$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/cd463280-bd9c-4b25-bfea-4a6cacdbd81d.roa File: cd463280-bd9c-4b25-bfea-4a6cacdbd81d.roa (raw, json) Hash identifier: ENBc/7n7gMmX9lpLdKVKc1sXZqti8o2ss40MLzegMTw= Subject key identifier: 40:03:CA:CF:41:E8:E5:33:68:00:FE:7C:0B:D6:91:D0:7F:89:7A:20 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 63161DF433C277620A1EA51AD46908324C0BE3BC Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/cd463280-bd9c-4b25-bfea-4a6cacdbd81d.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 100.42.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:16:1d:f4:33:c2:77:62:0a:1e:a5:1a:d4:69:08:32:4c:0b:e3:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=2166e4dadc7f6ccf0bf7404931d8af6c94cde78c18409d24373ee5bb4d697ea5, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:69:4c:83:a2:65:a2:3e:2c:97:ee:5d:12:16: d8:b2:27:72:28:e4:39:90:a0:ef:3b:7c:50:7c:09: c9:b6:bc:ce:d6:de:bf:23:69:60:a8:eb:59:ae:2b: 1f:3a:d5:6d:33:84:59:79:42:92:40:54:23:84:e9: 0d:85:f8:a3:22:12:ee:93:f5:d0:8b:28:b4:b9:86: b0:f4:cf:7a:bf:42:ff:69:87:e9:67:c8:b3:57:40: 4c:4a:11:e0:0b:49:28:47:1a:43:4d:14:60:c6:a9: 88:a8:2c:ca:b5:f8:43:8e:39:51:25:a4:c4:23:d0: 18:56:b4:7a:0a:36:26:3d:54:49:bc:d4:19:32:43: f3:21:4c:a8:2a:8a:3f:f8:d9:0b:c3:8f:03:17:f2: 2d:5e:fa:dc:f6:6c:06:9c:26:9a:bc:82:ff:a9:05: 21:f3:69:dc:a8:d1:a1:5c:fc:bb:b5:33:16:b4:2d: eb:d5:2f:11:15:09:de:6a:fe:1f:13:19:30:28:c3: 4e:88:de:ce:c5:e3:72:bc:85:5f:aa:a3:bc:ac:49: d4:0c:c5:92:50:3f:7d:6f:13:bb:b5:46:f4:98:1a: 5b:e5:18:f5:c1:7a:93:05:ae:fa:c0:24:be:ba:fc: 4b:db:e5:93:11:bb:51:e8:b6:7c:1e:78:25:15:69: a1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:03:CA:CF:41:E8:E5:33:68:00:FE:7C:0B:D6:91:D0:7F:89:7A:20 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/cd463280-bd9c-4b25-bfea-4a6cacdbd81d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 100.42.64.0/20 Signature Algorithm: sha256WithRSAEncryption 09:17:e5:9b:ce:42:90:50:fa:81:bc:ee:e9:b7:11:c0:16:52: eb:e1:e5:2a:f5:85:56:03:35:2d:5b:7b:46:bb:61:0f:14:2b: 33:c4:3c:15:18:f0:7a:ca:3c:85:6e:98:60:a2:93:0b:f8:4d: b5:ad:8f:68:7d:f5:08:53:38:00:31:e1:ce:bf:17:3b:f2:3e: 76:88:82:99:2a:11:27:23:da:0d:4e:77:61:53:a3:c1:57:9f: 99:c8:4c:08:a0:96:e8:b4:d1:11:2b:76:c1:1f:7d:40:f9:72: 51:63:ee:ee:af:6a:53:8f:8f:c6:28:79:6b:5e:50:76:53:f1: 2f:1a:8a:b9:a9:01:16:d3:98:e0:2b:2e:e8:a8:a0:9a:bd:0c: e3:c8:d0:58:51:f1:64:e2:8d:70:86:fb:3b:fa:19:6a:da:99: 06:a6:b4:01:34:db:58:38:d1:a1:53:40:9d:48:20:d3:33:47: 80:04:0e:c3:50:79:40:95:16:67:02:f4:66:3f:c7:b8:cc:7d: bd:79:02:d7:6c:37:96:3e:9b:3f:d6:d2:34:d6:2f:91:1e:f7: 01:91:c0:f9:3a:6a:61:50:9b:a3:3d:f5:b4:ee:6f:46:46:2e: dc:0d:12:29:8a:51:40:3a:86:7f:4e:c7:0c:03:ee:bb:1d:c3: b9:21:30:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYxYd9DPCd2IKHqUa1GkIMkwL47wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTY2ZTRkYWRjN2Y2Y2NmMGJmNzQwNDkzMWQ4YWY2Yzk0 Y2RlNzhjMTg0MDlkMjQzNzNlZTViYjRkNjk3ZWE1MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhaUyDomWiPiyX7l0SFtiyJ3Io5DmQoO87fFB8Ccm2vM7W 3r8jaWCo61muKx861W0zhFl5QpJAVCOE6Q2F+KMiEu6T9dCLKLS5hrD0z3q/Qv9p h+lnyLNXQExKEeALSShHGkNNFGDGqYioLMq1+EOOOVElpMQj0BhWtHoKNiY9VEm8 1BkyQ/MhTKgqij/42QvDjwMX8i1e+tz2bAacJpq8gv+pBSHzadyo0aFc/Lu1Mxa0 LevVLxEVCd5q/h8TGTAow06I3s7F43K8hV+qo7ysSdQMxZJQP31vE7u1RvSYGlvl GPXBepMFrvrAJL66/Evb5ZMRu1HotnweeCUVaaGhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQAPKz0Ho5TNoAP58C9aR0H+JeiAwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2NkNDYzMjgwLWJkOWMtNGIyNS1iZmVhLTRhNmNhY2RiZDgxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARkKkAwDQYJKoZIhvcNAQELBQADggEBAAkX5ZvOQpBQ+oG87um3EcAWUuvh 5Sr1hVYDNS1be0a7YQ8UKzPEPBUY8HrKPIVumGCikwv4TbWtj2h99QhTOAAx4c6/ FzvyPnaIgpkqEScj2g1Od2FTo8FXn5nITAiglui00RErdsEffUD5clFj7u6valOP j8YoeWteUHZT8S8airmpARbTmOArLuiooJq9DOPI0FhR8WTijXCG+zv6GWramQam tAE021g40aFTQJ1IINMzR4AEDsNQeUCVFmcC9GY/x7jMfb15AtdsN5Y+mz/W0jTW L5Ee9wGRwPk6amFQm6M99bTub0ZGLtwNEimKUUA6hn9OxwwD7rsdw7khMFk= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org