$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/7ab65e60-6616-494a-bb73-f046eed56ca9.roa File: 7ab65e60-6616-494a-bb73-f046eed56ca9.roa (raw, json) Hash identifier: +YqX49jVuvGBEw15pK2d/LQ2O22goM8JFpyGH8D7ApY= Subject key identifier: 04:29:F6:B5:E0:52:52:27:65:66:7C:89:EC:E8:6C:9E:99:AC:13:52 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 799D1B2ADEAC6940CA3C88519A9692842400D4B0 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/7ab65e60-6616-494a-bb73-f046eed56ca9.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 35916 IP address blocks: 198.52.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:9d:1b:2a:de:ac:69:40:ca:3c:88:51:9a:96:92:84:24:00:d4:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=5e3f26daef18cba3f38b85fc286c7721a25341f3b427213db8fb809ded43694a, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ef:15:b2:99:c4:91:96:4b:20:ef:65:a5:47: a6:d8:8f:32:57:b0:f8:24:f9:c2:b7:9f:c4:b9:6d: c2:c2:0d:64:a3:b0:a9:8c:93:ea:14:52:da:87:40: 6f:19:d9:c9:03:e9:c9:ff:61:ea:4a:2d:e8:7a:94: 3d:1f:4b:e7:7f:04:58:e9:29:4e:6c:16:ed:e7:c9: ab:4e:69:d4:a6:a7:80:b8:a6:cb:97:56:17:fd:b9: 5d:6c:51:db:30:b8:b7:3e:0a:06:39:7c:08:d6:1d: 83:e7:a9:81:29:94:30:25:36:5e:12:70:40:b1:46: f5:06:7e:c6:5c:f2:eb:77:07:c7:18:9e:27:22:b2: 92:f2:9f:5a:a5:ca:de:d6:38:f8:2a:29:62:dd:49: eb:13:8a:98:4a:75:25:bc:89:80:8c:cd:c9:5d:cc: e0:e8:90:68:cb:8b:32:6f:3d:55:f4:0a:50:40:4f: 6f:42:37:33:37:c0:9c:4b:de:96:18:0f:c8:ff:49: e4:5e:59:73:8b:46:15:8f:31:6e:26:ca:a6:2e:03: a7:de:5e:38:6a:5d:9a:ef:08:4c:03:b4:8c:da:8b: 42:77:26:3d:f9:b5:2d:0d:dd:27:0a:6c:23:57:ea: ea:2c:69:95:96:1a:04:e8:08:44:36:bd:d2:64:05: c4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:29:F6:B5:E0:52:52:27:65:66:7C:89:EC:E8:6C:9E:99:AC:13:52 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/7ab65e60-6616-494a-bb73-f046eed56ca9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.52.96.0/19 Signature Algorithm: sha256WithRSAEncryption 3c:4a:5f:e3:64:e1:6a:1f:a0:90:65:2d:a8:cc:92:d7:ba:3a: 42:3c:b0:95:c8:35:4b:a4:26:45:c0:76:b2:b0:ca:4b:a5:dc: 22:12:de:7e:b0:e1:7c:db:df:67:c3:b4:8d:16:bf:a5:dc:33: c3:f4:67:85:f4:c0:04:c5:a1:70:92:ec:d3:2b:aa:dc:38:46: 40:54:bc:4d:7b:a1:a8:2d:d9:1d:12:11:c8:0c:41:9e:7f:38: b3:b1:97:53:0f:b2:f2:c2:54:dd:07:33:50:90:69:a1:b9:38: bb:ae:42:a5:6b:e8:b0:82:49:59:c6:00:df:fb:ab:e7:6e:21: ed:a0:1b:dd:fe:0d:f5:15:bc:b3:de:0a:cf:c4:ac:51:20:83: e6:a4:9b:87:86:7e:3f:32:ba:ba:4a:50:83:70:12:82:c1:27: 0d:a7:99:92:34:3b:64:14:59:69:98:42:af:1f:c9:81:08:36: 0f:f2:20:45:7f:bd:a3:74:e6:81:8c:97:1d:15:35:80:58:d6: 60:a8:d6:9c:b2:07:6b:48:5a:0c:be:e8:42:47:7c:b8:d5:46: 7b:40:12:38:98:15:c0:5c:0f:5c:12:58:43:d4:8a:2c:84:a2: 44:b7:c8:41:da:0c:3e:42:5a:e5:11:77:9e:24:c1:9d:1e:76: cc:8f:c2:05 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeZ0bKt6saUDKPIhRmpaShCQA1LAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTNmMjZkYWVmMThjYmEzZjM4Yjg1ZmMyODZjNzcyMWEy NTM0MWYzYjQyNzIxM2RiOGZiODA5ZGVkNDM2OTRhMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC27xWymcSRlksg72WlR6bYjzJXsPgk+cK3n8S5bcLCDWSj sKmMk+oUUtqHQG8Z2ckD6cn/YepKLeh6lD0fS+d/BFjpKU5sFu3nyatOadSmp4C4 psuXVhf9uV1sUdswuLc+CgY5fAjWHYPnqYEplDAlNl4ScECxRvUGfsZc8ut3B8cY nicispLyn1qlyt7WOPgqKWLdSesTiphKdSW8iYCMzcldzODokGjLizJvPVX0ClBA T29CNzM3wJxL3pYYD8j/SeReWXOLRhWPMW4myqYuA6feXjhqXZrvCEwDtIzai0J3 Jj35tS0N3ScKbCNX6uosaZWWGgToCEQ2vdJkBcRLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBCn2teBSUidlZnyJ7OhsnpmsE1IwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzdhYjY1ZTYwLTY2MTYtNDk0YS1iYjczLWYwNDZlZWQ1NmNhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGNGAwDQYJKoZIhvcNAQELBQADggEBADxKX+Nk4WofoJBlLajMkte6OkI8 sJXINUukJkXAdrKwykul3CIS3n6w4Xzb32fDtI0Wv6XcM8P0Z4X0wATFoXCS7NMr qtw4RkBUvE17oagt2R0SEcgMQZ5/OLOxl1MPsvLCVN0HM1CQaaG5OLuuQqVr6LCC SVnGAN/7q+duIe2gG93+DfUVvLPeCs/ErFEgg+akm4eGfj8yurpKUINwEoLBJw2n mZI0O2QUWWmYQq8fyYEINg/yIEV/vaN05oGMlx0VNYBY1mCo1pyyB2tIWgy+6EJH fLjVRntAEjiYFcBcD1wSWEPUiiyEokS3yEHaDD5CWuURd54kwZ0edsyPwgU= -----END CERTIFICATE-----Generated at Thu May 2 23:48:40 2024 by rpki-client on console-fra.rpki-client.org