$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/b295e5bf-a2ff-4290-9474-c8fd9ba5ad3e.roa File: b295e5bf-a2ff-4290-9474-c8fd9ba5ad3e.roa (raw, json) Hash identifier: p1TDzN4fK/vrX2yxvtr0Asfvlt8ajMC3b6ghkYuwEGQ= Subject key identifier: 2B:EC:14:A9:5D:52:73:66:B7:76:F6:CD:F2:2F:E4:FC:2B:E3:4C:40 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 1808C26A39278ACCA591B2E5FBB695C19F8F4F90 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/b295e5bf-a2ff-4290-9474-c8fd9ba5ad3e.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 35916 IP address blocks: 198.74.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:08:c2:6a:39:27:8a:cc:a5:91:b2:e5:fb:b6:95:c1:9f:8f:4f:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=e9b7718d2e257d142fe4549125c8413d915370422b98d9ad0eb2979091f8f5b6, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:64:2d:f3:7e:f5:4b:aa:9d:2b:b3:c2:f2:1c: d5:98:27:09:80:37:bc:cf:11:ee:61:ae:db:d0:87: 88:c1:be:5d:8c:95:ac:c5:a0:21:f8:6b:88:52:d8: 42:2a:df:1f:9b:1d:2b:1d:48:ab:d7:62:16:6e:c0: 88:82:cb:8e:ba:57:11:88:de:f2:e2:68:bf:c7:82: fe:4b:28:0c:06:93:a8:f1:45:97:c1:8f:e8:77:9d: 84:54:da:2e:df:76:7c:3c:75:17:e7:ea:f4:1e:ab: 6d:3a:0c:39:c3:9e:d7:81:fe:81:2b:25:9a:81:c7: a4:41:ae:e9:30:e5:8d:9f:6a:7d:30:c6:fb:5d:18: b8:72:3c:42:e7:04:12:c3:eb:20:38:51:24:31:29: f4:87:63:6b:e4:0c:87:eb:e0:0f:26:e3:8f:61:6c: bb:fb:13:d5:4f:c8:c6:d6:d9:47:2d:2a:32:77:95: 6c:e4:bf:2e:dc:cd:67:56:96:2e:08:1a:d5:ac:7d: e2:ad:2a:d4:4c:49:60:96:ec:84:eb:ad:ee:8a:ac: 07:9b:f6:01:5a:6e:e9:02:d8:75:48:84:c9:90:23: 2a:51:53:7c:ed:89:d6:4d:29:43:02:84:3d:6f:2e: 09:16:1d:17:b7:6f:c0:17:98:80:ab:56:10:70:83: cb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EC:14:A9:5D:52:73:66:B7:76:F6:CD:F2:2F:E4:FC:2B:E3:4C:40 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/b295e5bf-a2ff-4290-9474-c8fd9ba5ad3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.74.96.0/19 Signature Algorithm: sha256WithRSAEncryption 85:cf:47:53:d2:2e:e2:1b:c5:3c:f8:8b:d5:bc:8a:91:db:01: 83:17:f1:d4:10:03:83:79:84:74:5a:bf:b3:8c:4b:96:d1:1f: 88:1b:4a:10:d6:7a:88:a6:51:68:f5:16:a6:ab:62:67:e2:82: 6f:a5:5b:6e:2f:f1:0d:af:2a:f0:c1:58:b4:c4:34:0b:51:ac: 65:be:8d:0d:b7:5f:53:1c:a9:d7:a2:5e:1a:64:07:a8:9f:aa: 5e:a6:e6:07:40:e9:31:29:23:9b:20:bb:ce:2f:90:79:33:5a: 09:9d:7b:04:5e:09:c3:c6:e7:02:8f:39:0a:cb:21:fe:df:17: 86:31:c7:53:05:74:3c:97:67:85:7f:b3:10:dd:9a:b1:c1:bc: 8c:94:aa:b2:6d:55:b5:d8:4d:33:c8:5a:f2:e3:31:c1:d8:c5: 02:e9:e8:14:ef:b8:0b:4e:2f:3b:a2:47:a1:7c:35:69:62:f2: e1:16:5e:50:d5:3a:1f:5b:b9:c6:f2:81:11:78:e9:3d:e4:56: 09:9a:bb:a1:d3:dd:80:94:00:19:84:bd:36:a9:54:a4:ec:93: e5:4c:03:eb:b2:4b:fc:57:fa:93:25:f3:81:18:e5:14:d9:82: 42:9b:f7:ea:ae:29:62:37:6f:d8:75:ad:71:04:da:d9:55:e1: 22:14:c8:3a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGAjCajknisylkbLl+7aVwZ+PT5AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWI3NzE4ZDJlMjU3ZDE0MmZlNDU0OTEyNWM4NDEzZDkx NTM3MDQyMmI5OGQ5YWQwZWIyOTc5MDkxZjhmNWI2MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEZC3zfvVLqp0rs8LyHNWYJwmAN7zPEe5hrtvQh4jBvl2M lazFoCH4a4hS2EIq3x+bHSsdSKvXYhZuwIiCy466VxGI3vLiaL/Hgv5LKAwGk6jx RZfBj+h3nYRU2i7fdnw8dRfn6vQeq206DDnDnteB/oErJZqBx6RBrukw5Y2fan0w xvtdGLhyPELnBBLD6yA4USQxKfSHY2vkDIfr4A8m449hbLv7E9VPyMbW2UctKjJ3 lWzkvy7czWdWli4IGtWsfeKtKtRMSWCW7ITrre6KrAeb9gFabukC2HVIhMmQIypR U3ztidZNKUMChD1vLgkWHRe3b8AXmICrVhBwg8ujAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUK+wUqV1Sc2a3dvbN8i/k/CvjTEAwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2IyOTVlNWJmLWEyZmYtNDI5MC05NDc0LWM4ZmQ5YmE1YWQzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGSmAwDQYJKoZIhvcNAQELBQADggEBAIXPR1PSLuIbxTz4i9W8ipHbAYMX 8dQQA4N5hHRav7OMS5bRH4gbShDWeoimUWj1FqarYmfigm+lW24v8Q2vKvDBWLTE NAtRrGW+jQ23X1McqdeiXhpkB6ifql6m5gdA6TEpI5sgu84vkHkzWgmdewReCcPG 5wKPOQrLIf7fF4Yxx1MFdDyXZ4V/sxDdmrHBvIyUqrJtVbXYTTPIWvLjMcHYxQLp 6BTvuAtOLzuiR6F8NWli8uEWXlDVOh9bucbygRF46T3kVgmau6HT3YCUABmEvTap VKTsk+VMA+uyS/xX+pMl84EY5RTZgkKb9+quKWI3b9h1rXEE2tlV4SIUyDo= -----END CERTIFICATE-----Generated at Fri May 3 00:07:10 2024 by rpki-client on console-ams.rpki-client.org