$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/7365d3d1-8f86-47d4-b723-88ee63ae1fae.roa File: 7365d3d1-8f86-47d4-b723-88ee63ae1fae.roa (raw, json) Hash identifier: NR4Uqz2S6BRdwFXAaizf/jB6omRtGBTAFfNJ9n05SV4= Subject key identifier: AC:0B:36:D3:26:DF:02:8C:B8:97:57:4A:2A:32:BA:0E:47:DE:3B:56 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 438124225D0CF633C674DEFA2549195A87BD0FB9 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/7365d3d1-8f86-47d4-b723-88ee63ae1fae.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 198.211.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:81:24:22:5d:0c:f6:33:c6:74:de:fa:25:49:19:5a:87:bd:0f:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=9160c1974223022c4a3853462692a1c178278dc8cf46b24781d9087e7437c377, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:bc:be:c7:bf:68:c8:26:4c:2e:85:9b:dd:3e: 7c:65:99:1a:da:dd:51:e5:0b:14:01:95:ac:4c:d5: e7:d6:f3:e2:08:b8:4e:81:88:d1:f2:ec:55:d0:30: 01:4d:c1:d2:90:f8:59:d3:45:18:87:50:d1:b2:db: 7e:e7:91:f6:45:a7:0f:0c:c7:32:12:85:29:76:09: 0c:2a:0e:f7:f2:d4:a2:97:0a:61:5a:78:73:fd:8d: 5e:da:62:f4:e6:30:0c:98:f2:81:29:71:20:12:c6: 7d:43:ba:ea:39:e8:a0:13:d1:1a:10:77:4b:00:3f: 69:06:5e:ed:cf:ff:39:8f:66:10:f3:3a:9a:0b:cc: c0:c3:f2:f1:52:e4:da:18:a5:ee:ec:32:6e:ec:bf: 88:1f:2c:4b:0e:9d:5e:fd:01:03:b8:3f:79:a4:f4: 91:ff:1b:db:4d:42:e9:e1:02:07:92:83:35:04:e8: 0a:f8:39:80:d7:44:08:6d:7e:1b:4a:5b:55:8e:51: c0:60:68:8d:5d:0d:f7:9c:fe:1f:33:c4:3a:36:e0: 01:7e:f4:67:71:e3:80:3c:47:2a:39:b0:34:32:ff: 19:4f:fd:4b:e9:89:a2:b7:a9:f1:4e:48:c8:09:37: dd:88:1f:fc:3b:11:5c:87:56:18:b5:3d:b9:fe:09: 25:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:0B:36:D3:26:DF:02:8C:B8:97:57:4A:2A:32:BA:0E:47:DE:3B:56 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/7365d3d1-8f86-47d4-b723-88ee63ae1fae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.211.33.0/24 Signature Algorithm: sha256WithRSAEncryption 41:19:78:3b:92:fd:75:2f:32:c3:f9:92:4d:cb:12:ad:0f:60: 1a:82:24:a1:2b:d6:01:71:c7:14:9f:da:e9:7b:22:63:92:72: aa:95:58:fc:d8:3c:6d:0d:74:61:24:98:13:70:af:84:31:67: 59:d3:e5:99:5c:2b:92:a1:ac:3a:ba:ef:dd:4e:cd:d6:cf:f7: d8:2a:ee:cc:f2:99:bd:a1:82:a7:af:c8:9b:ba:6e:08:99:12: ef:06:d9:48:59:6f:35:74:e7:9f:20:6d:15:90:0a:cf:01:52: ec:6a:d8:f2:cf:0b:45:cf:cb:d1:80:96:c0:5b:de:00:3e:7c: bc:a7:e6:1a:5c:f8:ad:c4:b1:43:0a:21:ef:4e:25:17:ba:0f: e5:6d:54:32:fe:77:50:a3:81:15:e7:c4:71:c6:35:fd:96:ba: 27:0c:ca:3a:3d:ff:76:ff:da:f3:63:c8:3e:a5:b0:1a:4f:82: 5d:bb:56:96:9e:88:58:cf:c1:e6:e8:de:8a:8f:cc:12:f5:aa: 13:90:06:b8:47:8b:b3:5c:95:a0:24:fe:84:c9:59:06:a3:1f: 66:b4:3c:ab:5e:b6:3a:69:d0:ad:60:bf:bf:a5:f6:02:eb:4d: 9e:77:f5:ac:1b:c1:78:65:b6:96:e9:a8:21:89:15:85:8b:9d: 75:76:5a:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ4EkIl0M9jPGdN76JUkZWoe9D7kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTYwYzE5NzQyMjMwMjJjNGEzODUzNDYyNjkyYTFjMTc4 Mjc4ZGM4Y2Y0NmIyNDc4MWQ5MDg3ZTc0MzdjMzc3MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPvL7Hv2jIJkwuhZvdPnxlmRra3VHlCxQBlaxM1efW8+II uE6BiNHy7FXQMAFNwdKQ+FnTRRiHUNGy237nkfZFpw8MxzIShSl2CQwqDvfy1KKX CmFaeHP9jV7aYvTmMAyY8oEpcSASxn1Duuo56KAT0RoQd0sAP2kGXu3P/zmPZhDz OpoLzMDD8vFS5NoYpe7sMm7sv4gfLEsOnV79AQO4P3mk9JH/G9tNQunhAgeSgzUE 6Ar4OYDXRAhtfhtKW1WOUcBgaI1dDfec/h8zxDo24AF+9Gdx44A8Ryo5sDQy/xlP /UvpiaK3qfFOSMgJN92IH/w7EVyHVhi1Pbn+CSVjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrAs20ybfAoy4l1dKKjK6DkfeO1YwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzczNjVkM2QxLThmODYtNDdkNC1iNzIzLTg4ZWU2M2FlMWZhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADG0yEwDQYJKoZIhvcNAQELBQADggEBAEEZeDuS/XUvMsP5kk3LEq0PYBqC JKEr1gFxxxSf2ul7ImOScqqVWPzYPG0NdGEkmBNwr4QxZ1nT5ZlcK5KhrDq6791O zdbP99gq7szymb2hgqevyJu6bgiZEu8G2UhZbzV0558gbRWQCs8BUuxq2PLPC0XP y9GAlsBb3gA+fLyn5hpc+K3EsUMKIe9OJRe6D+VtVDL+d1CjgRXnxHHGNf2WuicM yjo9/3b/2vNjyD6lsBpPgl27VpaeiFjPwebo3oqPzBL1qhOQBrhHi7NclaAk/oTJ WQajH2a0PKtetjpp0K1gv7+l9gLrTZ539awbwXhltpbpqCGJFYWLnXV2Whw= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org