$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/598aa660-61dc-4d6e-a84f-cfeeb49de624.roa File: 598aa660-61dc-4d6e-a84f-cfeeb49de624.roa (raw, json) Hash identifier: nB2eAA26paD5OXERHOuR42V329gcJiwngFB1XpwShC0= Subject key identifier: DF:3A:50:B5:81:58:27:E4:13:A0:AB:FF:4F:EC:B8:11:65:2F:C2:7B Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 4A90E0A5B55DEE9F7395038F1E050498887B611A Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/598aa660-61dc-4d6e-a84f-cfeeb49de624.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 43.226.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:90:e0:a5:b5:5d:ee:9f:73:95:03:8f:1e:05:04:98:88:7b:61:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=48739750a23d72cb748c1dc81397367015b840087e968e5ea47def13bf33e65c, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:cf:28:08:cf:66:7d:e9:ae:06:70:99:83:f3: f3:50:be:e7:ab:da:10:5a:e0:d9:f6:fe:70:6c:94: e2:79:a2:f6:c5:19:5f:69:8e:d0:a8:aa:24:c2:7d: ff:36:67:1b:ce:9d:11:79:1f:87:b0:a1:31:a9:07: b7:70:9d:78:11:b1:70:b6:72:81:47:0d:4e:6c:05: 19:1f:35:32:41:9b:89:47:a4:22:33:a0:e2:b2:28: d7:86:48:08:5a:a2:e7:e7:a5:f7:1e:54:21:34:e5: c8:db:2e:a5:c5:02:bf:5a:02:26:05:a4:22:99:ce: 0f:f3:50:12:90:0f:4c:f4:e4:cd:94:a1:59:a8:a4: 30:b0:42:d9:be:31:78:7f:77:db:7d:c6:dd:1a:7d: 05:e2:6e:d9:c5:f8:59:a0:a4:47:65:15:f4:a1:c6: 7f:5c:11:69:a2:92:4e:32:aa:af:ca:da:d7:84:c6: 97:7f:62:79:78:10:c9:40:3e:79:4f:23:9f:2e:da: 38:b3:b5:1f:cb:9d:a3:0d:01:1c:54:09:cb:77:cd: d3:fe:52:41:f6:4e:5a:80:6a:0d:ff:be:b0:6e:59: d0:de:f2:ad:2d:13:33:c0:f1:e8:d7:45:87:84:94: aa:af:e3:0d:9e:6e:8d:89:02:e5:7f:eb:2f:72:be: 8d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:3A:50:B5:81:58:27:E4:13:A0:AB:FF:4F:EC:B8:11:65:2F:C2:7B X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/598aa660-61dc-4d6e-a84f-cfeeb49de624.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.24.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:6a:f7:f3:8f:56:b0:6b:b4:f9:db:30:e3:06:4e:f5:f2:6c: b5:fe:01:72:53:96:4d:f9:21:86:f9:dd:34:ad:39:c5:39:ca: f9:01:58:02:f7:01:7e:c4:ba:47:fe:8c:68:d7:ad:f3:7f:36: cb:6d:aa:17:51:9d:80:cc:89:62:06:0d:b5:29:4e:2c:38:f7: e7:1a:10:ce:be:d1:c7:cd:58:dd:88:18:14:38:a3:83:f7:c6: 91:ee:fe:cf:bb:26:d3:35:56:3f:a5:25:35:ad:5a:c3:20:7f: 38:57:b5:1f:28:43:21:43:22:2b:92:9c:b7:db:a9:dc:0d:99: 39:d6:21:2e:98:da:1c:ec:f1:ff:2f:98:d5:29:8a:66:92:e3: 36:b0:0d:3d:b5:ed:09:26:bf:fe:9d:1a:94:04:06:e8:88:93: e2:26:dd:c9:67:c6:7c:d7:2f:00:7c:8d:b1:22:c8:f4:ab:0d: a0:3c:16:5a:19:82:af:ff:86:9d:56:a8:e6:6e:e2:ad:11:ad: 1d:b0:ce:05:6f:25:9f:cc:76:47:06:53:5c:06:de:ff:f0:ac: 3a:22:e5:d2:59:b0:59:bd:b5:bd:79:0f:2b:af:53:4c:7b:4e: 37:ca:36:27:4d:77:40:29:a1:61:46:74:bc:2a:f6:8e:36:0e: 84:a8:ef:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSpDgpbVd7p9zlQOPHgUEmIh7YRowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODczOTc1MGEyM2Q3MmNiNzQ4YzFkYzgxMzk3MzY3MDE1 Yjg0MDA4N2U5NjhlNWVhNDdkZWYxM2JmMzNlNjVjMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCizygIz2Z96a4GcJmD8/NQvuer2hBa4Nn2/nBslOJ5ovbF GV9pjtCoqiTCff82ZxvOnRF5H4ewoTGpB7dwnXgRsXC2coFHDU5sBRkfNTJBm4lH pCIzoOKyKNeGSAhaoufnpfceVCE05cjbLqXFAr9aAiYFpCKZzg/zUBKQD0z05M2U oVmopDCwQtm+MXh/d9t9xt0afQXibtnF+FmgpEdlFfShxn9cEWmikk4yqq/K2teE xpd/Ynl4EMlAPnlPI58u2jiztR/LnaMNARxUCct3zdP+UkH2TlqAag3/vrBuWdDe 8q0tEzPA8ejXRYeElKqv4w2ebo2JAuV/6y9yvo01AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3zpQtYFYJ+QToKv/T+y4EWUvwnswHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzU5OGFhNjYwLTYxZGMtNGQ2ZS1hODRmLWNmZWViNDlkZTYyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIr4hgwDQYJKoZIhvcNAQELBQADggEBAFpq9/OPVrBrtPnbMOMGTvXybLX+ AXJTlk35IYb53TStOcU5yvkBWAL3AX7Eukf+jGjXrfN/NsttqhdRnYDMiWIGDbUp Tiw49+caEM6+0cfNWN2IGBQ4o4P3xpHu/s+7JtM1Vj+lJTWtWsMgfzhXtR8oQyFD IiuSnLfbqdwNmTnWIS6Y2hzs8f8vmNUpimaS4zawDT217Qkmv/6dGpQEBuiIk+Im 3clnxnzXLwB8jbEiyPSrDaA8FloZgq//hp1WqOZu4q0RrR2wzgVvJZ/MdkcGU1wG 3v/wrDoi5dJZsFm9tb15DyuvU0x7TjfKNidNd0ApoWFGdLwq9o42DoSo78A= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org