$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: 6aQtM1vt3MsmmulUnL1CRaYSnYxTblRv87xUlAr9fPc= Subject key identifier: 91:BC:D3:BD:55:D4:89:15:FF:06:8F:10:B1:A2:54:F8:33:13:EC:8C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0B7B0F72A6BB3F9EE03388CF7DECB2552A89BD31 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:7b:0f:72:a6:bb:3f:9e:e0:33:88:cf:7d:ec:b2:55:2a:89:bd:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=035ff51fd5de956f7fdb26856266a5db23613b5ee9eed0668513d3f6e621f697, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:2a:69:7e:45:24:38:bb:85:be:2d:e1:34:15: 53:a2:ff:c3:99:7c:79:4b:1b:c1:f3:54:f7:66:ef: fe:d4:01:a6:9b:50:15:fa:ab:d8:d2:c7:9f:a8:c4: 85:c0:6f:97:d0:67:09:61:7a:39:4f:36:a2:cc:72: d3:6a:d4:47:e1:bd:df:d9:24:43:43:61:7e:85:bb: be:7c:31:85:99:14:29:c6:54:ab:23:56:4e:39:78: 4d:15:ef:d6:09:af:23:0d:19:1e:fe:f2:52:0e:33: 28:9b:d8:24:91:fb:81:68:e0:55:af:25:10:29:40: be:bd:80:61:17:42:f8:1f:fb:92:0f:60:9b:41:58: 32:1b:33:46:2b:23:cb:95:e1:92:9f:d2:e2:95:8c: 86:45:a9:b9:f9:d3:53:15:1c:da:c5:ee:0e:c5:73: e4:1d:25:26:84:75:9b:49:53:47:1a:ef:73:e6:5c: 17:54:7d:6f:77:98:94:49:65:1c:42:ca:12:b7:91: e9:1b:f4:56:4d:a0:21:9e:35:f4:50:a7:5f:d5:58: 5f:e1:2d:f3:3a:ca:5e:f5:d8:8d:6f:0c:81:e6:c5: 16:f9:eb:9e:cd:ca:e1:96:0d:82:bc:37:84:24:6e: 78:03:ea:17:e9:51:61:ef:ba:15:9b:41:5f:9f:6f: 42:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:BC:D3:BD:55:D4:89:15:FF:06:8F:10:B1:A2:54:F8:33:13:EC:8C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 24:5e:a6:01:47:d8:a7:28:4d:9a:fa:fb:51:fe:ff:23:22:dd: 3f:42:5a:d2:c7:08:ba:a3:28:ff:3f:bf:54:a9:44:fc:e8:51: 0a:f9:95:3a:e4:c8:ab:03:d2:f4:7e:f0:09:7a:ad:fb:a0:10: 85:3e:5d:52:0c:82:3b:4e:30:fa:c0:af:42:33:2a:93:92:4c: 9d:ba:e6:9f:bc:07:4d:80:9f:79:2c:25:34:3d:bc:15:0c:35: 36:a7:7b:ae:b3:a5:c8:a3:bc:46:4a:1b:25:71:06:8d:f9:f1: 1c:b4:c8:e4:94:44:de:3d:4a:c2:cd:4b:0f:71:62:15:2a:04: f4:f7:d5:76:78:ee:5d:ed:15:9d:1f:0e:ca:ac:c2:64:d4:d4: 7b:bb:c8:39:15:44:95:4a:fa:22:b4:aa:a4:76:47:2b:f7:9b: f6:94:ec:b3:90:18:68:8f:ce:2f:6d:3a:a8:a5:be:6d:5d:e7: e9:1e:cd:09:d4:53:1d:59:20:d2:dd:00:49:6a:b2:1f:6a:ab: e8:14:81:d4:cd:0a:22:82:df:c4:b5:ba:eb:58:16:fd:c6:ce: 92:88:22:b1:03:28:99:43:1b:4b:8e:70:db:73:05:b7:c2:19: 67:17:d0:4d:21:36:d4:d3:97:12:33:97:77:1b:36:cb:85:e3: 8e:6f:f4:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC3sPcqa7P57gM4jPfeyyVSqJvTEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzVmZjUxZmQ1ZGU5NTZmN2ZkYjI2ODU2MjY2YTVkYjIz NjEzYjVlZTllZWQwNjY4NTEzZDNmNmU2MjFmNjk3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgKml+RSQ4u4W+LeE0FVOi/8OZfHlLG8HzVPdm7/7UAaab UBX6q9jSx5+oxIXAb5fQZwlhejlPNqLMctNq1Efhvd/ZJENDYX6Fu758MYWZFCnG VKsjVk45eE0V79YJryMNGR7+8lIOMyib2CSR+4Fo4FWvJRApQL69gGEXQvgf+5IP YJtBWDIbM0YrI8uV4ZKf0uKVjIZFqbn501MVHNrF7g7Fc+QdJSaEdZtJU0ca73Pm XBdUfW93mJRJZRxCyhK3kekb9FZNoCGeNfRQp1/VWF/hLfM6yl712I1vDIHmxRb5 657NyuGWDYK8N4QkbngD6hfpUWHvuhWbQV+fb0JtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkbzTvVXUiRX/Bo8QsaJU+DMT7IwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBACRepgFH2KcoTZr6+1H+/yMi3T9C WtLHCLqjKP8/v1SpRPzoUQr5lTrkyKsD0vR+8Al6rfugEIU+XVIMgjtOMPrAr0Iz KpOSTJ265p+8B02An3ksJTQ9vBUMNTane66zpcijvEZKGyVxBo358Ry0yOSURN49 SsLNSw9xYhUqBPT31XZ47l3tFZ0fDsqswmTU1Hu7yDkVRJVK+iK0qqR2Ryv3m/aU 7LOQGGiPzi9tOqilvm1d5+kezQnUUx1ZINLdAElqsh9qq+gUgdTNCiKC38S1uutY Fv3GzpKIIrEDKJlDG0uOcNtzBbfCGWcX0E0hNtTTlxIzl3cbNsuF445v9Jw= -----END CERTIFICATE-----Generated at Thu May 2 01:06:34 2024 by rpki-client on console-fra.rpki-client.org