$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/fc23db7f-797e-4c7f-9415-0a2c31d797b7.roa File: fc23db7f-797e-4c7f-9415-0a2c31d797b7.roa (raw, json) Hash identifier: MCostyEd9CHFwIrbWF6SHOWtnbbwlqt8iAerSt1DQOA= Subject key identifier: FF:42:9E:C2:84:D0:50:39:C7:BD:60:11:FB:9B:71:BA:AD:47:C0:C0 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 45AF90142079835F622EDFDD3AF89F239B5D8665 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/fc23db7f-797e-4c7f-9415-0a2c31d797b7.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 108.166.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:af:90:14:20:79:83:5f:62:2e:df:dd:3a:f8:9f:23:9b:5d:86:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=6581cf444c71be2b62ff3615cf7c2714eabb23ef40c147441a3acea00cb1d803, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:03:7b:82:b4:cc:c1:4b:cf:91:ce:b7:dc: 3d:e7:5e:f6:14:21:4b:31:ec:4c:3f:ea:ae:78:7d: bb:ea:f0:dd:56:d5:e1:44:82:eb:8a:6a:9b:63:65: 47:b9:c7:cf:25:7c:7f:1b:89:98:7e:d7:98:90:18: ed:73:36:88:0c:88:60:4a:24:18:dc:3d:16:16:16: 8b:31:77:5b:b9:25:b1:26:f7:7c:69:45:01:21:8f: 8c:d5:9b:3d:65:ee:81:e7:d2:49:26:29:ad:1f:e3: 86:ae:0d:59:2b:a8:db:a8:94:e3:43:7a:7f:67:b2: 47:10:9e:7c:37:27:81:ec:be:d3:6e:62:0d:09:69: cb:42:12:2b:ca:e4:0c:df:eb:d9:6f:22:2d:be:3b: e3:32:a6:46:2e:ae:bd:42:93:08:53:65:91:26:22: 5d:a5:da:cd:93:99:77:12:26:7f:7e:fb:1d:06:59: 0d:53:db:40:6c:b5:2e:1f:a2:9d:a3:b2:01:8a:b7: 90:98:e9:f3:59:bf:ee:7b:3e:48:ce:1e:4e:6a:53: 02:d3:2d:c1:0c:12:2e:c0:9e:50:c5:b5:1b:2f:79: fd:99:e7:29:d2:4a:f9:e9:c3:d4:73:fb:07:22:b9: 87:d4:75:54:c5:bb:4f:de:f5:eb:3e:0e:9a:71:ed: 00:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:42:9E:C2:84:D0:50:39:C7:BD:60:11:FB:9B:71:BA:AD:47:C0:C0 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/fc23db7f-797e-4c7f-9415-0a2c31d797b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.166.192.0/19 Signature Algorithm: sha256WithRSAEncryption 2e:1d:9c:9f:bb:4f:bf:92:a7:43:5d:4e:4e:85:2a:a9:44:66: 8b:12:b3:6f:42:f3:57:52:e1:da:db:79:ce:65:74:2e:80:6a: 39:f1:19:ef:0f:3b:0d:79:fa:56:cf:32:f1:20:17:c9:f0:da: ef:05:7e:f0:72:89:a2:70:70:61:f0:5e:ab:b2:7b:32:64:70: c7:de:c2:d3:0f:f2:3d:b1:8b:92:a9:d9:72:1b:72:57:61:61: 4c:ed:95:e7:8f:a6:51:fe:c7:00:04:2a:40:6e:c8:1b:b4:c5: 80:44:7e:4a:45:5d:c9:55:d0:0d:27:8c:e6:0b:f5:de:a8:b6: 98:b0:63:bf:56:db:1d:11:b7:92:0e:24:b9:28:a3:8a:14:92: 1e:68:3c:93:21:16:06:ab:5a:50:8e:ef:54:0e:50:1a:7d:54: 62:47:42:07:f0:8a:5e:a5:bb:98:8c:04:d4:ee:3d:0c:d5:70: 8e:f8:23:6a:cb:a7:5a:58:53:82:a8:ac:5f:62:27:a0:fc:c4: 33:a1:32:08:d5:3d:d5:3a:1a:9b:11:8f:75:b8:1d:d8:47:4a: 0f:bf:d5:eb:e0:bc:e2:07:a8:fe:d4:08:58:6d:42:52:50:03: 7b:ef:57:94:a1:67:66:90:3d:39:bf:27:b0:16:66:24:a8:ae: 4a:1f:e4:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURa+QFCB5g19iLt/dOvifI5tdhmUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NTgxY2Y0NDRjNzFiZTJiNjJmZjM2MTVjZjdjMjcxNGVh YmIyM2VmNDBjMTQ3NDQxYTNhY2VhMDBjYjFkODAzMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL7wN7grTMwUvPkc633D3nXvYUIUsx7Ew/6q54fbvq8N1W 1eFEguuKaptjZUe5x88lfH8biZh+15iQGO1zNogMiGBKJBjcPRYWFosxd1u5JbEm 93xpRQEhj4zVmz1l7oHn0kkmKa0f44auDVkrqNuolONDen9nskcQnnw3J4HsvtNu Yg0JactCEivK5Azf69lvIi2+O+MypkYurr1CkwhTZZEmIl2l2s2TmXcSJn9++x0G WQ1T20BstS4fop2jsgGKt5CY6fNZv+57PkjOHk5qUwLTLcEMEi7AnlDFtRsvef2Z 5ynSSvnpw9Rz+wciuYfUdVTFu0/e9es+Dppx7QDNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/0KewoTQUDnHvWAR+5txuq1HwMAwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzL2ZjMjNkYjdmLTc5N2UtNGM3Zi05NDE1LTBhMmMzMWQ3OTdiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVspsAwDQYJKoZIhvcNAQELBQADggEBAC4dnJ+7T7+Sp0NdTk6FKqlEZosS s29C81dS4drbec5ldC6AajnxGe8POw15+lbPMvEgF8nw2u8FfvByiaJwcGHwXquy ezJkcMfewtMP8j2xi5Kp2XIbcldhYUztleePplH+xwAEKkBuyBu0xYBEfkpFXclV 0A0njOYL9d6otpiwY79W2x0Rt5IOJLkoo4oUkh5oPJMhFgarWlCO71QOUBp9VGJH Qgfwil6lu5iMBNTuPQzVcI74I2rLp1pYU4KorF9iJ6D8xDOhMgjVPdU6GpsRj3W4 HdhHSg+/1evgvOIHqP7UCFhtQlJQA3vvV5ShZ2aQPTm/J7AWZiSorkof5FU= -----END CERTIFICATE-----Generated at Thu May 2 00:10:37 2024 by rpki-client on console-ams.rpki-client.org