$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/654396e0-a0af-4e41-ae02-76e82d757c64.roa File: 654396e0-a0af-4e41-ae02-76e82d757c64.roa (raw, json) Hash identifier: FNrGmj1c21ojkJ08LmpH6j0lDt/FXj6QcW/xRmtC9Ng= Subject key identifier: FF:AF:CF:D9:FE:C1:38:D3:BE:57:2F:E8:C6:E8:25:C9:43:BA:58:68 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 589E4F1760ED91B502EE38DD95ABD22830E347F4 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/654396e0-a0af-4e41-ae02-76e82d757c64.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 43.226.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:9e:4f:17:60:ed:91:b5:02:ee:38:dd:95:ab:d2:28:30:e3:47:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=fab08ebc871938d564d564d0fffd70c50231a62623e8995b33021fce2d7b7a50, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8a:61:5e:9e:8c:0e:b3:15:b0:08:90:28:c6: 30:52:9c:88:9c:40:cd:dc:e8:a3:25:a1:2f:6b:2e: 74:e6:c5:ce:d7:88:96:62:60:82:c6:7a:85:76:19: 50:23:c4:73:6e:e3:79:49:0b:b4:c9:26:4b:79:5c: 11:a8:0b:69:e9:75:a8:84:89:22:30:4a:a7:5e:03: 41:f2:9a:51:da:48:2f:8d:a7:99:65:16:81:59:3d: 76:42:5c:b8:e0:99:ab:6d:85:56:dd:ba:3f:62:23: f8:76:d1:a5:70:37:56:ad:84:73:51:63:5d:38:ca: 5b:91:08:21:f7:43:a2:c5:3d:c4:24:40:ee:f8:3c: 8b:4d:cf:be:89:ea:49:bd:8f:33:d4:f4:58:fc:90: 79:56:41:9d:16:26:20:7d:7a:4a:f4:07:61:85:be: b0:e9:57:69:6a:c6:0a:45:ad:07:20:1a:14:a4:f4: 0a:43:0d:fd:2b:e1:d2:0f:ce:ec:49:15:38:fe:dc: 08:08:c4:86:32:ab:97:5a:ee:29:32:82:3a:52:f8: e9:51:4a:8b:7a:fd:3c:c2:24:39:3c:39:bb:59:69: 8c:bc:33:10:85:81:fc:8a:5f:3c:42:d8:5b:58:f1: 49:47:a0:bf:17:d9:bc:c9:71:41:69:99:06:4e:8a: eb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:AF:CF:D9:FE:C1:38:D3:BE:57:2F:E8:C6:E8:25:C9:43:BA:58:68 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/654396e0-a0af-4e41-ae02-76e82d757c64.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.24.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:e7:45:7e:ff:b0:c5:11:0a:6c:4f:ed:c3:4e:cc:e6:50:13: c9:78:4a:ea:ae:f8:68:d2:30:74:b2:35:9c:de:a8:ad:b8:45: 14:78:11:97:14:73:a7:cb:8c:df:07:f1:1a:9a:31:09:7c:08: 51:aa:89:4f:9a:db:01:92:64:64:7b:49:a8:a9:e7:6d:6f:d2: a7:f1:b5:dc:cf:af:52:67:5b:45:54:9b:dd:58:47:3d:c9:d5: 13:b5:c7:e8:33:52:03:9e:53:08:cf:e5:8e:61:d4:3d:04:cd: 0f:de:65:7f:2b:03:fb:94:9d:7d:d0:73:d2:57:f4:d8:64:93: e4:3b:8f:7b:14:e4:fb:d0:3a:89:3a:61:b3:e3:9e:e9:20:7a: 68:44:25:14:69:6b:b4:f3:de:ec:04:9a:be:02:fb:d1:bc:34: c2:66:64:a8:c9:e7:91:22:35:ca:a9:a9:fb:a1:3b:96:f0:82: 1f:d7:34:4b:03:39:a3:9d:41:cf:3b:78:a3:84:dd:fc:8f:11: ea:c6:0a:0c:d2:f1:0d:ef:4c:35:69:4b:55:74:7c:49:3a:e8: f1:bf:bc:af:e5:ad:d6:e0:b4:ba:29:30:b3:e2:2d:ef:b9:55: a9:54:ed:d3:a7:24:6a:e5:05:c6:00:86:be:1d:52:d6:7b:b8: 0d:db:b1:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWJ5PF2DtkbUC7jjdlavSKDDjR/QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYWIwOGViYzg3MTkzOGQ1NjRkNTY0ZDBmZmZkNzBjNTAy MzFhNjI2MjNlODk5NWIzMzAyMWZjZTJkN2I3YTUwMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiimFenowOsxWwCJAoxjBSnIicQM3c6KMloS9rLnTmxc7X iJZiYILGeoV2GVAjxHNu43lJC7TJJkt5XBGoC2npdaiEiSIwSqdeA0HymlHaSC+N p5llFoFZPXZCXLjgmatthVbduj9iI/h20aVwN1athHNRY104yluRCCH3Q6LFPcQk QO74PItNz76J6km9jzPU9Fj8kHlWQZ0WJiB9ekr0B2GFvrDpV2lqxgpFrQcgGhSk 9ApDDf0r4dIPzuxJFTj+3AgIxIYyq5da7ikygjpS+OlRSot6/TzCJDk8ObtZaYy8 MxCFgfyKXzxC2FtY8UlHoL8X2bzJcUFpmQZOiuvjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/6/P2f7BONO+Vy/oxuglyUO6WGgwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzY1NDM5NmUwLWEwYWYtNGU0MS1hZTAyLTc2ZTgyZDc1N2M2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAr4hgwDQYJKoZIhvcNAQELBQADggEBACznRX7/sMURCmxP7cNOzOZQE8l4 Suqu+GjSMHSyNZzeqK24RRR4EZcUc6fLjN8H8RqaMQl8CFGqiU+a2wGSZGR7Saip 521v0qfxtdzPr1JnW0VUm91YRz3J1RO1x+gzUgOeUwjP5Y5h1D0EzQ/eZX8rA/uU nX3Qc9JX9Nhkk+Q7j3sU5PvQOok6YbPjnukgemhEJRRpa7Tz3uwEmr4C+9G8NMJm ZKjJ55EiNcqpqfuhO5bwgh/XNEsDOaOdQc87eKOE3fyPEerGCgzS8Q3vTDVpS1V0 fEk66PG/vK/lrdbgtLopMLPiLe+5ValU7dOnJGrlBcYAhr4dUtZ7uA3bsSQ= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org