$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5f53b058-652f-4c91-8d33-99b842b3f5c5.roa File: 5f53b058-652f-4c91-8d33-99b842b3f5c5.roa (raw, json) Hash identifier: aA1CRaRYzI5mLxRCf6EC/Rh+TVA6i3kbZBERZu+RoSg= Subject key identifier: BA:DE:FF:C0:F1:A9:91:F4:69:D6:97:14:FE:79:55:A6:BD:71:58:8B Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 4C1836B912BAC68D3159A9FCF84BBF43ED9B9CF6 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5f53b058-652f-4c91-8d33-99b842b3f5c5.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 96.43.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:18:36:b9:12:ba:c6:8d:31:59:a9:fc:f8:4b:bf:43:ed:9b:9c:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=47c14ea4bd5ac272be480ddb3610216bc75d293eb557b759e9e05a63a300b822, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1f:11:28:7e:3e:c9:e5:62:36:0a:4a:a0:0d: 7e:40:89:eb:40:db:35:7e:91:00:4c:e0:7a:dc:80: 35:19:26:e1:75:70:4f:3c:00:3b:ae:b9:68:6c:c6: 4a:06:85:92:92:3c:e1:9f:67:14:8b:35:f7:fb:ec: 0e:25:59:d0:cd:a7:84:f1:3c:39:c2:6a:ef:06:2c: f5:02:6d:82:80:46:80:0a:2b:9d:9d:d5:9f:4c:79: 44:b5:80:e9:d3:16:b5:cc:0c:de:36:64:35:9d:21: 60:8e:15:2b:99:c0:c7:90:39:6a:3e:3d:2f:08:0e: 4a:48:5a:1b:40:f0:de:52:88:48:0e:68:13:e4:6c: 63:28:41:b0:c6:be:43:4f:02:12:63:dc:cb:a1:aa: 3d:fe:74:17:95:03:01:ea:d3:78:4f:57:97:48:ad: 5a:4f:b9:17:29:b2:0e:f4:5d:c2:4b:17:01:2c:78: 62:7b:aa:4d:3f:d9:e0:2d:24:9e:27:8e:9b:6e:e3: ef:76:20:f6:7a:b7:6f:96:77:0a:33:6e:84:44:17: ad:64:2c:44:ec:38:bb:26:d8:6f:af:c8:b5:9a:7a: 6c:3f:60:a9:2d:3a:d1:71:f1:5d:a2:c9:3b:0f:d3: 68:e5:00:58:4d:34:4e:b2:86:de:2e:53:ea:93:da: 31:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:DE:FF:C0:F1:A9:91:F4:69:D6:97:14:FE:79:55:A6:BD:71:58:8B X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/5f53b058-652f-4c91-8d33-99b842b3f5c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.43.80.0/20 Signature Algorithm: sha256WithRSAEncryption 89:cf:b2:74:c5:81:8d:55:85:1e:eb:80:2e:e1:73:0a:db:a5: 9c:f0:53:69:9c:08:af:18:0c:72:8b:c2:79:8e:b4:e9:60:19: f2:77:44:c8:4d:50:73:29:5a:8c:cf:a2:67:c6:9a:b6:5d:29: e3:ba:52:b9:cc:26:18:ca:98:e8:af:43:38:5b:02:1f:84:73: 57:07:1d:ff:09:d7:20:0e:9d:00:39:4e:6d:cc:ed:bb:fe:60: 7a:18:dd:38:9a:e0:9a:53:e9:a1:d1:3e:ee:2f:05:0a:1d:d1: 3f:60:f4:17:5c:36:e8:5f:0e:ad:24:eb:84:f7:f9:62:c3:c4: 30:56:b2:10:9e:84:1c:e7:5f:43:8c:89:fc:f3:b4:41:4e:0b: 70:19:6c:ce:92:1c:4f:be:d2:41:7f:f9:e7:42:79:d2:13:62: 2d:13:82:d0:b8:0c:f0:0d:e0:63:24:5a:95:f7:8e:79:a0:4f: 86:08:20:2b:69:aa:de:a7:02:7b:3b:d5:47:53:ec:3a:e5:76: f0:12:1f:a3:24:8f:4e:ce:52:3f:22:e8:49:87:62:57:82:b9: 48:26:27:ed:e4:8b:21:f2:01:10:75:69:b1:bb:76:9d:21:58: eb:06:40:86:df:fb:09:6a:c9:6e:9d:51:b4:44:c5:38:8a:f4: a7:b7:61:40 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTBg2uRK6xo0xWan8+Eu/Q+2bnPYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2MxNGVhNGJkNWFjMjcyYmU0ODBkZGIzNjEwMjE2YmM3 NWQyOTNlYjU1N2I3NTllOWUwNWE2M2EzMDBiODIyMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFHxEofj7J5WI2CkqgDX5AietA2zV+kQBM4HrcgDUZJuF1 cE88ADuuuWhsxkoGhZKSPOGfZxSLNff77A4lWdDNp4TxPDnCau8GLPUCbYKARoAK K52d1Z9MeUS1gOnTFrXMDN42ZDWdIWCOFSuZwMeQOWo+PS8IDkpIWhtA8N5SiEgO aBPkbGMoQbDGvkNPAhJj3Muhqj3+dBeVAwHq03hPV5dIrVpPuRcpsg70XcJLFwEs eGJ7qk0/2eAtJJ4njptu4+92IPZ6t2+WdwozboREF61kLETsOLsm2G+vyLWaemw/ YKktOtFx8V2iyTsP02jlAFhNNE6yht4uU+qT2jG9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUut7/wPGpkfRp1pcU/nlVpr1xWIswHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzVmNTNiMDU4LTY1MmYtNGM5MS04ZDMzLTk5Yjg0MmIzZjVjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARgK1AwDQYJKoZIhvcNAQELBQADggEBAInPsnTFgY1VhR7rgC7hcwrbpZzw U2mcCK8YDHKLwnmOtOlgGfJ3RMhNUHMpWozPomfGmrZdKeO6UrnMJhjKmOivQzhb Ah+Ec1cHHf8J1yAOnQA5Tm3M7bv+YHoY3Tia4JpT6aHRPu4vBQod0T9g9BdcNuhf Dq0k64T3+WLDxDBWshCehBznX0OMifzztEFOC3AZbM6SHE++0kF/+edCedITYi0T gtC4DPAN4GMkWpX3jnmgT4YIICtpqt6nAns71UdT7DrldvASH6Mkj07OUj8i6EmH YleCuUgmJ+3kiyHyARB1abG7dp0hWOsGQIbf+wlqyW6dUbRExTiK9Ke3YUA= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org