$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2ce0da13-0e88-4bf2-bd9d-35168bcefdc3.roa File: 2ce0da13-0e88-4bf2-bd9d-35168bcefdc3.roa (raw, json) Hash identifier: G27fzdT+u3COEzYeAEIKWrInG2mYKe4QtXRpg6DNY54= Subject key identifier: 65:BD:3D:C2:90:6F:45:68:0C:F5:D1:CF:2B:94:2B:3C:90:07:98:9D Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4EA610E44581C3AA12F604F6826640970646D295 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2ce0da13-0e88-4bf2-bd9d-35168bcefdc3.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:a6:10:e4:45:81:c3:aa:12:f6:04:f6:82:66:40:97:06:46:d2:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=dac642bf9869aa9932e9bbecb607e31baafab6432753fd7e654c9bbbafe78c81, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e9:48:8a:f0:58:0b:0a:06:3d:97:06:76:46: 6f:29:8d:8f:1b:1a:38:83:4b:18:90:27:8b:03:05: 0a:53:6a:73:de:23:b6:19:6f:ca:68:72:b7:cb:57: 23:ec:9a:48:c7:af:91:45:c3:29:c0:27:46:b2:0b: 01:c3:a9:57:97:41:97:21:f4:37:51:01:4e:c1:b6: ae:0a:13:d3:de:8c:a6:b6:26:36:9d:9c:eb:04:ba: ad:3a:d2:da:8a:2a:22:ee:c3:25:0f:e7:f0:8a:5c: 7b:b6:0b:03:51:1f:fa:9d:d7:4a:0f:2a:20:e7:1c: b1:5b:dd:ef:00:ba:42:9d:1f:3a:aa:98:69:8f:97: 56:14:90:5e:62:9b:3e:23:de:5c:68:06:79:67:fd: df:55:22:ad:12:a0:e5:7d:5d:75:04:f3:1e:de:a2: d4:a5:fc:1a:10:50:1e:bf:bc:b1:79:20:d7:e3:5d: 16:f7:50:b2:b7:a2:9f:5b:f1:e2:6f:19:d1:61:72: f1:d0:f6:db:b1:e5:8b:1b:81:1c:4e:98:43:1f:41: 09:15:42:60:ba:ec:5c:2c:49:f9:0b:5f:e9:73:49: 6f:33:c5:54:74:34:1a:85:2e:89:91:ad:d0:b1:5e: 8a:f8:c4:b7:d9:23:ba:14:6c:cf:30:f7:be:ba:02: b2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BD:3D:C2:90:6F:45:68:0C:F5:D1:CF:2B:94:2B:3C:90:07:98:9D X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2ce0da13-0e88-4bf2-bd9d-35168bcefdc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.229.0/24 Signature Algorithm: sha256WithRSAEncryption 55:c4:e9:71:b5:c4:af:78:5a:bf:fa:9b:57:6c:ca:9c:4c:0f: af:ac:4d:db:7e:a2:2f:3f:91:7d:05:a8:fe:27:67:d6:8c:2b: 41:4d:18:ea:db:3d:40:46:c7:b9:d9:13:53:bd:ee:6c:2b:58: c7:67:70:76:ad:e5:a6:b9:b2:4c:d9:0e:e0:49:4b:9b:7a:93: 68:3c:b9:d3:8a:71:b5:c2:fa:d1:51:6a:ea:1a:bb:5a:cd:a3: 81:13:eb:4c:a0:b0:ae:4a:b2:ca:1d:30:df:d4:30:97:42:28: 15:8b:e2:a5:f8:31:fc:1d:48:10:94:b6:eb:1c:9b:62:fa:93: af:36:33:50:83:6d:7b:0c:69:fa:af:67:90:99:36:91:2b:82: c8:9b:0e:f4:bd:c8:29:fa:4a:77:61:f1:5f:f3:aa:f1:3c:87: bc:37:f2:13:f8:c8:33:bd:03:7c:09:c1:2c:55:37:41:10:4f: f5:7b:3c:af:30:c3:01:a0:c7:b3:c0:c6:47:91:a0:b3:f8:5e: ae:bc:32:23:b0:02:2f:dd:03:00:f8:5a:b4:1f:6f:d8:b8:11: 09:69:09:4e:4d:96:a5:73:cb:bb:ac:c4:62:7b:26:81:e6:f1: 7c:a2:bf:23:f1:27:8a:a1:b4:e6:59:ba:f5:54:23:03:4f:00: f4:11:e2:0c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTqYQ5EWBw6oS9gT2gmZAlwZG0pUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWM2NDJiZjk4NjlhYTk5MzJlOWJiZWNiNjA3ZTMxYmFh ZmFiNjQzMjc1M2ZkN2U2NTRjOWJiYmFmZTc4YzgxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDh6UiK8FgLCgY9lwZ2Rm8pjY8bGjiDSxiQJ4sDBQpTanPe I7YZb8pocrfLVyPsmkjHr5FFwynAJ0ayCwHDqVeXQZch9DdRAU7Btq4KE9PejKa2 JjadnOsEuq060tqKKiLuwyUP5/CKXHu2CwNRH/qd10oPKiDnHLFb3e8AukKdHzqq mGmPl1YUkF5imz4j3lxoBnln/d9VIq0SoOV9XXUE8x7eotSl/BoQUB6/vLF5INfj XRb3ULK3op9b8eJvGdFhcvHQ9tux5YsbgRxOmEMfQQkVQmC67FwsSfkLX+lzSW8z xVR0NBqFLomRrdCxXor4xLfZI7oUbM8w9766ArK1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZb09wpBvRWgM9dHPK5QrPJAHmJ0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzJjZTBkYTEzLTBlODgtNGJmMi1iZDlkLTM1MTY4YmNlZmRjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeUwDQYJKoZIhvcNAQELBQADggEBAFXE6XG1xK94Wr/6m1dsypxMD6+s Tdt+oi8/kX0FqP4nZ9aMK0FNGOrbPUBGx7nZE1O97mwrWMdncHat5aa5skzZDuBJ S5t6k2g8udOKcbXC+tFRauoau1rNo4ET60ygsK5KssodMN/UMJdCKBWL4qX4Mfwd SBCUtuscm2L6k682M1CDbXsMafqvZ5CZNpErgsibDvS9yCn6Sndh8V/zqvE8h7w3 8hP4yDO9A3wJwSxVN0EQT/V7PK8wwwGgx7PAxkeRoLP4Xq68MiOwAi/dAwD4WrQf b9i4EQlpCU5NlqVzy7usxGJ7JoHm8XyivyPxJ4qhtOZZuvVUIwNPAPQR4gw= -----END CERTIFICATE-----Generated at Thu Nov 21 18:50:38 2024 by rpki-client on console-ams.rpki-client.org