$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/6b1d49c7-ee8a-4135-8564-1d844e634a57.roa File: 6b1d49c7-ee8a-4135-8564-1d844e634a57.roa (raw, json) Hash identifier: 3QS2bsu6P7kcmgqxU+G3Axk6DBeX+2eAG9atiEtvEPM= Subject key identifier: 25:F8:67:87:28:89:ED:72:6E:44:50:34:B1:F7:73:5D:65:1A:BA:3D Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 3F08568B1AEA64929538288011AC7C5B9CFB2ADB Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/6b1d49c7-ee8a-4135-8564-1d844e634a57.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 35916 IP address blocks: 216.240.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:08:56:8b:1a:ea:64:92:95:38:28:80:11:ac:7c:5b:9c:fb:2a:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=bab775763a4b014896bf0955f3285e1c5b6bcdb95027a3b64f2b11252fd65462, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c4:e0:4b:34:33:8d:80:16:7d:c3:c9:0b:f7: 18:85:d0:48:4d:e3:73:19:46:26:d1:14:ba:9d:60: 5a:7f:20:d3:5f:bd:05:2b:11:4c:b2:e9:8d:e9:ac: 67:0b:24:41:d5:43:24:6b:18:f3:e4:42:c2:cd:e5: d0:9d:4a:ba:21:2a:1b:28:4d:fb:c4:51:f0:89:c2: c7:09:60:16:ab:29:07:df:a7:3f:65:26:b4:be:65: cc:70:e9:d0:8d:4d:71:fb:50:54:0e:e9:26:fa:e9: de:95:5d:e4:bc:86:0d:a4:fb:2b:06:6f:81:0f:ce: ae:f6:29:b7:c6:34:b6:f3:f1:43:01:59:df:87:fd: 1b:e7:d3:73:e0:da:e6:9b:2a:0a:a9:73:c4:f5:ff: 33:a8:de:80:e3:92:ca:77:11:50:d2:e1:ce:68:41: f0:32:07:0f:e0:e3:9d:e1:b4:e8:c6:6b:12:30:7c: 42:19:99:71:fc:3a:5d:0d:33:b6:46:90:34:79:15: 5e:52:05:02:c4:df:ef:43:3a:d7:4f:5c:af:40:c6: ac:44:36:12:c0:80:d8:53:4f:63:3e:63:d8:a6:76: d7:ad:29:4d:85:32:59:ec:96:64:40:8b:9b:77:76: 3f:66:04:6c:e4:65:f4:f7:4b:cd:0e:58:3d:16:1b: 94:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F8:67:87:28:89:ED:72:6E:44:50:34:B1:F7:73:5D:65:1A:BA:3D X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/6b1d49c7-ee8a-4135-8564-1d844e634a57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.240.128.0/19 Signature Algorithm: sha256WithRSAEncryption 75:92:6a:ba:e4:c8:5b:ca:87:71:b4:af:1c:05:46:ad:df:83: 85:9c:ca:36:48:eb:1a:77:1f:a3:91:1d:18:31:91:22:17:44: b2:cd:6b:06:9c:f5:be:5d:be:91:2e:9d:ff:a9:ee:4f:12:f5: 59:b5:cc:b9:80:94:17:59:3e:95:8a:65:32:a2:57:14:6c:c3: 65:4e:b0:75:fe:bc:ae:e3:46:97:15:c9:41:ba:55:1f:8a:18: eb:49:cb:7e:50:47:5e:b0:60:e6:ac:b8:49:6b:7e:cc:88:f0: f0:4a:33:29:0d:74:05:9a:a7:61:46:d8:be:b6:f5:bd:33:b5: 00:06:61:5b:4f:08:f8:3d:6d:0f:48:97:e5:cc:4d:75:73:fb: f5:a3:68:3a:c4:f6:e8:b6:e2:0e:71:8b:34:37:96:ed:09:54: eb:40:3e:58:75:41:f2:ed:4b:3f:61:58:9f:d5:4f:ee:6a:af: f6:a1:67:ac:68:6d:ff:d1:a8:f6:de:c6:85:15:f5:3a:b5:a3: a5:fd:91:c6:43:19:6a:3c:94:28:11:d0:5c:00:c4:e9:65:b0: 27:94:8a:92:83:ef:62:90:53:8e:5c:d6:59:4a:71:64:f2:51: 8c:d8:59:6b:14:64:58:3b:58:bc:3d:10:db:fb:85:1d:9d:6d: c3:e1:1d:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPwhWixrqZJKVOCiAEax8W5z7KtswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWI3NzU3NjNhNGIwMTQ4OTZiZjA5NTVmMzI4NWUxYzVi NmJjZGI5NTAyN2EzYjY0ZjJiMTEyNTJmZDY1NDYyMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpxOBLNDONgBZ9w8kL9xiF0EhN43MZRibRFLqdYFp/INNf vQUrEUyy6Y3prGcLJEHVQyRrGPPkQsLN5dCdSrohKhsoTfvEUfCJwscJYBarKQff pz9lJrS+Zcxw6dCNTXH7UFQO6Sb66d6VXeS8hg2k+ysGb4EPzq72KbfGNLbz8UMB Wd+H/Rvn03Pg2uabKgqpc8T1/zOo3oDjksp3EVDS4c5oQfAyBw/g453htOjGaxIw fEIZmXH8Ol0NM7ZGkDR5FV5SBQLE3+9DOtdPXK9AxqxENhLAgNhTT2M+Y9imdtet KU2FMlnslmRAi5t3dj9mBGzkZfT3S80OWD0WG5StAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJfhnhyiJ7XJuRFA0sfdzXWUauj0wHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzZiMWQ0OWM3LWVlOGEtNDEzNS04NTY0LTFkODQ0ZTYzNGE1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXY8IAwDQYJKoZIhvcNAQELBQADggEBAHWSarrkyFvKh3G0rxwFRq3fg4Wc yjZI6xp3H6ORHRgxkSIXRLLNawac9b5dvpEunf+p7k8S9Vm1zLmAlBdZPpWKZTKi VxRsw2VOsHX+vK7jRpcVyUG6VR+KGOtJy35QR16wYOasuElrfsyI8PBKMykNdAWa p2FG2L629b0ztQAGYVtPCPg9bQ9Il+XMTXVz+/WjaDrE9ui24g5xizQ3lu0JVOtA Plh1QfLtSz9hWJ/VT+5qr/ahZ6xobf/RqPbexoUV9Tq1o6X9kcZDGWo8lCgR0FwA xOllsCeUipKD72KQU45c1llKcWTyUYzYWWsUZFg7WLw9ENv7hR2dbcPhHQ0= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org