$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f0ac54fa-654b-4ad2-98d0-b54bc35a097a.roa File: f0ac54fa-654b-4ad2-98d0-b54bc35a097a.roa (raw, json) Hash identifier: Jx4lWZY8U6EuKWls1o+6B//s3eYyMl43kRIZ2ywIjGU= Subject key identifier: 8C:48:55:98:0F:A5:4F:19:2C:AB:DA:BC:03:B9:7C:3C:C8:BB:6F:8B Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 3D40B0C06AF25EC941BA4B9E368B9A8F41DDD35B Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f0ac54fa-654b-4ad2-98d0-b54bc35a097a.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 198.211.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:40:b0:c0:6a:f2:5e:c9:41:ba:4b:9e:36:8b:9a:8f:41:dd:d3:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=1ae20cf6eb1ceaaf878c88ccdc8115a5eb4460eee02c3bcfe740547ea7e9ed84, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e6:60:e6:d4:f3:73:dd:6d:d6:42:0d:04:ea: bc:23:ed:06:4f:f1:20:f4:13:ca:8c:c5:66:13:c8: 6d:ec:bb:9e:4c:7e:be:1b:8d:7c:dd:bd:6d:88:24: 70:3b:a0:8c:fb:e5:71:06:b9:8e:ba:a8:92:6d:a1: 49:08:4f:55:72:f9:67:dc:3d:29:bd:6f:d5:4e:43: 65:56:7b:c8:7e:c0:e6:4f:ba:0f:d4:ce:c8:9e:36: 1a:9e:0f:d3:24:93:da:d0:86:22:ee:d2:67:62:90: 07:61:06:9c:04:bb:20:eb:41:33:03:63:66:af:7d: 5f:da:56:47:42:3b:4c:af:b3:28:6f:3f:96:11:ee: 45:54:57:db:42:c6:f9:d0:78:c9:c5:c9:81:9a:d7: 0f:3d:94:b5:21:0f:5c:3d:b4:66:1d:b2:01:a4:a4: 2c:0b:c2:27:0e:a8:d1:95:16:c2:a3:74:c9:0f:1b: a5:1f:70:e0:9c:2b:6a:3f:a6:3b:b9:f9:0d:6e:2c: 6c:eb:9c:0d:7e:44:71:00:d3:3d:40:b1:10:7c:34: a7:a5:a7:fb:0a:5b:7e:c4:e2:e5:36:08:9a:ad:e6: 58:d7:f6:4e:e6:55:c3:52:1a:ec:29:ba:b4:ee:2f: 2b:35:05:a4:f3:47:f6:fc:45:1d:64:a7:1f:ca:09: 3b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:48:55:98:0F:A5:4F:19:2C:AB:DA:BC:03:B9:7C:3C:C8:BB:6F:8B X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f0ac54fa-654b-4ad2-98d0-b54bc35a097a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.211.0.0/18 Signature Algorithm: sha256WithRSAEncryption 07:70:a9:a4:2c:93:c2:3e:e4:84:c8:77:f8:f1:f9:14:6a:f9: eb:5a:17:7e:b4:88:95:75:d1:1d:6f:ab:be:7d:2c:58:29:79: 70:c9:8f:01:47:2a:3c:55:76:9f:72:f3:2c:23:5f:35:56:6d: 15:2a:d2:fe:bb:b2:d6:64:c2:59:00:9c:55:ea:23:9f:ba:33: 89:f5:6e:2d:2b:db:ac:47:86:85:83:00:9b:e9:b6:e5:63:3a: c4:b6:79:26:12:a1:eb:94:99:3e:a8:06:87:ff:06:fa:d8:8a: b4:63:74:92:b3:a7:38:9c:a0:96:99:50:ee:1e:68:5a:bb:86: 28:22:77:d8:61:b4:4a:b5:30:b9:a0:19:b7:8a:be:db:5f:68: 39:1e:9a:67:54:c3:1d:0f:96:c0:db:86:09:98:7b:20:78:27: 52:d7:6c:d9:eb:af:b6:00:37:f1:b9:83:97:bd:26:a8:b7:ff: 86:c7:48:66:d3:2e:b9:ac:24:fb:e2:68:eb:b5:a2:2f:7b:33: fd:60:ac:73:fb:4f:61:48:3c:18:cc:b0:10:f7:0d:3a:0c:bc: bc:ef:d0:21:14:b4:c3:59:92:50:92:4e:8b:4e:bf:e5:56:7d: f6:5a:2f:9b:af:75:eb:54:10:73:79:79:df:e8:4b:5b:fb:db: 94:31:63:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPUCwwGryXslBukueNouaj0Hd01swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWUyMGNmNmViMWNlYWFmODc4Yzg4Y2NkYzgxMTVhNWVi NDQ2MGVlZTAyYzNiY2ZlNzQwNTQ3ZWE3ZTllZDg0MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDg5mDm1PNz3W3WQg0E6rwj7QZP8SD0E8qMxWYTyG3su55M fr4bjXzdvW2IJHA7oIz75XEGuY66qJJtoUkIT1Vy+WfcPSm9b9VOQ2VWe8h+wOZP ug/UzsieNhqeD9Mkk9rQhiLu0mdikAdhBpwEuyDrQTMDY2avfV/aVkdCO0yvsyhv P5YR7kVUV9tCxvnQeMnFyYGa1w89lLUhD1w9tGYdsgGkpCwLwicOqNGVFsKjdMkP G6UfcOCcK2o/pju5+Q1uLGzrnA1+RHEA0z1AsRB8NKelp/sKW37E4uU2CJqt5ljX 9k7mVcNSGuwpurTuLys1BaTzR/b8RR1kpx/KCTuxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjEhVmA+lTxksq9q8A7l8PMi7b4swHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2YwYWM1NGZhLTY1NGItNGFkMi05OGQwLWI1NGJjMzVhMDk3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbG0wAwDQYJKoZIhvcNAQELBQADggEBAAdwqaQsk8I+5ITId/jx+RRq+eta F360iJV10R1vq759LFgpeXDJjwFHKjxVdp9y8ywjXzVWbRUq0v67stZkwlkAnFXq I5+6M4n1bi0r26xHhoWDAJvptuVjOsS2eSYSoeuUmT6oBof/BvrYirRjdJKzpzic oJaZUO4eaFq7higid9hhtEq1MLmgGbeKvttfaDkemmdUwx0PlsDbhgmYeyB4J1LX bNnrr7YAN/G5g5e9Jqi3/4bHSGbTLrmsJPviaOu1oi97M/1grHP7T2FIPBjMsBD3 DToMvLzv0CEUtMNZklCSTotOv+VWffZaL5uvdetUEHN5ed/oS1v725QxYyQ= -----END CERTIFICATE-----Generated at Fri May 3 00:07:10 2024 by rpki-client on console-ams.rpki-client.org