$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/df598dfb-06ed-42d0-9377-7e6e21a212d8.roa File: df598dfb-06ed-42d0-9377-7e6e21a212d8.roa (raw, json) Hash identifier: LaDuwbu7aYPIodJSID4MJzgmurdG8uLYfBgX0klm5Oc= Subject key identifier: E1:D5:F4:AD:9B:53:1C:86:C7:CF:9A:14:95:65:37:98:F7:B5:4E:6D Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 6C31EAC7B9DEEBBDE480B814652012B4E3AA7D41 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/df598dfb-06ed-42d0-9377-7e6e21a212d8.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 208.70.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:31:ea:c7:b9:de:eb:bd:e4:80:b8:14:65:20:12:b4:e3:aa:7d:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=36736dd0f2fb9d30229f179289e0b46d8fa02be5b25abb6bcbf3f5bd314a9784, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c5:68:03:80:70:fb:f0:21:9c:56:57:21:19: 38:0d:41:97:20:ed:57:53:b1:bf:91:fe:dc:62:e3: 64:55:e6:d8:dd:37:08:2d:14:8f:f9:ae:f6:d9:53: 84:bb:d8:0f:0c:16:a2:51:67:18:4b:5c:cb:74:01: 70:a9:87:f1:1d:cb:25:f1:73:b4:12:4b:c6:60:ed: 86:1f:cb:13:70:5b:46:2c:e8:eb:6b:b4:9f:15:50: 7f:87:c5:99:ae:d6:1c:eb:50:08:fc:76:3e:a5:4b: a3:38:72:a1:9b:41:49:48:54:8c:87:92:18:53:44: 46:79:23:16:46:da:07:c3:87:38:cf:7e:2b:c2:6a: 14:e7:d2:5e:21:e6:e3:c8:f3:3d:9a:2d:84:3f:00: a1:7c:71:8b:ac:d2:ca:5f:39:c2:f8:ea:83:c9:72: 1c:7e:31:4f:98:93:cb:f0:c2:e9:a5:28:7e:4b:ba: 82:bb:a1:27:f3:3e:32:c7:4c:69:49:76:63:54:e6: da:dd:ff:29:26:55:c5:86:d1:07:f0:69:67:00:b4: 15:8c:05:49:42:06:ec:21:0b:89:be:7d:6b:1b:ae: b4:5c:bf:27:a5:7a:82:76:aa:75:66:a0:21:8a:57: 6d:3f:99:55:03:94:c2:21:f7:3b:a4:36:b4:41:dd: 3f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:D5:F4:AD:9B:53:1C:86:C7:CF:9A:14:95:65:37:98:F7:B5:4E:6D X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/df598dfb-06ed-42d0-9377-7e6e21a212d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.70.72.0/21 Signature Algorithm: sha256WithRSAEncryption 5b:02:cb:18:51:74:9b:6c:ef:6e:67:4d:df:3d:a2:89:29:74: d3:3c:8a:25:f9:39:c7:73:83:42:9a:37:9e:5c:4d:2e:f6:d5: 09:5c:ec:54:62:e6:43:57:d9:b0:3c:29:9f:c5:a9:39:6b:96: 74:64:0c:1d:ea:55:5c:ab:0b:8e:fc:01:67:48:81:b7:e8:5e: a6:d9:58:5d:51:21:4b:1a:38:2f:0a:72:1e:ca:c2:13:b9:3f: 47:d6:60:e2:57:5b:03:37:59:a9:b7:ba:6e:bd:3d:ac:9d:3d: 8c:af:05:78:4f:37:ea:23:ac:c0:dd:9b:76:b5:75:eb:74:94: 45:d2:a7:96:53:cb:08:b0:fe:7d:91:f4:10:c7:5b:0a:99:00: f2:d7:87:31:61:be:f0:d2:fc:f5:08:4f:4b:60:51:5e:51:23: af:a4:1e:e4:21:e3:81:82:48:62:c1:2e:99:74:43:2b:02:1c: 0c:c4:64:a4:72:95:52:ff:1e:82:65:a9:42:f6:ec:1d:15:ff: 68:9a:07:b1:2e:d7:29:10:62:cb:57:70:be:ef:78:7a:b3:01: e0:6b:ab:29:f5:4b:65:a5:c2:d1:3f:04:74:55:66:b5:fe:f1: 3b:2d:dc:e5:96:d4:a4:19:83:5c:68:d2:cc:50:17:7b:ba:85: f2:65:ed:6a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbDHqx7ne673kgLgUZSAStOOqfUEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjczNmRkMGYyZmI5ZDMwMjI5ZjE3OTI4OWUwYjQ2ZDhm YTAyYmU1YjI1YWJiNmJjYmYzZjViZDMxNGE5Nzg0MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwxWgDgHD78CGcVlchGTgNQZcg7VdTsb+R/txi42RV5tjd NwgtFI/5rvbZU4S72A8MFqJRZxhLXMt0AXCph/EdyyXxc7QSS8Zg7YYfyxNwW0Ys 6OtrtJ8VUH+HxZmu1hzrUAj8dj6lS6M4cqGbQUlIVIyHkhhTREZ5IxZG2gfDhzjP fivCahTn0l4h5uPI8z2aLYQ/AKF8cYus0spfOcL46oPJchx+MU+Yk8vwwumlKH5L uoK7oSfzPjLHTGlJdmNU5trd/ykmVcWG0QfwaWcAtBWMBUlCBuwhC4m+fWsbrrRc vyeleoJ2qnVmoCGKV20/mVUDlMIh9zukNrRB3T/ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4dX0rZtTHIbHz5oUlWU3mPe1Tm0wHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2RmNTk4ZGZiLTA2ZWQtNDJkMC05Mzc3LTdlNmUyMWEyMTJkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPQRkgwDQYJKoZIhvcNAQELBQADggEBAFsCyxhRdJts725nTd89ookpdNM8 iiX5Ocdzg0KaN55cTS721Qlc7FRi5kNX2bA8KZ/FqTlrlnRkDB3qVVyrC478AWdI gbfoXqbZWF1RIUsaOC8Kch7KwhO5P0fWYOJXWwM3Wam3um69PaydPYyvBXhPN+oj rMDdm3a1det0lEXSp5ZTywiw/n2R9BDHWwqZAPLXhzFhvvDS/PUIT0tgUV5RI6+k HuQh44GCSGLBLpl0QysCHAzEZKRylVL/HoJlqUL27B0V/2iaB7Eu1ykQYstXcL7v eHqzAeBrqyn1S2WlwtE/BHRVZrX+8Tst3OWW1KQZg1xo0sxQF3u6hfJl7Wo= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org