$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa File: 59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa (raw, json) Hash identifier: zSBgatu4eYZma42tlfMxfUCyxqVd+x4146GPXoUbXZQ= Subject key identifier: A2:72:BD:3B:3D:93:05:44:3C:41:8A:25:B3:31:78:80:27:C7:D1:D6 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5354A31EB53F154AD1ECBB71AD63F3118392E662 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:54:a3:1e:b5:3f:15:4a:d1:ec:bb:71:ad:63:f3:11:83:92:e6:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=946e55686691a29ea317f15dfc561b77e9a6f165917588a9ce8fc08fe27f4ae9, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:91:2b:6a:4c:52:e6:25:3c:aa:84:cc:fb:4a: f0:e2:79:83:82:e6:a9:7b:87:09:81:20:b4:4b:20: 8b:d0:26:85:a3:31:1a:c8:73:d3:9e:ed:d4:86:62: 0b:3a:cc:18:60:f4:66:19:fa:42:f3:87:30:73:0f: 31:31:d9:f1:5f:e6:62:b5:a2:2f:25:c7:0e:8c:77: 9a:6f:48:2f:47:97:0b:f9:2f:50:c1:7d:a3:36:d5: 95:8a:58:0c:27:4e:fb:d7:12:a0:08:e6:d0:3d:65: 38:67:05:29:bf:1e:17:48:67:05:4a:af:9f:5f:61: 4b:b6:e9:c9:16:56:fc:ce:5f:86:e3:6e:b5:e9:ff: 3e:e0:7c:0e:ce:7a:0d:c9:86:e3:a3:df:66:f5:00: ee:c6:2f:dd:57:1c:85:ae:48:8d:01:eb:11:cb:d0: b8:4a:5e:04:b4:0d:25:1f:ce:06:ed:9a:97:6b:64: d2:2f:c4:0a:94:30:21:d5:3a:59:3a:ce:71:63:71: d5:4a:cf:39:89:b0:93:ec:d0:06:08:ab:f1:8a:e0: 8d:90:21:3c:50:ce:2e:b7:12:c6:fe:a5:44:66:6a: 97:ef:22:f1:9e:00:88:c1:ae:32:47:65:7c:ee:d7: ea:76:b0:ba:f0:5f:2b:8b:96:00:90:18:18:e0:f2: b4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:72:BD:3B:3D:93:05:44:3C:41:8A:25:B3:31:78:80:27:C7:D1:D6 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.220.0/24 Signature Algorithm: sha256WithRSAEncryption 03:8c:31:6e:58:69:8f:de:04:09:35:59:b1:33:48:9c:e7:77: 4c:e6:bc:86:33:6d:a4:ad:f7:a5:b0:25:6a:63:b4:68:6f:df: 5e:97:6e:94:b6:16:9b:e1:c1:10:f8:1d:e8:0a:65:0b:16:95: 21:c5:9c:80:f9:a7:e7:b0:b1:11:21:c2:51:39:e7:70:c0:b5: a8:d5:29:ea:40:91:51:81:a9:8d:05:0b:77:a2:bb:97:ad:9d: 7e:6e:e4:0d:31:ba:ec:e9:77:0f:2b:69:22:94:bb:86:52:29: 45:57:f6:14:8b:3e:33:4d:34:6d:4c:77:9e:33:b8:58:86:e7: b6:40:0b:bd:4f:d6:6f:a1:dd:e3:04:c6:e3:d7:14:9e:87:22: 2f:55:25:ed:00:d5:98:0d:3f:b6:08:83:f6:3a:6d:e5:f8:93: 09:3f:74:4f:2d:51:16:58:2c:40:6f:1c:11:40:aa:8e:93:e4: 56:fb:84:0a:60:47:13:3a:31:c9:56:04:d5:7f:3c:d8:20:37: 70:d0:81:44:1f:4c:b7:29:2e:ee:37:35:30:c7:21:2d:f7:92: cb:bb:f3:ee:ed:9b:98:11:29:11:d3:de:bd:79:d9:fb:b5:a6: 20:07:d6:78:b5:9d:0e:dd:fd:ec:91:ac:ad:ee:fd:35:e2:95: 24:41:80:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU1SjHrU/FUrR7LtxrWPzEYOS5mIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDZlNTU2ODY2OTFhMjllYTMxN2YxNWRmYzU2MWI3N2U5 YTZmMTY1OTE3NTg4YTljZThmYzA4ZmUyN2Y0YWU5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRkStqTFLmJTyqhMz7SvDieYOC5ql7hwmBILRLIIvQJoWj MRrIc9Oe7dSGYgs6zBhg9GYZ+kLzhzBzDzEx2fFf5mK1oi8lxw6Md5pvSC9Hlwv5 L1DBfaM21ZWKWAwnTvvXEqAI5tA9ZThnBSm/HhdIZwVKr59fYUu26ckWVvzOX4bj brXp/z7gfA7Oeg3JhuOj32b1AO7GL91XHIWuSI0B6xHL0LhKXgS0DSUfzgbtmpdr ZNIvxAqUMCHVOlk6znFjcdVKzzmJsJPs0AYIq/GK4I2QITxQzi63Esb+pURmapfv IvGeAIjBrjJHZXzu1+p2sLrwXyuLlgCQGBjg8rRzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUonK9Oz2TBUQ8QYolszF4gCfH0dYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU5YWIyNjRlLTI4NGYtNGUzMC1iMmYwLWQ4NWZhNzNiNjJiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dwwDQYJKoZIhvcNAQELBQADggEBAAOMMW5YaY/eBAk1WbEzSJznd0zm vIYzbaSt96WwJWpjtGhv316XbpS2FpvhwRD4HegKZQsWlSHFnID5p+ewsREhwlE5 53DAtajVKepAkVGBqY0FC3eiu5etnX5u5A0xuuzpdw8raSKUu4ZSKUVX9hSLPjNN NG1Md54zuFiG57ZAC71P1m+h3eMExuPXFJ6HIi9VJe0A1ZgNP7YIg/Y6beX4kwk/ dE8tURZYLEBvHBFAqo6T5Fb7hApgRxM6MclWBNV/PNggN3DQgUQfTLcpLu43NTDH IS33ksu78+7tm5gRKRHT3r152fu1piAH1ni1nQ7d/eyRrK3u/TXilSRBgIM= -----END CERTIFICATE-----Generated at Sun Nov 24 02:36:09 2024 by rpki-client on console-fra.rpki-client.org