$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/a23bcefa-ce59-4edc-85ff-ad334789cccc.roa File: a23bcefa-ce59-4edc-85ff-ad334789cccc.roa (raw, json) Hash identifier: DPW0+OtNiQguwSU36jJGqbeLCUJx1rcYrlpPWzx6qGU= Subject key identifier: EE:FA:4B:0A:85:B2:E4:E4:A1:23:B8:59:80:4B:E0:41:CD:7C:6A:7F Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 14C5F3B83F957F1D288150F68271ADD0D21F6EFF Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/a23bcefa-ce59-4edc-85ff-ad334789cccc.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 43.226.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c5:f3:b8:3f:95:7f:1d:28:81:50:f6:82:71:ad:d0:d2:1f:6e:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=d5a4e5639f0266c067f49a134fb7c781f109d6f36128d72c2a5989e4b7cbc8bf, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f7:98:75:05:70:01:29:57:5d:55:77:5f:fa: 40:6b:8b:cb:98:02:21:f6:a8:84:09:c0:47:a4:68: db:d6:4e:c9:cc:de:1b:2d:c1:61:1a:28:09:95:37: b0:6f:a2:1c:e9:18:a5:13:3f:fb:c9:04:c6:74:69: 37:24:44:dc:e1:0d:3e:4a:2d:73:7c:fe:44:c2:e1: d4:e9:49:6f:5a:3a:94:75:26:53:57:80:5e:f4:a2: e1:13:a2:2c:5c:d3:6d:ac:d3:d9:29:a5:51:85:2e: fa:c7:63:9a:6c:fa:d7:76:36:92:92:84:d6:91:aa: 51:56:12:c7:53:a6:af:09:5d:80:8f:94:c2:7f:2d: 27:f0:e7:07:77:90:c5:cd:6a:a1:b9:ad:7a:19:7e: 59:c9:8b:a3:53:32:dd:ec:4a:89:c0:7a:7b:0e:a5: 44:ae:57:c1:f7:77:b9:26:88:36:48:ce:ca:51:60: 21:91:ee:cb:7a:ef:b9:ea:91:2e:7e:20:00:50:c5: f4:cd:91:64:63:38:be:80:4a:29:92:a3:26:1d:a9: 98:be:c1:be:99:17:3f:08:67:e9:d5:2f:bb:dd:84: 99:7f:9b:a7:0f:b5:8e:2b:3f:d3:08:01:89:4d:44: dd:a6:9d:6b:b4:e6:df:8d:7c:a9:c9:95:c4:cb:c7: 88:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:FA:4B:0A:85:B2:E4:E4:A1:23:B8:59:80:4B:E0:41:CD:7C:6A:7F X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/a23bcefa-ce59-4edc-85ff-ad334789cccc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.24.0/24 Signature Algorithm: sha256WithRSAEncryption 46:4d:3d:24:0f:b8:30:37:52:30:74:65:5b:03:09:bd:be:ec: b6:d1:f4:24:9b:fa:62:c2:64:28:c0:32:70:1a:c0:c5:f4:d1: 7e:e1:7f:96:fb:26:1c:41:25:0e:5f:c1:fe:6d:61:b0:14:c9: 80:0b:62:0b:61:33:7c:63:57:57:af:9b:f0:c9:5d:c9:82:67: c3:36:4e:1f:d2:3c:93:aa:d2:99:34:b3:52:cb:e0:b5:23:f1: 16:ca:a8:e0:39:80:b7:40:ed:10:77:7c:28:e5:82:9c:18:73: de:12:b5:d2:c6:61:73:20:07:30:af:b3:67:eb:1a:29:91:cc: ef:d4:0a:97:d8:b5:a1:0a:62:1a:c7:21:db:d6:d6:91:8b:43: c7:88:01:c6:ea:66:71:a7:d9:a2:da:e1:65:09:15:5b:a8:7a: 50:05:aa:80:2f:0b:ac:93:59:37:d7:52:46:4c:09:69:f4:98: c5:f6:77:b0:01:f8:fa:ac:4e:df:66:2a:fb:a4:91:3b:01:fe: 4e:fa:4e:bd:23:1e:97:0a:b1:64:40:c0:83:e6:a8:13:af:08: 42:62:e8:1b:78:56:b4:87:f9:22:24:87:6b:ca:f3:5e:76:b8: 20:75:cf:e5:92:d1:ae:76:eb:71:27:41:f7:c1:88:34:af:b2: f1:7e:59:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFMXzuD+Vfx0ogVD2gnGt0NIfbv8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWE0ZTU2MzlmMDI2NmMwNjdmNDlhMTM0ZmI3Yzc4MWYx MDlkNmYzNjEyOGQ3MmMyYTU5ODllNGI3Y2JjOGJmMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB95h1BXABKVddVXdf+kBri8uYAiH2qIQJwEekaNvWTsnM 3hstwWEaKAmVN7BvohzpGKUTP/vJBMZ0aTckRNzhDT5KLXN8/kTC4dTpSW9aOpR1 JlNXgF70ouEToixc022s09kppVGFLvrHY5ps+td2NpKShNaRqlFWEsdTpq8JXYCP lMJ/LSfw5wd3kMXNaqG5rXoZflnJi6NTMt3sSonAensOpUSuV8H3d7kmiDZIzspR YCGR7st677nqkS5+IABQxfTNkWRjOL6ASimSoyYdqZi+wb6ZFz8IZ+nVL7vdhJl/ m6cPtY4rP9MIAYlNRN2mnWu05t+NfKnJlcTLx4gRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7vpLCoWy5OShI7hZgEvgQc18an8wHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2EyM2JjZWZhLWNlNTktNGVkYy04NWZmLWFkMzM0Nzg5Y2NjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAr4hgwDQYJKoZIhvcNAQELBQADggEBAEZNPSQPuDA3UjB0ZVsDCb2+7LbR 9CSb+mLCZCjAMnAawMX00X7hf5b7JhxBJQ5fwf5tYbAUyYALYgthM3xjV1evm/DJ XcmCZ8M2Th/SPJOq0pk0s1LL4LUj8RbKqOA5gLdA7RB3fCjlgpwYc94StdLGYXMg BzCvs2frGimRzO/UCpfYtaEKYhrHIdvW1pGLQ8eIAcbqZnGn2aLa4WUJFVuoelAF qoAvC6yTWTfXUkZMCWn0mMX2d7AB+PqsTt9mKvukkTsB/k76Tr0jHpcKsWRAwIPm qBOvCEJi6Bt4VrSH+SIkh2vK8152uCB1z+WS0a5263EnQffBiDSvsvF+WRU= -----END CERTIFICATE-----Generated at Fri May 3 00:07:10 2024 by rpki-client on console-ams.rpki-client.org