$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e9a0eeeb-7dfb-4829-b255-432c55dcc9ed.roa File: e9a0eeeb-7dfb-4829-b255-432c55dcc9ed.roa (raw, json) Hash identifier: JVBo/1bIUyhOtoapSFmY2+Ok7vQy5Djgxc0TcKecbSI= Subject key identifier: 3E:5C:CD:C6:BE:EF:27:48:FD:DC:E3:8F:12:84:0C:66:54:90:4A:F7 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 5DAB5A56A5B0F9972982BF3D88A497F15A46F6C4 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e9a0eeeb-7dfb-4829-b255-432c55dcc9ed.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 395681 IP address blocks: 43.226.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 08 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:ab:5a:56:a5:b0:f9:97:29:82:bf:3d:88:a4:97:f1:5a:46:f6:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=229753f2297d14957bc2f8e0f02e75a19a856f851b944966034159b348aecf2a, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9d:99:dd:01:d8:bc:1a:00:f9:de:04:aa:08: 1c:29:2b:b2:5a:d8:83:30:c5:1d:0f:55:16:e7:b3: fd:56:83:68:22:cf:54:17:cc:65:ca:1f:bd:08:01: 4b:19:b5:d7:f4:26:1e:a2:ac:24:a9:9d:fb:40:14: 9e:aa:5c:21:d7:e8:6b:87:33:9c:d8:64:c5:81:81: b2:cb:30:0c:4f:8e:9a:ce:e8:6b:dd:3a:1d:6b:f3: 5b:f4:d8:dd:22:79:28:24:57:87:51:dc:84:ce:06: 34:0d:47:02:84:53:05:a1:bb:74:b2:c5:76:2b:7f: bb:92:4a:99:c8:d4:0b:ae:9c:61:d5:91:0a:b1:62: cf:7e:99:91:b9:75:99:5f:a1:71:3b:64:39:0e:24: 9c:7d:9b:5d:1c:29:d9:be:df:d3:5d:fa:1d:eb:fe: 7c:c8:4c:ef:82:71:39:4a:33:42:36:a3:f3:29:fe: 57:38:80:33:be:22:c0:9e:70:05:a0:33:ae:5b:7e: e8:c3:bd:2d:fc:65:31:44:80:9b:3f:1c:1e:d8:55: 60:f7:90:3a:37:87:ea:e3:48:5c:cf:1c:d3:88:1a: 99:29:2c:a6:1c:18:21:1e:47:17:d5:34:28:38:2c: ce:13:25:f0:1f:17:39:8a:2a:35:16:79:a8:e6:b3: b1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:5C:CD:C6:BE:EF:27:48:FD:DC:E3:8F:12:84:0C:66:54:90:4A:F7 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/e9a0eeeb-7dfb-4829-b255-432c55dcc9ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.24.0/24 Signature Algorithm: sha256WithRSAEncryption 05:5d:86:48:aa:f8:d3:de:d7:09:d7:1b:a1:e3:b6:70:df:17: 59:cc:66:15:5a:53:ff:80:d0:72:4c:8b:b9:aa:8c:6d:ad:58: bc:cc:44:ad:6c:8e:23:85:16:a0:a0:73:db:2c:b3:9a:cf:12: 28:87:fe:a2:12:0e:f1:61:7b:5a:d0:de:72:cd:af:6f:b1:0f: e6:45:e1:f0:8d:c4:0b:0c:59:2d:dd:10:b8:8c:70:3c:69:5d: aa:92:d8:45:05:95:21:f8:8a:c0:34:75:75:d8:57:2e:d1:28: 8f:e5:17:4c:1c:62:e3:3f:6e:2b:e3:95:ee:e1:b9:57:bb:09: 32:1a:99:26:97:4a:e0:a0:0a:16:8c:6e:6c:2e:db:66:fc:48: 73:82:90:09:8a:ed:49:0b:4b:fe:6c:17:7b:21:b8:b0:81:2d: bd:5b:ca:6a:2d:ff:16:d3:bf:07:06:ac:51:4e:30:75:4d:a4: cc:69:6d:ca:6f:48:fe:aa:b1:7d:fb:db:de:31:8e:f8:30:b4: 32:e5:8f:67:43:02:6b:21:f9:15:0d:5d:fb:fa:9a:46:76:b8: 7c:7a:11:cb:0f:6d:15:bd:92:2c:53:81:ed:07:55:59:42:94: 5f:71:8f:27:a9:1c:35:14:e9:25:6b:3f:6a:00:7c:94:66:ff: 52:4c:dd:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXataVqWw+Zcpgr89iKSX8VpG9sQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjk3NTNmMjI5N2QxNDk1N2JjMmY4ZTBmMDJlNzVhMTlh ODU2Zjg1MWI5NDQ5NjYwMzQxNTliMzQ4YWVjZjJhMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfnZndAdi8GgD53gSqCBwpK7Ja2IMwxR0PVRbns/1Wg2gi z1QXzGXKH70IAUsZtdf0Jh6irCSpnftAFJ6qXCHX6GuHM5zYZMWBgbLLMAxPjprO 6GvdOh1r81v02N0ieSgkV4dR3ITOBjQNRwKEUwWhu3SyxXYrf7uSSpnI1AuunGHV kQqxYs9+mZG5dZlfoXE7ZDkOJJx9m10cKdm+39Nd+h3r/nzITO+CcTlKM0I2o/Mp /lc4gDO+IsCecAWgM65bfujDvS38ZTFEgJs/HB7YVWD3kDo3h+rjSFzPHNOIGpkp LKYcGCEeRxfVNCg4LM4TJfAfFzmKKjUWeajms7FNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPlzNxr7vJ0j93OOPEoQMZlSQSvcwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2U5YTBlZWViLTdkZmItNDgyOS1iMjU1LTQzMmM1NWRjYzllZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAr4hgwDQYJKoZIhvcNAQELBQADggEBAAVdhkiq+NPe1wnXG6HjtnDfF1nM ZhVaU/+A0HJMi7mqjG2tWLzMRK1sjiOFFqCgc9sss5rPEiiH/qISDvFhe1rQ3nLN r2+xD+ZF4fCNxAsMWS3dELiMcDxpXaqS2EUFlSH4isA0dXXYVy7RKI/lF0wcYuM/ bivjle7huVe7CTIamSaXSuCgChaMbmwu22b8SHOCkAmK7UkLS/5sF3shuLCBLb1b ymot/xbTvwcGrFFOMHVNpMxpbcpvSP6qsX37294xjvgwtDLlj2dDAmsh+RUNXfv6 mkZ2uHx6EcsPbRW9kixTge0HVVlClF9xjyepHDUU6SVrP2oAfJRm/1JM3Ug= -----END CERTIFICATE-----Generated at Tue May 7 00:53:12 2024 by rpki-client on console-ams.rpki-client.org