$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/b9f6ddbc-9980-4d73-8c22-447f3272f6d2.roa File: b9f6ddbc-9980-4d73-8c22-447f3272f6d2.roa (raw, json) Hash identifier: /CuQqSWrHVSNhgSb3Bn9iZ4WG0Uc1XDD3P59fMJTt70= Subject key identifier: 48:B5:FF:7F:C8:9B:E2:33:74:01:32:D0:B0:7B:58:80:D9:15:5F:1B Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 1428C54F97031D3D898CA33B4822A9C942BEE7FE Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/b9f6ddbc-9980-4d73-8c22-447f3272f6d2.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 198.211.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:28:c5:4f:97:03:1d:3d:89:8c:a3:3b:48:22:a9:c9:42:be:e7:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=be424772b8766b8089115d40af35c09d8859f21948ccf1e0697a864e1efd4254, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:54:d0:70:ef:9d:1f:18:c1:45:f3:5a:ea:f1: d7:25:0a:64:3c:e5:36:6e:7c:8f:dd:d9:fd:c0:4a: da:bd:3f:a0:f4:04:8a:ad:04:a4:0d:b2:39:db:4c: 98:f6:96:ad:30:db:64:2e:5b:77:3b:36:11:15:02: 56:3d:7e:00:54:e3:07:ea:7c:16:08:c4:08:e6:f2: 83:40:36:38:77:3e:38:8e:46:28:fe:1a:73:54:a0: f5:42:a3:58:ef:40:51:cb:d4:88:ad:cf:04:13:89: 55:ef:4c:e4:24:54:c0:0f:40:d2:7d:0c:39:5d:27: 8a:a2:00:5a:eb:5d:6e:87:b8:c2:7b:dd:d7:26:44: 4c:e3:11:42:51:23:de:46:07:03:7e:52:45:9c:be: 45:05:cc:70:6d:e8:9a:e7:41:6f:15:01:b4:39:a9: 1e:ba:55:67:d9:e6:64:98:73:50:22:0d:b4:44:58: 05:fc:88:a6:12:21:2e:f4:01:f9:c8:45:6f:4a:02: db:05:8f:8a:a2:fd:1f:a9:e7:2a:cc:d4:b9:13:b2: 85:4b:21:40:2f:a3:3d:bd:0a:90:77:bc:cf:46:63: 48:b2:d8:30:ae:f1:84:f4:66:23:42:2f:e3:2f:7a: ba:b1:09:46:d4:1e:68:27:78:3e:0b:6b:1a:99:2e: 70:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:B5:FF:7F:C8:9B:E2:33:74:01:32:D0:B0:7B:58:80:D9:15:5F:1B X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/b9f6ddbc-9980-4d73-8c22-447f3272f6d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.211.0.0/18 Signature Algorithm: sha256WithRSAEncryption 83:0e:69:8c:6d:fb:de:0e:cd:67:66:6d:4b:d8:27:03:95:cb: b4:9a:14:9a:58:ad:ce:98:b0:b9:bd:05:34:ed:28:7a:61:0c: e0:2f:6c:26:69:0b:fe:77:de:05:80:d1:3b:7d:11:65:43:40: 96:ac:89:5a:3c:11:32:2d:ff:81:1a:9c:a8:93:a7:20:9f:8b: f2:d3:4b:98:e8:c7:46:06:cd:ed:82:a1:6c:0e:dc:bc:77:f6: f6:6a:c8:ec:5b:9b:b1:b0:5c:ed:9b:4e:2a:0e:07:13:4a:38: fe:29:f4:fa:ad:4d:fb:6a:ee:e6:79:c0:f5:7f:d2:25:8b:12: 0f:f1:1c:89:31:45:34:72:4d:7e:b6:ea:14:b5:33:13:43:45: 40:48:26:e2:26:08:1b:22:c2:6d:62:57:05:24:f6:6f:42:7a: 71:bd:54:3e:17:20:06:9f:df:2d:56:4e:54:b8:78:03:8a:90: 5c:75:ec:3f:0a:96:c9:df:12:4b:c3:39:f4:50:c3:45:6a:85: 4f:cf:20:0d:e9:0c:ea:9f:94:0f:c1:44:82:2c:86:19:9d:26: b0:31:b4:e4:fa:4a:5c:75:bb:50:ca:03:9a:23:bd:10:e9:73: 74:a8:1c:97:c4:9a:64:f9:8e:2d:79:6b:99:64:76:ee:c8:d7: 93:e3:98:f4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFCjFT5cDHT2JjKM7SCKpyUK+5/4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTQyNDc3MmI4NzY2YjgwODkxMTVkNDBhZjM1YzA5ZDg4 NTlmMjE5NDhjY2YxZTA2OTdhODY0ZTFlZmQ0MjU0MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkVNBw750fGMFF81rq8dclCmQ85TZufI/d2f3AStq9P6D0 BIqtBKQNsjnbTJj2lq0w22QuW3c7NhEVAlY9fgBU4wfqfBYIxAjm8oNANjh3PjiO Rij+GnNUoPVCo1jvQFHL1IitzwQTiVXvTOQkVMAPQNJ9DDldJ4qiAFrrXW6HuMJ7 3dcmREzjEUJRI95GBwN+UkWcvkUFzHBt6JrnQW8VAbQ5qR66VWfZ5mSYc1AiDbRE WAX8iKYSIS70AfnIRW9KAtsFj4qi/R+p5yrM1LkTsoVLIUAvoz29CpB3vM9GY0iy 2DCu8YT0ZiNCL+MverqxCUbUHmgneD4LaxqZLnBbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSLX/f8ib4jN0ATLQsHtYgNkVXxswHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2I5ZjZkZGJjLTk5ODAtNGQ3My04YzIyLTQ0N2YzMjcyZjZkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbG0wAwDQYJKoZIhvcNAQELBQADggEBAIMOaYxt+94OzWdmbUvYJwOVy7Sa FJpYrc6YsLm9BTTtKHphDOAvbCZpC/533gWA0Tt9EWVDQJasiVo8ETIt/4EanKiT pyCfi/LTS5jox0YGze2CoWwO3Lx39vZqyOxbm7GwXO2bTioOBxNKOP4p9PqtTftq 7uZ5wPV/0iWLEg/xHIkxRTRyTX626hS1MxNDRUBIJuImCBsiwm1iVwUk9m9CenG9 VD4XIAaf3y1WTlS4eAOKkFx17D8KlsnfEkvDOfRQw0VqhU/PIA3pDOqflA/BRIIs hhmdJrAxtOT6Slx1u1DKA5ojvRDpc3SoHJfEmmT5ji15a5lkdu7I15PjmPQ= -----END CERTIFICATE-----Generated at Wed May 8 23:47:45 2024 by rpki-client on console-ams.rpki-client.org