$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/8ecf0529-499f-4a9f-9886-c7afcdc99223.roa File: 8ecf0529-499f-4a9f-9886-c7afcdc99223.roa (raw, json) Hash identifier: xtHTxW2hcxOXZ7GtygTerSrj7vr214CLyp1zaAYrOcc= Subject key identifier: 8C:DF:B5:F9:FD:EC:E5:49:7B:39:4F:C1:77:A3:6A:DE:C7:72:A4:A2 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 2E1AE10EBCEDF3A31DFA0CBA6D0305F58DE56947 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/8ecf0529-499f-4a9f-9886-c7afcdc99223.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 108.166.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:1a:e1:0e:bc:ed:f3:a3:1d:fa:0c:ba:6d:03:05:f5:8d:e5:69:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=50756e01c68fe98b3fef0276ac87ca9ff4baa1305d614bda87e4278ff44300cb, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:0f:31:06:46:bb:cb:53:b3:34:ee:86:11:00: e0:ce:86:2b:92:81:6a:13:f0:ae:e3:ee:41:30:a9: fa:86:4c:df:fe:c7:a9:12:85:c4:5e:28:f0:9c:f7: ed:6f:25:6e:a9:b5:de:56:0b:a2:2e:91:29:d2:bf: c7:6c:e2:5a:3f:84:fc:65:5f:8a:61:cb:23:12:19: b6:af:d4:ee:35:4e:a3:34:c1:ff:c1:95:ff:cc:46: 51:93:a5:fb:6e:cc:66:b6:e5:8f:8d:3d:51:60:06: 19:e2:72:34:6a:1e:05:68:52:f1:04:ff:ad:2a:54: 0f:d7:6b:e9:30:05:95:ee:6f:3d:dc:cc:64:06:6e: 6d:db:03:87:0c:bc:a7:b2:ac:c6:29:2e:ae:ee:b3: 01:44:be:e3:93:b9:a9:24:8c:fc:85:24:f1:0d:54: b5:49:91:a9:5c:e4:4b:f2:08:0f:38:02:ec:9e:10: d3:9c:e8:4c:00:be:5d:8c:ef:6d:47:01:38:99:e2: 70:48:f8:b0:32:e9:19:2f:ff:07:a6:bf:14:30:a5: 41:f6:fa:29:e0:f0:d3:76:73:95:1d:fe:eb:83:63: f5:b1:b2:78:c9:5b:f6:4d:a6:c0:2c:77:64:f3:be: a8:cf:e3:8f:ea:bd:41:11:fe:70:ec:23:36:4f:71: 90:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:DF:B5:F9:FD:EC:E5:49:7B:39:4F:C1:77:A3:6A:DE:C7:72:A4:A2 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/8ecf0529-499f-4a9f-9886-c7afcdc99223.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.166.192.0/19 Signature Algorithm: sha256WithRSAEncryption 3f:98:4b:dd:85:f1:36:42:4a:38:ab:c6:39:8f:54:15:07:16: 7d:38:13:a6:b4:d8:7f:b0:68:ba:00:c5:44:af:0e:ba:76:e2: c9:7a:ba:b9:c5:0d:73:80:b7:d2:38:46:ff:c9:e2:9a:84:09: 20:6f:17:b2:c1:2d:c1:a1:07:8a:42:95:e8:6c:55:ae:04:d4: f2:90:8c:6f:2b:77:f6:34:29:8a:c0:b8:f4:cb:c5:4a:59:bd: 5f:f2:ae:7b:08:99:b9:e6:92:40:d9:58:39:43:f4:2e:d5:1c: a3:a6:5c:73:05:d4:57:2f:26:94:54:6c:b3:dd:56:56:e1:ff: 76:c0:89:08:f2:7d:95:4c:34:a5:b9:11:94:b6:5a:52:ea:87: c0:f6:df:95:92:89:96:2a:05:7d:15:44:af:af:f5:ad:96:73: 8d:01:fc:51:19:b3:84:84:fb:7e:3f:b8:4e:2a:77:99:13:c7: 50:ca:73:23:d4:54:c0:4a:1d:ef:4a:c9:d9:0d:cf:eb:a3:e6: df:cf:3b:f6:92:83:f3:9e:ca:c6:35:f1:25:65:92:f6:fc:12: 3e:f3:ee:b6:e6:c1:43:85:62:bb:33:63:5a:77:8a:25:b8:84: cd:54:be:7f:c5:02:0a:77:cc:0c:39:04:44:47:8e:24:67:f8: 79:20:1a:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULhrhDrzt86Md+gy6bQMF9Y3laUcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MDc1NmUwMWM2OGZlOThiM2ZlZjAyNzZhYzg3Y2E5ZmY0 YmFhMTMwNWQ2MTRiZGE4N2U0Mjc4ZmY0NDMwMGNiMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeDzEGRrvLU7M07oYRAODOhiuSgWoT8K7j7kEwqfqGTN/+ x6kShcReKPCc9+1vJW6ptd5WC6IukSnSv8ds4lo/hPxlX4phyyMSGbav1O41TqM0 wf/Blf/MRlGTpftuzGa25Y+NPVFgBhnicjRqHgVoUvEE/60qVA/Xa+kwBZXubz3c zGQGbm3bA4cMvKeyrMYpLq7uswFEvuOTuakkjPyFJPENVLVJkalc5EvyCA84Auye ENOc6EwAvl2M721HATiZ4nBI+LAy6Rkv/wemvxQwpUH2+ing8NN2c5Ud/uuDY/Wx snjJW/ZNpsAsd2TzvqjP44/qvUER/nDsIzZPcZBHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjN+1+f3s5Ul7OU/Bd6Nq3sdypKIwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzhlY2YwNTI5LTQ5OWYtNGE5Zi05ODg2LWM3YWZjZGM5OTIyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVspsAwDQYJKoZIhvcNAQELBQADggEBAD+YS92F8TZCSjirxjmPVBUHFn04 E6a02H+waLoAxUSvDrp24sl6urnFDXOAt9I4Rv/J4pqECSBvF7LBLcGhB4pClehs Va4E1PKQjG8rd/Y0KYrAuPTLxUpZvV/yrnsImbnmkkDZWDlD9C7VHKOmXHMF1Fcv JpRUbLPdVlbh/3bAiQjyfZVMNKW5EZS2WlLqh8D235WSiZYqBX0VRK+v9a2Wc40B /FEZs4SE+34/uE4qd5kTx1DKcyPUVMBKHe9KydkNz+uj5t/PO/aSg/OeysY18SVl kvb8Ej7z7rbmwUOFYrszY1p3iiW4hM1Uvn/FAgp3zAw5BERHjiRn+HkgGus= -----END CERTIFICATE-----Generated at Wed May 8 23:47:45 2024 by rpki-client on console-ams.rpki-client.org