$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/ef0727b0-7df4-4c29-b8a3-b1906af5070a.roa File: ef0727b0-7df4-4c29-b8a3-b1906af5070a.roa (raw, json) Hash identifier: BBRkl9cDlq7VTAm4ZH/2i2wgy/LrbUnrD0vu/GW/Ihs= Subject key identifier: 42:4F:DF:2F:F2:09:F6:67:FA:A3:63:95:94:BC:85:5B:40:31:CA:C1 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 1F791FE7492AF60261828E77736A756D92FB4BC1 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/ef0727b0-7df4-4c29-b8a3-b1906af5070a.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 198.52.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:79:1f:e7:49:2a:f6:02:61:82:8e:77:73:6a:75:6d:92:fb:4b:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=e5fa2986af4c4ba2e77bca6338473ff0e5f5926852303ec136e1100d37b19c5d, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e4:e8:e3:bd:e3:42:04:ca:13:49:d5:79:34: 74:8d:bd:b7:1d:f9:11:d6:16:75:2c:6f:32:cb:e9: 49:ef:f2:40:3c:44:0c:68:5d:b4:eb:0a:0f:61:2d: 03:f6:85:dd:d9:f9:3a:2c:df:8d:44:4c:33:9d:4a: 2c:59:8a:da:66:2e:16:c8:11:7d:55:b4:db:f9:43: 43:37:33:9f:2c:eb:29:48:57:eb:81:d8:e4:e5:9d: 5d:02:1f:4a:61:f4:0a:05:6c:84:03:1f:d2:c8:b0: 43:f7:db:a8:7f:a0:d5:99:c8:b0:23:7a:3f:c6:27: a9:99:5e:0c:46:2e:07:48:4d:3a:c8:a2:cd:78:34: f7:36:3f:3d:b2:0a:fc:7f:e2:72:ac:f9:a0:5d:b5: e0:c0:ad:7c:04:61:64:78:96:85:93:23:31:39:ed: 69:d9:7b:33:67:73:cb:98:d5:f0:fb:d8:3d:1f:b4: 20:76:e7:d0:d7:f5:87:d6:8e:e2:f6:c9:0f:d3:67: b6:87:95:26:98:5d:39:34:49:bd:9e:8b:60:10:fe: 3c:63:82:f5:bb:61:6e:3a:7f:af:72:d5:d6:44:4b: 34:a4:70:64:2f:aa:a5:59:e6:1d:c3:93:06:a4:ee: b1:3a:31:3b:2f:c7:f0:86:b6:84:0e:f8:f1:53:fc: d6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:4F:DF:2F:F2:09:F6:67:FA:A3:63:95:94:BC:85:5B:40:31:CA:C1 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/ef0727b0-7df4-4c29-b8a3-b1906af5070a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.52.96.0/19 Signature Algorithm: sha256WithRSAEncryption 94:4b:5e:fb:a3:69:2e:40:f9:6c:3b:56:05:df:c1:cd:7a:17: a2:5c:00:44:b5:a2:ce:22:30:d1:bd:e9:72:25:b5:ec:1b:70: a1:17:29:b4:21:fa:96:e0:b4:55:90:9f:fd:35:58:4d:b5:75: ef:23:65:17:e3:3d:4c:29:f7:36:ca:9b:d4:34:f0:4f:1c:24: bc:fe:1a:c1:42:63:b9:85:0f:da:99:e8:d9:5a:1e:a0:48:ae: e3:72:ac:1f:ff:96:2d:de:d8:75:4b:03:c1:df:91:2c:d7:48: 47:eb:29:8f:7e:8b:26:3b:a1:c7:60:f6:57:8b:d8:a1:bc:85: aa:62:c3:7d:b4:78:8a:a4:5d:b7:34:c4:50:e4:40:51:3e:e4: 14:09:11:a4:ed:70:77:e2:ff:7a:4f:9c:fa:97:a6:f1:0b:3e: bd:8b:5c:1f:1c:62:a0:85:94:fd:a4:b4:0a:5b:5b:3f:8e:d1: 52:ae:45:87:31:3d:52:0a:65:86:75:8a:ec:60:03:97:44:1f: 62:19:af:31:f2:79:2c:11:ab:c2:f7:b1:ab:de:4e:1c:89:76: 73:a8:40:84:84:23:fa:de:68:e9:50:9c:91:2b:84:17:1a:e4: f2:cb:06:69:4c:7f:60:a3:89:8d:fa:15:db:fd:b2:99:e8:ca: 5a:c6:3a:a2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH3kf50kq9gJhgo53c2p1bZL7S8EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWZhMjk4NmFmNGM0YmEyZTc3YmNhNjMzODQ3M2ZmMGU1 ZjU5MjY4NTIzMDNlYzEzNmUxMTAwZDM3YjE5YzVkMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv5OjjveNCBMoTSdV5NHSNvbcd+RHWFnUsbzLL6Unv8kA8 RAxoXbTrCg9hLQP2hd3Z+Tos341ETDOdSixZitpmLhbIEX1VtNv5Q0M3M58s6ylI V+uB2OTlnV0CH0ph9AoFbIQDH9LIsEP326h/oNWZyLAjej/GJ6mZXgxGLgdITTrI os14NPc2Pz2yCvx/4nKs+aBdteDArXwEYWR4loWTIzE57WnZezNnc8uY1fD72D0f tCB259DX9YfWjuL2yQ/TZ7aHlSaYXTk0Sb2ei2AQ/jxjgvW7YW46f69y1dZESzSk cGQvqqVZ5h3Dkwak7rE6MTsvx/CGtoQO+PFT/NZVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQk/fL/IJ9mf6o2OVlLyFW0AxysEwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2VmMDcyN2IwLTdkZjQtNGMyOS1iOGEzLWIxOTA2YWY1MDcwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGNGAwDQYJKoZIhvcNAQELBQADggEBAJRLXvujaS5A+Ww7VgXfwc16F6Jc AES1os4iMNG96XIltewbcKEXKbQh+pbgtFWQn/01WE21de8jZRfjPUwp9zbKm9Q0 8E8cJLz+GsFCY7mFD9qZ6NlaHqBIruNyrB//li3e2HVLA8HfkSzXSEfrKY9+iyY7 ocdg9leL2KG8hapiw320eIqkXbc0xFDkQFE+5BQJEaTtcHfi/3pPnPqXpvELPr2L XB8cYqCFlP2ktApbWz+O0VKuRYcxPVIKZYZ1iuxgA5dEH2IZrzHyeSwRq8L3save ThyJdnOoQISEI/reaOlQnJErhBca5PLLBmlMf2CjiY36Fdv9spnoylrGOqI= -----END CERTIFICATE-----Generated at Wed May 8 23:47:45 2024 by rpki-client on console-ams.rpki-client.org