$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e47ca8c8-78f9-4d43-84dd-77fb5b304ac2.roa File: e47ca8c8-78f9-4d43-84dd-77fb5b304ac2.roa (raw, json) Hash identifier: guuZs8ppINnvSnn8QA74FdCuBNbxCpxaaZp3eDdysRE= Subject key identifier: D7:EE:C6:07:64:E5:2B:A2:F7:F4:7B:59:8B:71:D0:6F:2F:B1:0B:CF Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 5929473BEBB29DD92F4BBD5B2C92D954D16EF4FB Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e47ca8c8-78f9-4d43-84dd-77fb5b304ac2.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 23.234.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:29:47:3b:eb:b2:9d:d9:2f:4b:bd:5b:2c:92:d9:54:d1:6e:f4:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=2547209a24446334bf0b0d66662c8792dbcbc2096cf58dc4150918b9d488cc72, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ec:da:f8:78:f1:06:56:72:20:fd:08:02:14: 77:2d:d6:b5:bc:22:b3:05:d4:16:ba:ca:49:9d:74: c3:a3:ed:b8:9e:45:c4:39:4f:b8:9f:e0:53:43:ea: e4:2a:ba:61:41:c3:9a:58:b5:05:19:c2:a8:d3:6c: 28:3c:64:41:57:f6:54:28:10:b2:98:4a:22:01:11: ef:6e:e3:4c:f5:07:9c:b7:a6:5c:33:84:ae:f9:6b: f8:83:bd:ae:cc:ac:5a:45:9d:ae:15:34:e8:22:3d: d6:d6:f8:52:d8:72:1e:45:1a:67:75:8f:c4:3c:fd: e8:bf:dc:2e:e4:f8:87:b2:30:a4:68:c1:55:9d:3b: b8:b6:58:17:3a:a8:de:66:bb:6a:72:fa:b7:09:83: 87:f8:d5:d5:10:12:02:70:75:c7:49:fb:44:47:0f: 87:6e:29:0d:d1:09:7b:30:fb:83:a6:4a:90:53:30: 67:20:94:0a:47:8c:8a:e8:13:bf:1f:7b:b6:6d:bb: 15:5e:b3:1c:fd:ec:3c:4c:e5:98:0e:71:58:23:45: 5d:46:83:8e:bd:3d:20:18:2b:c4:19:9c:bc:31:94: 86:ea:67:48:d9:29:4f:df:ca:c3:9d:34:93:1b:36: 0c:7e:45:a9:6b:30:16:0b:68:f6:f5:3d:cd:96:b7: ad:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:EE:C6:07:64:E5:2B:A2:F7:F4:7B:59:8B:71:D0:6F:2F:B1:0B:CF X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e47ca8c8-78f9-4d43-84dd-77fb5b304ac2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.234.210.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:16:30:a3:90:9a:67:9b:0c:95:48:39:a4:c1:93:f6:b0:50: 14:f5:b7:b3:29:ab:20:e1:6b:a4:b8:cb:42:68:38:70:87:c1: 0e:ad:3b:7e:47:46:60:db:f0:0f:76:2e:97:5d:c5:1a:1d:23: b3:6c:40:68:0a:d0:46:4e:04:b0:b7:f3:31:bd:36:1c:59:58: da:e5:8e:56:bd:71:de:ca:44:e4:c0:c3:c1:b0:b1:dc:7c:2c: c5:7d:fb:6e:ed:2a:fb:9e:eb:5d:ff:a4:b9:c3:fd:75:44:93: e3:a0:7b:64:05:c0:be:c6:48:1d:ba:e8:71:d8:f5:1e:ef:2d: df:af:a9:e5:ce:2b:3f:66:31:14:90:3d:74:1d:c0:fc:b8:5f: 31:72:bc:e9:09:5a:c5:24:12:02:55:40:27:ce:9f:b5:a5:83: e7:60:5a:9e:b6:6b:58:bf:09:d6:d1:00:d8:23:d8:92:52:8d: 36:05:5d:60:e7:fa:8c:5e:be:c4:81:f8:3b:0d:e0:63:59:f3: 8b:d7:fb:7e:4c:d7:64:3e:33:86:bf:bf:5b:94:fb:29:ed:7d: 11:0f:06:ec:96:66:ca:f3:39:ea:43:08:23:6a:15:f4:0c:45: f8:56:8c:a0:1f:d4:02:5f:2e:84:f1:5d:03:37:00:e6:9e:35: 56:ee:ac:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWSlHO+uyndkvS71bLJLZVNFu9PswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTQ3MjA5YTI0NDQ2MzM0YmYwYjBkNjY2NjJjODc5MmRi Y2JjMjA5NmNmNThkYzQxNTA5MThiOWQ0ODhjYzcyMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDY7Nr4ePEGVnIg/QgCFHct1rW8IrMF1Ba6ykmddMOj7bie RcQ5T7if4FND6uQqumFBw5pYtQUZwqjTbCg8ZEFX9lQoELKYSiIBEe9u40z1B5y3 plwzhK75a/iDva7MrFpFna4VNOgiPdbW+FLYch5FGmd1j8Q8/ei/3C7k+IeyMKRo wVWdO7i2WBc6qN5mu2py+rcJg4f41dUQEgJwdcdJ+0RHD4duKQ3RCXsw+4OmSpBT MGcglApHjIroE78fe7ZtuxVesxz97DxM5ZgOcVgjRV1Gg469PSAYK8QZnLwxlIbq Z0jZKU/fysOdNJMbNgx+RalrMBYLaPb1Pc2Wt63bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1+7GB2TlK6L39HtZi3HQby+xC88wHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2U0N2NhOGM4LTc4ZjktNGQ0My04NGRkLTc3ZmI1YjMwNGFjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX6tIwDQYJKoZIhvcNAQELBQADggEBAG0WMKOQmmebDJVIOaTBk/awUBT1 t7MpqyDha6S4y0JoOHCHwQ6tO35HRmDb8A92LpddxRodI7NsQGgK0EZOBLC38zG9 NhxZWNrljla9cd7KROTAw8Gwsdx8LMV9+27tKvue613/pLnD/XVEk+Oge2QFwL7G SB266HHY9R7vLd+vqeXOKz9mMRSQPXQdwPy4XzFyvOkJWsUkEgJVQCfOn7Wlg+dg Wp62a1i/CdbRANgj2JJSjTYFXWDn+oxevsSB+DsN4GNZ84vX+35M12Q+M4a/v1uU +yntfREPBuyWZsrzOepDCCNqFfQMRfhWjKAf1AJfLoTxXQM3AOaeNVburJ8= -----END CERTIFICATE-----Generated at Wed May 8 23:47:45 2024 by rpki-client on console-ams.rpki-client.org