$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/6d322153-4437-4f6c-a100-0f8822c07d9b.roa File: 6d322153-4437-4f6c-a100-0f8822c07d9b.roa (raw, json) Hash identifier: 435ZjxEJmGcMuNbNUWE8qPFX+zXq4QX2gLNWUE5ZVNU= Subject key identifier: C0:10:2F:45:A4:73:75:44:B5:10:17:00:36:BF:11:EA:93:22:9E:2A Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 2B6DBF71413767523A68FC2BD26BB7B1B424479E Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/6d322153-4437-4f6c-a100-0f8822c07d9b.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 104.194.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:6d:bf:71:41:37:67:52:3a:68:fc:2b:d2:6b:b7:b1:b4:24:47:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=8dc87ee48502351fb459f1df51f4ba5b8e989907b8c5aa52d682211a5a3643c9, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:83:85:df:42:65:2d:4e:3d:c9:e8:0d:05:96: 22:07:52:94:a8:89:01:f1:44:f6:9b:0b:86:82:ca: df:78:fb:aa:71:da:4b:e1:a5:e1:f4:f5:dc:1d:81: b0:4c:92:d3:25:85:ba:13:2e:6a:01:da:ed:b2:fd: b0:72:a2:90:a2:2a:70:cf:61:cd:ec:3e:3c:f8:5c: ed:12:e6:85:44:a8:66:a5:b2:56:71:f9:d4:d8:0f: ec:f9:79:d9:cb:e5:a5:f0:69:5f:16:78:f9:dd:37: ef:48:c5:6c:78:98:cb:91:34:1d:bc:b5:50:df:ee: 77:13:77:2b:30:c4:12:aa:69:41:25:5f:cb:92:d1: 9f:f7:52:17:0d:dc:35:c3:be:3c:83:59:ea:f0:66: 3a:ee:c1:8b:ac:d7:d7:e7:7c:a9:fe:93:0a:28:51: 9c:df:89:f0:77:e7:91:ea:d3:66:d8:7d:39:a6:40: ee:91:03:63:21:b3:d9:c1:23:ab:f4:8f:13:51:b2: 84:46:4d:0f:8a:1d:c0:e6:54:7b:24:a7:dd:52:64: bd:34:7e:65:c1:0d:52:42:45:5a:fe:78:25:bb:1b: 7f:2e:e3:ce:14:cd:55:fc:73:6b:ef:15:ff:48:75: c4:5e:6f:dc:0d:98:1d:14:ac:81:11:7a:04:5a:f0: 95:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:10:2F:45:A4:73:75:44:B5:10:17:00:36:BF:11:EA:93:22:9E:2A X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/6d322153-4437-4f6c-a100-0f8822c07d9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.194.224.0/19 Signature Algorithm: sha256WithRSAEncryption 51:27:5e:b3:5a:dd:7b:78:f4:6d:d5:6d:6f:d0:ef:4f:f2:7c: e9:33:ee:fd:ed:a3:5f:2c:e8:a4:47:86:0d:1a:3a:ef:3f:cc: 2a:9e:f9:20:ef:1f:2c:e6:95:01:8d:33:e1:96:6f:3e:8f:ab: 53:6b:c3:c4:3a:4e:b3:07:38:76:8f:f5:ac:de:76:64:ec:89: 69:85:2e:3d:0e:ed:69:71:4e:e0:38:90:f4:ef:47:d1:ac:53: 62:32:32:00:6f:04:10:93:14:cf:f0:ca:a3:59:25:80:3f:e1: 0b:5b:cb:6b:70:62:a9:75:08:2d:ac:38:1c:cd:bd:c7:ea:38: 56:e6:49:d5:e1:78:6e:0a:e3:3f:68:d6:b0:2f:f4:94:86:7c: bf:06:27:61:00:16:19:ca:c3:99:61:c4:51:27:54:e1:b8:5b: f8:da:3a:20:5e:5d:21:77:74:1d:8f:48:e1:02:8e:42:d1:49: d7:d1:01:7c:eb:9c:9e:b7:43:3a:88:dc:6b:54:eb:ea:ba:ec: a3:1a:bb:d0:e2:15:7a:d8:6e:b3:39:68:6c:a7:f8:ae:4d:97: 3d:16:70:78:50:2d:d3:c0:7d:00:9e:5f:24:11:a5:9c:88:f2: 9f:8a:5d:79:37:c7:c8:ac:11:9a:84:25:47:a3:b9:41:2b:2e: fc:27:45:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK22/cUE3Z1I6aPwr0mu3sbQkR54wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZGM4N2VlNDg1MDIzNTFmYjQ1OWYxZGY1MWY0YmE1Yjhl OTg5OTA3YjhjNWFhNTJkNjgyMjExYTVhMzY0M2M5MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPg4XfQmUtTj3J6A0FliIHUpSoiQHxRPabC4aCyt94+6px 2kvhpeH09dwdgbBMktMlhboTLmoB2u2y/bByopCiKnDPYc3sPjz4XO0S5oVEqGal slZx+dTYD+z5ednL5aXwaV8WePndN+9IxWx4mMuRNB28tVDf7ncTdyswxBKqaUEl X8uS0Z/3UhcN3DXDvjyDWerwZjruwYus19fnfKn+kwooUZzfifB355Hq02bYfTmm QO6RA2Mhs9nBI6v0jxNRsoRGTQ+KHcDmVHskp91SZL00fmXBDVJCRVr+eCW7G38u 484UzVX8c2vvFf9IdcReb9wNmB0UrIERegRa8JWlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwBAvRaRzdUS1EBcANr8R6pMiniowHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzZkMzIyMTUzLTQ0MzctNGY2Yy1hMTAwLTBmODgyMmMwN2Q5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVowuAwDQYJKoZIhvcNAQELBQADggEBAFEnXrNa3Xt49G3VbW/Q70/yfOkz 7v3to18s6KRHhg0aOu8/zCqe+SDvHyzmlQGNM+GWbz6Pq1Nrw8Q6TrMHOHaP9aze dmTsiWmFLj0O7WlxTuA4kPTvR9GsU2IyMgBvBBCTFM/wyqNZJYA/4Qtby2twYql1 CC2sOBzNvcfqOFbmSdXheG4K4z9o1rAv9JSGfL8GJ2EAFhnKw5lhxFEnVOG4W/ja OiBeXSF3dB2PSOECjkLRSdfRAXzrnJ63QzqI3GtU6+q67KMau9DiFXrYbrM5aGyn +K5Nlz0WcHhQLdPAfQCeXyQRpZyI8p+KXXk3x8isEZqEJUejuUErLvwnRYg= -----END CERTIFICATE-----Generated at Wed May 8 23:47:45 2024 by rpki-client on console-ams.rpki-client.org