$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa File: 5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa (raw, json) Hash identifier: N9jBGbGpbmIY7Xk4UXr11zCo6iaxp3PFH2JLYj3KkRg= Subject key identifier: DE:E0:99:41:A0:E7:27:51:DA:D3:DF:2A:A0:A9:B5:B0:78:53:21:BE Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2093DB12A9236D08D1CED8D2203C97B6157588FA Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:93:db:12:a9:23:6d:08:d1:ce:d8:d2:20:3c:97:b6:15:75:88:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=0b80ad917601a572ff8341f8079969395fbc4c50e6eae00fd827785c3a37f8cb, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:22:26:af:63:40:91:c1:53:a4:69:3d:52:93: 0e:7b:f3:2c:96:77:f6:8c:4b:b3:d8:62:06:d5:93: 20:cf:19:b1:84:1b:05:0b:b8:52:4c:69:d8:14:68: d5:e5:5d:07:cb:43:dd:9e:0c:08:f2:dc:76:45:ba: a8:57:8c:13:b0:a3:17:7a:74:1c:46:c4:fd:2d:d3: b6:96:35:29:38:98:5e:fb:7a:70:80:4f:1e:5e:61: 67:14:35:8f:67:8d:1e:13:72:5e:70:8b:d6:52:65: 6e:50:82:db:06:af:41:f3:cb:e8:d0:6c:f6:90:b1: cc:bb:0a:82:9f:0f:17:60:f6:52:44:e6:6f:57:b2: 21:fd:90:c0:02:9e:43:13:eb:08:fb:f6:38:53:d7: 2b:5f:e5:06:b1:4e:e4:4a:de:eb:71:18:59:98:af: ea:e0:48:40:6e:55:6f:4b:c1:87:36:a5:49:11:26: 27:9b:d4:b9:dd:dc:11:74:f9:40:61:76:60:cd:c6: 6c:ab:b3:79:bb:e3:08:d1:9d:37:aa:81:cd:f8:af: cd:1a:ac:31:32:85:a3:da:cb:0b:4c:36:76:12:58: d4:75:45:f0:57:d3:2a:d1:dc:1b:08:e8:9a:41:17: ba:2d:f3:53:97:d9:ed:06:30:c4:6f:d4:c6:98:1f: d6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E0:99:41:A0:E7:27:51:DA:D3:DF:2A:A0:A9:B5:B0:78:53:21:BE X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.214.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:ce:b4:d0:93:55:92:ce:1b:eb:3c:37:15:c9:f7:55:2a:45: f0:89:20:70:59:6e:1b:cf:ba:24:b3:e9:63:f4:78:49:3f:aa: 4c:d7:8f:db:e4:02:97:15:e7:25:ca:33:e7:68:b4:db:29:c4: 52:97:bc:55:48:9b:82:fe:09:2b:3a:f3:5b:bb:40:3e:3d:2e: 20:7c:70:3e:14:39:e5:03:3e:8c:d4:f6:17:c9:4b:d8:e2:31: 53:c1:39:1b:1d:4a:44:37:9d:e2:f4:a9:8d:c5:37:bf:d7:63: a2:c9:63:91:a3:d8:b3:b9:71:ca:32:d5:28:c0:fb:bc:67:07: e0:4f:1a:8e:cb:85:8c:fc:f2:25:7c:56:ab:9a:5d:c1:21:e0: 78:23:45:50:b6:bd:6c:08:21:32:d8:55:3b:c5:40:bd:93:ec: 83:26:72:ff:07:d3:b7:33:a5:f0:82:f0:26:ee:5b:db:fb:aa: 13:75:ee:3b:97:f2:51:58:d3:bc:63:7d:be:30:dd:f9:9f:18: 1f:12:3d:90:ce:27:a1:1c:a1:15:48:81:dc:17:2d:c0:7b:34: ce:33:eb:fb:31:6b:69:92:de:13:18:ba:1f:ec:b0:69:08:5a: d9:42:b7:96:be:32:a8:0d:a8:cf:3f:c4:f0:00:a4:15:96:ec: d4:1c:1e:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIJPbEqkjbQjRztjSIDyXthV1iPowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjgwYWQ5MTc2MDFhNTcyZmY4MzQxZjgwNzk5NjkzOTVm YmM0YzUwZTZlYWUwMGZkODI3Nzg1YzNhMzdmOGNiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsIiavY0CRwVOkaT1Skw578yyWd/aMS7PYYgbVkyDPGbGE GwULuFJMadgUaNXlXQfLQ92eDAjy3HZFuqhXjBOwoxd6dBxGxP0t07aWNSk4mF77 enCATx5eYWcUNY9njR4Tcl5wi9ZSZW5QgtsGr0Hzy+jQbPaQscy7CoKfDxdg9lJE 5m9XsiH9kMACnkMT6wj79jhT1ytf5QaxTuRK3utxGFmYr+rgSEBuVW9LwYc2pUkR Jieb1Lnd3BF0+UBhdmDNxmyrs3m74wjRnTeqgc34r80arDEyhaPaywtMNnYSWNR1 RfBX0yrR3BsI6JpBF7ot81OX2e0GMMRv1MaYH9YbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3uCZQaDnJ1Ha098qoKm1sHhTIb4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVmZjRiNDRhLTQxYzktNGJjMC1iNzdlLTUyMGZkMWQ3OTI3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dYwDQYJKoZIhvcNAQELBQADggEBABzOtNCTVZLOG+s8NxXJ91UqRfCJ IHBZbhvPuiSz6WP0eEk/qkzXj9vkApcV5yXKM+dotNspxFKXvFVIm4L+CSs681u7 QD49LiB8cD4UOeUDPozU9hfJS9jiMVPBORsdSkQ3neL0qY3FN7/XY6LJY5Gj2LO5 ccoy1SjA+7xnB+BPGo7LhYz88iV8VquaXcEh4HgjRVC2vWwIITLYVTvFQL2T7IMm cv8H07czpfCC8CbuW9v7qhN17juX8lFY07xjfb4w3fmfGB8SPZDOJ6EcoRVIgdwX LcB7NM4z6/sxa2mS3hMYuh/ssGkIWtlCt5a+MqgNqM8/xPAApBWW7NQcHnM= -----END CERTIFICATE-----Generated at Thu Nov 21 17:28:40 2024 by rpki-client on console-fra.rpki-client.org