$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/551d781f-fbeb-4cb9-b928-c673b571b3bc.roa File: 551d781f-fbeb-4cb9-b928-c673b571b3bc.roa (raw, json) Hash identifier: InMklHZUuGov8WunaNMpaWYZgrVRhByH3P8cNi5E65w= Subject key identifier: 49:98:8F:59:04:90:07:E5:64:05:D4:2B:0E:1E:7F:B6:A8:E6:28:D5 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 797B58BDB2261782CF16E624A402078C0E060AA9 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/551d781f-fbeb-4cb9-b928-c673b571b3bc.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 170.178.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:7b:58:bd:b2:26:17:82:cf:16:e6:24:a4:02:07:8c:0e:06:0a:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=e543abc3582bb2503f85e21de0e7ed9670ed0cab38ce47b9af2f2339da69aab0, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:b8:f6:71:e8:f0:02:46:7d:dc:c2:8a:5c:da: e5:a3:37:53:79:36:be:59:49:66:9b:5e:ed:7d:bb: be:dc:86:a8:41:a8:67:d9:c0:c4:d5:79:1f:e4:45: e1:13:26:ed:07:16:bc:42:a8:e9:24:e0:4e:32:ca: 89:61:e9:59:d7:57:36:c0:3f:00:c0:c3:ec:cf:c8: 40:9f:8a:82:ba:1b:23:c9:27:68:61:e5:47:85:96: 81:b4:8c:68:6d:a2:fa:fc:5b:d6:52:94:c3:07:06: 51:95:82:66:bc:f6:4e:98:99:67:ce:98:64:67:5b: e2:ac:cb:40:89:9d:1f:99:1c:6f:53:4a:4a:f1:d1: 20:9d:14:0a:77:66:39:7c:37:2a:31:a6:ff:f9:1a: f3:58:5e:77:ad:27:e0:20:02:fc:af:a5:e6:89:5d: 8c:58:4a:07:6b:18:2c:61:b4:de:05:c7:1f:0e:3b: 22:9b:7b:7f:93:0c:c6:75:c8:0d:06:15:c3:a4:dc: 0a:bf:dc:3b:e1:a1:0c:fd:76:50:6a:92:86:78:1f: ca:96:de:90:8b:5a:3d:12:20:1d:66:53:5a:bd:94: ad:61:74:e1:96:91:3b:a5:cf:f0:88:be:0b:ae:98: a3:a2:f5:5b:19:fc:ee:71:45:21:91:ab:b3:6f:1e: 44:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:98:8F:59:04:90:07:E5:64:05:D4:2B:0E:1E:7F:B6:A8:E6:28:D5 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/551d781f-fbeb-4cb9-b928-c673b571b3bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.178.192.0/19 Signature Algorithm: sha256WithRSAEncryption 1e:fd:9e:8c:fa:b0:13:04:1c:29:5f:27:0e:e3:8a:80:11:46: 07:59:37:c5:ab:e0:16:e4:b9:91:56:ee:34:d7:e1:20:7a:fd: d7:44:76:01:23:4d:9b:9b:04:83:14:9d:56:cc:75:35:48:ec: 30:dd:4f:40:8c:b2:e5:b7:87:20:4e:a2:9b:9a:7e:d8:9e:ba: 16:fd:f6:3a:35:e5:16:9c:5e:1c:f7:3f:78:55:b4:ee:19:72: c7:e2:0d:0a:82:66:b9:27:1b:04:0d:21:02:53:88:e2:cf:dc: f2:1b:41:92:8d:52:6c:91:8b:92:f0:93:3b:3a:ef:d3:f5:4f: 04:98:9c:e8:62:52:24:e4:bc:e5:30:bb:5d:38:67:04:fc:88: b0:49:fa:1a:60:27:75:b1:bf:64:ad:40:e9:43:ba:a0:6a:96: 8e:fb:c9:5a:28:08:bf:d2:14:91:77:0b:09:23:97:3d:1f:2c: 79:44:74:b4:51:fd:96:f9:bd:26:ff:c5:ee:cf:9a:6b:ee:b8: e2:53:bd:a3:78:a2:bd:24:34:fa:3b:ff:1d:d8:ef:8a:e0:3c: dc:0b:01:df:3d:e8:db:37:4e:22:b1:b8:be:58:ea:bb:47:32: 62:59:f1:8d:18:4a:b9:46:6b:f7:e2:90:4e:94:6b:27:d9:01: a7:26:6b:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeXtYvbImF4LPFuYkpAIHjA4GCqkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTQzYWJjMzU4MmJiMjUwM2Y4NWUyMWRlMGU3ZWQ5Njcw ZWQwY2FiMzhjZTQ3YjlhZjJmMjMzOWRhNjlhYWIwMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0uPZx6PACRn3cwopc2uWjN1N5Nr5ZSWabXu19u77chqhB qGfZwMTVeR/kReETJu0HFrxCqOkk4E4yyolh6VnXVzbAPwDAw+zPyECfioK6GyPJ J2hh5UeFloG0jGhtovr8W9ZSlMMHBlGVgma89k6YmWfOmGRnW+Ksy0CJnR+ZHG9T Skrx0SCdFAp3Zjl8Nyoxpv/5GvNYXnetJ+AgAvyvpeaJXYxYSgdrGCxhtN4Fxx8O OyKbe3+TDMZ1yA0GFcOk3Aq/3DvhoQz9dlBqkoZ4H8qW3pCLWj0SIB1mU1q9lK1h dOGWkTulz/CIvguumKOi9VsZ/O5xRSGRq7NvHkTPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSZiPWQSQB+VkBdQrDh5/tqjmKNUwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzU1MWQ3ODFmLWZiZWItNGNiOS1iOTI4LWM2NzNiNTcxYjNiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWqssAwDQYJKoZIhvcNAQELBQADggEBAB79noz6sBMEHClfJw7jioARRgdZ N8Wr4BbkuZFW7jTX4SB6/ddEdgEjTZubBIMUnVbMdTVI7DDdT0CMsuW3hyBOopua ftieuhb99jo15RacXhz3P3hVtO4ZcsfiDQqCZrknGwQNIQJTiOLP3PIbQZKNUmyR i5Lwkzs679P1TwSYnOhiUiTkvOUwu104ZwT8iLBJ+hpgJ3Wxv2StQOlDuqBqlo77 yVooCL/SFJF3Cwkjlz0fLHlEdLRR/Zb5vSb/xe7PmmvuuOJTvaN4or0kNPo7/x3Y 74rgPNwLAd896Ns3TiKxuL5Y6rtHMmJZ8Y0YSrlGa/fikE6UayfZAacma4U= -----END CERTIFICATE-----Generated at Wed May 8 23:47:45 2024 by rpki-client on console-ams.rpki-client.org