$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5437a9ef-b10f-46d2-b80e-41759628dbef.roa File: 5437a9ef-b10f-46d2-b80e-41759628dbef.roa (raw, json) Hash identifier: s+yZbjZ/JMtNswLeWoLiLxkViVHCHTewR2rppLbeaWM= Subject key identifier: 3B:C2:70:AC:76:C3:02:42:5B:36:B5:E9:C0:31:90:31:EE:88:DF:F9 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 0E6064DC97C02B35E5F696C3D1EDC4ACA42B4121 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5437a9ef-b10f-46d2-b80e-41759628dbef.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 35916 IP address blocks: 204.15.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:60:64:dc:97:c0:2b:35:e5:f6:96:c3:d1:ed:c4:ac:a4:2b:41:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=6e6810363c2b83f530ec70e58ad42b868e7c473dd420ed2ee0f54cf57bd6dc89, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:25:bc:1f:0e:cd:29:2f:ff:42:49:55:48:83: 7d:4e:82:8d:1c:98:2a:e9:e2:36:9b:44:26:74:54: f9:3f:9d:b9:b5:c6:2b:3f:5a:24:0d:11:3a:9f:4f: 94:e2:9f:b6:e5:ed:41:55:20:41:ec:39:23:c7:57: a8:f4:9d:14:9e:cf:2d:a7:13:a9:4d:96:ec:ac:71: 3e:65:b2:92:71:5d:b0:18:35:20:8a:22:c6:56:6c: 49:52:48:5b:35:b0:0d:63:53:c0:5d:12:4f:c4:d4: 2b:a3:e5:ea:ec:53:79:89:dd:7b:59:02:67:b0:27: 1f:dc:3d:25:dc:68:1a:b2:5c:ca:0d:5f:1b:12:74: 42:0b:bc:b1:19:14:32:29:f7:ed:60:03:3b:01:4a: 9e:c6:d1:27:a5:1c:cf:0c:96:19:24:c9:8a:6f:a2: dd:2c:16:5d:9a:c2:89:23:af:c3:68:18:62:e9:f8: 6b:a8:e6:35:ef:c6:46:ae:19:a1:4c:f3:9c:c4:8f: 83:bd:77:dd:da:ed:05:42:78:55:bd:49:da:72:79: 18:69:69:db:f6:3a:32:e2:70:8f:39:4e:1e:51:18: 52:8f:13:70:0d:86:48:07:2b:79:b8:c0:bc:b8:49: 86:d9:45:5a:c5:b4:b0:61:24:e4:47:41:ef:6d:3b: 64:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:C2:70:AC:76:C3:02:42:5B:36:B5:E9:C0:31:90:31:EE:88:DF:F9 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5437a9ef-b10f-46d2-b80e-41759628dbef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.15.72.0/21 Signature Algorithm: sha256WithRSAEncryption 5d:28:79:ca:f6:03:86:9d:3b:7c:26:dd:72:0b:eb:bd:49:e3: 01:ac:d3:9f:f8:9e:3d:c8:cd:97:cd:1c:aa:6a:a4:fb:07:b9: 21:a3:97:d4:31:91:a1:91:58:66:03:5a:d5:1a:3f:22:03:19: dd:0b:d1:c6:50:f3:3e:67:36:b7:01:18:70:b3:1e:39:81:40: 52:ef:a3:be:3d:6a:e3:61:b7:8b:69:27:00:65:ce:47:4d:58: f3:d6:10:a1:ee:39:e1:8f:b3:d7:11:c7:11:53:f2:05:42:47: b1:1b:da:f8:22:81:20:96:cf:b6:f1:18:5a:f7:83:e4:5c:76: 80:30:dd:94:98:c3:32:9e:76:2e:65:b9:23:90:ad:42:85:55: ff:9b:ec:0e:55:2f:17:a2:27:e3:1d:e8:7e:35:de:08:a2:3d: 15:8e:99:d2:d3:7b:f9:54:3a:b5:78:35:3e:dc:88:74:ba:b1: ba:84:fb:18:fd:82:02:42:76:1b:2c:31:40:2e:4a:6a:de:b8: 6a:84:63:1d:e2:da:68:7a:b2:cc:cd:c5:8c:28:36:bb:8a:64: 71:c9:4c:a4:84:2e:fc:58:0f:f3:85:21:26:0c:44:65:29:ee: 9d:3f:d3:99:3c:f4:9a:30:ac:51:e3:d9:b2:9c:bf:db:bf:ec: 35:f7:d8:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDmBk3JfAKzXl9pbD0e3ErKQrQSEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTY4MTAzNjNjMmI4M2Y1MzBlYzcwZTU4YWQ0MmI4Njhl N2M0NzNkZDQyMGVkMmVlMGY1NGNmNTdiZDZkYzg5MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkJbwfDs0pL/9CSVVIg31Ogo0cmCrp4jabRCZ0VPk/nbm1 xis/WiQNETqfT5Tin7bl7UFVIEHsOSPHV6j0nRSezy2nE6lNluyscT5lspJxXbAY NSCKIsZWbElSSFs1sA1jU8BdEk/E1Cuj5ersU3mJ3XtZAmewJx/cPSXcaBqyXMoN XxsSdEILvLEZFDIp9+1gAzsBSp7G0SelHM8MlhkkyYpvot0sFl2awokjr8NoGGLp +Guo5jXvxkauGaFM85zEj4O9d93a7QVCeFW9SdpyeRhpadv2OjLicI85Th5RGFKP E3ANhkgHK3m4wLy4SYbZRVrFtLBhJORHQe9tO2TNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUO8JwrHbDAkJbNrXpwDGQMe6I3/kwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzU0MzdhOWVmLWIxMGYtNDZkMi1iODBlLTQxNzU5NjI4ZGJlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPMD0gwDQYJKoZIhvcNAQELBQADggEBAF0oecr2A4adO3wm3XIL671J4wGs 05/4nj3IzZfNHKpqpPsHuSGjl9QxkaGRWGYDWtUaPyIDGd0L0cZQ8z5nNrcBGHCz HjmBQFLvo749auNht4tpJwBlzkdNWPPWEKHuOeGPs9cRxxFT8gVCR7Eb2vgigSCW z7bxGFr3g+RcdoAw3ZSYwzKedi5luSOQrUKFVf+b7A5VLxeiJ+Md6H413giiPRWO mdLTe/lUOrV4NT7ciHS6sbqE+xj9ggJCdhssMUAuSmreuGqEYx3i2mh6sszNxYwo NruKZHHJTKSELvxYD/OFISYMRGUp7p0/05k89JowrFHj2bKcv9u/7DX32KQ= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org