$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e92de963-905f-4556-a21b-bd583b790a50.roa File: e92de963-905f-4556-a21b-bd583b790a50.roa (raw, json) Hash identifier: k+0OjY3VKTSA7WrhhRJTgFjuB2lYtqV1bFCZWYqSQ+U= Subject key identifier: 01:A3:B3:43:59:4B:A7:BB:D5:EA:4C:F2:CB:38:45:18:CD:82:95:23 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 705ADEEE151D9DD129AF62E7891772537EC42793 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e92de963-905f-4556-a21b-bd583b790a50.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 395681 IP address blocks: 66.152.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 08 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:5a:de:ee:15:1d:9d:d1:29:af:62:e7:89:17:72:53:7e:c4:27:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=c87f0c042a8609fd86b9980a48b4ff327312fdd95796118d4955f797833a3dfd, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8b:2c:37:47:9d:1b:ca:c0:6a:0d:40:4d:b3: 58:49:72:d1:48:7b:7c:ac:d9:9c:70:bd:dc:0c:ca: ab:52:37:de:47:f6:13:47:a0:a8:ac:99:42:5d:c6: b3:f9:01:9f:e0:1d:3e:dd:3c:c5:b5:ff:ea:c7:1f: a8:af:67:1d:a0:a9:8f:86:fe:df:bb:48:64:cf:04: e1:a0:9f:e0:07:e5:9b:00:30:cf:80:bf:77:b5:5d: 61:9f:9f:8b:22:c3:04:55:7c:2b:bb:08:7c:9f:fb: 82:42:88:c4:de:12:ce:22:3a:64:cc:74:e9:cc:b2: 5b:0e:c7:c6:78:61:e3:03:31:a3:73:e9:66:f1:b1: eb:42:0a:34:28:c5:28:1d:35:f1:68:5e:4d:55:2c: 9a:2d:69:b7:0b:94:c3:9e:1d:c7:9c:e8:0e:54:c9: f8:75:25:77:1b:d6:2c:fa:b8:53:6a:c9:35:31:65: 0b:de:68:0a:66:ee:2f:ad:f4:e1:0b:fd:72:7e:df: 06:f0:b6:c4:3c:f0:37:8e:b5:d1:45:78:b9:98:af: 3e:b0:58:03:43:f9:b0:fe:d4:30:a3:bc:f0:dc:9c: e6:34:8a:96:37:00:31:4d:20:77:64:30:cc:e1:c9: b0:7e:df:58:c7:c4:fa:d3:22:e2:29:b0:1a:ed:5b: 8e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A3:B3:43:59:4B:A7:BB:D5:EA:4C:F2:CB:38:45:18:CD:82:95:23 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e92de963-905f-4556-a21b-bd583b790a50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.152.160.0/19 Signature Algorithm: sha256WithRSAEncryption 20:b8:c9:12:68:6a:86:1c:5f:4c:b6:87:52:cc:0a:77:da:27: ee:c9:56:23:d2:56:35:26:f6:af:ce:4b:ae:cd:c7:36:a4:43: 6f:39:93:69:0f:64:ca:23:23:47:7b:db:92:8b:b1:f1:15:b5: f3:78:06:95:a5:4b:74:ca:0a:0b:5f:c1:6e:69:c2:07:07:e1: 1b:b4:8c:56:93:93:b6:42:6f:58:b9:dd:f4:29:67:0c:9c:30: 0c:9a:fd:17:fd:bc:19:57:3f:45:4c:80:9a:d3:1f:83:50:ec: 7e:4e:fe:b8:1a:3e:f9:0c:f4:10:b1:d6:3e:6c:03:67:8a:3b: c7:f7:59:fa:db:a0:28:46:1e:9a:fd:23:dc:93:35:37:49:33: c9:35:e9:2c:69:68:1c:80:27:13:94:45:75:8c:68:64:72:a8: 70:ad:75:e5:7c:19:b3:4a:e8:b3:7c:00:0d:4f:7b:cc:c7:79: c9:63:b7:32:c9:c4:36:25:b0:42:55:5f:7b:b8:58:b7:44:1a: 07:fb:8b:84:a1:2d:59:15:2a:0d:05:5a:ab:03:de:9a:9b:26: 97:db:03:d0:71:06:ea:36:0d:4d:26:da:6c:6f:53:3c:1c:0b: c9:be:52:1b:fd:10:36:19:68:f9:f9:1f:d1:42:25:92:a9:7d: 13:7d:e4:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcFre7hUdndEpr2LniRdyU37EJ5MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjODdmMGMwNDJhODYwOWZkODZiOTk4MGE0OGI0ZmYzMjcz MTJmZGQ5NTc5NjExOGQ0OTU1Zjc5NzgzM2EzZGZkMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgiyw3R50bysBqDUBNs1hJctFIe3ys2ZxwvdwMyqtSN95H 9hNHoKismUJdxrP5AZ/gHT7dPMW1/+rHH6ivZx2gqY+G/t+7SGTPBOGgn+AH5ZsA MM+Av3e1XWGfn4siwwRVfCu7CHyf+4JCiMTeEs4iOmTMdOnMslsOx8Z4YeMDMaNz 6WbxsetCCjQoxSgdNfFoXk1VLJotabcLlMOeHcec6A5Uyfh1JXcb1iz6uFNqyTUx ZQveaApm7i+t9OEL/XJ+3wbwtsQ88DeOtdFFeLmYrz6wWAND+bD+1DCjvPDcnOY0 ipY3ADFNIHdkMMzhybB+31jHxPrTIuIpsBrtW47hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAaOzQ1lLp7vV6kzyyzhFGM2ClSMwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2U5MmRlOTYzLTkwNWYtNDU1Ni1hMjFiLWJkNTgzYjc5MGE1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVCmKAwDQYJKoZIhvcNAQELBQADggEBACC4yRJoaoYcX0y2h1LMCnfaJ+7J ViPSVjUm9q/OS67NxzakQ285k2kPZMojI0d725KLsfEVtfN4BpWlS3TKCgtfwW5p wgcH4Ru0jFaTk7ZCb1i53fQpZwycMAya/Rf9vBlXP0VMgJrTH4NQ7H5O/rgaPvkM 9BCx1j5sA2eKO8f3WfrboChGHpr9I9yTNTdJM8k16SxpaByAJxOURXWMaGRyqHCt deV8GbNK6LN8AA1Pe8zHecljtzLJxDYlsEJVX3u4WLdEGgf7i4ShLVkVKg0FWqsD 3pqbJpfbA9BxBuo2DU0m2mxvUzwcC8m+Uhv9EDYZaPn5H9FCJZKpfRN95AQ= -----END CERTIFICATE-----Generated at Tue May 7 01:57:25 2024 by rpki-client on console-fra.rpki-client.org