$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/0a20f589-b730-4f17-ae25-5ed8e28f9161.roa File: 0a20f589-b730-4f17-ae25-5ed8e28f9161.roa (raw, json) Hash identifier: XDccsRMtmGVfjoZR3/IseokyvnXRYyGfziOG4iGFyOE= Subject key identifier: A5:0D:0E:BE:3A:11:22:A4:D5:FC:E6:4A:99:9C:0C:BB:90:99:4D:A8 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1E28AE6F9723C8C70990AC81DCFF118622E71661 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/0a20f589-b730-4f17-ae25-5ed8e28f9161.roa Signing time: Mon 26 Aug 2024 00:00:00 +0000 ROA not before: Mon 26 Aug 2024 00:00:00 +0000 ROA not after: Mon 30 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 206.55.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Sep 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:28:ae:6f:97:23:c8:c7:09:90:ac:81:dc:ff:11:86:22:e7:16:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 26 00:00:00 2024 GMT Not After : Sep 30 23:59:59 2024 GMT Subject: serialNumber=d393785e151b0e02ee4e128d7b288742f158e8c55d925d89156afc2da03bd67c, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:dc:fc:d2:82:86:f2:14:95:21:79:1c:0d:f3: eb:c9:55:e7:da:2c:a0:41:01:11:ad:11:2d:38:ea: d0:d5:0b:f8:48:e9:20:63:52:38:79:29:8a:59:65: b5:5e:c4:a6:80:79:c0:bf:bf:5e:55:ff:03:b7:bb: 38:90:90:04:45:f0:ef:c0:50:91:b2:95:87:a7:79: 6a:32:e8:8c:82:bb:4b:b7:b9:a1:d9:cf:07:e9:04: 7d:cf:be:16:90:38:56:f7:c0:ad:c8:97:33:d2:c0: c2:f0:7e:65:dd:ea:f0:be:62:85:f9:c7:0c:ac:95: 2c:e5:d9:21:d9:63:e7:64:f7:3f:5f:a5:b2:2c:4f: 6b:70:92:c4:98:29:ad:b8:e1:9f:53:e0:66:de:28: 72:48:ef:5a:52:c3:b4:cf:fa:a6:8e:2b:d9:7d:82: a3:37:2a:aa:c5:1c:09:bb:a7:07:08:63:fd:85:dd: 3e:7c:3e:0e:c3:d2:69:34:f6:c7:52:f5:10:fe:e6: fd:0b:19:2b:a5:db:f4:6b:95:34:3d:b6:ed:0d:e3: 1c:17:ad:a3:bf:d3:b3:51:83:f7:d0:0a:27:00:1b: b0:f7:12:0f:ca:22:1f:42:77:99:93:34:69:6c:af: 7c:ee:5b:4e:24:f3:d3:be:41:16:c9:d6:77:ac:81: 7f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:0D:0E:BE:3A:11:22:A4:D5:FC:E6:4A:99:9C:0C:BB:90:99:4D:A8 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/0a20f589-b730-4f17-ae25-5ed8e28f9161.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.55.128.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:df:ae:b0:69:88:49:34:0e:db:9b:4c:bb:44:e9:a8:49:c3: 2d:a3:8a:56:72:b4:1b:ea:8f:2e:e2:b2:9f:0c:a2:75:63:21: e3:7d:72:89:cf:6b:87:35:28:ea:b8:99:c8:63:f3:19:1d:93: fb:da:0f:98:d9:be:dc:4f:9d:41:9e:9b:63:c7:a9:de:54:07: 73:f7:c4:8e:65:1a:db:64:2f:20:9c:34:20:19:a8:dc:4c:2e: 26:bf:c1:6d:97:d3:61:12:62:8d:6c:04:44:8b:0c:64:3d:62: 4a:4d:c0:ee:b0:6c:4a:8e:06:5f:5b:4d:cc:ed:d0:64:b5:74: 2f:93:49:78:8f:54:6f:c8:89:10:b5:94:ba:a8:f4:a1:a5:6c: 17:40:25:8b:dd:3f:29:cd:3a:aa:db:9a:79:a2:03:e3:70:11: 43:9c:68:6a:36:a5:89:dd:37:d0:76:42:04:f9:c9:3a:bc:61: eb:fe:83:f4:ce:84:2d:c8:75:7e:f8:4f:d7:f4:e5:2a:a8:d2: a6:e8:44:ef:c6:0a:e4:07:38:3b:1b:44:df:60:bb:8c:fd:69: fa:ff:6c:db:ce:f9:75:9b:b1:7f:9d:50:08:75:64:9d:46:4b: 46:25:4e:cc:f3:9c:96:ef:b4:0e:75:94:43:32:71:fa:c9:a3: f9:48:1b:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHiiub5cjyMcJkKyB3P8RhiLnFmEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwODI2MDAwMDAwWhcNMjQwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzkzNzg1ZTE1MWIwZTAyZWU0ZTEyOGQ3YjI4ODc0MmYx NThlOGM1NWQ5MjVkODkxNTZhZmMyZGEwM2JkNjdjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB3PzSgobyFJUheRwN8+vJVefaLKBBARGtES046tDVC/hI 6SBjUjh5KYpZZbVexKaAecC/v15V/wO3uziQkARF8O/AUJGylYeneWoy6IyCu0u3 uaHZzwfpBH3PvhaQOFb3wK3IlzPSwMLwfmXd6vC+YoX5xwyslSzl2SHZY+dk9z9f pbIsT2twksSYKa244Z9T4GbeKHJI71pSw7TP+qaOK9l9gqM3KqrFHAm7pwcIY/2F 3T58Pg7D0mk09sdS9RD+5v0LGSul2/RrlTQ9tu0N4xwXraO/07NRg/fQCicAG7D3 Eg/KIh9Cd5mTNGlsr3zuW04k89O+QRbJ1nesgX9hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpQ0OvjoRIqTV/OZKmZwMu5CZTagwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzBhMjBmNTg5LWI3MzAtNGYxNy1hZTI1LTVlZDhlMjhmOTE2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADON4AwDQYJKoZIhvcNAQELBQADggEBAA3frrBpiEk0DtubTLtE6ahJwy2j ilZytBvqjy7isp8MonVjIeN9conPa4c1KOq4mchj8xkdk/vaD5jZvtxPnUGem2PH qd5UB3P3xI5lGttkLyCcNCAZqNxMLia/wW2X02ESYo1sBESLDGQ9YkpNwO6wbEqO Bl9bTczt0GS1dC+TSXiPVG/IiRC1lLqo9KGlbBdAJYvdPynNOqrbmnmiA+NwEUOc aGo2pYndN9B2QgT5yTq8Yev+g/TOhC3IdX74T9f05Sqo0qboRO/GCuQHODsbRN9g u4z9afr/bNvO+XWbsX+dUAh1ZJ1GS0YlTszznJbvtA51lEMycfrJo/lIGxk= -----END CERTIFICATE-----Generated at Sat Sep 7 02:13:44 2024 by rpki-client on console-fra.rpki-client.org