$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa File: 60789a29-f516-47ec-9154-b2b610f7282e.roa (raw, json) Hash identifier: TN2bqXGII4PkSGW/T3NfsqNrLT3NKNloBBhqb1ZxUGo= Subject key identifier: E6:7F:B4:86:C5:21:DD:51:08:13:D9:45:70:B9:1B:08:96:AC:CE:EF Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 514D15E735122CA8750E9B3203FF0474E0FC5F20 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa Signing time: Thu 05 Dec 2024 00:00:00 +0000 ROA not before: Thu 05 Dec 2024 00:00:00 +0000 ROA not after: Thu 09 Jan 2025 23:59:59 +0000 asID: 14618 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Dec 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:4d:15:e7:35:12:2c:a8:75:0e:9b:32:03:ff:04:74:e0:fc:5f:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Dec 5 00:00:00 2024 GMT Not After : Jan 9 23:59:59 2025 GMT Subject: serialNumber=38c44da9a0563c92544290dfb9e21d128eaa8ef580134ff59afe7fcefd941aa0, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3c:90:28:f3:77:57:3c:ab:68:b4:cf:80:42: 60:10:0c:f7:24:c5:81:02:74:37:62:3b:76:30:54: e5:ff:19:5d:e2:c2:4a:72:ad:4a:24:c9:98:a1:c1: 1a:20:f8:86:33:c7:ac:f7:81:83:d8:16:75:1d:e4: 4d:bf:a3:10:75:36:06:61:6a:43:62:aa:9d:d2:8a: 12:35:6b:5b:55:2c:b0:b1:68:e5:9a:0a:23:c7:a7: e1:a3:41:94:e7:37:78:c9:fc:81:fb:22:6d:35:60: 58:2f:11:58:6f:0d:fc:1e:12:b9:b6:02:e8:70:81: 98:13:32:97:8d:81:d5:6b:39:cb:76:53:7f:d6:79: 8e:0e:c1:f4:21:57:a6:05:2d:16:13:0c:14:3d:96: 99:b8:59:56:b7:ba:fb:2e:65:3b:9b:86:54:4d:2d: be:09:8c:97:9a:cb:5f:a4:fd:00:1d:5f:1f:ff:18: e9:89:0e:14:c2:87:b3:60:12:b2:30:34:ef:85:cb: 0d:70:fa:5f:6a:77:11:3c:2a:80:6c:b4:ac:ac:ce: 82:21:22:5f:66:5c:23:ce:a4:32:18:ad:55:80:dd: 96:ec:a3:ef:62:ac:30:8b:27:69:52:45:90:cf:4f: ac:26:29:b2:04:0d:85:e3:ae:06:48:af:a4:37:d1: 9b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:7F:B4:86:C5:21:DD:51:08:13:D9:45:70:B9:1B:08:96:AC:CE:EF X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 80:b8:e4:9a:bc:31:7d:d8:c6:4b:6c:21:b4:b1:2c:63:b7:32: be:af:59:2d:d6:4b:31:18:3b:d9:85:17:84:ce:b6:1d:34:6b: 33:aa:37:0c:4c:1b:25:63:3f:bd:d9:c8:5e:ac:c5:fa:17:c6: 9b:80:b4:18:16:57:cc:47:e1:81:36:c4:c9:7b:b4:0b:6b:df: 38:a2:e1:25:28:ce:6f:8d:8f:89:02:dd:2a:50:2b:d2:a5:84: 8a:15:46:28:90:2c:d5:49:d7:2a:52:48:d4:c9:e9:71:47:23: 9a:ba:d4:ba:0e:9e:e2:37:85:27:50:d3:ae:ff:61:f8:a3:80: 3d:5e:f7:0b:ee:39:9a:10:62:5e:0a:ad:26:38:a7:c3:a8:9b: 00:08:ab:82:d8:db:5d:30:89:56:1d:d6:24:bb:68:fe:e8:d4: 58:4e:d1:4f:f5:37:a4:2f:3b:90:6e:55:1b:fe:a1:4b:d3:70: b5:9a:fe:f4:27:ca:b0:f5:ce:3a:17:7d:a2:ee:ec:2d:66:ed: fa:17:cf:ad:14:bf:61:16:c2:2a:e1:13:11:11:80:7b:29:16: 5f:fe:48:66:4d:e8:0a:64:a7:eb:73:54:32:af:bc:96:e6:74: dd:5b:3c:c0:23:10:02:d0:71:a6:c3:37:1d:c0:39:10:3a:41: 3b:12:28:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUU0V5zUSLKh1DpsyA/8EdOD8XyAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMjA1MDAwMDAwWhcNMjUwMTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOGM0NGRhOWEwNTYzYzkyNTQ0MjkwZGZiOWUyMWQxMjhl YWE4ZWY1ODAxMzRmZjU5YWZlN2ZjZWZkOTQxYWEwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrPJAo83dXPKtotM+AQmAQDPckxYECdDdiO3YwVOX/GV3i wkpyrUokyZihwRog+IYzx6z3gYPYFnUd5E2/oxB1NgZhakNiqp3SihI1a1tVLLCx aOWaCiPHp+GjQZTnN3jJ/IH7Im01YFgvEVhvDfweErm2AuhwgZgTMpeNgdVrOct2 U3/WeY4OwfQhV6YFLRYTDBQ9lpm4WVa3uvsuZTubhlRNLb4JjJeay1+k/QAdXx// GOmJDhTCh7NgErIwNO+Fyw1w+l9qdxE8KoBstKyszoIhIl9mXCPOpDIYrVWA3Zbs o+9irDCLJ2lSRZDPT6wmKbIEDYXjrgZIr6Q30Zu5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5n+0hsUh3VEIE9lFcLkbCJaszu8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzYwNzg5YTI5LWY1MTYtNDdlYy05MTU0LWIyYjYxMGY3MjgyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBAIC45Jq8MX3YxktsIbSxLGO3Mr6v WS3WSzEYO9mFF4TOth00azOqNwxMGyVjP73ZyF6sxfoXxpuAtBgWV8xH4YE2xMl7 tAtr3zii4SUozm+Nj4kC3SpQK9KlhIoVRiiQLNVJ1ypSSNTJ6XFHI5q61LoOnuI3 hSdQ067/YfijgD1e9wvuOZoQYl4KrSY4p8OomwAIq4LY210wiVYd1iS7aP7o1FhO 0U/1N6QvO5BuVRv+oUvTcLWa/vQnyrD1zjoXfaLu7C1m7foXz60Uv2EWwirhExER gHspFl/+SGZN6Apkp+tzVDKvvJbmdN1bPMAjEALQcabDNx3AORA6QTsSKCc= -----END CERTIFICATE-----Generated at Thu Dec 26 00:24:25 2024 by rpki-client on console-ams.rpki-client.org