$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f1b9bd75-ad11-4f5a-b8c4-b1c7d4664a8a.roa File: f1b9bd75-ad11-4f5a-b8c4-b1c7d4664a8a.roa (raw, json) Hash identifier: T25PtcoelkOSUOWgxsJK5QddwfaqV94LVYLVeGan5XM= Subject key identifier: D9:E5:23:27:F0:C9:AF:0A:E8:01:B8:11:62:D3:A9:18:CF:61:50:58 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 7BF7223A12E1631398888E88D2887D09CB820F4E Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f1b9bd75-ad11-4f5a-b8c4-b1c7d4664a8a.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 66.152.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 02 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:f7:22:3a:12:e1:63:13:98:88:8e:88:d2:88:7d:09:cb:82:0f:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=fbf128cf2071bb7ddbb10965d98a269b8839486ab47ba9a74e6de98361c89e94, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:40:dc:87:87:b9:5f:af:0c:1a:85:af:1e:e9: 57:da:6d:a7:a0:c4:2a:ff:4c:35:f0:28:55:f6:c2: b3:3f:ff:84:a4:21:b3:f3:86:48:e3:b8:5c:d7:dd: 65:78:91:47:c9:53:80:e2:99:d8:96:0e:dd:a4:0e: 78:27:cf:06:47:c2:cc:1f:16:e4:5d:3b:02:62:e6: 72:3f:40:3a:82:31:69:82:1d:fb:e3:cc:6d:84:b3: 05:d1:10:04:cf:bc:a5:02:c2:12:df:14:ca:38:c2: 19:f5:dc:ff:fc:ee:5d:1b:a2:6e:10:07:b5:93:9f: 5e:39:2a:73:c8:85:f6:fb:d2:12:0c:92:f0:56:7b: 4d:ee:d8:8b:47:32:b0:68:7d:55:4f:ff:ec:40:19: 82:4c:b8:43:4a:b9:94:ca:94:8b:ce:da:00:7d:f6: b6:dc:7d:20:98:81:4c:7f:23:ff:81:dc:f0:58:ab: bd:43:df:6d:c6:7c:53:41:9c:56:7a:3f:94:5f:05: fe:11:e0:fe:65:e1:d6:44:77:f6:16:57:70:5f:b0: a3:55:22:cc:a2:2d:d0:9a:2f:d1:99:33:2d:5a:4a: f9:72:e2:55:ee:ca:47:19:3a:42:ba:08:cd:2e:b0: 29:15:98:09:87:e1:96:05:3a:0c:5e:e1:67:7d:f1: 3f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E5:23:27:F0:C9:AF:0A:E8:01:B8:11:62:D3:A9:18:CF:61:50:58 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f1b9bd75-ad11-4f5a-b8c4-b1c7d4664a8a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.152.181.0/24 Signature Algorithm: sha256WithRSAEncryption 07:22:78:84:52:62:5b:7e:a2:6e:90:ad:33:7b:39:86:a8:a1: 0a:e5:d7:64:06:2e:66:94:99:6b:e8:d1:a3:ca:45:ab:58:e4: b2:df:7f:d1:24:a7:7a:11:1b:4d:bc:e2:5b:ef:b6:0f:e7:b3: 9b:55:32:41:46:7a:42:b9:7b:8b:99:88:c5:a6:40:3d:0b:18: 65:4c:fd:22:17:ab:6a:57:18:db:d1:13:7e:26:3f:2e:36:45: 65:68:5c:3d:be:df:c3:93:a8:e9:be:f2:1e:d3:fe:e2:44:9a: e8:1e:9e:ab:d7:f6:02:b5:4d:d8:4a:ec:77:1d:91:90:e8:d6: 31:a1:af:d1:ee:d3:d1:5d:e6:08:6b:ab:1f:c5:f6:27:67:70: 7d:df:7a:e7:6d:f6:c0:e2:14:7d:eb:a6:07:c3:e9:6d:b5:01: 3a:7f:db:8f:23:89:19:39:d2:e0:d9:1d:f4:87:70:e4:48:4d: 4e:65:f1:47:b8:6b:56:83:85:4a:de:ef:a8:04:d6:6b:be:de: b6:23:5d:3d:37:e8:85:4b:7d:c7:75:39:ad:c7:dd:ad:b8:e1: 88:28:20:79:91:2a:28:30:2d:8c:a0:53:b3:9f:3a:fe:00:46: 10:d3:f9:3c:e5:26:1a:74:b2:ad:cd:33:50:eb:ce:5a:4c:92: a0:d5:02:de -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe/ciOhLhYxOYiI6I0oh9CcuCD04wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYmYxMjhjZjIwNzFiYjdkZGJiMTA5NjVkOThhMjY5Yjg4 Mzk0ODZhYjQ3YmE5YTc0ZTZkZTk4MzYxYzg5ZTk0MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5QNyHh7lfrwwaha8e6VfabaegxCr/TDXwKFX2wrM//4Sk IbPzhkjjuFzX3WV4kUfJU4DimdiWDt2kDngnzwZHwswfFuRdOwJi5nI/QDqCMWmC HfvjzG2EswXREATPvKUCwhLfFMo4whn13P/87l0bom4QB7WTn145KnPIhfb70hIM kvBWe03u2ItHMrBofVVP/+xAGYJMuENKuZTKlIvO2gB99rbcfSCYgUx/I/+B3PBY q71D323GfFNBnFZ6P5RfBf4R4P5l4dZEd/YWV3BfsKNVIsyiLdCaL9GZMy1aSvly 4lXuykcZOkK6CM0usCkVmAmH4ZYFOgxe4Wd98T+nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2eUjJ/DJrwroAbgRYtOpGM9hUFgwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2YxYjliZDc1LWFkMTEtNGY1YS1iOGM0LWIxYzdkNDY2NGE4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABCmLUwDQYJKoZIhvcNAQELBQADggEBAAcieIRSYlt+om6QrTN7OYaooQrl 12QGLmaUmWvo0aPKRatY5LLff9Ekp3oRG0284lvvtg/ns5tVMkFGekK5e4uZiMWm QD0LGGVM/SIXq2pXGNvRE34mPy42RWVoXD2+38OTqOm+8h7T/uJEmugenqvX9gK1 TdhK7HcdkZDo1jGhr9Hu09Fd5ghrqx/F9idncH3feudt9sDiFH3rpgfD6W21ATp/ 248jiRk50uDZHfSHcORITU5l8Ue4a1aDhUre76gE1mu+3rYjXT036IVLfcd1Oa3H 3a244YgoIHmRKigwLYygU7OfOv4ARhDT+TzlJhp0sq3NM1DrzlpMkqDVAt4= -----END CERTIFICATE-----Generated at Tue Apr 30 23:40:11 2024 by rpki-client on console-fra.rpki-client.org