$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/428c2204-6211-466f-b87d-1bbe7b9ba29d.roa File: 428c2204-6211-466f-b87d-1bbe7b9ba29d.roa (raw, json) Hash identifier: VuB13lQbKorRKfcDjzHp2ewfJI93wFF4vwiVFkhgYro= Subject key identifier: 52:43:1D:4E:53:05:D4:5B:96:B4:9A:1D:E7:50:B8:46:08:33:2C:21 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 7E0E9E8A254A8366F0B52B4D8EDF1A3B5663491D Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/428c2204-6211-466f-b87d-1bbe7b9ba29d.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 35916 IP address blocks: 206.125.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:0e:9e:8a:25:4a:83:66:f0:b5:2b:4d:8e:df:1a:3b:56:63:49:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=9df050cd3a1af0a5669732da791066a323da9d90ce3c77eab191de2b055151f7, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:da:0f:a2:40:2a:62:fc:f1:3a:de:ed:82:79: f7:94:d2:63:05:97:8c:60:b6:d7:dc:9a:45:cb:bb: 64:08:29:78:c6:db:99:28:6b:90:fe:39:97:c9:55: d6:ab:f9:0d:33:8a:4e:e6:5a:8a:07:59:e2:7b:fa: c0:58:39:7b:50:d7:d8:b2:15:d3:13:c8:08:e6:53: b9:7e:e2:0d:dc:b0:24:93:01:6e:1e:43:d1:fe:d8: e7:56:ae:2b:00:8c:bf:36:ac:aa:f2:79:1c:38:be: 76:ea:56:18:82:92:d2:a4:3a:f6:ad:5b:ef:6f:1c: e6:4b:ba:ac:01:2a:8a:9d:07:e6:f9:60:ad:64:49: bd:60:9d:59:ce:60:df:7b:f8:92:66:d6:f3:de:ea: e2:cc:b1:d4:28:c5:fa:08:8d:f6:27:b2:94:32:5b: 75:ba:55:02:6a:46:0e:d8:5d:e3:5c:0a:9d:8b:a7: 54:ca:53:3b:e8:d6:e1:ec:a6:d0:f2:21:69:65:a3: e5:ab:f0:37:1d:04:24:d1:5a:db:08:a8:c5:91:f4: 51:e9:51:10:e1:1b:80:47:be:39:16:60:44:e1:98: 02:87:26:32:3e:c9:00:75:de:1f:31:90:67:61:13: 6d:66:ec:03:12:3a:5f:21:5f:54:26:8c:a5:ac:e2: d5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:43:1D:4E:53:05:D4:5B:96:B4:9A:1D:E7:50:B8:46:08:33:2C:21 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/428c2204-6211-466f-b87d-1bbe7b9ba29d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.125.40.0/21 Signature Algorithm: sha256WithRSAEncryption a8:dc:8d:62:d9:de:de:ef:3d:bb:af:00:15:f9:b8:cc:7c:1d: 0f:00:39:06:2b:ba:90:b4:3e:fe:31:20:08:d9:2a:4b:3d:8a: 28:47:65:72:23:a5:13:4f:8d:ad:89:d4:ea:e3:a5:1c:14:6b: cf:82:cf:1b:54:52:ab:10:b7:e1:20:a9:d2:57:ae:44:ea:4a: b7:17:4a:c0:84:e8:5d:ca:c7:37:5b:90:48:ac:3b:66:ef:4e: 6f:97:d7:10:ae:35:18:00:6a:50:6a:b4:fa:97:0c:89:d3:e8: 2a:c7:df:98:44:67:1f:23:77:04:2d:82:cf:c6:dd:23:db:2f: ff:00:12:97:3d:71:0e:75:7a:87:24:a1:ce:23:13:90:c1:d5: 15:9d:87:ea:b7:1e:03:a2:fd:1e:05:bd:ce:17:72:68:ea:83: ba:37:4e:6c:28:df:4e:cd:3a:1f:95:97:9e:69:6e:6e:93:68: cb:0b:9b:8c:e3:f3:b5:e9:17:e9:6a:5e:a8:0b:aa:cc:75:58: 84:28:be:d7:a0:90:4b:96:75:02:ed:ad:ff:4e:a8:3e:70:de: 25:1c:ac:e5:3b:8e:aa:08:a3:fd:76:ca:9c:14:3d:7c:52:a4: 12:f1:77:02:01:52:b8:e6:8e:db:b3:f8:c4:fc:a0:df:ce:fd: 7d:49:f3:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfg6eiiVKg2bwtStNjt8aO1ZjSR0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGYwNTBjZDNhMWFmMGE1NjY5NzMyZGE3OTEwNjZhMzIz ZGE5ZDkwY2UzYzc3ZWFiMTkxZGUyYjA1NTE1MWY3MS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDw2g+iQCpi/PE63u2CefeU0mMFl4xgttfcmkXLu2QIKXjG 25koa5D+OZfJVdar+Q0zik7mWooHWeJ7+sBYOXtQ19iyFdMTyAjmU7l+4g3csCST AW4eQ9H+2OdWrisAjL82rKryeRw4vnbqVhiCktKkOvatW+9vHOZLuqwBKoqdB+b5 YK1kSb1gnVnOYN97+JJm1vPe6uLMsdQoxfoIjfYnspQyW3W6VQJqRg7YXeNcCp2L p1TKUzvo1uHsptDyIWllo+Wr8DcdBCTRWtsIqMWR9FHpURDhG4BHvjkWYEThmAKH JjI+yQB13h8xkGdhE21m7AMSOl8hX1QmjKWs4tUvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUkMdTlMF1FuWtJod51C4RggzLCEwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzQyOGMyMjA0LTYyMTEtNDY2Zi1iODdkLTFiYmU3YjliYTI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPOfSgwDQYJKoZIhvcNAQELBQADggEBAKjcjWLZ3t7vPbuvABX5uMx8HQ8A OQYrupC0Pv4xIAjZKks9iihHZXIjpRNPja2J1OrjpRwUa8+CzxtUUqsQt+EgqdJX rkTqSrcXSsCE6F3KxzdbkEisO2bvTm+X1xCuNRgAalBqtPqXDInT6CrH35hEZx8j dwQtgs/G3SPbL/8AEpc9cQ51eockoc4jE5DB1RWdh+q3HgOi/R4Fvc4Xcmjqg7o3 Tmwo307NOh+Vl55pbm6TaMsLm4zj87XpF+lqXqgLqsx1WIQovtegkEuWdQLtrf9O qD5w3iUcrOU7jqoIo/12ypwUPXxSpBLxdwIBUrjmjtuz+MT8oN/O/X1J840= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org