$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f3fefce6-79f2-40d8-a4ba-2de280e09eda.roa File: f3fefce6-79f2-40d8-a4ba-2de280e09eda.roa (raw, json) Hash identifier: q5q79TbCHS+RrhoF1NPWR6Z6dTaoy3VR/JvsszwHJ3E= Subject key identifier: D1:7C:5F:A8:74:5B:89:D1:1F:25:6F:3D:AA:FD:C0:CC:7C:DE:1F:8A Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 2A92F0367A15980201B2F2DC187E6627D37D8F7B Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f3fefce6-79f2-40d8-a4ba-2de280e09eda.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 198.148.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:92:f0:36:7a:15:98:02:01:b2:f2:dc:18:7e:66:27:d3:7d:8f:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=935fe5dac894cc6686214ad075e4e04b6139723e9a64501ca1e87684de61dcef, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9e:0a:3c:e3:60:76:25:88:64:94:e8:1c:b9: 84:6b:89:c7:34:a6:37:69:f1:a6:77:55:9e:19:8f: 6b:d4:a6:e1:ba:18:e6:7e:f4:87:bc:a9:86:dd:5f: 10:2c:84:60:d3:e9:0b:c9:f0:6a:ab:46:61:57:0a: a5:77:7e:82:05:b7:6a:01:ba:c0:84:d4:6c:7d:12: fd:c3:69:e6:17:f6:04:2d:8d:f8:10:3e:f7:4f:2b: 9d:04:bd:9c:b5:18:f2:d9:37:d3:12:51:20:7e:23: 9d:15:e3:65:2c:4e:a7:e4:5a:8a:6e:c5:40:ff:18: d5:aa:28:db:d7:e9:5f:3b:83:22:29:83:37:5d:1c: 92:f5:08:7e:ae:21:88:0e:9e:5d:f0:ee:d6:fa:cc: 36:5b:79:a5:94:f8:52:22:5e:f3:a3:5b:a7:13:44: cb:d9:3a:2d:a8:b2:3b:7b:a4:6b:1f:8f:fd:42:0d: cd:db:cb:d6:28:d2:12:a1:81:c9:dc:de:50:e7:1a: 7c:54:6c:7e:ea:f0:23:5e:65:88:72:84:42:e9:45: 68:d7:03:fc:52:58:68:38:38:42:b1:aa:6e:c9:12: fa:cf:74:fc:16:6f:c5:78:f7:c8:01:5a:a5:97:e3: 2a:cc:3e:93:a0:99:d7:3b:2e:a9:67:1b:3c:b7:1c: ea:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:7C:5F:A8:74:5B:89:D1:1F:25:6F:3D:AA:FD:C0:CC:7C:DE:1F:8A X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f3fefce6-79f2-40d8-a4ba-2de280e09eda.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.148.96.0/19 Signature Algorithm: sha256WithRSAEncryption 49:99:cb:f1:22:7d:34:8d:a1:f4:ed:d4:2a:01:28:49:25:6c: 4c:07:58:d2:7f:2d:89:39:0d:ab:00:d8:ac:34:1b:e0:36:f8: 67:e5:20:06:53:d7:7f:41:b0:66:f8:ea:01:ec:4c:3a:60:4b: 7f:5e:35:1a:7b:1d:f7:fe:95:0c:16:ad:48:ba:cd:8a:e7:91: f9:fb:a9:9d:59:47:70:49:18:3c:db:10:96:d4:62:92:e1:92: a4:fb:61:ef:59:9a:95:82:3d:1a:9a:54:e5:b3:77:4f:31:a2: 21:0c:f8:7d:69:2a:bd:70:9e:03:82:ef:58:6b:06:74:59:2a: 0e:1a:fa:6f:3a:bb:de:73:04:9e:03:39:7f:bf:49:f9:46:9c: 37:e7:eb:83:12:f9:06:3c:eb:e1:2d:a9:5e:a6:96:90:f2:70: 25:44:c4:7e:38:67:b2:cb:48:52:75:09:e2:76:c8:64:a8:b3: b0:77:69:fa:fb:a1:ac:ea:3e:ea:6e:c0:ef:96:a3:e5:58:a8: 3c:30:dd:f5:82:dd:dc:fa:b7:9d:02:ec:20:28:d1:83:cc:34: 0d:fe:12:cd:d4:b3:0f:02:5a:83:c4:75:46:20:08:e9:c0:28: 9c:72:f1:57:08:48:80:d7:c6:2c:bd:4d:f9:12:ee:65:0f:66: fc:58:76:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKpLwNnoVmAIBsvLcGH5mJ9N9j3swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzVmZTVkYWM4OTRjYzY2ODYyMTRhZDA3NWU0ZTA0YjYx Mzk3MjNlOWE2NDUwMWNhMWU4NzY4NGRlNjFkY2VmMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPngo842B2JYhklOgcuYRricc0pjdp8aZ3VZ4Zj2vUpuG6 GOZ+9Ie8qYbdXxAshGDT6QvJ8GqrRmFXCqV3foIFt2oBusCE1Gx9Ev3DaeYX9gQt jfgQPvdPK50EvZy1GPLZN9MSUSB+I50V42UsTqfkWopuxUD/GNWqKNvX6V87gyIp gzddHJL1CH6uIYgOnl3w7tb6zDZbeaWU+FIiXvOjW6cTRMvZOi2osjt7pGsfj/1C Dc3by9Yo0hKhgcnc3lDnGnxUbH7q8CNeZYhyhELpRWjXA/xSWGg4OEKxqm7JEvrP dPwWb8V498gBWqWX4yrMPpOgmdc7LqlnGzy3HOohAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0XxfqHRbidEfJW89qv3AzHzeH4owHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2YzZmVmY2U2LTc5ZjItNDBkOC1hNGJhLTJkZTI4MGUwOWVkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGlGAwDQYJKoZIhvcNAQELBQADggEBAEmZy/EifTSNofTt1CoBKEklbEwH WNJ/LYk5DasA2Kw0G+A2+GflIAZT139BsGb46gHsTDpgS39eNRp7Hff+lQwWrUi6 zYrnkfn7qZ1ZR3BJGDzbEJbUYpLhkqT7Ye9ZmpWCPRqaVOWzd08xoiEM+H1pKr1w ngOC71hrBnRZKg4a+m86u95zBJ4DOX+/SflGnDfn64MS+QY86+EtqV6mlpDycCVE xH44Z7LLSFJ1CeJ2yGSos7B3afr7oazqPupuwO+Wo+VYqDww3fWC3dz6t50C7CAo 0YPMNA3+Es3Usw8CWoPEdUYgCOnAKJxy8VcISIDXxiy9TfkS7mUPZvxYdqM= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org