$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa File: 16b57026-c673-4ef1-bc38-7596daa2e043.roa (raw, json) Hash identifier: jj5WwyhlNU2i/MZKTMuKvZAFh8RuSEwkZGOaBtgiOOs= Subject key identifier: 92:FF:A5:33:72:4B:10:BB:7B:0B:F7:42:58:37:4B:24:7E:1C:F3:B2 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6FD25DC94F1397E8B645E32136B56A5CF23AEAD8 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa Signing time: Fri 29 Mar 2024 00:00:00 +0000 ROA not before: Fri 29 Mar 2024 00:00:00 +0000 ROA not after: Fri 03 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:d2:5d:c9:4f:13:97:e8:b6:45:e3:21:36:b5:6a:5c:f2:3a:ea:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Mar 29 00:00:00 2024 GMT Not After : May 3 23:59:59 2024 GMT Subject: serialNumber=936845b6aea088dc6522954b64481bfa711596f5b2da159c6bfa6d2cae0913ff, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:c9:d5:84:e3:e0:a9:6e:63:e0:2e:a7:dc:7a: 67:b4:22:d0:27:fa:3d:4c:f8:bb:ec:10:56:2a:ec: 63:02:2b:35:04:10:10:85:1e:30:86:7a:df:85:60: 68:23:6d:2e:99:e9:5b:ba:ad:be:bc:17:56:90:34: cb:20:04:d7:b1:47:17:ad:7d:4a:0d:c6:32:7b:dd: e9:95:33:dd:a9:3b:1c:3e:6f:2a:c4:a9:35:56:36: cf:2e:2a:d0:81:40:df:cb:8e:05:95:e8:99:b0:fb: 6a:ab:d5:70:af:40:90:2e:e8:79:0b:cf:c4:bc:95: 65:f7:56:e4:6c:db:19:4b:1c:f6:ba:8b:4d:f3:e5: d0:db:ee:29:15:b2:c3:c9:21:16:f4:60:1d:5a:c2: 94:5d:47:a7:d9:e5:59:05:01:9f:97:fc:92:d4:ba: ab:88:da:1b:bd:a8:1c:ea:ea:59:e4:2e:bd:26:0e: 29:a6:a3:57:e8:93:75:3a:8a:08:21:45:08:53:57: 70:70:9e:43:19:bb:bf:a1:f0:ca:36:bc:9b:c2:b5: 1a:0d:54:e6:80:56:31:80:44:f4:15:f5:37:99:55: 5d:13:5d:eb:b7:3a:db:dc:3d:67:db:68:b3:02:13: 1f:97:3c:f4:ec:28:42:48:80:98:80:bc:63:00:1e: ac:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:FF:A5:33:72:4B:10:BB:7B:0B:F7:42:58:37:4B:24:7E:1C:F3:B2 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.226.0/24 Signature Algorithm: sha256WithRSAEncryption 47:44:04:8b:48:9c:4a:60:80:cc:4c:3e:6c:ed:ca:e3:8f:7b: 55:23:ac:9d:67:0b:23:e8:fe:7c:53:7e:fb:89:45:4e:23:24: 03:dd:04:fa:47:e5:de:4c:60:b4:26:06:fe:70:34:01:1e:26: bb:c2:d1:c4:be:02:09:42:b5:c0:5b:f1:f3:46:4d:e2:a9:22: ad:fc:7b:f9:c9:58:fc:78:5e:dc:39:32:f0:86:85:8f:a8:d3: 7d:0f:8e:62:5e:aa:aa:96:d0:62:50:cb:3f:57:b7:8e:cb:6d: 88:d4:af:48:3a:47:c0:7b:60:a4:90:52:91:eb:c1:f2:ce:7c: 4f:0b:2f:fb:36:01:21:65:c4:98:68:26:c2:6e:4e:55:5c:9b: 2a:18:9e:b7:e0:31:3b:a1:27:b1:6a:61:f3:68:c3:87:7a:bd: bb:f6:fc:9b:6d:75:40:d0:2d:02:78:70:ad:2b:99:8f:3a:9a: 00:05:58:96:ee:e6:30:05:6d:11:f4:86:6c:6d:cd:90:ac:2c: a7:18:c7:16:59:a9:02:46:28:13:58:59:af:fe:a2:ee:0a:7e: cc:ec:16:1a:ea:1d:7f:d0:7d:bb:35:68:5c:d4:ca:d7:67:2f: f6:3c:2e:c7:a5:51:56:2c:1d:e2:95:cb:76:a6:0d:ba:63:1c: c4:0f:d9:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb9JdyU8Tl+i2ReMhNrVqXPI66tgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwMzI5MDAwMDAwWhcNMjQwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzY4NDViNmFlYTA4OGRjNjUyMjk1NGI2NDQ4MWJmYTcx MTU5NmY1YjJkYTE1OWM2YmZhNmQyY2FlMDkxM2ZmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCCydWE4+CpbmPgLqfceme0ItAn+j1M+LvsEFYq7GMCKzUE EBCFHjCGet+FYGgjbS6Z6Vu6rb68F1aQNMsgBNexRxetfUoNxjJ73emVM92pOxw+ byrEqTVWNs8uKtCBQN/LjgWV6Jmw+2qr1XCvQJAu6HkLz8S8lWX3VuRs2xlLHPa6 i03z5dDb7ikVssPJIRb0YB1awpRdR6fZ5VkFAZ+X/JLUuquI2hu9qBzq6lnkLr0m Dimmo1fok3U6igghRQhTV3BwnkMZu7+h8Mo2vJvCtRoNVOaAVjGARPQV9TeZVV0T Xeu3OtvcPWfbaLMCEx+XPPTsKEJIgJiAvGMAHqzfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkv+lM3JLELt7C/dCWDdLJH4c87IwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzE2YjU3MDI2LWM2NzMtNGVmMS1iYzM4LTc1OTZkYWEyZTA0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeIwDQYJKoZIhvcNAQELBQADggEBAEdEBItInEpggMxMPmztyuOPe1Uj rJ1nCyPo/nxTfvuJRU4jJAPdBPpH5d5MYLQmBv5wNAEeJrvC0cS+AglCtcBb8fNG TeKpIq38e/nJWPx4Xtw5MvCGhY+o030PjmJeqqqW0GJQyz9Xt47LbYjUr0g6R8B7 YKSQUpHrwfLOfE8LL/s2ASFlxJhoJsJuTlVcmyoYnrfgMTuhJ7FqYfNow4d6vbv2 /JttdUDQLQJ4cK0rmY86mgAFWJbu5jAFbRH0hmxtzZCsLKcYxxZZqQJGKBNYWa/+ ou4KfszsFhrqHX/Qfbs1aFzUytdnL/Y8LselUVYsHeKVy3amDbpjHMQP2Xs= -----END CERTIFICATE-----Generated at Fri Apr 19 00:52:16 2024 by rpki-client on console-ams.rpki-client.org