$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5ca9cf51-be0a-4512-8f1a-a43d52817f02.roa File: 5ca9cf51-be0a-4512-8f1a-a43d52817f02.roa (raw, json) Hash identifier: 2M2vcFd5DzIA5DI2LTAOpdq0tBD4oaKstiFEE2ClQ3E= Subject key identifier: B0:E0:2F:87:42:89:AF:91:16:D1:73:0B:30:BB:8B:EE:D6:38:F6:B4 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 30DD84C53D5054ACACFADF8B25805D5181366CD5 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5ca9cf51-be0a-4512-8f1a-a43d52817f02.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 395681 IP address blocks: 198.211.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 08 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:dd:84:c5:3d:50:54:ac:ac:fa:df:8b:25:80:5d:51:81:36:6c:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=6d18551fc286d7203361398239325097641dac06d0c5441c0b0a85b8430129be, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8c:b4:e7:50:f6:43:79:2b:23:c5:37:1c:21: 53:63:fa:51:72:ea:03:8e:13:b3:1b:24:ee:91:f4: 51:cf:91:e8:1c:ce:31:62:9d:7f:51:35:46:bd:a7: 43:ae:b4:87:b3:b1:30:90:b1:e7:32:20:56:93:f2: 62:d6:50:5f:08:ef:1c:a9:e5:b4:b6:5d:fc:1a:fd: 98:72:28:22:62:e6:10:c3:7f:fc:74:74:0c:d5:44: d8:bf:1b:e3:a3:fc:84:ff:5f:85:75:32:7b:7d:57: f8:9d:65:9a:7d:59:83:6f:dc:c1:d2:ae:5f:ef:e3: 61:a6:88:22:1f:15:97:9d:5a:eb:96:52:ba:7d:e5: 4d:91:53:81:a9:2a:aa:78:67:04:31:01:0b:45:7a: 1e:25:b6:50:14:b0:47:4c:65:d9:72:63:9f:bb:ab: 35:ed:c9:69:8c:b0:16:01:ea:b0:90:9a:7f:bf:cb: c8:d5:48:e6:84:8b:04:08:fe:04:9a:e4:94:58:1f: b3:b6:b2:59:47:5c:2e:71:37:99:1c:dc:9f:55:51: ee:a2:63:e8:e4:bb:b7:2f:92:00:95:79:51:a5:20: 99:49:d0:54:75:ee:ed:55:69:ff:19:c8:f9:73:75: f2:6d:7c:95:96:18:04:37:13:fb:f8:6a:b6:73:03: 62:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E0:2F:87:42:89:AF:91:16:D1:73:0B:30:BB:8B:EE:D6:38:F6:B4 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5ca9cf51-be0a-4512-8f1a-a43d52817f02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.211.0.0/18 Signature Algorithm: sha256WithRSAEncryption a1:de:f0:e7:60:6a:dc:2d:66:60:e1:f6:15:19:67:92:34:3c: e0:c9:dc:18:83:8e:18:31:5d:13:8e:7a:34:9c:44:ce:1b:fe: 4c:18:df:ba:6b:31:87:62:66:17:14:2c:d1:f9:d4:38:ca:4d: 9b:44:9b:34:27:72:e4:03:e3:e7:ef:d0:34:89:f9:da:4c:eb: 82:85:e7:19:10:dc:cf:d1:78:ac:00:0a:b5:43:63:9c:73:65: 34:68:9e:4c:a0:61:a8:2e:44:e5:83:a0:15:37:46:4f:6f:ea: 41:a5:c4:da:0f:13:ea:26:70:6a:33:d8:97:dc:dc:44:4c:37: 46:8b:8a:46:83:62:69:b5:6f:50:28:4a:34:27:42:fd:ca:89: 48:13:d5:5f:98:34:32:93:04:91:e3:dc:12:40:59:a4:72:c3: 94:7b:05:c5:14:1a:8f:f4:ac:f2:c7:b3:b1:0b:57:74:df:e5: db:07:1c:a8:ee:8b:da:9a:6d:41:8e:95:6d:84:c0:c6:c4:65: 85:1f:08:5c:1c:5c:80:ba:c2:c9:82:e4:50:5d:cf:a2:1c:05: 4e:35:98:37:60:27:b6:2f:92:6a:cf:84:10:99:0f:08:67:cd: e4:47:71:cc:8b:21:4e:2c:1c:d1:b0:33:ff:81:9c:ab:53:44: d9:b9:fd:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMN2ExT1QVKys+t+LJYBdUYE2bNUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDE4NTUxZmMyODZkNzIwMzM2MTM5ODIzOTMyNTA5NzY0 MWRhYzA2ZDBjNTQ0MWMwYjBhODViODQzMDEyOWJlMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTjLTnUPZDeSsjxTccIVNj+lFy6gOOE7MbJO6R9FHPkegc zjFinX9RNUa9p0OutIezsTCQsecyIFaT8mLWUF8I7xyp5bS2Xfwa/ZhyKCJi5hDD f/x0dAzVRNi/G+Oj/IT/X4V1Mnt9V/idZZp9WYNv3MHSrl/v42GmiCIfFZedWuuW Urp95U2RU4GpKqp4ZwQxAQtFeh4ltlAUsEdMZdlyY5+7qzXtyWmMsBYB6rCQmn+/ y8jVSOaEiwQI/gSa5JRYH7O2sllHXC5xN5kc3J9VUe6iY+jku7cvkgCVeVGlIJlJ 0FR17u1Vaf8ZyPlzdfJtfJWWGAQ3E/v4arZzA2IHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsOAvh0KJr5EW0XMLMLuL7tY49rQwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzVjYTljZjUxLWJlMGEtNDUxMi04ZjFhLWE0M2Q1MjgxN2YwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbG0wAwDQYJKoZIhvcNAQELBQADggEBAKHe8OdgatwtZmDh9hUZZ5I0PODJ 3BiDjhgxXROOejScRM4b/kwY37prMYdiZhcULNH51DjKTZtEmzQncuQD4+fv0DSJ +dpM64KF5xkQ3M/ReKwACrVDY5xzZTRonkygYaguROWDoBU3Rk9v6kGlxNoPE+om cGoz2Jfc3ERMN0aLikaDYmm1b1AoSjQnQv3KiUgT1V+YNDKTBJHj3BJAWaRyw5R7 BcUUGo/0rPLHs7ELV3Tf5dsHHKjui9qabUGOlW2EwMbEZYUfCFwcXIC6wsmC5FBd z6IcBU41mDdgJ7YvkmrPhBCZDwhnzeRHccyLIU4sHNGwM/+BnKtTRNm5/R8= -----END CERTIFICATE-----Generated at Tue May 7 01:57:25 2024 by rpki-client on console-fra.rpki-client.org