$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/cf130b5b-9153-49d6-9fa6-1682514e46dc.roa File: cf130b5b-9153-49d6-9fa6-1682514e46dc.roa (raw, json) Hash identifier: dPpO5VoXPV3iMtAn2Gpe1VhyuedZOB6NmWGl16+le7E= Subject key identifier: BC:25:09:7F:8D:54:86:3F:E1:FE:3D:6B:60:E9:A8:EA:F3:CB:00:1B Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 03CA3FE883FC472D3133ED5A5BFB46FFBC1B548B Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/cf130b5b-9153-49d6-9fa6-1682514e46dc.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 198.74.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ca:3f:e8:83:fc:47:2d:31:33:ed:5a:5b:fb:46:ff:bc:1b:54:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=ed31fa618d7bfa318c840778786ca5d5ea529c05fd00b09f48aee6affafbfed6, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:99:fd:b4:8b:d3:45:5e:c8:3d:bf:f4:bc:f7: 02:c1:eb:7d:45:de:f1:93:83:bb:e2:80:05:f1:7f: 41:6d:79:f1:8e:ce:bf:3c:09:d1:d4:a8:49:e8:42: f5:18:a5:f7:c2:91:39:e4:5e:ef:e0:ec:cd:4c:ae: 86:1f:9d:c4:11:24:b1:ad:fa:e5:c8:77:f0:51:34: d6:93:1e:92:a4:be:e7:c3:76:d4:7c:9e:42:d6:50: e0:a8:fd:98:02:05:1d:cc:fb:aa:fb:6d:f7:68:df: 5b:dc:ec:8d:5a:12:45:cb:d1:5e:7b:4c:a0:89:f6: d2:46:cc:c4:f5:de:1b:9f:f8:66:dc:c5:67:09:e9: 9c:ec:8f:7d:a7:80:87:d7:71:d1:bf:f8:5d:31:06: 9a:3e:5b:2a:07:e5:52:4b:c6:43:95:56:d9:1e:4d: 1d:04:47:a0:20:21:8e:06:ad:a8:c9:ef:52:61:04: fd:ac:86:92:31:de:0c:2d:7f:30:5d:c8:aa:55:eb: 33:7d:63:17:4a:c8:d6:8d:5d:b0:fe:00:24:53:64: 97:43:a7:bd:6d:a4:09:a3:3e:a8:e8:8a:62:5e:a3: 9c:d5:51:12:89:12:1c:9e:4b:3a:d2:f1:74:ea:ee: ec:6a:74:e1:7e:2a:d3:9b:52:09:17:69:e9:58:56: e5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:25:09:7F:8D:54:86:3F:E1:FE:3D:6B:60:E9:A8:EA:F3:CB:00:1B X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/cf130b5b-9153-49d6-9fa6-1682514e46dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.74.96.0/19 Signature Algorithm: sha256WithRSAEncryption 74:68:5a:32:4e:0b:8a:02:f3:d0:40:73:ef:7d:cc:ea:be:33: 9c:8e:26:fa:97:23:87:db:82:20:9e:b6:7b:a5:77:e6:15:c0: 9e:b0:74:69:a3:63:3c:39:bb:d1:aa:d2:e1:64:c5:e5:9c:8b: 15:55:bf:8a:3b:8e:62:50:e3:98:c8:fd:1b:51:2a:d7:e7:e3: 92:b5:f4:a6:8b:6c:c0:1c:25:90:5a:11:58:d8:c1:eb:9f:77: 7e:fa:2c:85:6f:20:00:a1:d3:3e:67:a0:f8:cb:90:64:11:60: 7f:e6:ae:40:7b:ae:a4:1a:a8:fb:c4:10:1c:19:82:68:1d:97: 22:f3:a7:48:4a:e7:98:40:ad:2c:e6:8d:8b:11:57:fa:1d:a8: 42:b4:5b:f6:72:49:37:54:d1:aa:c0:8e:fe:a9:51:e9:a1:ba: af:5b:97:d2:83:24:82:f7:22:02:08:0a:e2:1d:aa:ec:a0:7e: 22:45:61:64:95:5c:24:14:f8:71:11:34:72:91:2d:16:32:84: 12:76:d0:e1:d1:d2:45:f5:dd:35:f8:e6:2d:90:66:d6:88:ab: 3f:68:51:1d:8a:1f:a7:e4:c9:a0:81:c3:e4:71:96:2e:40:09: d1:5c:da:80:93:29:5f:0e:c9:04:30:73:93:b8:cc:a4:19:18: ac:12:ad:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA8o/6IP8Ry0xM+1aW/tG/7wbVIswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDMxZmE2MThkN2JmYTMxOGM4NDA3Nzg3ODZjYTVkNWVh NTI5YzA1ZmQwMGIwOWY0OGFlZTZhZmZhZmJmZWQ2MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7mf20i9NFXsg9v/S89wLB631F3vGTg7vigAXxf0FtefGO zr88CdHUqEnoQvUYpffCkTnkXu/g7M1MroYfncQRJLGt+uXId/BRNNaTHpKkvufD dtR8nkLWUOCo/ZgCBR3M+6r7bfdo31vc7I1aEkXL0V57TKCJ9tJGzMT13huf+Gbc xWcJ6Zzsj32ngIfXcdG/+F0xBpo+WyoH5VJLxkOVVtkeTR0ER6AgIY4GrajJ71Jh BP2shpIx3gwtfzBdyKpV6zN9YxdKyNaNXbD+ACRTZJdDp71tpAmjPqjoimJeo5zV URKJEhyeSzrS8XTq7uxqdOF+KtObUgkXaelYVuU3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvCUJf41Uhj/h/j1rYOmo6vPLABswHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2NmMTMwYjViLTkxNTMtNDlkNi05ZmE2LTE2ODI1MTRlNDZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGSmAwDQYJKoZIhvcNAQELBQADggEBAHRoWjJOC4oC89BAc+99zOq+M5yO JvqXI4fbgiCetnuld+YVwJ6wdGmjYzw5u9Gq0uFkxeWcixVVv4o7jmJQ45jI/RtR Ktfn45K19KaLbMAcJZBaEVjYweufd376LIVvIACh0z5noPjLkGQRYH/mrkB7rqQa qPvEEBwZgmgdlyLzp0hK55hArSzmjYsRV/odqEK0W/ZySTdU0arAjv6pUemhuq9b l9KDJIL3IgIICuIdquygfiJFYWSVXCQU+HERNHKRLRYyhBJ20OHR0kX13TX45i2Q ZtaIqz9oUR2KH6fkyaCBw+Rxli5ACdFc2oCTKV8OyQQwc5O4zKQZGKwSraA= -----END CERTIFICATE-----Generated at Wed May 8 23:47:45 2024 by rpki-client on console-ams.rpki-client.org