$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/90112568-016c-4dde-b08f-22cc579d7bba.roa File: 90112568-016c-4dde-b08f-22cc579d7bba.roa (raw, json) Hash identifier: DxNvMITbxHsm/JfnlZuRsZ5GpnjgX2ZJgFUAxyi0Bl8= Subject key identifier: 8D:75:3D:2B:79:43:67:11:BA:8E:E6:28:B5:A6:9F:28:8D:FD:2F:7C Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 16C42A0DBCA02B4B8CAAFB2C6A762224B8553952 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/90112568-016c-4dde-b08f-22cc579d7bba.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 43.226.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:c4:2a:0d:bc:a0:2b:4b:8c:aa:fb:2c:6a:76:22:24:b8:55:39:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=1242a9611f1a75683147934051b849b7bf4751d7248d2367fcc0700af85963f1, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:11:11:75:30:5a:0e:83:da:39:5c:bc:39:8b: ef:82:6d:b7:01:c5:ac:d7:e0:e4:52:3b:90:2d:6d: 0b:db:59:c9:1f:b3:ed:06:25:36:b3:0e:96:c2:43: 67:14:c4:51:ab:4b:62:3e:65:b8:7c:15:cc:a1:54: 05:43:8f:22:d7:b4:2f:17:e2:72:59:4e:72:43:ef: 06:31:35:20:46:61:7a:f1:f9:9a:43:41:af:38:50: c9:93:04:56:c8:06:89:6b:ce:8a:a3:dc:b0:df:e9: 0b:67:48:96:c6:9c:d5:15:42:fd:5b:ae:3d:ea:65: 3e:75:5e:74:42:ac:dc:1d:de:1e:fb:bd:f5:ec:03: 43:18:f1:e2:eb:28:62:23:c8:5d:89:a6:9d:6d:80: af:de:e4:9d:0b:7b:52:f6:f3:94:1e:ec:05:c0:bd: 94:8f:5d:33:68:e6:10:ce:54:13:65:38:07:bc:5c: bb:8d:94:d2:f5:63:33:53:c0:b5:d9:c4:7b:63:c3: 38:10:85:50:a8:78:40:a6:e1:62:5f:88:4a:65:af: 67:e7:80:ce:fc:04:87:16:49:fb:94:ac:29:f0:38: d3:40:41:49:82:ae:b2:98:7a:cc:23:d4:20:d5:50: 3a:ab:2c:d6:5f:85:bd:d1:d4:b5:32:6e:7b:b5:d0: 60:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:75:3D:2B:79:43:67:11:BA:8E:E6:28:B5:A6:9F:28:8D:FD:2F:7C X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/90112568-016c-4dde-b08f-22cc579d7bba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.24.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:8b:a6:07:cb:ba:de:f1:ce:5c:fa:0d:8a:c7:78:e0:70:62: cf:fa:55:05:25:31:d1:76:9d:76:4b:57:86:f1:84:7e:17:c2: ba:4a:f3:c0:67:6d:0b:ee:cf:cf:0c:11:02:1a:33:2f:74:ad: 78:30:4e:56:3a:81:82:77:3f:3f:bf:5f:0f:30:60:43:b8:d4: e1:ed:11:c4:11:c8:ad:56:48:b2:6a:0d:28:0c:fc:51:11:4c: ff:7d:94:f4:dd:5f:04:d1:f2:c8:76:9a:7a:f6:5b:cd:34:e1: 53:15:06:3f:76:58:3a:7f:f6:c5:1a:54:dd:34:8b:9f:1d:5f: cc:ce:2b:f7:4a:d5:ab:48:62:6b:b3:e9:de:2a:7b:e5:86:c3: a4:9d:fd:91:b4:f0:df:93:fd:55:ad:a5:f9:b1:36:69:0c:d5: cd:8b:c0:13:2b:04:92:55:ff:ae:0d:a7:95:7c:12:38:d6:53: ce:7c:63:87:61:c1:1f:8f:18:57:12:de:c8:a3:b3:df:78:61: ff:9d:f8:ad:8b:44:c5:57:0a:db:a1:de:cd:65:40:aa:91:d2: fa:90:0d:ca:a7:7d:90:9d:40:e0:41:30:ea:00:54:1e:e9:e0: 84:41:46:80:52:46:76:9a:99:1b:0a:be:9b:b9:c8:bd:f9:22: da:13:07:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFsQqDbygK0uMqvssanYiJLhVOVIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjQyYTk2MTFmMWE3NTY4MzE0NzkzNDA1MWI4NDliN2Jm NDc1MWQ3MjQ4ZDIzNjdmY2MwNzAwYWY4NTk2M2YxMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmERF1MFoOg9o5XLw5i++CbbcBxazX4ORSO5AtbQvbWckf s+0GJTazDpbCQ2cUxFGrS2I+Zbh8FcyhVAVDjyLXtC8X4nJZTnJD7wYxNSBGYXrx +ZpDQa84UMmTBFbIBolrzoqj3LDf6QtnSJbGnNUVQv1brj3qZT51XnRCrNwd3h77 vfXsA0MY8eLrKGIjyF2Jpp1tgK/e5J0Le1L285Qe7AXAvZSPXTNo5hDOVBNlOAe8 XLuNlNL1YzNTwLXZxHtjwzgQhVCoeECm4WJfiEplr2fngM78BIcWSfuUrCnwONNA QUmCrrKYeswj1CDVUDqrLNZfhb3R1LUybnu10GBZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjXU9K3lDZxG6juYotaafKI39L3wwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzkwMTEyNTY4LTAxNmMtNGRkZS1iMDhmLTIyY2M1NzlkN2JiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIr4hgwDQYJKoZIhvcNAQELBQADggEBAE2LpgfLut7xzlz6DYrHeOBwYs/6 VQUlMdF2nXZLV4bxhH4XwrpK88BnbQvuz88MEQIaMy90rXgwTlY6gYJ3Pz+/Xw8w YEO41OHtEcQRyK1WSLJqDSgM/FERTP99lPTdXwTR8sh2mnr2W8004VMVBj92WDp/ 9sUaVN00i58dX8zOK/dK1atIYmuz6d4qe+WGw6Sd/ZG08N+T/VWtpfmxNmkM1c2L wBMrBJJV/64Np5V8EjjWU858Y4dhwR+PGFcS3sijs994Yf+d+K2LRMVXCtuh3s1l QKqR0vqQDcqnfZCdQOBBMOoAVB7p4IRBRoBSRnaamRsKvpu5yL35ItoTByA= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org