$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/ae60e184-ac73-43b9-a7e3-494a44beca1b.roa File: ae60e184-ac73-43b9-a7e3-494a44beca1b.roa (raw, json) Hash identifier: VKAxrtWYoeBILzEczJOLyW9atTxeeO8PynzE5Stgogs= Subject key identifier: CB:D2:FF:08:5E:3C:90:DC:44:1B:4A:A6:C7:8F:F3:82:16:E1:55:CB Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 48B8488D5020265695AD6FFC22695E94B264FF38 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/ae60e184-ac73-43b9-a7e3-494a44beca1b.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.234.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:b8:48:8d:50:20:26:56:95:ad:6f:fc:22:69:5e:94:b2:64:ff:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=6a98f8930f741a15be5a192d467a6bc609f367decb6055757da16b8c250be047, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5d:ee:76:59:09:31:03:0b:db:1e:c4:73:32: 3c:04:cd:d3:98:45:7b:d4:e6:b8:b8:d2:a0:c9:6f: 67:a2:29:2c:3f:3a:a2:ef:a1:a8:c4:91:2d:5b:b3: bd:19:1b:31:c0:1e:fd:d6:08:86:ac:e6:9d:7c:3e: 6c:64:3b:49:08:08:5c:c6:ac:2d:0a:c5:f4:88:d9: a9:9f:79:6b:b2:5e:be:1f:b5:73:c1:05:3a:d3:c1: 60:95:4f:18:56:b1:d4:9f:45:d3:39:18:5b:be:91: 9f:e7:6a:6d:3b:3a:ad:dd:55:3b:e6:b7:2f:47:05: d8:cb:06:d0:4c:25:12:f6:bc:40:8d:24:d2:5f:bc: ff:06:d5:a4:de:99:96:ea:eb:10:18:43:38:bd:f6: 5d:bf:6f:37:3c:4c:e2:1c:82:2c:73:7b:7c:b7:03: 1d:26:69:e8:f3:45:53:e2:46:f1:1f:08:35:bc:c7: 51:87:ca:0e:35:bc:75:b0:1a:65:b4:50:bf:8b:41: 0f:d7:42:06:7c:5f:fb:3c:17:c3:94:c9:b8:39:a2: 60:49:3f:1a:b8:3f:0b:ef:c6:af:1a:b6:fe:ed:69: 6c:ee:42:d6:2d:04:62:ff:64:2c:55:a5:ac:f6:76: c7:5e:6e:23:1e:2b:85:a6:1a:e7:ed:21:61:82:a5: a3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D2:FF:08:5E:3C:90:DC:44:1B:4A:A6:C7:8F:F3:82:16:E1:55:CB X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/ae60e184-ac73-43b9-a7e3-494a44beca1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.234.195.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:58:73:df:b9:8f:21:af:34:d4:cf:9b:22:be:f5:44:89:b3: 48:6f:98:2f:55:33:fe:d4:6c:3f:fa:27:ca:a2:e4:08:30:e2: 7f:b7:b0:5f:39:ab:91:dc:c0:78:84:08:32:d7:d5:a0:c2:0b: 84:19:e2:1c:5f:0d:26:f3:d7:f8:fd:18:6d:92:bd:9e:55:b4: 6c:e1:0e:45:03:7a:00:9d:d1:43:49:5e:b9:41:78:73:b3:58: 4f:43:b5:87:1b:2e:3e:c5:07:a0:48:61:9e:16:14:2b:ee:28: 6b:4f:6a:47:14:c5:5c:c1:a0:9f:da:3e:60:96:98:37:6d:10: 23:8b:2f:81:2d:68:07:48:18:c4:73:ad:1f:b3:46:99:fe:a6: 7e:1d:14:47:e3:e9:9f:09:83:f5:67:92:4c:99:3a:ef:fc:b5: 85:9f:76:c3:0a:2d:56:bf:71:63:38:08:65:f1:89:0c:59:6d: 07:ff:da:98:d0:48:73:74:b9:29:43:56:f9:ba:77:d8:ab:7b: b4:9c:07:4d:f7:08:fa:b7:e2:e9:09:2d:2c:ac:02:64:ea:17: 14:f7:a6:22:2e:76:4c:70:db:fc:bc:fe:88:ce:18:18:03:c0: 49:a5:ce:e8:9d:ec:69:d6:ea:a9:77:38:38:ef:2b:6e:ba:7f: d1:bc:69:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSLhIjVAgJlaVrW/8ImlelLJk/zgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTk4Zjg5MzBmNzQxYTE1YmU1YTE5MmQ0NjdhNmJjNjA5 ZjM2N2RlY2I2MDU1NzU3ZGExNmI4YzI1MGJlMDQ3MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/Xe52WQkxAwvbHsRzMjwEzdOYRXvU5ri40qDJb2eiKSw/ OqLvoajEkS1bs70ZGzHAHv3WCIas5p18PmxkO0kICFzGrC0KxfSI2amfeWuyXr4f tXPBBTrTwWCVTxhWsdSfRdM5GFu+kZ/nam07Oq3dVTvmty9HBdjLBtBMJRL2vECN JNJfvP8G1aTemZbq6xAYQzi99l2/bzc8TOIcgixze3y3Ax0maejzRVPiRvEfCDW8 x1GHyg41vHWwGmW0UL+LQQ/XQgZ8X/s8F8OUybg5omBJPxq4Pwvvxq8atv7taWzu QtYtBGL/ZCxVpaz2dsdebiMeK4WmGuftIWGCpaPJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUy9L/CF48kNxEG0qmx4/zghbhVcswHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2FlNjBlMTg0LWFjNzMtNDNiOS1hN2UzLTQ5NGE0NGJlY2ExYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX6sMwDQYJKoZIhvcNAQELBQADggEBAFtYc9+5jyGvNNTPmyK+9USJs0hv mC9VM/7UbD/6J8qi5Agw4n+3sF85q5HcwHiECDLX1aDCC4QZ4hxfDSbz1/j9GG2S vZ5VtGzhDkUDegCd0UNJXrlBeHOzWE9DtYcbLj7FB6BIYZ4WFCvuKGtPakcUxVzB oJ/aPmCWmDdtECOLL4EtaAdIGMRzrR+zRpn+pn4dFEfj6Z8Jg/VnkkyZOu/8tYWf dsMKLVa/cWM4CGXxiQxZbQf/2pjQSHN0uSlDVvm6d9ire7ScB033CPq34ukJLSys AmTqFxT3piIudkxw2/y8/ojOGBgDwEmlzuid7GnW6ql3ODjvK266f9G8aWA= -----END CERTIFICATE-----Generated at Fri May 3 00:07:10 2024 by rpki-client on console-ams.rpki-client.org