$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4714ad7b-a768-483a-bdb9-c35a68830b39.roa File: 4714ad7b-a768-483a-bdb9-c35a68830b39.roa (raw, json) Hash identifier: TmYhLFeBrnymw8xDvXLmPBpDF+WnZPThrROf9TPDEIM= Subject key identifier: 25:00:48:6F:C9:F9:93:A7:A4:2F:C4:C9:B2:B8:30:D3:F9:CF:97:09 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 51A9103477431EB3A133D50AD4597F901FF7E1DE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4714ad7b-a768-483a-bdb9-c35a68830b39.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:a9:10:34:77:43:1e:b3:a1:33:d5:0a:d4:59:7f:90:1f:f7:e1:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=29ddf51b1f33e5f1da2ac895560d59a4debf856af9c0b65f97352dbe0c0c4f9c, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:61:65:4e:75:78:f2:16:dc:98:75:a9:6f:be: 59:1c:c5:ae:85:9a:83:fa:d9:f2:54:73:7a:f6:4e: 9f:3c:08:b6:95:fb:db:9a:b9:cc:ed:30:70:2f:2e: bb:4a:c4:ef:14:73:10:34:c5:62:bd:58:c5:34:1b: e2:dc:9a:b0:a8:d2:f2:71:f8:37:5f:81:af:9b:71: f2:dc:07:de:4d:d7:20:10:68:c1:c6:24:33:a7:6a: 9c:76:4b:98:d2:ef:50:f9:71:d8:33:5f:6b:c4:bb: b3:4f:eb:41:d4:5c:9b:ff:95:0f:f1:1f:f5:6d:a8: 8b:13:d6:f0:f6:66:ab:23:cd:7d:ab:39:d3:ba:62: 86:da:a9:f0:9e:d2:cd:d7:6f:26:2d:09:a0:a5:af: 46:42:3e:8b:ae:a5:a3:df:67:03:ae:d2:ec:f9:58: 89:bd:b8:06:08:c1:84:07:3a:d3:9a:78:bf:f4:4f: 73:6b:fd:b8:fd:be:3c:98:e2:d0:ab:32:aa:60:c2: 46:df:be:83:5b:15:cd:37:7c:9f:52:f9:bf:d2:72: 62:c5:ca:13:c7:02:c8:6d:c8:a1:f2:71:83:e4:73: 1b:9c:22:62:a6:b6:c4:36:c8:01:40:ec:6a:0c:49: 23:b8:87:65:d5:60:f3:2d:75:76:a8:c6:5b:f2:fa: f0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:00:48:6F:C9:F9:93:A7:A4:2F:C4:C9:B2:B8:30:D3:F9:CF:97:09 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4714ad7b-a768-483a-bdb9-c35a68830b39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.216.0/24 Signature Algorithm: sha256WithRSAEncryption 03:83:23:21:d8:66:9a:df:cf:ca:66:05:1f:56:b3:ee:d8:6a: 31:f5:77:c5:6d:1d:08:59:f3:24:b8:45:62:3b:36:08:d9:c7: 31:1b:ac:5e:d5:c8:1a:99:9c:27:b8:c4:fa:a0:ea:24:05:47: b8:c5:31:ed:89:12:eb:64:0a:f0:67:16:b3:a4:68:16:c4:70: 0f:76:78:ac:a8:f5:9b:98:3c:33:60:7a:56:c2:94:e2:c7:cb: be:6f:6b:a8:42:80:e2:51:fb:4e:52:58:18:31:13:97:5a:06: 4a:cf:4f:4a:b9:d6:e6:9f:ac:a7:9e:36:29:4c:d3:4b:ca:80: 5d:7a:10:97:88:c6:e4:9e:6a:cb:5f:0b:c2:5f:e1:5c:75:51: cd:e4:cf:16:84:31:0c:4b:fe:5b:8b:b7:de:61:35:06:d2:65: d5:02:15:f1:22:b7:4d:c3:1c:0e:1e:b2:dc:ab:89:50:26:bc: 90:4b:52:2a:43:98:1b:c5:b6:60:68:15:d1:af:69:e6:67:8a: 00:53:3a:02:55:aa:46:e3:05:47:7e:eb:d5:76:55:43:4e:1e: ae:cb:c9:b0:48:6d:47:34:d7:d5:ee:0b:7b:de:3d:f2:6a:87: 3f:1b:5c:a4:ce:82:6a:d0:dc:34:7d:e6:60:d8:67:13:53:22: 1d:58:c4:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUakQNHdDHrOhM9UK1Fl/kB/34d4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWRkZjUxYjFmMzNlNWYxZGEyYWM4OTU1NjBkNTlhNGRl YmY4NTZhZjljMGI2NWY5NzM1MmRiZTBjMGM0ZjljMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8YWVOdXjyFtyYdalvvlkcxa6FmoP62fJUc3r2Tp88CLaV +9uaucztMHAvLrtKxO8UcxA0xWK9WMU0G+LcmrCo0vJx+Ddfga+bcfLcB95N1yAQ aMHGJDOnapx2S5jS71D5cdgzX2vEu7NP60HUXJv/lQ/xH/VtqIsT1vD2ZqsjzX2r OdO6YobaqfCe0s3XbyYtCaClr0ZCPouupaPfZwOu0uz5WIm9uAYIwYQHOtOaeL/0 T3Nr/bj9vjyY4tCrMqpgwkbfvoNbFc03fJ9S+b/ScmLFyhPHAshtyKHycYPkcxuc ImKmtsQ2yAFA7GoMSSO4h2XVYPMtdXaoxlvy+vDDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJQBIb8n5k6ekL8TJsrgw0/nPlwkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzQ3MTRhZDdiLWE3NjgtNDgzYS1iZGI5LWMzNWE2ODgzMGIzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dgwDQYJKoZIhvcNAQELBQADggEBAAODIyHYZprfz8pmBR9Ws+7YajH1 d8VtHQhZ8yS4RWI7NgjZxzEbrF7VyBqZnCe4xPqg6iQFR7jFMe2JEutkCvBnFrOk aBbEcA92eKyo9ZuYPDNgelbClOLHy75va6hCgOJR+05SWBgxE5daBkrPT0q51uaf rKeeNilM00vKgF16EJeIxuSeastfC8Jf4Vx1Uc3kzxaEMQxL/luLt95hNQbSZdUC FfEit03DHA4estyriVAmvJBLUipDmBvFtmBoFdGvaeZnigBTOgJVqkbjBUd+69V2 VUNOHq7LybBIbUc019XuC3vePfJqhz8bXKTOgmrQ3DR95mDYZxNTIh1YxEI= -----END CERTIFICATE-----Generated at Thu May 2 01:06:34 2024 by rpki-client on console-fra.rpki-client.org