1RNppxbyDPSXdVAT4pVmvqpw01CpDUF/3h/BTM/LuyK/vZt/0QdSVkLxGb2lQdkO goaZe0fwZ3UQqn6i4Z8qfIiXEZQwdX7qKFfaxg39jSG1RNyYRmbgcSVOuxRpQeuL Yr/eaY052cbLdhNDjNfwxy38S2OkoULLYyEIKDT4w8CadjgwyqInkwX37Go8vMKx mHP9hVgO9nSOoXbJf5C4GHS770dxwVfJ6VOsRZBkZa2QJCsvyWC/HvNANrAJR2mt K+/hqkRlOmnQ+xn2k74t35mvlWtjYkl9xibPFH1JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlUWRZIw6G5EG6y/89Ab3Ho301BEwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzQ4NGZkMTZmLTNlYTAtNDgyZC04YTE4LWNhNTgzZjE3N2QwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAr4hgwDQYJKoZIhvcNAQELBQADggEBAFQKAXtt/hbInj4stmCLndIYsQeD rMbAIikTWkuOl5ovvbwyIA+D0JI0ejhzu8GJMTa6aadMxb52cegVtDERdNHVdrEO moMsSQlcUWL9TxBhmCyXwzMJOgcp4GY5uxL+9w3RbvPY5mQWWhyDi9QLQy3MHRot aV+hoGmeXe33H78geockZdywORKj7Jris8b/nv0hrDivSZuxLbYRX7UCt+mM/hrE xxXZGMoxC1G7SdQ2rfJyv+y2eILw6RajNWkTg2QaRxiE5gek6pBCF6MmFdz5OOdl foY1nLNlcIVYvpPyDLipf4J+lksUmys6uDDnYF2dCsxMqyVZyHkfEk9Rmpw= -----END CERTIFICATE-----Generated at Thu May 9 15:20:43 2024 by rpki-client on console-fra.rpki-client.org