$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/61eb63fc-56e4-4597-84ce-8ec04a6c1b5e.roa File: 61eb63fc-56e4-4597-84ce-8ec04a6c1b5e.roa (raw, json) Hash identifier: fHICRYduj6sAoZr718VaRUouqUS9X5OWnOXqEzxkYbo= Subject key identifier: E2:EA:D9:6E:F6:06:2C:F8:23:89:8C:CB:C7:5D:FD:CE:26:A6:9E:63 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 1FE158F79F7A89D7D76C8672D562C299C9EC8AD9 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/61eb63fc-56e4-4597-84ce-8ec04a6c1b5e.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 35916 IP address blocks: 198.148.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:e1:58:f7:9f:7a:89:d7:d7:6c:86:72:d5:62:c2:99:c9:ec:8a:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=626053a81a9433de15ac8de89f42014e71d09343500cde9285ee7843a394cd21, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0d:dc:c5:55:67:a8:cd:41:ae:e0:da:70:54: a4:83:74:fc:47:cb:3e:79:41:f9:80:3c:43:d9:86: ae:63:bc:1b:78:f3:8f:c7:07:4c:ff:c1:73:98:b6: e0:4f:ff:2e:56:a3:90:90:37:f6:e4:9e:6a:14:82: 4b:ef:69:e7:8c:14:4e:ff:84:61:97:b7:21:57:96: a4:3e:87:74:06:b7:73:ac:5f:45:ad:f9:a7:71:3f: f8:3c:a4:e7:f2:68:4e:0c:9b:ad:ed:cc:68:8f:6c: b3:83:01:5d:23:5d:e4:8f:c0:6c:7e:ba:bb:e5:2d: 4a:bc:0d:7e:4f:77:dd:e9:be:21:2a:e8:99:77:44: ee:32:eb:9f:63:6f:91:a0:43:2f:17:12:eb:8e:eb: 8a:31:16:6d:43:e3:ff:b7:35:e5:86:14:9a:8b:37: ec:f6:10:af:e6:f4:a4:ce:1f:02:b7:bb:0a:e2:7a: 6e:d0:41:51:5d:f9:d3:7b:32:13:4b:22:aa:a3:a9: be:ff:60:96:53:91:24:b9:cb:fd:d0:c4:fe:57:0b: 9f:50:0a:b4:ad:2c:9b:6c:48:14:ff:03:f5:b8:7c: 9b:00:6d:bc:c9:55:22:e1:7c:26:a7:c4:19:86:ed: 70:95:4e:f8:5a:9b:6c:9d:c7:50:1d:04:78:36:b9: 66:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:EA:D9:6E:F6:06:2C:F8:23:89:8C:CB:C7:5D:FD:CE:26:A6:9E:63 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/61eb63fc-56e4-4597-84ce-8ec04a6c1b5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.148.96.0/19 Signature Algorithm: sha256WithRSAEncryption 3d:56:47:6b:7c:b1:74:e8:34:ff:8b:21:3d:c8:eb:95:7f:b8: 08:bf:ae:6e:cf:46:3a:38:55:78:27:1e:44:08:91:7f:be:3b: b0:30:6c:78:a4:d5:82:f4:29:09:3c:e2:08:4d:e5:1c:8a:3e: f3:c6:9e:a9:2a:cd:9c:88:dd:70:83:1b:55:7a:0d:4d:25:53: c6:cf:72:46:0c:25:ac:97:0b:07:42:db:df:7a:11:99:0d:7e: 4c:ba:05:c6:f7:93:dc:68:f7:ba:69:9e:53:bc:f0:8a:f7:3b: 8f:e5:85:f5:ae:b2:2f:f5:03:1c:99:db:c8:de:9a:cc:ad:a5: 0f:f1:c7:f9:80:f6:2e:42:be:90:28:82:d6:47:b0:68:5f:95: 66:62:a5:0d:75:60:96:f4:72:7f:c4:ae:f4:ee:40:d6:22:d0: 89:b1:0c:86:de:64:f1:58:f4:35:8b:5a:18:a8:6a:4e:8e:bd: 14:c3:47:6b:32:98:98:25:9a:5d:e8:44:f9:e5:64:57:b5:24: 6a:2d:dc:33:f2:13:3f:d4:02:aa:03:ea:5c:79:8f:fe:8f:2a: bf:c3:3e:47:b3:e7:ae:15:dd:65:41:b2:7c:20:b4:f4:24:55: 78:7f:b0:a5:61:a0:d7:8a:31:f6:90:80:29:0c:f7:34:ed:13: d7:79:8e:bb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH+FY9596idfXbIZy1WLCmcnsitkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjYwNTNhODFhOTQzM2RlMTVhYzhkZTg5ZjQyMDE0ZTcx ZDA5MzQzNTAwY2RlOTI4NWVlNzg0M2EzOTRjZDIxMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtDdzFVWeozUGu4NpwVKSDdPxHyz55QfmAPEPZhq5jvBt4 84/HB0z/wXOYtuBP/y5Wo5CQN/bknmoUgkvvaeeMFE7/hGGXtyFXlqQ+h3QGt3Os X0Wt+adxP/g8pOfyaE4Mm63tzGiPbLODAV0jXeSPwGx+urvlLUq8DX5Pd93pviEq 6Jl3RO4y659jb5GgQy8XEuuO64oxFm1D4/+3NeWGFJqLN+z2EK/m9KTOHwK3uwri em7QQVFd+dN7MhNLIqqjqb7/YJZTkSS5y/3QxP5XC59QCrStLJtsSBT/A/W4fJsA bbzJVSLhfCanxBmG7XCVTvham2ydx1AdBHg2uWYJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4urZbvYGLPgjiYzLx139ziamnmMwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzYxZWI2M2ZjLTU2ZTQtNDU5Ny04NGNlLThlYzA0YTZjMWI1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGlGAwDQYJKoZIhvcNAQELBQADggEBAD1WR2t8sXToNP+LIT3I65V/uAi/ rm7PRjo4VXgnHkQIkX++O7AwbHik1YL0KQk84ghN5RyKPvPGnqkqzZyI3XCDG1V6 DU0lU8bPckYMJayXCwdC2996EZkNfky6Bcb3k9xo97ppnlO88Ir3O4/lhfWusi/1 AxyZ28jemsytpQ/xx/mA9i5CvpAogtZHsGhflWZipQ11YJb0cn/ErvTuQNYi0Imx DIbeZPFY9DWLWhioak6OvRTDR2symJglml3oRPnlZFe1JGot3DPyEz/UAqoD6lx5 j/6PKr/DPkez564V3WVBsnwgtPQkVXh/sKVhoNeKMfaQgCkM9zTtE9d5jrs= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org