$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa File: 498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa (raw, json) Hash identifier: G3lidfIEG3RIPNoTHSJevC8w/1hVPdDae0nKCnXRj7M= Subject key identifier: A4:3A:D8:2D:DA:31:F3:F4:B4:D0:4F:17:D7:5F:A4:1E:C2:0A:80:67 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 58D5F8C6415ABB7ACB7EF3D106338A263AAA0A4B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:d5:f8:c6:41:5a:bb:7a:cb:7e:f3:d1:06:33:8a:26:3a:aa:0a:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=ccbc1a4f3892b41447c5513091db466f5d419450dc7f17c50ef18ccb84fe90b3, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:1f:df:14:66:a9:de:04:48:7e:f8:0b:86:a1: 38:fa:18:89:d5:b6:93:4b:cd:e0:d6:6f:cf:ea:7c: 24:19:5c:a4:9d:ab:90:2a:64:0e:a5:c5:9d:b7:8e: 78:e5:ab:bf:bb:c5:f9:db:25:5b:a3:12:5d:0a:2f: d1:2c:cc:4e:2b:0e:65:ae:f7:cc:ab:31:a9:4e:92: f8:36:3a:67:3e:9d:9f:14:49:2f:f4:ed:8d:8c:76: da:f2:ca:9e:32:fb:66:20:df:f1:55:3e:ab:80:a2: d6:c5:e4:aa:02:1f:9d:2c:b0:ae:6a:ab:d8:a7:aa: fa:02:20:f3:b5:94:99:eb:d9:9a:be:9d:eb:77:8a: 02:c2:6a:5e:ed:be:bd:58:8f:4b:4b:b5:d1:67:25: 4b:a4:b7:dc:32:41:eb:5b:a4:87:e8:4c:d2:8e:80: 71:81:24:61:49:58:90:1f:07:9f:b7:5f:68:3f:38: 0f:cc:12:1e:65:c1:60:9c:9a:fd:fe:b6:9e:47:d7: 0b:82:a4:a2:bc:c6:c6:9c:f6:b1:fb:64:ef:0b:eb: bb:35:47:2d:c3:8a:76:33:ea:12:fe:3e:80:67:40: cf:45:cd:9d:cf:e1:ac:80:ea:d7:0d:79:a6:48:8d: 68:8d:83:54:b1:2d:e4:65:e0:65:75:48:78:0c:88: 7f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:3A:D8:2D:DA:31:F3:F4:B4:D0:4F:17:D7:5F:A4:1E:C2:0A:80:67 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.186.0/24 Signature Algorithm: sha256WithRSAEncryption 57:4c:be:a3:dd:2f:ba:68:c2:c0:b2:3c:b9:ad:4b:78:28:d0: a9:6e:97:44:00:ca:fc:58:84:ca:a7:bf:bd:a7:52:15:91:b4: 52:76:a8:d4:07:51:c1:ea:d6:f4:88:0f:1d:7a:44:9e:e6:fb: 9a:60:d8:2f:f4:66:1a:cb:f8:6b:67:1f:67:e8:86:15:e4:2d: 66:12:1b:34:58:5c:29:ad:2d:3e:ee:21:99:43:e7:ce:53:0a: 20:dc:9f:2c:88:24:e0:4c:32:03:d4:4e:55:7a:e5:cb:db:1e: 30:bf:c6:1a:e8:1a:77:62:db:04:e5:32:2b:ad:11:75:8f:8c: 7e:00:9f:ea:60:4b:3e:fc:04:61:b5:d2:48:1f:a6:a3:25:a3: 3b:ed:96:22:1d:70:ac:16:9b:24:41:b8:d0:2b:c2:76:48:49: 81:c2:87:68:0e:a7:5d:cd:13:22:d1:67:c3:a8:af:f5:86:57: 0b:ae:af:29:9b:c6:79:6f:be:dc:79:2e:9e:10:55:ac:ef:21: ac:c0:5e:90:c5:d5:8d:2b:f4:0b:c9:1f:72:2b:5f:13:20:9b: e1:ba:ca:95:7d:98:83:2c:ed:ba:f5:e5:25:2c:34:fb:e6:6e: 85:3b:49:ab:7b:af:6d:b4:0d:f4:7a:63:12:85:bd:0f:bd:37: c5:69:9e:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWNX4xkFau3rLfvPRBjOKJjqqCkswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2JjMWE0ZjM4OTJiNDE0NDdjNTUxMzA5MWRiNDY2ZjVk NDE5NDUwZGM3ZjE3YzUwZWYxOGNjYjg0ZmU5MGIzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWH98UZqneBEh++AuGoTj6GInVtpNLzeDWb8/qfCQZXKSd q5AqZA6lxZ23jnjlq7+7xfnbJVujEl0KL9EszE4rDmWu98yrMalOkvg2Omc+nZ8U SS/07Y2Mdtryyp4y+2Yg3/FVPquAotbF5KoCH50ssK5qq9inqvoCIPO1lJnr2Zq+ net3igLCal7tvr1Yj0tLtdFnJUukt9wyQetbpIfoTNKOgHGBJGFJWJAfB5+3X2g/ OA/MEh5lwWCcmv3+tp5H1wuCpKK8xsac9rH7ZO8L67s1Ry3DinYz6hL+PoBnQM9F zZ3P4ayA6tcNeaZIjWiNg1SxLeRl4GV1SHgMiH+fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpDrYLdox8/S00E8X11+kHsIKgGcwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzQ5OGYzMzRlLTRkYzgtNDExOC1iMWExLTRjOWExNWQxNGI5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37owDQYJKoZIhvcNAQELBQADggEBAFdMvqPdL7powsCyPLmtS3go0Klu l0QAyvxYhMqnv72nUhWRtFJ2qNQHUcHq1vSIDx16RJ7m+5pg2C/0ZhrL+GtnH2fo hhXkLWYSGzRYXCmtLT7uIZlD585TCiDcnyyIJOBMMgPUTlV65cvbHjC/xhroGndi 2wTlMiutEXWPjH4An+pgSz78BGG10kgfpqMlozvtliIdcKwWmyRBuNArwnZISYHC h2gOp13NEyLRZ8Oor/WGVwuurymbxnlvvtx5Lp4QVazvIazAXpDF1Y0r9AvJH3Ir XxMgm+G6ypV9mIMs7br15SUsNPvmboU7Sat7r220DfR6YxKFvQ+9N8VpnmM= -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:58 2024 by rpki-client on console-ams.rpki-client.org