$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/74dc84b0-0790-46ab-ab33-022f86c2512c.roa File: 74dc84b0-0790-46ab-ab33-022f86c2512c.roa (raw, json) Hash identifier: NuX2ly9RKUjtO3haPtUs/+krNBqTCw9UBlh0q4MyKps= Subject key identifier: C8:D6:A9:55:89:4F:69:80:B9:F4:5B:80:70:11:AA:C1:21:C6:80:95 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2345D5A3BAD570778062FD3DB4AB29C134F66ABD Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/74dc84b0-0790-46ab-ab33-022f86c2512c.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:45:d5:a3:ba:d5:70:77:80:62:fd:3d:b4:ab:29:c1:34:f6:6a:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=a2db81e209833b9812bd299a4f5a8b62bc3e95e4d37a5d1e14f1cfeb31704a4d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:29:0a:17:d5:70:8c:6e:84:da:8d:09:c8:a6: 67:c5:9a:5d:3f:dd:c4:5d:d5:bd:60:dc:71:cd:d6: 74:bf:2a:6e:53:85:9d:49:ad:23:9e:67:c0:01:3b: e1:72:79:8a:b3:ea:05:dc:8e:10:c6:b2:e9:a0:20: 4e:0f:c1:49:e9:62:45:c1:0a:24:cc:9e:af:66:ff: 6a:29:e2:12:0a:a6:f2:c3:b1:aa:49:7d:eb:fa:02: 35:5d:2a:2b:84:68:72:6e:cc:df:db:50:bc:86:e8: b7:e4:fe:3d:fc:66:4a:3f:a6:83:29:e7:9f:9c:e8: de:0f:14:e0:ee:5b:d7:cd:72:85:c2:7c:45:f2:7d: f8:9e:5b:2f:7a:c6:fe:87:c0:11:e8:c9:b0:ad:a8: 1f:03:1f:ba:41:a7:ce:56:a2:a3:55:f5:fc:e8:d2: 83:1f:70:6e:dc:a5:72:79:02:c3:11:6b:9a:89:20: d5:7e:e6:3c:61:9f:69:f7:5c:b1:2d:f9:04:21:ba: 02:58:12:8b:bb:25:3c:04:f3:32:76:ca:7b:69:37: 62:7f:44:26:64:e6:f2:b2:c5:48:22:a6:1a:57:68: e1:98:df:44:1a:af:74:dc:5b:60:49:5d:f6:f7:e1: 2a:34:87:88:89:93:86:ee:a1:78:81:6c:64:06:c7: 53:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D6:A9:55:89:4F:69:80:B9:F4:5B:80:70:11:AA:C1:21:C6:80:95 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/74dc84b0-0790-46ab-ab33-022f86c2512c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.226.0/24 Signature Algorithm: sha256WithRSAEncryption 67:13:df:a7:af:b8:27:6f:e4:5d:6f:2d:b5:2a:09:54:f3:13: 20:d2:d5:3d:00:07:78:d6:12:5c:54:92:fb:c2:92:ea:cc:58: c1:4b:53:b2:c6:3e:92:6f:be:8f:30:49:99:e9:14:2b:0f:86: 49:12:2b:1e:66:9f:96:e3:20:07:0f:be:08:77:b9:96:cc:a6: e5:d3:39:3c:16:6b:4f:1a:87:e8:7f:73:19:22:47:a6:df:b3: 9e:e7:25:5d:a4:33:3d:cc:de:81:83:35:d3:e8:48:23:0e:68: 78:6c:e2:ac:e9:a0:db:2c:c2:48:b4:6f:31:db:c7:c5:36:44: b0:dd:19:a9:de:38:80:53:19:27:a2:47:79:3d:4a:ac:de:25: a9:fd:22:01:92:6b:c2:46:c2:af:a9:aa:e3:cb:f4:b8:84:3f: a1:0c:d6:c8:b9:20:6b:d0:7f:c4:ee:e7:8b:46:fd:b6:e8:12: d3:79:ae:37:65:2e:53:f7:91:1f:6b:ef:6d:68:c2:d9:50:fc: b2:d4:7f:8e:ae:ed:fe:c2:3f:f4:a9:bc:90:a0:8c:de:e8:84: d0:e5:77:b3:1f:75:0b:67:d9:69:f1:76:ec:fe:91:f1:52:3a: da:97:e9:1b:04:6e:a4:df:1b:68:cf:2d:f0:02:7c:88:d9:aa: eb:d0:1f:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI0XVo7rVcHeAYv09tKspwTT2ar0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMmRiODFlMjA5ODMzYjk4MTJiZDI5OWE0ZjVhOGI2MmJj M2U5NWU0ZDM3YTVkMWUxNGYxY2ZlYjMxNzA0YTRkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdKQoX1XCMboTajQnIpmfFml0/3cRd1b1g3HHN1nS/Km5T hZ1JrSOeZ8ABO+FyeYqz6gXcjhDGsumgIE4PwUnpYkXBCiTMnq9m/2op4hIKpvLD sapJfev6AjVdKiuEaHJuzN/bULyG6Lfk/j38Zko/poMp55+c6N4PFODuW9fNcoXC fEXyffieWy96xv6HwBHoybCtqB8DH7pBp85WoqNV9fzo0oMfcG7cpXJ5AsMRa5qJ INV+5jxhn2n3XLEt+QQhugJYEou7JTwE8zJ2yntpN2J/RCZk5vKyxUgiphpXaOGY 30Qar3TcW2BJXfb34So0h4iJk4buoXiBbGQGx1MZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyNapVYlPaYC59FuAcBGqwSHGgJUwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzc0ZGM4NGIwLTA3OTAtNDZhYi1hYjMzLTAyMmY4NmMyNTEyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++IwDQYJKoZIhvcNAQELBQADggEBAGcT36evuCdv5F1vLbUqCVTzEyDS 1T0AB3jWElxUkvvCkurMWMFLU7LGPpJvvo8wSZnpFCsPhkkSKx5mn5bjIAcPvgh3 uZbMpuXTOTwWa08ah+h/cxkiR6bfs57nJV2kMz3M3oGDNdPoSCMOaHhs4qzpoNss wki0bzHbx8U2RLDdGaneOIBTGSeiR3k9SqzeJan9IgGSa8JGwq+pquPL9LiEP6EM 1si5IGvQf8Tu54tG/bboEtN5rjdlLlP3kR9r721owtlQ/LLUf46u7f7CP/SpvJCg jN7ohNDld7MfdQtn2Wnxduz+kfFSOtqX6RsEbqTfG2jPLfACfIjZquvQH1g= -----END CERTIFICATE-----Generated at Thu Apr 25 01:20:06 2024 by rpki-client on console-fra.rpki-client.org