$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5eadccc1-2a48-4240-972e-4e5473a01e2e.roa File: 5eadccc1-2a48-4240-972e-4e5473a01e2e.roa (raw, json) Hash identifier: cKBGbgMpS8qunyBAFRcAstNaf+l1+Frec1Y1bGrpLo4= Subject key identifier: 60:B9:E5:82:99:82:B2:DE:4C:7F:4A:86:7D:DE:1E:EC:BC:1D:97:59 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5ACC3E8EB33F7FC01A2D04F63FAA735C17FE1BF7 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5eadccc1-2a48-4240-972e-4e5473a01e2e.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:cc:3e:8e:b3:3f:7f:c0:1a:2d:04:f6:3f:aa:73:5c:17:fe:1b:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=283d06957f7383a60a0c26e8547df640b0b3b41f29b1c97e6a842aebe75df653, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7c:83:e7:be:53:da:7d:5d:aa:0e:6d:41:e4: 62:c1:c4:2c:6c:f8:d8:39:a8:25:b0:1e:35:39:a6: 5b:f5:15:12:a7:1f:70:6b:24:c0:b0:d7:9a:37:eb: c7:49:94:aa:f0:a2:c7:e0:d3:b9:f4:f0:99:0b:8f: 0d:c7:a5:47:d4:18:3a:e6:7c:55:1f:59:da:01:8e: a6:07:de:40:46:41:e8:9d:d6:d2:70:f4:4b:93:e3: 14:ca:e7:f3:79:b6:7b:f0:e5:09:5f:c4:d6:f0:77: 81:22:30:ba:da:db:c6:63:8c:ce:cf:9b:1f:56:93: 96:46:b6:5c:3e:e0:cf:fb:a6:bf:cb:50:b6:27:8d: a2:d1:b7:67:e5:2e:d5:8a:f6:51:1b:d4:55:d5:b0: 00:53:6c:a5:90:f4:44:43:a1:a1:e8:c6:60:95:c6: 40:5f:ee:4d:e2:a3:fe:6d:36:ff:d3:12:07:06:af: c6:7e:4f:3a:10:0f:90:2f:d8:53:33:65:d8:05:3a: 0c:fa:3b:d3:1d:0f:05:7a:fe:ae:85:bf:0b:2f:f1: 74:5b:cc:38:f9:f4:35:6a:7c:be:75:6c:5e:6d:31: c1:b2:f5:f6:f6:c1:a2:9b:0a:99:d3:fa:5e:82:32: 50:e3:af:79:2a:71:5d:96:91:80:6b:35:78:5f:03: bf:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B9:E5:82:99:82:B2:DE:4C:7F:4A:86:7D:DE:1E:EC:BC:1D:97:59 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5eadccc1-2a48-4240-972e-4e5473a01e2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.208.0/20 Signature Algorithm: sha256WithRSAEncryption 41:75:6d:f1:8b:7c:78:7a:d7:56:e3:64:67:1f:e9:a0:1f:b6: 68:eb:3b:9c:0d:3c:aa:44:89:27:c3:7a:54:b2:4d:1c:16:92: 17:f9:58:69:d7:8c:27:59:87:75:86:f8:09:c6:46:39:4a:b1: 87:d8:07:9c:ed:d3:44:70:b0:f3:e3:06:18:94:8c:fc:d9:d5: 95:0b:69:11:f0:c8:ad:78:1e:f2:48:3d:4a:a3:fc:60:10:03: 73:17:be:4e:15:a6:ca:fc:b7:7e:23:e1:10:87:10:bb:45:8a: e9:3f:a2:90:66:49:40:0b:4e:f1:42:1b:6f:ea:fd:56:16:ab: 34:43:b5:6d:c0:fd:cc:66:ec:96:25:38:42:13:bc:46:53:31: 27:65:46:af:8b:2b:dc:d7:26:e5:73:b0:9e:ca:8d:2d:ef:87: 9a:bb:44:19:17:12:aa:b7:d7:25:ee:f4:0d:77:19:61:35:a6: f4:40:03:fd:e1:b1:38:41:93:95:21:71:35:ac:5a:d3:a6:55: 1e:99:7b:e1:b9:34:f4:0e:33:95:8d:b8:b9:bf:6c:68:0b:71: 5d:e4:c7:38:d0:b2:8d:19:e2:22:57:97:da:f6:59:41:09:ac: e4:12:64:d9:5c:73:5a:72:a3:b4:54:ed:cf:f8:88:9d:91:50: a6:3f:a6:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWsw+jrM/f8AaLQT2P6pzXBf+G/cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODNkMDY5NTdmNzM4M2E2MGEwYzI2ZTg1NDdkZjY0MGIw YjNiNDFmMjliMWM5N2U2YTg0MmFlYmU3NWRmNjUzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyfIPnvlPafV2qDm1B5GLBxCxs+Ng5qCWwHjU5plv1FRKn H3BrJMCw15o368dJlKrwosfg07n08JkLjw3HpUfUGDrmfFUfWdoBjqYH3kBGQeid 1tJw9EuT4xTK5/N5tnvw5QlfxNbwd4EiMLra28ZjjM7Pmx9Wk5ZGtlw+4M/7pr/L ULYnjaLRt2flLtWK9lEb1FXVsABTbKWQ9ERDoaHoxmCVxkBf7k3io/5tNv/TEgcG r8Z+TzoQD5Av2FMzZdgFOgz6O9MdDwV6/q6Fvwsv8XRbzDj59DVqfL51bF5tMcGy 9fb2waKbCpnT+l6CMlDjr3kqcV2WkYBrNXhfA7/PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYLnlgpmCst5Mf0qGfd4e7Lwdl1kwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVlYWRjY2MxLTJhNDgtNDI0MC05NzJlLTRlNTQ3M2EwMWUyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQX+dAwDQYJKoZIhvcNAQELBQADggEBAEF1bfGLfHh611bjZGcf6aAftmjr O5wNPKpEiSfDelSyTRwWkhf5WGnXjCdZh3WG+AnGRjlKsYfYB5zt00RwsPPjBhiU jPzZ1ZULaRHwyK14HvJIPUqj/GAQA3MXvk4Vpsr8t34j4RCHELtFiuk/opBmSUAL TvFCG2/q/VYWqzRDtW3A/cxm7JYlOEITvEZTMSdlRq+LK9zXJuVzsJ7KjS3vh5q7 RBkXEqq31yXu9A13GWE1pvRAA/3hsThBk5UhcTWsWtOmVR6Ze+G5NPQOM5WNuLm/ bGgLcV3kxzjQso0Z4iJXl9r2WUEJrOQSZNlcc1pyo7RU7c/4iJ2RUKY/ptw= -----END CERTIFICATE-----Generated at Fri Apr 19 00:52:16 2024 by rpki-client on console-ams.rpki-client.org