$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/7c541838-12b7-470a-b044-f31d3ab72ede.roa File: 7c541838-12b7-470a-b044-f31d3ab72ede.roa (raw, json) Hash identifier: tpVSLtX1tBWwCFoQri8CbdFrq5wPAlIMXE7rfCPL/Vs= Subject key identifier: 35:D6:13:87:F8:F5:81:8C:63:74:04:24:B6:C8:9A:72:C1:2B:60:42 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 017114DF641EA5E49AC938FDB2809C9CFAA340EE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/7c541838-12b7-470a-b044-f31d3ab72ede.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:71:14:df:64:1e:a5:e4:9a:c9:38:fd:b2:80:9c:9c:fa:a3:40:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=691dcbf1ef911883d5bf84b2226c7fb1934c9351398d8e5a4f045536888eb934, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:31:81:42:62:d2:35:0c:b8:ff:0f:1a:12:16: 50:0f:8f:bb:d3:29:2f:0e:4f:82:83:d3:b8:d0:15: 01:fb:b4:46:a2:ac:e6:7f:07:fe:f7:be:51:c6:17: bd:48:e8:2a:83:c5:a4:28:c7:1d:9c:fa:42:11:1e: d2:b0:42:bd:b8:3c:92:ac:da:87:b8:bf:d6:25:de: 13:c5:bb:4d:2d:95:ec:7d:2a:22:86:67:58:92:92: 7d:4e:f8:2f:91:2c:47:05:0c:8c:6b:a8:7e:b8:c8: 08:1e:9f:4c:10:32:1e:94:32:14:43:1e:bc:9b:6d: e1:26:c0:f2:b4:f9:7b:4e:a6:9c:1f:76:1e:46:41: 45:02:a6:70:d8:da:00:43:b0:a7:c4:c5:29:64:d5: 08:1a:bf:eb:56:37:cc:aa:ad:20:9a:a3:b9:4d:a0: cb:0d:9d:03:ac:e4:57:fc:01:80:65:b7:0b:64:ea: e4:22:bb:10:5b:d2:2e:cc:43:3f:78:f0:a2:5c:86: 66:b9:a3:cc:07:ea:22:2f:d6:6b:fb:60:3f:84:67: 19:20:c2:5b:33:52:f0:db:a4:b9:4a:d5:32:24:c7: fc:67:f8:25:f8:2d:ba:23:c7:82:ec:dc:64:75:e0: 4d:bf:a8:e2:0a:d3:62:47:66:49:dc:88:e1:a9:78: b8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D6:13:87:F8:F5:81:8C:63:74:04:24:B6:C8:9A:72:C1:2B:60:42 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/7c541838-12b7-470a-b044-f31d3ab72ede.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.208.0/23 Signature Algorithm: sha256WithRSAEncryption 76:18:f9:34:a2:b6:55:e4:11:4a:c4:7d:14:16:3d:c4:31:95: 19:78:be:35:21:b8:0d:69:63:57:89:14:d0:df:a7:92:1a:b0: 83:37:7c:84:79:53:d2:2a:2c:db:c0:d9:04:b6:8b:12:c6:79: 46:fd:e8:00:1b:e5:b9:78:c2:58:43:c7:bf:05:ca:48:33:65: af:1f:63:c6:f2:d7:68:42:d1:80:a2:e9:b1:b4:e0:3b:c3:1e: d9:f7:8d:ee:9c:b9:b1:a1:38:b4:3c:0a:e3:2a:c0:83:cf:98: 9e:1e:2e:69:32:18:41:d2:b4:6c:98:a7:9e:e2:88:dd:a6:d1: 92:3f:f9:14:d4:70:d9:b8:55:4e:e6:62:52:37:3f:1c:45:a4: 54:9c:bc:e3:d5:79:86:9c:ee:99:1d:97:89:61:f3:06:7e:e1: f5:59:8c:6b:e3:66:07:35:13:12:17:8a:5a:cd:41:d7:ac:d5: 00:98:0c:fe:f9:ec:80:fb:18:c5:83:b4:d6:e9:48:83:16:12: f6:81:29:50:1e:6b:2c:2f:9f:65:7d:75:f1:25:bb:d6:e4:9f: e0:3e:9f:e7:c5:78:d2:86:55:e1:00:c0:64:f2:3f:32:46:dd: a9:f3:e8:ed:fc:6b:64:fb:3e:7f:0d:39:89:8c:21:31:94:a8: 92:24:a6:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAXEU32QepeSayTj9soCcnPqjQO4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTFkY2JmMWVmOTExODgzZDViZjg0YjIyMjZjN2ZiMTkz NGM5MzUxMzk4ZDhlNWE0ZjA0NTUzNjg4OGViOTM0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkMYFCYtI1DLj/DxoSFlAPj7vTKS8OT4KD07jQFQH7tEai rOZ/B/73vlHGF71I6CqDxaQoxx2c+kIRHtKwQr24PJKs2oe4v9Yl3hPFu00tlex9 KiKGZ1iSkn1O+C+RLEcFDIxrqH64yAgen0wQMh6UMhRDHrybbeEmwPK0+XtOppwf dh5GQUUCpnDY2gBDsKfExSlk1Qgav+tWN8yqrSCao7lNoMsNnQOs5Ff8AYBltwtk 6uQiuxBb0i7MQz948KJchma5o8wH6iIv1mv7YD+EZxkgwlszUvDbpLlK1TIkx/xn +CX4Lbojx4Ls3GR14E2/qOIK02JHZknciOGpeLizAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNdYTh/j1gYxjdAQktsiacsErYEIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzdjNTQxODM4LTEyYjctNDcwYS1iMDQ0LWYzMWQzYWI3MmVkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+dAwDQYJKoZIhvcNAQELBQADggEBAHYY+TSitlXkEUrEfRQWPcQxlRl4 vjUhuA1pY1eJFNDfp5IasIM3fIR5U9IqLNvA2QS2ixLGeUb96AAb5bl4wlhDx78F ykgzZa8fY8by12hC0YCi6bG04DvDHtn3je6cubGhOLQ8CuMqwIPPmJ4eLmkyGEHS tGyYp57iiN2m0ZI/+RTUcNm4VU7mYlI3PxxFpFScvOPVeYac7pkdl4lh8wZ+4fVZ jGvjZgc1ExIXilrNQdes1QCYDP757ID7GMWDtNbpSIMWEvaBKVAeaywvn2V9dfEl u9bkn+A+n+fFeNKGVeEAwGTyPzJG3anz6O38a2T7Pn8NOYmMITGUqJIkpp4= -----END CERTIFICATE-----Generated at Sat Sep 9 00:26:29 2023 by rpki-client on console-fra.rpki-client.org