$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa File: 78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa (raw, json) Hash identifier: kS7/eb+7VVtslI4IkBu04wsJz/thTuClIsN9xyXeYrU= Subject key identifier: 4B:3F:24:A4:9A:05:11:08:09:EB:A6:C3:71:D2:13:A4:3C:71:D3:8E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 66BBA70668A04CDD813299CEA82895BA20761F59 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 09 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:bb:a7:06:68:a0:4c:dd:81:32:99:ce:a8:28:95:ba:20:76:1f:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=680bb4d3dee0a06833cd47b4861075cb2669f9bf523e6bec557ab2ad320d7f75, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:85:b8:24:de:28:db:c9:85:e4:0f:15:a7: 03:aa:91:05:c1:a4:f7:0b:4e:35:66:88:67:a8:2e: e3:7f:61:ce:77:9e:24:19:19:56:78:1f:38:48:fb: bf:e2:a4:03:b2:23:e5:0c:e9:ba:62:77:87:3d:32: 67:ec:f1:ae:db:14:2c:66:1b:e2:e3:4d:cd:1f:0e: 13:41:b6:8a:03:07:03:c7:2c:d8:95:c2:ca:24:58: f2:f2:ef:14:be:06:33:45:a7:1e:e0:83:03:55:44: a4:df:2a:d4:7b:88:31:15:9e:e8:12:f5:48:25:ac: b4:97:4f:22:cf:b2:b7:c8:bd:91:c4:27:ca:54:8f: 0f:95:1b:6d:90:a3:7b:b2:64:dc:51:96:74:7f:ab: 00:41:56:f7:20:ec:95:31:14:f6:ef:d2:0d:6e:9f: 6e:f1:ba:81:de:1d:f8:8f:fc:46:e5:de:d9:30:9f: 79:21:22:20:b0:a0:01:6e:dd:55:eb:e9:00:2d:b0: 5d:6c:aa:06:06:a5:b0:97:b0:a2:79:ff:c3:23:4e: 7c:6f:1e:5a:7c:20:f0:3f:49:29:a2:9d:75:bb:a0: dc:ab:96:63:78:12:d2:f5:7e:ef:e8:39:bf:93:94: 5b:18:27:dc:86:f3:06:be:aa:68:74:b1:e4:a3:5a: 73:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:3F:24:A4:9A:05:11:08:09:EB:A6:C3:71:D2:13:A4:3C:71:D3:8E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.185.0/24 Signature Algorithm: sha256WithRSAEncryption 63:d9:9e:f8:f3:7a:41:81:18:f1:fa:64:3d:7a:e7:74:1a:ba: 51:7c:d0:5e:1e:7e:81:aa:5f:d3:83:68:03:8c:f3:bf:95:43: 84:6f:dd:36:08:6a:73:14:b1:75:28:45:7b:9f:ea:cd:34:f8: b0:ab:52:a2:45:22:d0:77:4a:af:bb:c7:09:b9:b7:3a:48:2d: 49:b8:4b:ab:06:54:25:f6:94:bc:29:2d:d2:2b:05:81:36:6e: 67:60:d8:0e:94:c6:08:74:17:b6:fe:bb:ac:8c:31:57:d7:97: 19:4f:92:d5:66:b0:7b:96:9e:c4:21:25:05:81:7a:26:1a:b1: 69:c8:a3:17:c4:df:f7:cc:27:81:90:87:3e:23:5b:7a:61:02: e3:d1:ae:15:a5:7c:29:b4:e6:c7:49:e8:25:2f:7c:c4:11:01: 9d:0d:d6:77:f0:57:69:dd:0d:6d:30:8b:78:8c:34:a4:d9:06: 29:76:e2:6a:49:41:b7:78:8a:44:11:12:1b:3f:18:e5:3e:05: 91:bb:52:30:b2:ad:8f:13:95:cc:bc:33:0e:8b:52:0d:cd:c3: 6b:9b:d1:90:ba:a6:22:14:da:88:76:b7:b7:94:f8:1d:c4:38: 1b:be:10:df:ae:88:ff:cf:c4:65:f6:c3:b4:c2:e2:92:30:52: 42:82:2b:2b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZrunBmigTN2BMpnOqCiVuiB2H1kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODBiYjRkM2RlZTBhMDY4MzNjZDQ3YjQ4NjEwNzVjYjI2 NjlmOWJmNTIzZTZiZWM1NTdhYjJhZDMyMGQ3Zjc1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKX4W4JN4o28mF5A8VpwOqkQXBpPcLTjVmiGeoLuN/Yc53 niQZGVZ4HzhI+7/ipAOyI+UM6bpid4c9Mmfs8a7bFCxmG+LjTc0fDhNBtooDBwPH LNiVwsokWPLy7xS+BjNFpx7ggwNVRKTfKtR7iDEVnugS9UglrLSXTyLPsrfIvZHE J8pUjw+VG22Qo3uyZNxRlnR/qwBBVvcg7JUxFPbv0g1un27xuoHeHfiP/Ebl3tkw n3khIiCwoAFu3VXr6QAtsF1sqgYGpbCXsKJ5/8MjTnxvHlp8IPA/SSminXW7oNyr lmN4EtL1fu/oOb+TlFsYJ9yG8wa+qmh0seSjWnNnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSz8kpJoFEQgJ66bDcdITpDxx044wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzc4YTBjZGMyLWVhMjAtNDY2Yi1iZTg3LWU5Y2Q2OWUxN2IzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37kwDQYJKoZIhvcNAQELBQADggEBAGPZnvjzekGBGPH6ZD1653QaulF8 0F4efoGqX9ODaAOM87+VQ4Rv3TYIanMUsXUoRXuf6s00+LCrUqJFItB3Sq+7xwm5 tzpILUm4S6sGVCX2lLwpLdIrBYE2bmdg2A6Uxgh0F7b+u6yMMVfXlxlPktVmsHuW nsQhJQWBeiYasWnIoxfE3/fMJ4GQhz4jW3phAuPRrhWlfCm05sdJ6CUvfMQRAZ0N 1nfwV2ndDW0wi3iMNKTZBil24mpJQbd4ikQREhs/GOU+BZG7UjCyrY8Tlcy8Mw6L Ug3Nw2ub0ZC6piIU2oh2t7eU+B3EOBu+EN+uiP/PxGX2w7TC4pIwUkKCKys= -----END CERTIFICATE-----Generated at Wed May 8 00:52:27 2024 by rpki-client on console-fra.rpki-client.org