$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/c942fa5a-16ca-4f3b-920f-b78abb62f8e2.roa File: c942fa5a-16ca-4f3b-920f-b78abb62f8e2.roa (raw, json) Hash identifier: krjIuwXhz+gdlxYQvrJUWVbaXbRk+Rm8gKPy8ZqaoB8= Subject key identifier: 6F:D2:3A:97:93:D1:07:75:7D:69:5E:A6:60:20:44:8F:5D:C8:AC:25 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 081A62608F79F361C4B37DEC17AF459A100209E2 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/c942fa5a-16ca-4f3b-920f-b78abb62f8e2.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 216.240.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:1a:62:60:8f:79:f3:61:c4:b3:7d:ec:17:af:45:9a:10:02:09:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=25e0ca48d051ba9df74c996065bac69129d47031f6b971680b2adebfff02bf87, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0f:a1:71:1b:c4:4a:c4:1f:95:cf:49:d1:03: d4:b1:9b:97:dc:d7:fd:c2:d5:71:0f:d1:63:98:e0: 7a:02:7e:4a:aa:1f:0a:c8:c9:3b:6d:89:4b:79:b0: bf:49:3f:55:2f:23:ba:a7:e3:a6:fa:79:fd:eb:0f: 31:e6:51:4d:b8:8c:a0:fb:f0:38:a2:e0:26:07:3c: d6:ba:31:2c:13:24:97:9e:22:54:e5:fe:32:a9:61: 51:a1:67:4a:0f:83:2f:79:2b:94:5b:84:7e:dd:57: 2c:ed:d8:6e:12:5d:1f:46:63:1a:fb:54:d8:b6:f8: ce:63:6d:14:a4:85:3d:1d:83:99:75:8e:89:1f:e0: 18:32:6d:b1:01:37:11:74:01:af:91:aa:85:93:14: 6e:65:09:4a:ad:e4:f0:49:62:fa:6e:37:d9:58:17: a0:6c:19:52:ba:40:a9:00:30:e3:0d:62:f8:1a:fd: 10:f3:aa:b0:7d:d4:bd:b2:37:24:39:77:d0:87:07: db:9b:2b:a5:dc:bf:bb:dc:5e:98:e4:73:43:59:db: 50:49:4a:c4:9f:27:f7:f4:37:b1:bb:95:38:91:fc: 6b:fb:16:f5:a4:d8:79:60:90:9e:35:82:bd:d0:99: ca:bf:f3:b2:f0:53:1a:e8:43:57:f8:e7:17:93:fc: f4:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D2:3A:97:93:D1:07:75:7D:69:5E:A6:60:20:44:8F:5D:C8:AC:25 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/c942fa5a-16ca-4f3b-920f-b78abb62f8e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.240.128.0/19 Signature Algorithm: sha256WithRSAEncryption 07:39:df:75:4b:85:f8:c5:e9:04:5c:f0:e5:2a:1b:90:b7:85: 63:2a:3f:6b:d9:55:ef:1b:f2:f5:85:3b:fc:09:6e:8f:33:9e: 1b:c5:23:72:05:9f:96:0d:50:3e:52:05:03:14:28:3a:e4:47: 25:03:34:d9:88:ec:98:29:06:23:4d:65:83:b7:a2:41:6c:ab: 22:a6:cf:ca:d1:b5:b4:a5:12:97:6a:cd:73:86:a3:37:b7:87: 64:16:a0:75:7c:e2:00:87:1a:cd:22:8a:af:39:db:7f:63:47: 24:8c:aa:ad:75:50:36:bd:72:5c:e2:a9:fc:6e:b5:b1:6f:d7: ec:3e:fd:b6:af:9b:38:08:fa:38:0e:54:91:e3:08:75:17:4e: 50:8a:99:96:e8:ae:af:e8:1f:3a:39:5e:a3:71:4b:a0:14:b1: 36:ca:a6:73:29:2c:5a:b1:e2:34:cc:8f:07:b9:23:28:68:d5: 39:f9:45:10:80:1e:29:a6:a1:9f:83:b8:46:9a:d1:75:4e:75: e0:7b:a9:b7:f5:ff:ee:fb:75:ab:cf:14:e8:f9:af:5b:d9:74: a4:18:15:5d:da:3e:3b:b4:7a:e7:0d:a1:ac:3d:82:ad:a8:9b: a6:32:a0:58:66:a5:be:56:a2:d5:8d:c2:bf:47:83:22:55:a3: 6f:9c:39:1b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCBpiYI9582HEs33sF69FmhACCeIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWUwY2E0OGQwNTFiYTlkZjc0Yzk5NjA2NWJhYzY5MTI5 ZDQ3MDMxZjZiOTcxNjgwYjJhZGViZmZmMDJiZjg3MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmD6FxG8RKxB+Vz0nRA9Sxm5fc1/3C1XEP0WOY4HoCfkqq HwrIyTttiUt5sL9JP1UvI7qn46b6ef3rDzHmUU24jKD78Dii4CYHPNa6MSwTJJee IlTl/jKpYVGhZ0oPgy95K5RbhH7dVyzt2G4SXR9GYxr7VNi2+M5jbRSkhT0dg5l1 jokf4BgybbEBNxF0Aa+RqoWTFG5lCUqt5PBJYvpuN9lYF6BsGVK6QKkAMOMNYvga /RDzqrB91L2yNyQ5d9CHB9ubK6Xcv7vcXpjkc0NZ21BJSsSfJ/f0N7G7lTiR/Gv7 FvWk2HlgkJ41gr3Qmcq/87LwUxroQ1f45xeT/PQDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUb9I6l5PRB3V9aV6mYCBEj13IrCUwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2M5NDJmYTVhLTE2Y2EtNGYzYi05MjBmLWI3OGFiYjYyZjhlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXY8IAwDQYJKoZIhvcNAQELBQADggEBAAc533VLhfjF6QRc8OUqG5C3hWMq P2vZVe8b8vWFO/wJbo8znhvFI3IFn5YNUD5SBQMUKDrkRyUDNNmI7JgpBiNNZYO3 okFsqyKmz8rRtbSlEpdqzXOGoze3h2QWoHV84gCHGs0iiq85239jRySMqq11UDa9 clziqfxutbFv1+w+/bavmzgI+jgOVJHjCHUXTlCKmZborq/oHzo5XqNxS6AUsTbK pnMpLFqx4jTMjwe5Iyho1Tn5RRCAHimmoZ+DuEaa0XVOdeB7qbf1/+77davPFOj5 r1vZdKQYFV3aPju0eucNoaw9gq2om6YyoFhmpb5WotWNwr9HgyJVo2+cORs= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org