$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa File: 5569e911-3188-427d-83a0-0e8a45b335d3.roa (raw, json) Hash identifier: Uc68Gx/rmQJbQuwnVFobunusMgbfUp/ODp8wK+NNDv4= Subject key identifier: 5B:C0:64:11:A4:FA:E7:05:98:C2:AA:8B:45:1B:26:49:FE:16:1E:64 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1ABF501266C7EFD6FE412835FD3D61BC5BCE1A29 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:bf:50:12:66:c7:ef:d6:fe:41:28:35:fd:3d:61:bc:5b:ce:1a:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=2bc765e0bd699215491122624530271191623d5b4dcf913a29125f78a478ab45, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5d:82:c3:51:9e:3d:df:21:a0:f7:89:83:1a: 35:f8:54:2b:3b:61:5f:38:e2:82:89:b1:81:5c:f1: 9f:12:ea:bf:15:0a:3b:72:e4:41:bf:9b:92:aa:9c: 0d:dd:92:5f:aa:24:7f:cc:85:ee:00:d4:9b:e0:6d: e9:68:fe:d9:c3:3e:ba:0d:c4:be:c2:b5:45:21:f0: ef:1c:95:d6:00:21:c3:00:ac:8a:7b:dc:1c:cd:e5: 35:fd:c5:dc:4a:22:ba:5f:42:9f:53:a9:a0:73:c6: 55:ca:21:7b:29:91:d1:dc:37:d5:b1:6a:23:d4:33: 8b:71:43:07:93:dc:f3:b1:5f:32:39:9b:37:79:cd: 20:7c:a2:32:29:87:db:ed:7d:23:8c:c9:34:69:14: d2:7a:97:be:03:39:7a:9e:ff:f9:7a:46:18:05:52: da:d0:b6:bf:83:32:b0:82:ec:52:74:10:9e:6e:b5: 69:be:3c:6b:dd:70:a9:a1:2d:50:08:59:b4:7e:24: 0e:28:20:5b:b5:6f:e5:e7:93:11:98:84:55:45:39: 67:d9:76:2a:54:bb:2a:23:ca:27:40:e7:03:d6:dc: 17:68:c5:5b:76:a0:e7:91:9a:ad:78:6e:e0:b8:94: 28:13:29:29:2c:15:68:d6:a4:12:27:c1:08:f8:f8: a2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C0:64:11:A4:FA:E7:05:98:C2:AA:8B:45:1B:26:49:FE:16:1E:64 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.183.0/24 Signature Algorithm: sha256WithRSAEncryption 67:a8:f1:a8:7d:d3:76:0e:1b:64:80:67:fc:fd:bc:e7:31:fe: 03:19:1c:d0:e0:7d:a4:db:bc:67:56:0d:04:cf:9d:3f:ed:46: 74:0c:c3:93:21:a3:30:c4:79:7b:91:ea:49:08:7f:0c:10:f3: 96:37:00:dd:5b:ac:8f:a5:b2:b9:f9:95:7a:a2:e6:e9:20:16: d3:42:c7:ce:ec:95:cd:12:c9:f6:7e:fe:ee:fd:3d:3f:ef:57: a2:ae:d0:c7:30:5b:32:f5:78:f4:62:44:52:9c:0e:d2:82:56: 4b:bb:14:27:f9:26:1a:ae:4f:9b:d6:f3:10:db:4a:c0:91:46: 28:65:90:19:8e:31:f0:4c:a7:de:ce:df:32:a0:69:f5:8c:6d: 26:99:88:aa:83:ff:1f:9f:4b:22:aa:f2:9f:5c:54:87:a8:66: 4d:95:47:39:9d:a4:89:24:89:bd:bc:52:90:cb:3d:6a:44:9a: d7:31:29:b9:f7:24:7a:53:01:66:9a:a6:0d:c7:f7:5b:0c:8f: df:fb:55:bd:10:02:2f:50:1d:0c:cb:a3:bf:e9:9c:5e:11:59: ab:a0:7a:b3:a0:25:45:64:8c:0a:86:79:87:15:b3:8f:6c:43: 8c:75:bf:58:d8:46:94:26:b7:9d:f8:40:a4:df:49:6e:64:87: 10:99:63:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGr9QEmbH79b+QSg1/T1hvFvOGikwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmM3NjVlMGJkNjk5MjE1NDkxMTIyNjI0NTMwMjcxMTkx NjIzZDViNGRjZjkxM2EyOTEyNWY3OGE0NzhhYjQ1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6XYLDUZ493yGg94mDGjX4VCs7YV844oKJsYFc8Z8S6r8V Cjty5EG/m5KqnA3dkl+qJH/Mhe4A1Jvgbelo/tnDProNxL7CtUUh8O8cldYAIcMA rIp73BzN5TX9xdxKIrpfQp9TqaBzxlXKIXspkdHcN9WxaiPUM4txQweT3POxXzI5 mzd5zSB8ojIph9vtfSOMyTRpFNJ6l74DOXqe//l6RhgFUtrQtr+DMrCC7FJ0EJ5u tWm+PGvdcKmhLVAIWbR+JA4oIFu1b+XnkxGYhFVFOWfZdipUuyojyidA5wPW3Bdo xVt2oOeRmq14buC4lCgTKSksFWjWpBInwQj4+KKfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUW8BkEaT65wWYwqqLRRsmSf4WHmQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU1NjllOTExLTMxODgtNDI3ZC04M2EwLTBlOGE0NWIzMzVkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37cwDQYJKoZIhvcNAQELBQADggEBAGeo8ah903YOG2SAZ/z9vOcx/gMZ HNDgfaTbvGdWDQTPnT/tRnQMw5MhozDEeXuR6kkIfwwQ85Y3AN1brI+lsrn5lXqi 5ukgFtNCx87slc0SyfZ+/u79PT/vV6Ku0McwWzL1ePRiRFKcDtKCVku7FCf5Jhqu T5vW8xDbSsCRRihlkBmOMfBMp97O3zKgafWMbSaZiKqD/x+fSyKq8p9cVIeoZk2V RzmdpIkkib28UpDLPWpEmtcxKbn3JHpTAWaapg3H91sMj9/7Vb0QAi9QHQzLo7/p nF4RWaugerOgJUVkjAqGeYcVs49sQ4x1v1jYRpQmt534QKTfSW5khxCZY5c= -----END CERTIFICATE-----Generated at Thu Nov 21 17:28:40 2024 by rpki-client on console-fra.rpki-client.org