$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/558755c2-9e29-4e76-b61a-1bc46c9a1949.roa File: 558755c2-9e29-4e76-b61a-1bc46c9a1949.roa (raw, json) Hash identifier: JSvdm3UJXWU0aVgtRJlHYN3CQF8ffVGO5NcD4PhTgaQ= Subject key identifier: 89:48:E1:FE:33:AA:E6:8C:B7:24:AB:4E:5F:CD:20:0F:33:DD:17:8C Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 78846F7296DC907D6364EB9182CA553F92FA3EAD Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/558755c2-9e29-4e76-b61a-1bc46c9a1949.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 198.52.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:84:6f:72:96:dc:90:7d:63:64:eb:91:82:ca:55:3f:92:fa:3e:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=490be8b7d6201b80b7ef60e2f7f59f2c246dbfa325f78092ccd0d163afb83cc1, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:44:3c:dd:91:00:9d:6f:60:6d:3e:99:da:56: b4:2f:1e:69:38:45:76:04:85:38:5f:f2:4e:ad:7a: 0b:16:7a:54:2a:37:2f:92:c5:5c:41:c1:d7:bd:81: 1a:da:d6:e6:b3:c9:77:6d:36:78:b4:27:98:44:c2: bd:54:5d:76:c9:99:d7:eb:37:40:75:6d:38:0b:19: ed:30:ae:bf:4e:4f:7f:1a:58:fb:93:2d:61:3a:7b: a1:a9:37:73:75:24:d8:06:fe:db:7f:eb:60:a5:23: 68:cb:44:41:d8:bb:8a:3d:b8:56:5b:5e:5f:7b:d0: 43:fa:9d:8b:2f:34:48:df:49:2f:8e:dc:73:85:fd: 92:01:25:6d:12:e5:92:56:ae:34:40:38:a0:cb:49: 1b:9e:e3:70:47:3f:3a:b0:c2:c0:a5:d6:6e:7d:d3: 80:41:4c:54:f2:47:a9:10:7f:48:97:b7:b3:a3:8d: c7:64:25:81:c4:b7:c7:19:ff:5d:82:c5:78:78:1e: 34:67:5c:35:8a:be:ec:d6:54:48:41:cd:b6:20:03: d2:10:4b:6e:1d:92:ea:12:0a:a3:66:be:65:d1:de: f0:aa:69:4b:93:9f:80:8b:f7:0d:5e:95:bb:69:96: 8a:42:db:47:44:db:fb:e6:e2:5f:9b:ed:b2:77:3f: f9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:48:E1:FE:33:AA:E6:8C:B7:24:AB:4E:5F:CD:20:0F:33:DD:17:8C X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/558755c2-9e29-4e76-b61a-1bc46c9a1949.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.52.96.0/19 Signature Algorithm: sha256WithRSAEncryption 4f:7b:67:ba:67:f1:e4:49:8f:35:bd:96:73:0d:23:0c:b6:b9: 3d:c5:5c:e0:2e:96:2f:d4:9e:2b:e4:5d:7a:70:8d:f8:66:15: c3:85:4a:4c:df:34:92:39:be:e7:fa:fc:0e:67:b1:e3:9b:0b: 74:7a:06:af:cd:80:3a:fe:b3:bb:76:86:8d:d2:27:fc:ee:b8: 94:dd:f1:f7:18:89:fa:67:df:f6:03:cf:48:f1:ff:a4:30:4d: ee:8c:89:8f:64:99:37:a2:47:0a:57:03:e9:a4:97:76:9c:70: 20:ca:94:d5:4f:ab:20:72:1d:5d:c3:4d:d6:99:51:57:25:4b: 7e:8f:06:5d:07:72:9b:29:7d:5d:9b:5e:fc:3e:bd:9a:1e:4c: e0:46:d1:82:bb:22:a2:dd:24:36:b0:02:4e:1e:7e:2e:2d:e9: 5a:6c:54:4e:07:53:bc:71:26:a3:56:2c:1f:75:1a:a7:df:ac: d0:d8:a2:a8:86:e7:f9:fb:4f:16:9c:86:d6:c4:b2:4f:9d:6a: b4:2a:9b:2d:3d:68:83:5f:3f:7f:64:ef:9a:fa:62:ab:99:3f: 7f:3f:c2:8b:7b:00:97:a6:e7:70:f4:0d:52:e9:56:a7:6d:8d: 9b:3e:35:ef:d4:b4:63:78:c5:a2:27:9d:93:bd:31:ec:da:11: 29:10:e4:6a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeIRvcpbckH1jZOuRgspVP5L6Pq0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTBiZThiN2Q2MjAxYjgwYjdlZjYwZTJmN2Y1OWYyYzI0 NmRiZmEzMjVmNzgwOTJjY2QwZDE2M2FmYjgzY2MxMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDARDzdkQCdb2BtPpnaVrQvHmk4RXYEhThf8k6tegsWelQq Ny+SxVxBwde9gRra1uazyXdtNni0J5hEwr1UXXbJmdfrN0B1bTgLGe0wrr9OT38a WPuTLWE6e6GpN3N1JNgG/tt/62ClI2jLREHYu4o9uFZbXl970EP6nYsvNEjfSS+O 3HOF/ZIBJW0S5ZJWrjRAOKDLSRue43BHPzqwwsCl1m5904BBTFTyR6kQf0iXt7Oj jcdkJYHEt8cZ/12CxXh4HjRnXDWKvuzWVEhBzbYgA9IQS24dkuoSCqNmvmXR3vCq aUuTn4CL9w1elbtplopC20dE2/vm4l+b7bJ3P/kLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiUjh/jOq5oy3JKtOX80gDzPdF4wwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzU1ODc1NWMyLTllMjktNGU3Ni1iNjFhLTFiYzQ2YzlhMTk0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGNGAwDQYJKoZIhvcNAQELBQADggEBAE97Z7pn8eRJjzW9lnMNIwy2uT3F XOAuli/UnivkXXpwjfhmFcOFSkzfNJI5vuf6/A5nseObC3R6Bq/NgDr+s7t2ho3S J/zuuJTd8fcYifpn3/YDz0jx/6QwTe6MiY9kmTeiRwpXA+mkl3accCDKlNVPqyBy HV3DTdaZUVclS36PBl0HcpspfV2bXvw+vZoeTOBG0YK7IqLdJDawAk4efi4t6Vps VE4HU7xxJqNWLB91GqffrNDYoqiG5/n7TxachtbEsk+darQqmy09aINfP39k75r6 YquZP38/wot7AJem53D0DVLpVqdtjZs+Ne/UtGN4xaInnZO9MezaESkQ5Go= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org