$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/816353c8-138b-40ac-a089-1b56f6f01f83.roa File: 816353c8-138b-40ac-a089-1b56f6f01f83.roa (raw, json) Hash identifier: pWWAOt+zNV3K9CDuuODLaNU6er7HDqXKsENaFEGG5NM= Subject key identifier: 06:8B:C2:63:FB:1B:98:0A:61:5A:9A:3F:61:5D:D6:3E:A5:E8:1D:8D Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 303377F0783D237F2BBE6CF37F62E7AF5F07F853 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/816353c8-138b-40ac-a089-1b56f6f01f83.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 43.226.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:33:77:f0:78:3d:23:7f:2b:be:6c:f3:7f:62:e7:af:5f:07:f8:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=b7da398547676709b158b28593acdaa343a83e5e54d38ebed4beb9fa98ced62b, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b4:45:50:cc:37:cb:31:47:46:13:6c:a3:ed: f2:95:45:43:ea:9d:99:5d:b5:33:3b:f0:54:42:8c: b0:9b:f1:8a:61:dc:33:76:c5:f1:ca:c8:47:a0:32: be:c8:c5:03:b7:af:f5:d2:57:19:78:61:e3:c9:eb: 7f:52:e7:53:db:1f:81:62:5a:94:4c:d5:68:45:f9: 3c:4c:35:e6:19:b5:4a:f1:3c:ec:a0:a6:12:49:72: b1:af:3c:16:83:11:b1:93:51:93:02:a2:63:b8:14: 00:0d:de:51:18:3a:94:d2:36:b0:7c:d8:71:3f:1d: 7b:1b:ac:e8:6e:af:2c:fc:f3:a1:9a:29:47:ba:cf: 73:a1:2e:8e:95:02:70:ac:24:f6:2f:07:85:2e:13: 07:a1:bc:ac:9a:ca:a0:b5:2e:10:b0:3a:23:f4:f8: 43:cf:a7:11:a5:c0:d2:0c:7e:9a:5e:7e:f5:1d:34: c3:a5:43:aa:a5:a8:87:ad:de:f1:be:a0:c8:e7:53: cb:bc:81:51:5c:64:9e:fc:97:78:a0:43:8d:52:42: 12:86:c1:a8:71:12:ea:0e:63:8d:65:c5:31:48:58: c9:4e:f1:dc:63:72:b1:73:92:ab:f5:d6:34:80:98: 5e:8e:0d:e5:16:93:cb:6e:19:8c:ba:14:e0:eb:16: 64:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8B:C2:63:FB:1B:98:0A:61:5A:9A:3F:61:5D:D6:3E:A5:E8:1D:8D X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/816353c8-138b-40ac-a089-1b56f6f01f83.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.24.0/22 Signature Algorithm: sha256WithRSAEncryption 93:34:e3:9e:f1:74:ae:69:20:0e:7f:d5:c5:a8:ef:7d:8d:74: d3:4c:53:4c:c5:db:15:d8:c4:23:73:c3:63:dd:1e:f5:72:45: 8f:8c:1d:9f:0a:5c:22:7a:db:f3:d8:60:47:9b:e4:0a:31:23: a1:50:4d:3d:31:08:01:53:79:11:9a:41:6b:0a:5a:36:d8:6b: 99:c3:16:df:54:1e:04:bd:94:34:b4:59:de:45:74:d0:fd:0b: 78:f6:46:69:cc:ab:bf:58:22:1c:a5:b7:ef:62:6d:5c:82:72: aa:6a:08:fc:56:8e:f9:00:cd:27:3c:3a:a1:39:cc:3e:86:bf: 3c:66:58:44:5c:a0:39:48:68:42:c3:3f:ad:c6:9e:b2:50:0f: b7:0e:91:79:14:7c:2b:2d:69:b1:5e:e8:62:19:fc:66:cc:e4: 8a:01:96:4e:41:b3:ed:58:e6:d1:5a:d3:9c:16:12:46:90:15: ad:88:a4:21:ce:19:69:e3:f8:ee:79:53:51:6d:c3:41:a2:f0: 9d:10:4f:27:f6:d4:48:d4:50:55:8c:83:b4:aa:95:9b:a5:05: 9a:d8:1e:d6:e0:54:43:96:c1:1b:7c:d3:31:3d:ae:d1:34:64: a0:4d:52:35:9a:d6:1b:b8:ed:83:4d:a8:49:22:50:3d:b0:1b: 8b:86:c8:ce -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMDN38Hg9I38rvmzzf2Lnr18H+FMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiN2RhMzk4NTQ3Njc2NzA5YjE1OGIyODU5M2FjZGFhMzQz YTgzZTVlNTRkMzhlYmVkNGJlYjlmYTk4Y2VkNjJiMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2tEVQzDfLMUdGE2yj7fKVRUPqnZldtTM78FRCjLCb8Yph 3DN2xfHKyEegMr7IxQO3r/XSVxl4YePJ639S51PbH4FiWpRM1WhF+TxMNeYZtUrx POygphJJcrGvPBaDEbGTUZMComO4FAAN3lEYOpTSNrB82HE/HXsbrOhuryz886Ga KUe6z3OhLo6VAnCsJPYvB4UuEwehvKyayqC1LhCwOiP0+EPPpxGlwNIMfppefvUd NMOlQ6qlqIet3vG+oMjnU8u8gVFcZJ78l3igQ41SQhKGwahxEuoOY41lxTFIWMlO 8dxjcrFzkqv11jSAmF6ODeUWk8tuGYy6FODrFmQvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBovCY/sbmAphWpo/YV3WPqXoHY0wHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzgxNjM1M2M4LTEzOGItNDBhYy1hMDg5LTFiNTZmNmYwMWY4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIr4hgwDQYJKoZIhvcNAQELBQADggEBAJM0457xdK5pIA5/1cWo732NdNNM U0zF2xXYxCNzw2PdHvVyRY+MHZ8KXCJ62/PYYEeb5AoxI6FQTT0xCAFTeRGaQWsK WjbYa5nDFt9UHgS9lDS0Wd5FdND9C3j2RmnMq79YIhylt+9ibVyCcqpqCPxWjvkA zSc8OqE5zD6GvzxmWERcoDlIaELDP63GnrJQD7cOkXkUfCstabFe6GIZ/GbM5IoB lk5Bs+1Y5tFa05wWEkaQFa2IpCHOGWnj+O55U1Ftw0Gi8J0QTyf21EjUUFWMg7Sq lZulBZrYHtbgVEOWwRt80zE9rtE0ZKBNUjWa1hu47YNNqEkiUD2wG4uGyM4= -----END CERTIFICATE-----Generated at Thu May 9 15:09:08 2024 by rpki-client on console-ams.rpki-client.org