$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f98b6a90-10ca-4b3c-8622-d16133aa4f03.roa File: f98b6a90-10ca-4b3c-8622-d16133aa4f03.roa (raw, json) Hash identifier: N7o1I+KCqYBGaZw1ElAyzf21YtWambloJibbhds5nHI= Subject key identifier: 14:80:DC:A7:19:93:47:04:FB:7A:51:21:A2:FC:F6:A9:97:7D:81:9B Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 57000B2212D132B76F41971057BAB2A2A164BEE6 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f98b6a90-10ca-4b3c-8622-d16133aa4f03.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 35916 IP address blocks: 23.234.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:00:0b:22:12:d1:32:b7:6f:41:97:10:57:ba:b2:a2:a1:64:be:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=d17c09d506da46c9524723f53a739d5de15ca6edd7552a2d3460bc1391b2d047, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:42:64:4c:b1:a8:41:6f:57:7c:72:53:94:e4: 92:91:5a:81:7a:52:8b:ef:44:0b:2f:b4:e7:04:85: 54:58:a2:6c:2a:17:45:44:43:87:81:c2:db:67:54: f0:e0:c4:90:52:5a:21:ed:08:a1:3f:ae:ab:3e:e2: e5:84:26:90:ba:85:74:5a:2a:36:64:32:83:da:1c: 4e:a0:23:67:30:48:78:45:ce:d4:56:3b:51:5b:6f: 1b:d5:78:c5:ff:97:29:5d:31:5e:f5:0c:59:0c:51: 5c:ce:c7:3b:e1:97:66:c4:5d:ab:7a:6d:af:1c:b2: cb:6c:58:57:71:42:69:fb:cb:e1:24:08:0f:c8:cb: 18:3d:cd:52:3e:e9:4b:b5:69:fd:41:77:87:23:96: 70:ba:23:ac:2a:2b:53:20:91:31:21:b3:84:12:f8: d0:f2:95:4e:5f:a9:80:8b:49:b4:74:35:ba:cb:66: 98:c6:4a:28:06:f9:20:c5:cb:be:b9:b7:2d:22:58: ed:57:9e:22:de:99:57:b0:32:54:97:ec:11:46:22: a7:05:ac:fe:a9:b2:78:d5:10:59:2f:54:c2:86:d6: df:a9:fd:2c:25:b5:06:c4:6d:4c:6a:fe:79:b4:52: c9:69:2f:b1:14:fc:57:73:91:c5:df:c8:16:94:4f: 01:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:80:DC:A7:19:93:47:04:FB:7A:51:21:A2:FC:F6:A9:97:7D:81:9B X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/f98b6a90-10ca-4b3c-8622-d16133aa4f03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.234.210.0/24 Signature Algorithm: sha256WithRSAEncryption 63:89:a1:0f:a9:14:e1:b5:e5:a1:31:e6:f3:b1:bb:c9:be:94: cc:48:e7:0e:c4:1a:01:d3:eb:3b:68:23:5c:50:80:8a:5d:ba: 91:90:56:64:04:ef:17:e1:dc:3f:74:e2:31:5d:b7:82:b9:66: dc:cc:07:63:b5:33:90:c4:ec:3f:2b:95:2f:03:e9:2d:29:a1: 4b:63:04:cf:d6:72:a4:1b:f6:c7:d3:9a:43:ab:8b:a9:b1:77: c3:f8:ed:e7:d5:41:33:c2:1c:b8:66:a3:b4:ff:d0:e9:6a:32: d3:82:0e:97:e1:22:ba:46:2d:7a:7e:dc:7a:04:7a:ba:29:90: 00:7c:14:7f:40:62:a2:f6:7d:38:ca:40:97:d3:0a:f6:c1:e6: a0:65:84:a6:6b:8f:aa:8d:c8:7d:3e:0c:92:7b:6c:4c:62:7b: 24:2a:8c:4e:12:7c:f8:1c:4a:4a:98:c4:ab:56:76:fa:40:88: a8:44:3c:4b:cf:31:77:13:d5:5f:04:9c:b8:c3:84:6b:8f:20: 4c:4e:7e:a7:7c:98:a5:d4:d6:2c:c1:25:04:7b:92:bc:ca:91: 98:ed:2e:13:40:3b:0d:c7:1e:99:dd:76:8c:4b:1b:d5:4e:51: 79:4b:e5:b8:cc:ce:2f:4b:45:47:d5:b5:4e:ce:56:00:06:39: 83:39:aa:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVwALIhLRMrdvQZcQV7qyoqFkvuYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTdjMDlkNTA2ZGE0NmM5NTI0NzIzZjUzYTczOWQ1ZGUx NWNhNmVkZDc1NTJhMmQzNDYwYmMxMzkxYjJkMDQ3MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpQmRMsahBb1d8clOU5JKRWoF6UovvRAsvtOcEhVRYomwq F0VEQ4eBwttnVPDgxJBSWiHtCKE/rqs+4uWEJpC6hXRaKjZkMoPaHE6gI2cwSHhF ztRWO1FbbxvVeMX/lyldMV71DFkMUVzOxzvhl2bEXat6ba8csstsWFdxQmn7y+Ek CA/Iyxg9zVI+6Uu1af1Bd4cjlnC6I6wqK1MgkTEhs4QS+NDylU5fqYCLSbR0NbrL ZpjGSigG+SDFy765ty0iWO1XniLemVewMlSX7BFGIqcFrP6psnjVEFkvVMKG1t+p /SwltQbEbUxq/nm0UslpL7EU/FdzkcXfyBaUTwExAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFIDcpxmTRwT7elEhovz2qZd9gZswHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2Y5OGI2YTkwLTEwY2EtNGIzYy04NjIyLWQxNjEzM2FhNGYwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX6tIwDQYJKoZIhvcNAQELBQADggEBAGOJoQ+pFOG15aEx5vOxu8m+lMxI 5w7EGgHT6ztoI1xQgIpdupGQVmQE7xfh3D904jFdt4K5ZtzMB2O1M5DE7D8rlS8D 6S0poUtjBM/WcqQb9sfTmkOri6mxd8P47efVQTPCHLhmo7T/0OlqMtOCDpfhIrpG LXp+3HoEeropkAB8FH9AYqL2fTjKQJfTCvbB5qBlhKZrj6qNyH0+DJJ7bExieyQq jE4SfPgcSkqYxKtWdvpAiKhEPEvPMXcT1V8EnLjDhGuPIExOfqd8mKXU1izBJQR7 krzKkZjtLhNAOw3HHpnddoxLG9VOUXlL5bjMzi9LRUfVtU7OVgAGOYM5qtw= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org