$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e5621046-6c97-4ebf-bfca-f8ffda0f1eb3.roa File: e5621046-6c97-4ebf-bfca-f8ffda0f1eb3.roa (raw, json) Hash identifier: tw0w8+w8KUzuW0KgPUwbS1yncSchAvMWolZJHIGUEqU= Subject key identifier: 50:29:28:97:15:85:6E:8D:31:D4:EC:DC:40:F5:FE:B2:0C:2F:D4:73 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 46928909504CE258AE7F4F37B3A5952A20236366 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e5621046-6c97-4ebf-bfca-f8ffda0f1eb3.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.234.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:92:89:09:50:4c:e2:58:ae:7f:4f:37:b3:a5:95:2a:20:23:63:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=aa956dbca46cd2cd5e58054126a1e7a40871cb042892dd741c0f70ca20f129cb, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f2:b5:d1:c7:ec:38:08:46:d2:13:9a:c9:cf: df:4d:5b:6e:20:95:13:6e:54:b5:fa:b8:17:e2:49: c6:8f:75:71:a5:3e:59:22:a0:6c:f0:06:25:4a:10: df:21:a6:a3:f3:e8:b3:d8:c0:a2:8e:16:17:a7:24: 2b:46:8f:c8:ce:db:85:2e:88:41:19:99:ca:7c:ab: c4:8e:9c:54:e2:03:3d:e2:44:04:ae:b2:e9:8c:bd: ee:41:e3:5f:64:f4:6c:58:51:c2:9c:68:88:93:4c: 9a:80:66:8f:5a:67:84:72:5a:34:2b:b4:d5:66:8d: d5:b6:fd:c7:2d:ab:45:01:fa:18:65:5d:0d:1f:af: c2:32:22:2b:de:c4:f6:ca:4c:bb:0d:7d:c3:cd:6e: 55:b0:39:1c:a6:93:ba:22:e4:52:f9:1b:8e:33:d8: e5:2b:1d:3c:77:13:12:c9:91:95:17:6f:9b:e1:14: 96:7d:77:ad:88:60:dc:bf:0c:16:48:cb:95:d1:ff: 8a:bd:5e:09:1d:f7:99:ee:85:08:dc:b8:1f:8f:05: 24:01:3f:24:3f:b0:a0:20:e1:ee:a1:fb:27:2f:21: d6:71:27:60:97:f0:e3:87:5c:49:e2:09:da:44:62: b3:4e:65:fe:93:e7:ba:1b:04:98:a7:e1:e7:7a:17: cc:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:29:28:97:15:85:6E:8D:31:D4:EC:DC:40:F5:FE:B2:0C:2F:D4:73 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e5621046-6c97-4ebf-bfca-f8ffda0f1eb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.234.210.0/24 Signature Algorithm: sha256WithRSAEncryption 26:45:f9:aa:68:1a:9e:a8:6f:63:cf:fc:8d:b7:3f:a2:4c:d5: 04:f8:56:b8:c8:e6:2f:9f:00:f2:f2:2f:8e:81:5b:bc:d9:35: 35:36:ab:a3:8b:8f:b2:cc:f2:b1:07:ee:6c:82:bb:7d:ad:3e: 13:ab:0d:84:77:3d:c2:ed:e7:ee:27:d8:a3:f2:75:bd:39:d3: 3c:4a:aa:a1:45:24:c1:6c:45:6f:53:df:f3:fb:08:ba:81:e0: 2e:4e:2d:96:82:3d:6f:71:5d:1c:98:8b:03:11:41:fe:60:2a: bc:f9:87:d6:c8:33:69:f6:bb:69:32:48:f0:95:1f:b9:0e:cb: e7:e6:e3:4f:33:e6:f5:8e:3c:41:a3:2f:60:71:16:6f:8e:57: 86:8a:5c:19:c9:ec:91:79:92:13:ee:77:9b:9c:44:23:5c:af: 32:a8:a9:b2:51:f8:88:dd:25:75:0a:88:c7:c7:e0:31:37:5d: 20:4b:c7:c4:5d:44:d0:ac:04:c1:c3:72:b4:17:3e:9b:52:fc: 45:10:2e:10:2f:11:c7:b7:8b:5d:fe:b4:5d:76:b3:62:bd:2f: 22:91:64:19:8b:02:3e:cd:ce:42:b8:39:d1:7b:77:f3:60:49: f4:ea:4c:81:f4:d0:b5:3b:42:39:99:24:9c:64:e4:16:8a:1a: 6a:d1:0f:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURpKJCVBM4liuf083s6WVKiAjY2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTk1NmRiY2E0NmNkMmNkNWU1ODA1NDEyNmExZTdhNDA4 NzFjYjA0Mjg5MmRkNzQxYzBmNzBjYTIwZjEyOWNiMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb8rXRx+w4CEbSE5rJz99NW24glRNuVLX6uBfiScaPdXGl PlkioGzwBiVKEN8hpqPz6LPYwKKOFhenJCtGj8jO24UuiEEZmcp8q8SOnFTiAz3i RASusumMve5B419k9GxYUcKcaIiTTJqAZo9aZ4RyWjQrtNVmjdW2/cctq0UB+hhl XQ0fr8IyIivexPbKTLsNfcPNblWwORymk7oi5FL5G44z2OUrHTx3ExLJkZUXb5vh FJZ9d62IYNy/DBZIy5XR/4q9Xgkd95nuhQjcuB+PBSQBPyQ/sKAg4e6h+ycvIdZx J2CX8OOHXEniCdpEYrNOZf6T57obBJin4ed6F8yLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUCkolxWFbo0x1OzcQPX+sgwv1HMwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2U1NjIxMDQ2LTZjOTctNGViZi1iZmNhLWY4ZmZkYTBmMWViMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX6tIwDQYJKoZIhvcNAQELBQADggEBACZF+apoGp6ob2PP/I23P6JM1QT4 VrjI5i+fAPLyL46BW7zZNTU2q6OLj7LM8rEH7myCu32tPhOrDYR3PcLt5+4n2KPy db050zxKqqFFJMFsRW9T3/P7CLqB4C5OLZaCPW9xXRyYiwMRQf5gKrz5h9bIM2n2 u2kySPCVH7kOy+fm408z5vWOPEGjL2BxFm+OV4aKXBnJ7JF5khPud5ucRCNcrzKo qbJR+IjdJXUKiMfH4DE3XSBLx8RdRNCsBMHDcrQXPptS/EUQLhAvEce3i13+tF12 s2K9LyKRZBmLAj7NzkK4OdF7d/NgSfTqTIH00LU7QjmZJJxk5BaKGmrRD4U= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org