$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5d21ed83-e6fa-4507-b234-e737e8ec9305.roa File: 5d21ed83-e6fa-4507-b234-e737e8ec9305.roa (raw, json) Hash identifier: rzAa8a8nCyU7nMRBNuL2ESRVEX7ZpBBoCJPYEXZ1ph4= Subject key identifier: B7:E9:0C:B6:86:1E:71:C7:73:87:B6:F0:F4:60:A0:F1:35:93:21:9C Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 0D1398167607800A8277493279C5EF4EF1D56597 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5d21ed83-e6fa-4507-b234-e737e8ec9305.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 198.74.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:13:98:16:76:07:80:0a:82:77:49:32:79:c5:ef:4e:f1:d5:65:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=d08b1fb14cc4910253c64a2f0e069aed6388575e319c54259de0ceb9f6e4fd93, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0a:96:69:44:d7:ab:15:13:9f:10:60:ab:9a: 5d:b2:7a:17:54:8b:34:40:d3:1b:b4:4b:60:13:13: eb:5a:4d:6d:e4:fc:7f:62:f0:7c:b0:b5:db:6e:be: 96:d7:c5:40:17:af:a0:31:76:e6:74:91:8e:dd:4d: c5:a2:fe:2d:27:27:4c:84:d2:91:71:5d:60:e4:e9: 02:30:16:e6:51:6e:79:55:e7:7b:41:38:1b:f9:26: df:74:1c:28:24:5a:43:fa:aa:fe:a4:59:4b:1f:54: bb:51:91:a4:71:7b:74:78:fc:c7:e9:da:21:ef:df: 20:b9:8a:87:82:da:42:ba:d5:f5:81:5a:ff:30:04: fc:06:5f:1c:30:3d:fb:90:6c:be:67:2b:d6:73:9e: 39:8c:44:9a:45:87:7b:70:ad:65:23:40:60:a2:45: 45:ba:dc:d0:e7:03:65:e9:a6:93:06:6b:fe:7b:75: 8a:ce:84:77:14:e4:ba:95:e9:9e:f9:f5:cd:8c:63: a1:3a:ba:ca:84:b2:a0:88:cb:89:56:3d:72:0e:ce: ba:e2:d5:db:ff:e9:72:90:8d:72:63:8d:a3:bc:34: 36:32:e9:3e:5c:8f:fb:a7:02:03:c2:16:55:62:a5: 02:fe:a4:57:58:17:4d:e5:b5:1b:18:2c:88:d2:94: e7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E9:0C:B6:86:1E:71:C7:73:87:B6:F0:F4:60:A0:F1:35:93:21:9C X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5d21ed83-e6fa-4507-b234-e737e8ec9305.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.74.96.0/19 Signature Algorithm: sha256WithRSAEncryption 33:71:e2:05:e6:1b:ff:46:5f:57:ae:9a:8d:74:d2:9b:4b:35: 43:6b:39:06:ec:9f:07:24:41:d1:dd:ed:5b:20:89:5e:05:c4: 7a:02:40:11:e0:3c:b7:5b:e9:36:52:db:0d:17:28:6d:1a:6b: 9d:9a:6f:c5:ca:8b:1d:23:a2:da:a4:9e:6d:6a:e2:66:24:f9: 14:9b:32:10:c8:ed:6d:cc:6a:16:34:e6:e2:75:12:d4:83:5f: a2:cf:02:e8:d6:e7:58:16:4a:5a:48:81:cf:5f:cb:53:6f:62: f7:0f:d9:af:73:c3:59:db:5c:60:3d:13:a0:d4:5e:28:92:93: 26:2c:49:5c:45:2c:3e:17:a9:4f:82:fc:02:c6:8a:da:04:24: 6e:cf:3e:ea:bb:8e:c5:83:9a:f8:4b:6f:5b:c4:13:28:d4:b2: 48:80:6c:3e:dd:8f:01:a7:3a:0e:aa:89:f5:56:d0:c7:d3:75: d4:fd:3b:d7:b5:65:71:6c:f4:52:2c:c0:0d:c8:db:ab:a9:39: 32:13:8f:14:38:18:bb:bd:af:de:aa:23:07:47:4e:16:8e:9c: f3:1c:77:8e:20:a5:6d:93:63:70:35:90:83:64:34:24:61:e4: f1:73:8c:65:a3:fb:18:fc:9f:42:9a:87:f3:ae:69:3a:47:0b: f7:fd:34:de -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDROYFnYHgAqCd0kyecXvTvHVZZcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDhiMWZiMTRjYzQ5MTAyNTNjNjRhMmYwZTA2OWFlZDYz ODg1NzVlMzE5YzU0MjU5ZGUwY2ViOWY2ZTRmZDkzMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQCpZpRNerFROfEGCrml2yehdUizRA0xu0S2ATE+taTW3k /H9i8HywtdtuvpbXxUAXr6AxduZ0kY7dTcWi/i0nJ0yE0pFxXWDk6QIwFuZRbnlV 53tBOBv5Jt90HCgkWkP6qv6kWUsfVLtRkaRxe3R4/Mfp2iHv3yC5ioeC2kK61fWB Wv8wBPwGXxwwPfuQbL5nK9ZznjmMRJpFh3twrWUjQGCiRUW63NDnA2XpppMGa/57 dYrOhHcU5LqV6Z759c2MY6E6usqEsqCIy4lWPXIOzrri1dv/6XKQjXJjjaO8NDYy 6T5cj/unAgPCFlVipQL+pFdYF03ltRsYLIjSlOcBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUt+kMtoYeccdzh7bw9GCg8TWTIZwwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzVkMjFlZDgzLWU2ZmEtNDUwNy1iMjM0LWU3MzdlOGVjOTMwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGSmAwDQYJKoZIhvcNAQELBQADggEBADNx4gXmG/9GX1eumo100ptLNUNr OQbsnwckQdHd7VsgiV4FxHoCQBHgPLdb6TZS2w0XKG0aa52ab8XKix0jotqknm1q 4mYk+RSbMhDI7W3MahY05uJ1EtSDX6LPAujW51gWSlpIgc9fy1NvYvcP2a9zw1nb XGA9E6DUXiiSkyYsSVxFLD4XqU+C/ALGitoEJG7PPuq7jsWDmvhLb1vEEyjUskiA bD7djwGnOg6qifVW0MfTddT9O9e1ZXFs9FIswA3I26upOTITjxQ4GLu9r96qIwdH ThaOnPMcd44gpW2TY3A1kINkNCRh5PFzjGWj+xj8n0Kah/OuaTpHC/f9NN4= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org