$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/d157cdf4-37fa-41df-832b-35fd5f4c2f88.roa File: d157cdf4-37fa-41df-832b-35fd5f4c2f88.roa (raw, json) Hash identifier: k4pjFDaLawNhs7AsBFAUx2k5roRjR/nACJhh90ZpmT8= Subject key identifier: 65:FC:A6:45:21:87:7E:C2:48:C3:B4:1C:A3:19:CF:78:A4:24:90:24 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 75CD5CC002DB23289A0A8DDD25DC4926ABF448BF Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/d157cdf4-37fa-41df-832b-35fd5f4c2f88.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 208.64.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:cd:5c:c0:02:db:23:28:9a:0a:8d:dd:25:dc:49:26:ab:f4:48:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=f3b0696cc846c93831a717e7cf95148d7d0879f556ee8222a7793e60f0c14149, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d4:c7:2e:12:2d:d4:fc:ac:c4:c0:47:95:cc: fb:8f:65:38:3e:f9:b1:8d:21:7f:92:4d:de:af:9c: 84:a2:3e:78:c4:b0:82:7b:07:20:85:02:c9:a0:3a: a2:3c:aa:cc:8e:f8:90:7a:0b:12:dd:ac:df:de:74: 37:5a:c6:fb:42:d9:10:f8:ac:63:70:e3:8e:80:f7: 03:9c:22:05:06:86:f9:26:11:1e:a6:0d:6e:59:c2: d5:ea:9a:3c:e0:03:16:2b:a6:75:58:3b:5d:da:14: e8:02:05:b9:bf:ca:97:b4:43:dc:e7:c7:e2:5b:96: 72:03:32:b4:78:81:77:ea:ba:40:8d:14:24:3a:12: 1a:81:8e:3e:fa:5f:c9:5b:81:6b:5f:b9:4b:c4:79: 91:8a:0a:46:99:32:fd:df:b9:16:bc:d5:f3:4c:c8: c0:c9:a3:f1:c2:ca:1b:53:39:dc:2e:51:66:92:07: a3:d4:18:84:4d:92:fa:1a:ad:fc:20:3c:5a:71:92: c4:bf:95:7b:9a:93:81:d9:02:27:46:1c:9b:cf:f4: 01:66:ec:9e:ac:a4:af:e3:1f:62:f2:81:f4:61:eb: c9:44:ef:c4:98:75:d4:be:90:4f:fd:0b:dd:ec:75: 03:ea:56:25:06:64:3b:13:22:af:c3:81:1f:08:ea: e3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:FC:A6:45:21:87:7E:C2:48:C3:B4:1C:A3:19:CF:78:A4:24:90:24 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/d157cdf4-37fa-41df-832b-35fd5f4c2f88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.64.224.0/21 Signature Algorithm: sha256WithRSAEncryption 3c:53:b3:87:53:91:1d:57:23:13:7d:9d:b2:86:83:7d:1b:23: f7:6d:c7:7b:a6:c2:3b:bf:a3:e7:dd:c6:a0:7c:0e:21:68:9e: ca:64:bb:42:66:07:76:fc:1b:56:af:24:7d:d0:23:2b:95:17: 61:c9:3c:7b:67:19:86:2d:70:d0:e2:6b:3b:d1:7b:92:df:88: 22:ec:d0:d2:43:e4:8d:53:f0:8b:a3:33:00:cc:37:85:bb:96: 23:6b:d7:d2:ab:b9:6e:49:6c:9d:b1:7b:5b:75:6d:4b:d2:22: 67:90:6b:20:ae:00:4e:03:9c:72:a6:0d:03:7c:26:25:e9:e3: ad:56:49:c0:2a:f4:21:6b:4b:76:72:22:c9:67:fe:d2:48:e4: d0:e3:e1:90:ba:86:8d:b3:e5:d0:34:65:7a:68:37:38:87:87: 7f:96:b9:61:dd:3b:53:74:d3:fa:07:2a:ee:7f:62:21:4e:4d: 1a:a6:fa:d0:ac:56:01:a1:8f:9b:b1:54:5b:9c:cb:12:97:d0: 7e:73:ea:8a:7c:45:91:3b:2a:ba:78:35:10:26:8e:da:c1:41: fd:8b:b7:49:dc:0b:73:34:ab:35:e7:07:4d:f2:16:ec:71:46: 96:14:66:7c:e1:04:8e:52:97:e2:b6:b1:a5:87:4f:68:45:21: 18:ca:9e:8e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdc1cwALbIyiaCo3dJdxJJqv0SL8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmM2IwNjk2Y2M4NDZjOTM4MzFhNzE3ZTdjZjk1MTQ4ZDdk MDg3OWY1NTZlZTgyMjJhNzc5M2U2MGYwYzE0MTQ5MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo1McuEi3U/KzEwEeVzPuPZTg++bGNIX+STd6vnISiPnjE sIJ7ByCFAsmgOqI8qsyO+JB6CxLdrN/edDdaxvtC2RD4rGNw446A9wOcIgUGhvkm ER6mDW5ZwtXqmjzgAxYrpnVYO13aFOgCBbm/ype0Q9znx+JblnIDMrR4gXfqukCN FCQ6EhqBjj76X8lbgWtfuUvEeZGKCkaZMv3fuRa81fNMyMDJo/HCyhtTOdwuUWaS B6PUGIRNkvoarfwgPFpxksS/lXuak4HZAidGHJvP9AFm7J6spK/jH2LygfRh68lE 78SYddS+kE/9C93sdQPqViUGZDsTIq/DgR8I6uOvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZfymRSGHfsJIw7QcoxnPeKQkkCQwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2QxNTdjZGY0LTM3ZmEtNDFkZi04MzJiLTM1ZmQ1ZjRjMmY4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPQQOAwDQYJKoZIhvcNAQELBQADggEBADxTs4dTkR1XIxN9nbKGg30bI/dt x3umwju/o+fdxqB8DiFonspku0JmB3b8G1avJH3QIyuVF2HJPHtnGYYtcNDiazvR e5LfiCLs0NJD5I1T8IujMwDMN4W7liNr19KruW5JbJ2xe1t1bUvSImeQayCuAE4D nHKmDQN8JiXp461WScAq9CFrS3ZyIsln/tJI5NDj4ZC6ho2z5dA0ZXpoNziHh3+W uWHdO1N00/oHKu5/YiFOTRqm+tCsVgGhj5uxVFucyxKX0H5z6op8RZE7Krp4NRAm jtrBQf2Lt0ncC3M0qzXnB03yFuxxRpYUZnzhBI5Sl+K2saWHT2hFIRjKno4= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org