$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5e56d0cf-f727-452b-a565-8a1c35848c4f.roa File: 5e56d0cf-f727-452b-a565-8a1c35848c4f.roa (raw, json) Hash identifier: T7Zhp+ygPHcFvUVw6UWPJmXDZ1zEhzFxUQ3IhgWy7T8= Subject key identifier: 66:0F:4F:63:0C:83:06:F9:74:2A:8C:8F:DC:D9:D8:A9:B2:3D:EC:53 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 1851A1A8A0BC75AB03ED7C958F5AE6BA99286B61 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5e56d0cf-f727-452b-a565-8a1c35848c4f.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 35916 IP address blocks: 66.152.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:51:a1:a8:a0:bc:75:ab:03:ed:7c:95:8f:5a:e6:ba:99:28:6b:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=5691e541ac8f66fca9e9a95f6dd8cf966c6fef73285bdbdaa81b5d3433ab5ad2, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:83:68:18:13:56:23:ea:95:e2:50:0e:ce:70: c7:26:b7:17:0a:8d:68:9a:20:36:4f:06:ea:a2:12: d0:08:c3:7a:47:bd:2a:3c:54:12:d8:50:c4:39:07: 95:fd:c3:f6:fd:bc:75:dc:99:cd:1b:c2:39:47:70: 3f:15:f5:5e:44:d8:a7:e6:51:93:c6:8b:94:e8:39: 61:6d:82:e3:68:2a:47:99:2a:94:57:77:e8:48:9a: 20:3e:7b:9a:10:08:ac:48:d8:96:c5:76:4e:c9:15: ee:6b:48:21:8c:b4:3b:48:bb:1a:77:ad:28:cd:11: bd:08:32:98:32:27:d8:e4:33:40:18:c0:53:38:b8: ee:61:ec:9b:6a:0c:be:62:5a:44:b8:08:f8:66:53: ce:f5:e1:3d:08:a5:dc:ec:23:b3:05:0c:4f:cf:2b: 02:db:cd:87:15:f2:16:19:00:38:d8:ca:e3:30:59: 94:d1:80:62:b3:bf:23:ba:ca:5a:63:a2:fd:05:a6: e3:35:87:9c:24:00:7b:20:ea:d6:1c:7f:be:62:6d: 12:c9:d1:1c:d5:a7:bc:b4:90:a6:9a:9b:43:04:3c: e4:44:d2:b4:0e:5a:13:16:19:36:f5:70:60:62:b2: cd:bd:4b:2f:83:87:8e:a3:96:21:1a:c7:22:dc:17: cf:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:0F:4F:63:0C:83:06:F9:74:2A:8C:8F:DC:D9:D8:A9:B2:3D:EC:53 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5e56d0cf-f727-452b-a565-8a1c35848c4f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.152.181.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:97:12:46:c7:e6:1a:35:78:bf:ca:3d:35:14:df:dd:ba:29: f7:d5:87:5a:85:76:41:7c:69:4c:c5:5a:93:fa:13:72:47:9b: 3c:c5:32:c1:65:c0:67:3c:e2:a1:8e:5f:65:65:91:9d:7c:04: 74:69:10:e0:ad:f8:48:3d:5d:36:a0:d7:ac:26:a3:a7:af:a6: 5c:17:9b:e9:b8:25:83:4a:dd:c2:ff:23:81:b6:f7:5b:4e:b7: d7:ef:71:c5:e0:14:ec:72:d2:65:b6:2b:0c:97:0e:2a:7d:30: c8:8a:55:09:71:db:e3:26:22:71:d7:01:15:e5:6f:cc:02:18: e2:63:5d:cc:fa:9a:a8:a4:6a:ba:7f:93:7e:03:2c:a1:06:97: 25:bd:1f:36:95:cc:c0:c9:80:60:3b:cd:dd:87:b7:b2:79:0d: 15:95:39:4e:ca:96:66:d4:87:5d:62:f4:b7:77:b2:a6:c3:3e: 00:0b:4a:3d:d0:77:3e:98:9c:cb:30:44:7e:a6:40:01:38:7a: c4:bc:8a:8f:78:dd:2d:91:a8:cf:db:b9:13:f7:bd:2d:91:24: 78:d6:e4:da:f5:47:a0:71:86:2e:fc:72:0d:1d:2c:af:8a:1c: d2:a2:9b:13:f1:bf:f9:36:80:d5:6f:e4:bd:77:98:0c:0b:47: 95:ad:f4:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGFGhqKC8dasD7XyVj1rmupkoa2EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjkxZTU0MWFjOGY2NmZjYTllOWE5NWY2ZGQ4Y2Y5NjZj NmZlZjczMjg1YmRiZGFhODFiNWQzNDMzYWI1YWQyMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCg2gYE1Yj6pXiUA7OcMcmtxcKjWiaIDZPBuqiEtAIw3pH vSo8VBLYUMQ5B5X9w/b9vHXcmc0bwjlHcD8V9V5E2KfmUZPGi5ToOWFtguNoKkeZ KpRXd+hImiA+e5oQCKxI2JbFdk7JFe5rSCGMtDtIuxp3rSjNEb0IMpgyJ9jkM0AY wFM4uO5h7JtqDL5iWkS4CPhmU8714T0IpdzsI7MFDE/PKwLbzYcV8hYZADjYyuMw WZTRgGKzvyO6ylpjov0FpuM1h5wkAHsg6tYcf75ibRLJ0RzVp7y0kKaam0MEPORE 0rQOWhMWGTb1cGBiss29Sy+Dh46jliEaxyLcF8/9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZg9PYwyDBvl0KoyP3NnYqbI97FMwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzVlNTZkMGNmLWY3MjctNDUyYi1hNTY1LThhMWMzNTg0OGM0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABCmLUwDQYJKoZIhvcNAQELBQADggEBAH+XEkbH5ho1eL/KPTUU3926KffV h1qFdkF8aUzFWpP6E3JHmzzFMsFlwGc84qGOX2VlkZ18BHRpEOCt+Eg9XTag16wm o6evplwXm+m4JYNK3cL/I4G291tOt9fvccXgFOxy0mW2KwyXDip9MMiKVQlx2+Mm InHXARXlb8wCGOJjXcz6mqikarp/k34DLKEGlyW9HzaVzMDJgGA7zd2Ht7J5DRWV OU7KlmbUh11i9Ld3sqbDPgALSj3Qdz6YnMswRH6mQAE4esS8io943S2RqM/buRP3 vS2RJHjW5Nr1R6Bxhi78cg0dLK+KHNKimxPxv/k2gNVv5L13mAwLR5Wt9Ms= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org