$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/daa52bb3-c70b-493c-be02-4d805ba4fd2b.roa File: daa52bb3-c70b-493c-be02-4d805ba4fd2b.roa (raw, json) Hash identifier: b6hS+1jNp+gQFLIaSwTRn2sFSvPgRwMKlPmUqc1Q/SI= Subject key identifier: 37:04:B1:0C:3C:06:C1:A6:11:07:82:BF:D8:D4:0C:DD:FF:F9:13:74 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 411F0F7C1449704FBEE41ABC8351542C13F32791 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/daa52bb3-c70b-493c-be02-4d805ba4fd2b.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 35916 IP address blocks: 96.43.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:1f:0f:7c:14:49:70:4f:be:e4:1a:bc:83:51:54:2c:13:f3:27:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=a527345f03282272f4ec966bc4b81fd17538ebae51d63483434a0bf8f397561f, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a2:d7:84:bd:be:d0:44:f8:d8:d1:8b:e9:08: e5:12:5f:22:0c:bf:6f:cd:77:76:22:9e:8b:2d:79: 0b:c2:62:a3:36:8d:29:39:55:2c:55:6e:e8:e6:a8: 73:91:8e:5d:bc:74:fd:e5:c1:8e:ea:a2:2b:dd:98: b8:57:2a:c6:62:17:b1:7e:4d:49:a1:7f:d4:d5:a7: f4:c3:ac:34:ed:3d:d9:9d:ec:d3:96:f5:ad:5a:b2: 8d:fb:8f:47:37:90:9d:0e:0b:7b:79:88:ef:0b:1a: 82:52:22:6c:7d:ea:20:f1:f8:c3:03:48:2c:c4:f4: 90:71:db:4c:6c:04:5b:28:44:54:ef:00:f8:f1:4c: d0:76:7f:5f:76:bd:0f:30:1c:59:4c:d6:1c:ae:43: c1:b3:8a:78:64:06:18:6f:22:f8:db:a5:95:9f:a0: 25:2b:5c:1a:c2:5a:09:14:c1:cc:eb:62:34:fe:94: 3f:4d:36:83:67:2b:b8:b6:94:44:b6:26:62:d4:58: 5a:9f:7f:27:7e:be:de:fa:d8:de:d3:b1:4a:f3:f4: cf:2c:8d:43:e3:76:77:67:c0:7f:7c:25:f7:4b:6a: 87:e3:d2:1d:88:16:54:95:79:f7:af:d3:b1:e9:ec: bd:3d:7f:a6:c6:b8:44:6e:31:07:66:22:84:11:e9: 4d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:04:B1:0C:3C:06:C1:A6:11:07:82:BF:D8:D4:0C:DD:FF:F9:13:74 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/daa52bb3-c70b-493c-be02-4d805ba4fd2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.43.80.0/20 Signature Algorithm: sha256WithRSAEncryption 4a:7c:c4:e1:0a:b0:43:31:3a:b7:da:47:38:be:9e:a1:72:92: ef:98:aa:3a:b9:81:1e:ed:2a:a7:37:b6:62:dd:be:12:66:ad: 7d:1e:cf:6e:f2:74:1e:a5:e5:fe:62:16:d1:f3:8f:39:f1:69: 9f:a4:34:76:19:55:f3:97:95:81:13:88:46:06:e7:4a:ac:a0: 3b:05:9b:bb:ff:7b:db:b7:28:44:9e:e7:a9:03:9b:03:14:fe: ab:3a:f7:35:d5:f2:ed:07:e9:47:6d:1c:78:00:81:1e:b5:42: 67:26:60:fe:15:38:20:b8:ac:88:c7:86:9f:f0:7c:11:a5:f2: 8e:74:46:95:82:78:1e:f1:c9:00:89:45:d7:02:de:e7:63:bc: 20:d2:a9:ae:fe:0c:0f:bd:45:e6:ab:ef:2f:5e:88:2f:a3:d2: b2:4b:9b:c8:e9:4f:ac:80:9f:b9:19:22:1c:0c:0d:c6:4f:5d: 2c:9c:d3:1c:9b:64:32:d9:0c:3d:0b:82:ba:dc:7d:9f:b3:99: 18:45:7c:eb:37:7b:44:60:4d:ca:03:20:a7:eb:92:08:08:6e: 54:27:01:ba:d8:af:c7:71:3a:5f:3e:1f:93:e6:99:fe:cd:ec: 5b:7b:5b:17:49:77:97:45:08:3d:d8:af:de:81:1f:6f:4f:a2: 83:66:4a:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQR8PfBRJcE++5Bq8g1FULBPzJ5EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTI3MzQ1ZjAzMjgyMjcyZjRlYzk2NmJjNGI4MWZkMTc1 MzhlYmFlNTFkNjM0ODM0MzRhMGJmOGYzOTc1NjFmMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeoteEvb7QRPjY0YvpCOUSXyIMv2/Nd3YinosteQvCYqM2 jSk5VSxVbujmqHORjl28dP3lwY7qoivdmLhXKsZiF7F+TUmhf9TVp/TDrDTtPdmd 7NOW9a1aso37j0c3kJ0OC3t5iO8LGoJSImx96iDx+MMDSCzE9JBx20xsBFsoRFTv APjxTNB2f192vQ8wHFlM1hyuQ8GzinhkBhhvIvjbpZWfoCUrXBrCWgkUwczrYjT+ lD9NNoNnK7i2lES2JmLUWFqffyd+vt762N7TsUrz9M8sjUPjdndnwH98JfdLaofj 0h2IFlSVefev07Hp7L09f6bGuERuMQdmIoQR6U3bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNwSxDDwGwaYRB4K/2NQM3f/5E3QwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2RhYTUyYmIzLWM3MGItNDkzYy1iZTAyLTRkODA1YmE0ZmQyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARgK1AwDQYJKoZIhvcNAQELBQADggEBAEp8xOEKsEMxOrfaRzi+nqFyku+Y qjq5gR7tKqc3tmLdvhJmrX0ez27ydB6l5f5iFtHzjznxaZ+kNHYZVfOXlYETiEYG 50qsoDsFm7v/e9u3KESe56kDmwMU/qs69zXV8u0H6UdtHHgAgR61QmcmYP4VOCC4 rIjHhp/wfBGl8o50RpWCeB7xyQCJRdcC3udjvCDSqa7+DA+9Rear7y9eiC+j0rJL m8jpT6yAn7kZIhwMDcZPXSyc0xybZDLZDD0LgrrcfZ+zmRhFfOs3e0RgTcoDIKfr kggIblQnAbrYr8dxOl8+H5Pmmf7N7Ft7WxdJd5dFCD3Yr96BH29PooNmSrU= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org