$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/9c48b61e-c780-475f-95b2-5810d7b8a343.roa File: 9c48b61e-c780-475f-95b2-5810d7b8a343.roa (raw, json) Hash identifier: yZwIS1mWycprSqkzszraQQHTpuCYR1DSfwgKjuWH8u0= Subject key identifier: C5:DE:39:9B:96:F9:22:CB:CF:E4:30:11:E1:D9:85:F2:2D:EE:27:9F Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 2879F5AF1447631C64831EB8359463121B9D95B1 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/9c48b61e-c780-475f-95b2-5810d7b8a343.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 395681 IP address blocks: 96.43.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 08 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:79:f5:af:14:47:63:1c:64:83:1e:b8:35:94:63:12:1b:9d:95:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=02b06fc317e5d9853f5f1c75b6ebdb73ac30eb8cfc15fb45dce6f938be59e2f4, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:55:19:4e:e9:e3:d5:32:9c:d0:33:c2:eb:26: 35:81:cb:0f:a1:d7:75:56:a4:aa:74:58:81:d3:d0: 76:0c:75:32:c4:10:24:57:51:ad:e3:34:6a:36:88: 10:15:45:d0:b2:bd:95:eb:c8:fd:e2:c3:87:c2:16: 90:cd:45:ec:5e:13:51:92:63:d1:f9:cf:f2:d9:49: 58:64:72:f9:8a:20:15:dd:fb:e3:5b:c2:19:6a:d4: ae:e3:43:7c:7d:da:98:c5:31:19:ca:fb:2c:d7:93: 52:e0:d5:ff:10:cf:b5:69:76:82:da:dc:1d:bd:21: 42:4d:8f:cf:d8:71:dc:ed:9f:c7:79:b9:d8:57:8e: a5:7d:fd:79:7b:ff:2c:40:28:40:e4:69:9f:62:8d: ed:a2:b9:6a:e2:d5:54:a9:da:00:4a:a4:7e:6d:2e: 98:c6:7e:d4:f6:46:f9:c2:05:bf:e5:3e:32:f4:39: 4e:7b:e8:de:e3:05:3f:b0:43:23:67:55:24:52:1a: 82:e1:2d:73:15:9c:19:6d:8c:c9:56:69:c7:0a:2f: 2d:6c:0d:48:c2:52:52:87:cb:3d:3f:b0:fe:17:78: eb:03:fe:54:d1:b3:b7:df:05:cf:88:50:20:51:b8: 75:82:27:67:d3:f7:4f:f3:e6:b5:65:61:22:85:b2: e6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:DE:39:9B:96:F9:22:CB:CF:E4:30:11:E1:D9:85:F2:2D:EE:27:9F X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/9c48b61e-c780-475f-95b2-5810d7b8a343.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.43.80.0/20 Signature Algorithm: sha256WithRSAEncryption 90:fc:14:a1:4e:dd:75:66:4c:2e:bb:82:fc:50:9e:8d:e8:7c: 08:a7:f0:1d:66:18:14:0f:38:74:b3:60:c8:28:47:b4:ad:7d: 9a:93:48:00:09:2e:8a:ac:ff:ae:90:d4:5c:34:4a:29:ac:89: f6:d7:21:30:9e:0c:d9:52:14:9e:ed:b2:a7:db:22:3d:b9:30: eb:a3:92:43:d3:34:b8:31:13:89:40:46:1f:33:2d:77:9d:73: cb:3e:55:47:31:fa:c2:81:ec:ec:e8:47:1a:4a:34:dd:89:dc: 63:45:2e:51:6a:e8:3e:cc:06:e4:31:70:b7:1d:53:7a:73:39: 7e:2f:f2:4c:f6:1a:09:16:13:e1:80:5b:1b:0b:7e:cc:43:27: 71:e1:74:06:4f:3e:cf:5d:5f:f7:44:b7:9b:81:bb:d2:94:83: 07:e6:1e:22:ae:05:aa:e4:a9:fd:ba:58:30:c3:11:ee:ef:40: 59:47:b0:84:1e:83:24:04:45:d0:1f:dd:a0:4c:1d:a5:81:39: 33:20:a9:2d:4c:d5:31:83:30:df:14:a5:d5:7d:f7:e5:ad:2d: db:90:5a:3f:28:2e:a8:cd:72:e8:b0:ac:96:2c:1f:08:bb:37: b7:36:3f:ff:b8:d2:9e:8d:71:a2:df:75:7b:cc:50:3f:10:91: 62:6c:39:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKHn1rxRHYxxkgx64NZRjEhudlbEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMmIwNmZjMzE3ZTVkOTg1M2Y1ZjFjNzViNmViZGI3M2Fj MzBlYjhjZmMxNWZiNDVkY2U2ZjkzOGJlNTllMmY0MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkVRlO6ePVMpzQM8LrJjWByw+h13VWpKp0WIHT0HYMdTLE ECRXUa3jNGo2iBAVRdCyvZXryP3iw4fCFpDNRexeE1GSY9H5z/LZSVhkcvmKIBXd ++Nbwhlq1K7jQ3x92pjFMRnK+yzXk1Lg1f8Qz7VpdoLa3B29IUJNj8/Ycdztn8d5 udhXjqV9/Xl7/yxAKEDkaZ9ije2iuWri1VSp2gBKpH5tLpjGftT2RvnCBb/lPjL0 OU576N7jBT+wQyNnVSRSGoLhLXMVnBltjMlWaccKLy1sDUjCUlKHyz0/sP4XeOsD /lTRs7ffBc+IUCBRuHWCJ2fT90/z5rVlYSKFsuYnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxd45m5b5IsvP5DAR4dmF8i3uJ58wHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzljNDhiNjFlLWM3ODAtNDc1Zi05NWIyLTU4MTBkN2I4YTM0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARgK1AwDQYJKoZIhvcNAQELBQADggEBAJD8FKFO3XVmTC67gvxQno3ofAin 8B1mGBQPOHSzYMgoR7StfZqTSAAJLoqs/66Q1Fw0SimsifbXITCeDNlSFJ7tsqfb Ij25MOujkkPTNLgxE4lARh8zLXedc8s+VUcx+sKB7OzoRxpKNN2J3GNFLlFq6D7M BuQxcLcdU3pzOX4v8kz2GgkWE+GAWxsLfsxDJ3HhdAZPPs9dX/dEt5uBu9KUgwfm HiKuBarkqf26WDDDEe7vQFlHsIQegyQERdAf3aBMHaWBOTMgqS1M1TGDMN8UpdV9 9+WtLduQWj8oLqjNcuiwrJYsHwi7N7c2P/+40p6NcaLfdXvMUD8QkWJsOVg= -----END CERTIFICATE-----Generated at Tue May 7 00:53:12 2024 by rpki-client on console-ams.rpki-client.org