$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa File: 5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa (raw, json) Hash identifier: Lur/e6zdHx7kyYSpWzN7rpbxgQG/AuDBX+Q9eri7wGU= Subject key identifier: FB:2D:88:CC:3A:1F:43:B6:DA:EC:1A:E2:28:95:DC:0A:1B:0B:FC:95 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 08A309B846C87856775967C2A1B1BA4A72B99E0A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:a3:09:b8:46:c8:78:56:77:59:67:c2:a1:b1:ba:4a:72:b9:9e:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=8a4bc9443f84aa9389d9cf49ac6459050aabaea1bb9795910ecccad9848dd8e3, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6f:ce:3b:46:dc:d6:e5:e8:2f:b6:fc:15:69: 97:c2:fd:aa:f4:e7:77:ca:c6:b9:bf:d8:4c:20:ca: 5d:f3:6b:df:06:71:96:13:98:b0:ba:3f:db:21:ad: 70:f6:c0:69:99:2f:83:14:34:74:b0:8e:80:82:bd: dc:d2:83:8d:63:23:e8:88:7d:71:5c:c5:12:d3:47: 42:65:0c:23:1a:5e:94:b5:ab:3d:95:32:4d:72:c1: e9:01:c0:70:c7:e0:41:ff:21:84:1d:c0:08:0a:26: 91:3b:70:a9:a1:a6:dd:3d:bf:15:a6:55:e7:ea:10: 93:15:08:f8:04:ea:74:08:14:25:d8:75:5f:37:64: f1:1f:d8:f0:16:88:1a:f7:fb:7d:fe:9a:61:83:0d: a5:0f:b7:4e:93:43:89:b9:73:f3:80:c4:ac:9e:3b: 8b:ae:d6:99:53:4e:32:dd:65:33:53:07:75:bd:2b: 4d:f7:a5:0a:61:f0:5e:06:30:9c:80:10:a4:d2:d0: 32:f5:0b:bb:4a:28:3f:3d:08:0e:af:29:21:95:a0: d0:96:c1:5b:02:f3:32:33:e4:be:75:07:6c:4e:67: 45:c8:5e:05:5c:73:81:03:ac:3c:e3:00:04:e1:3a: 80:ed:f0:12:bc:70:1e:7a:73:37:f5:70:53:ef:ef: 83:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:2D:88:CC:3A:1F:43:B6:DA:EC:1A:E2:28:95:DC:0A:1B:0B:FC:95 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.214.0/24 Signature Algorithm: sha256WithRSAEncryption 62:02:93:d3:e8:59:cb:dd:d1:b8:5b:d0:e5:bc:db:d2:f8:25: 2a:59:44:dc:c4:78:ad:76:bc:bb:50:71:80:e3:22:d5:6a:cd: d8:fa:8d:3d:eb:68:39:89:87:d2:e5:22:6a:55:29:f7:8f:fc: f8:00:ae:7d:20:2c:f8:ce:ae:bd:33:76:ab:16:fa:f6:dc:eb: 4e:8c:17:92:8b:65:c7:e7:ff:98:e1:41:a8:eb:6f:83:4a:80: 69:d1:76:3b:c7:62:26:f5:55:ba:49:04:cf:44:ef:98:a6:b9: 7e:95:37:86:43:a9:8d:49:12:3e:45:f3:e8:ec:6b:d8:78:b0: 28:5a:1e:95:3b:8f:0f:d4:54:55:b8:a7:02:23:1b:63:a9:84: fe:0c:62:23:d2:c4:82:00:5f:c7:f7:47:3d:33:c1:1b:f0:80: fc:59:22:8a:c4:bc:1e:11:67:5f:25:d0:6c:b3:a1:04:40:9f: 96:a6:2c:2f:96:43:5e:97:b7:39:5e:10:6f:10:cd:fa:df:e2: 37:03:92:41:bb:0c:da:f7:8b:b8:9e:76:0e:be:26:61:ac:2d: fc:a4:c7:8a:06:d8:1c:bd:0c:c2:57:c3:ab:16:bc:26:10:56: c0:e9:81:4a:da:7c:4c:dd:d7:24:62:95:95:a0:a4:7b:12:1f: ac:a7:4c:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCKMJuEbIeFZ3WWfCobG6SnK5ngowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTRiYzk0NDNmODRhYTkzODlkOWNmNDlhYzY0NTkwNTBh YWJhZWExYmI5Nzk1OTEwZWNjY2FkOTg0OGRkOGUzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkb847RtzW5egvtvwVaZfC/ar053fKxrm/2Ewgyl3za98G cZYTmLC6P9shrXD2wGmZL4MUNHSwjoCCvdzSg41jI+iIfXFcxRLTR0JlDCMaXpS1 qz2VMk1ywekBwHDH4EH/IYQdwAgKJpE7cKmhpt09vxWmVefqEJMVCPgE6nQIFCXY dV83ZPEf2PAWiBr3+33+mmGDDaUPt06TQ4m5c/OAxKyeO4uu1plTTjLdZTNTB3W9 K033pQph8F4GMJyAEKTS0DL1C7tKKD89CA6vKSGVoNCWwVsC8zIz5L51B2xOZ0XI XgVcc4EDrDzjAAThOoDt8BK8cB56czf1cFPv74NNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+y2IzDofQ7ba7BriKJXcChsL/JUwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVmZjRiNDRhLTQxYzktNGJjMC1iNzdlLTUyMGZkMWQ3OTI3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dYwDQYJKoZIhvcNAQELBQADggEBAGICk9PoWcvd0bhb0OW829L4JSpZ RNzEeK12vLtQcYDjItVqzdj6jT3raDmJh9LlImpVKfeP/PgArn0gLPjOrr0zdqsW +vbc606MF5KLZcfn/5jhQajrb4NKgGnRdjvHYib1VbpJBM9E75imuX6VN4ZDqY1J Ej5F8+jsa9h4sChaHpU7jw/UVFW4pwIjG2OphP4MYiPSxIIAX8f3Rz0zwRvwgPxZ IorEvB4RZ18l0GyzoQRAn5amLC+WQ16XtzleEG8Qzfrf4jcDkkG7DNr3i7iedg6+ JmGsLfykx4oG2By9DMJXw6sWvCYQVsDpgUrafEzd1yRilZWgpHsSH6ynTLQ= -----END CERTIFICATE-----Generated at Thu May 9 00:38:22 2024 by rpki-client on console-fra.rpki-client.org