$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/528d6246-b057-4f10-866e-d63996537e57.roa File: 528d6246-b057-4f10-866e-d63996537e57.roa (raw, json) Hash identifier: erey2Hufm7ymY8pDKrAPaEeW1ZBNqDi58oEGq8Ofnjg= Subject key identifier: 7E:19:31:62:35:A8:55:66:E9:0D:AD:85:A3:58:C3:2D:E3:3A:04:E9 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 7F2F74A892D1FC10E2DC01B82342C23DB443632C Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/528d6246-b057-4f10-866e-d63996537e57.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 205.172.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:2f:74:a8:92:d1:fc:10:e2:dc:01:b8:23:42:c2:3d:b4:43:63:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=0390c5d3463d633bb078ca66c2d7a6bbfde8f4b2743b93198d02e5fc2ee8a53c, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:50:53:f7:03:30:76:27:a7:77:3a:bd:52:9b: ff:bf:17:6b:d0:26:da:59:1a:33:02:82:76:76:4a: db:44:65:c9:5a:dd:09:48:2f:85:9f:be:86:59:b7: 22:05:ae:10:ea:0d:2a:b2:06:93:76:84:b3:a3:57: 56:72:04:22:0b:79:b2:48:46:ff:08:bd:73:5f:db: 86:25:cf:0f:1b:f8:b1:52:37:62:be:1a:47:40:47: 3b:dd:3c:cb:c1:11:5e:ee:98:82:2a:64:07:7d:6e: 82:9d:5a:a6:f0:f8:25:4f:2d:d5:41:22:77:bd:a1: f8:55:39:64:d5:21:7a:0b:1a:00:62:8b:d0:62:a6: e0:48:71:a1:96:e3:fc:7b:a0:3a:e4:63:ed:1a:89: 2b:1e:97:f2:58:52:d1:ae:60:28:24:a7:3d:bb:ce: 5d:26:67:fa:9b:fe:3d:c8:33:75:ff:b5:dc:9f:f8: 47:12:8a:b9:1c:92:77:ef:fd:6d:00:1b:5d:62:79: d1:89:39:d5:aa:33:14:13:5c:05:a6:cc:ab:bd:9e: 90:7a:04:b9:48:a9:4c:58:45:5c:34:aa:26:17:12: b0:11:53:08:12:94:23:1b:23:0e:fc:43:0f:80:c7: d2:35:72:4a:00:f2:4b:d8:c3:3c:79:47:ef:c6:09: d4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:19:31:62:35:A8:55:66:E9:0D:AD:85:A3:58:C3:2D:E3:3A:04:E9 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/528d6246-b057-4f10-866e-d63996537e57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.172.176.0/22 Signature Algorithm: sha256WithRSAEncryption 80:d1:ef:f6:fd:3a:62:1f:e8:e9:e4:b0:3b:bc:99:8f:c7:f2: 6d:55:43:3e:f5:ad:37:97:77:8f:fb:6d:ac:ab:5d:ba:3d:3a: 66:fb:73:fd:8a:7a:65:bc:ae:91:19:78:49:4f:bc:ad:bc:72: 21:12:4d:ac:a1:95:aa:a3:c6:3e:13:19:60:61:32:04:f2:94: ed:53:92:b1:b4:51:b0:10:89:5c:a2:48:d6:3d:3b:09:55:89: ab:12:64:e6:53:f9:e9:32:da:92:a1:04:bd:29:aa:0f:5d:e1: 3a:e0:b0:86:78:e3:7b:15:be:29:15:1a:00:41:f1:17:c9:31: 9d:fc:63:a5:80:9c:9a:ce:21:06:12:5d:4d:48:0e:e7:b6:4c: 17:0b:21:14:a6:9d:74:9e:8d:61:50:52:a9:dc:45:38:6c:c0: 9c:b8:fe:41:75:9f:f5:fb:d2:73:24:1f:da:2e:4b:fb:28:36: 61:50:ca:37:31:30:43:18:a6:7a:56:0c:29:79:1f:07:e1:e3: 86:ad:f4:7c:d6:e3:f2:b1:48:4b:0f:d9:0e:2a:2c:53:5c:e3: 24:4a:ff:df:55:98:7c:30:96:7c:50:03:5a:90:88:36:df:ea: 4e:6d:16:5a:5a:44:48:f2:3e:c8:95:e2:9f:bf:55:dc:d9:2d: 7f:ab:6f:0f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfy90qJLR/BDi3AG4I0LCPbRDYywwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzkwYzVkMzQ2M2Q2MzNiYjA3OGNhNjZjMmQ3YTZiYmZk ZThmNGIyNzQzYjkzMTk4ZDAyZTVmYzJlZThhNTNjMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdUFP3AzB2J6d3Or1Sm/+/F2vQJtpZGjMCgnZ2SttEZcla 3QlIL4WfvoZZtyIFrhDqDSqyBpN2hLOjV1ZyBCILebJIRv8IvXNf24Ylzw8b+LFS N2K+GkdARzvdPMvBEV7umIIqZAd9boKdWqbw+CVPLdVBIne9ofhVOWTVIXoLGgBi i9BipuBIcaGW4/x7oDrkY+0aiSsel/JYUtGuYCgkpz27zl0mZ/qb/j3IM3X/tdyf +EcSirkcknfv/W0AG11iedGJOdWqMxQTXAWmzKu9npB6BLlIqUxYRVw0qiYXErAR UwgSlCMbIw78Qw+Ax9I1ckoA8kvYwzx5R+/GCdTtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfhkxYjWoVWbpDa2Fo1jDLeM6BOkwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzUyOGQ2MjQ2LWIwNTctNGYxMC04NjZlLWQ2Mzk5NjUzN2U1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALNrLAwDQYJKoZIhvcNAQELBQADggEBAIDR7/b9OmIf6OnksDu8mY/H8m1V Qz71rTeXd4/7bayrXbo9Omb7c/2KemW8rpEZeElPvK28ciESTayhlaqjxj4TGWBh MgTylO1TkrG0UbAQiVyiSNY9OwlViasSZOZT+eky2pKhBL0pqg9d4TrgsIZ443sV vikVGgBB8RfJMZ38Y6WAnJrOIQYSXU1IDue2TBcLIRSmnXSejWFQUqncRThswJy4 /kF1n/X70nMkH9ouS/soNmFQyjcxMEMYpnpWDCl5Hwfh44at9HzW4/KxSEsP2Q4q LFNc4yRK/99VmHwwlnxQA1qQiDbf6k5tFlpaREjyPsiV4p+/VdzZLX+rbw8= -----END CERTIFICATE-----Generated at Wed May 8 23:47:45 2024 by rpki-client on console-ams.rpki-client.org