$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/7c541838-12b7-470a-b044-f31d3ab72ede.roa File: 7c541838-12b7-470a-b044-f31d3ab72ede.roa (raw, json) Hash identifier: X+DgOOvmhe+u8f4DOOO6xYhyIM6pLyTQt9enrVyufuk= Subject key identifier: 9B:1F:56:A3:02:16:06:7A:9C:6A:EF:6F:5F:F0:9B:EF:0C:DC:86:AF Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 588681C5EC8B5C1CBC7FEE6A0AD6E76DAB596138 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/7c541838-12b7-470a-b044-f31d3ab72ede.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:86:81:c5:ec:8b:5c:1c:bc:7f:ee:6a:0a:d6:e7:6d:ab:59:61:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=73e9b01f398c993a32af6e82f491627889f7455c222d55434595ada0e158d997, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:00:99:bb:05:5f:e3:28:93:6d:64:cf:45:8d: cb:f5:e8:91:b7:a0:cd:f3:ee:c5:bf:bd:10:73:ad: 22:2e:ac:b0:28:85:51:59:7a:ed:ae:6e:ea:04:47: f3:aa:97:ad:d7:6b:14:94:c4:5c:cb:c9:18:6a:02: f1:45:60:9b:ec:f2:7e:a2:6a:ae:81:f2:d1:3a:22: c1:b5:b9:90:0a:35:ed:8d:67:53:16:22:e6:d6:f0: 42:1a:3d:55:15:69:ac:dd:5d:0c:c9:5b:04:71:fc: 5e:66:a5:c7:21:3b:02:23:49:98:09:4b:1f:d5:d5: 00:2a:cc:af:f8:38:df:22:e6:8c:dc:47:1c:02:cd: db:ad:49:19:91:1f:65:ce:a4:92:26:bc:9d:87:83: b0:d9:39:f1:28:63:ee:56:65:44:f7:13:d4:60:19: 30:20:d5:3b:49:97:9b:a3:d5:28:d1:fd:80:41:9f: 54:f3:f7:b1:62:60:39:15:8a:93:f9:7b:e2:15:c8: 4d:66:02:59:e8:95:15:59:57:c9:38:93:71:53:c3: 79:e4:49:98:a3:e3:91:67:c3:43:cb:b3:cb:d0:10: 0c:22:1b:73:2d:bb:e8:9e:7e:cd:8c:4b:08:9f:17: 9e:52:06:49:d1:0a:ea:ee:1f:e7:0f:e8:57:4c:66: 78:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:1F:56:A3:02:16:06:7A:9C:6A:EF:6F:5F:F0:9B:EF:0C:DC:86:AF X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/7c541838-12b7-470a-b044-f31d3ab72ede.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.208.0/23 Signature Algorithm: sha256WithRSAEncryption 51:ee:fd:c0:ac:0a:a0:ab:4c:68:f4:f8:ad:2e:0a:d9:9e:4e: cf:42:d8:4b:31:27:3c:23:43:08:41:18:7e:90:32:8f:c0:52: b4:e0:32:e0:82:8e:63:28:67:58:69:c6:96:c6:c0:d5:83:40: 48:86:4f:ef:6b:88:8b:43:86:59:89:01:84:97:89:40:a7:36: 20:fa:75:25:9e:c2:f8:f7:ff:74:cd:0d:2d:2c:4d:0b:8e:6d: 29:85:ed:47:76:a8:de:6d:1c:84:5c:c6:3e:15:a1:66:5b:15: d8:59:fc:72:f7:c2:b6:6b:66:44:12:7b:46:4f:10:70:fa:dc: 35:61:74:f8:7d:4a:0d:a1:e1:c9:c5:0f:5f:f6:a9:c2:3f:08: 78:ed:ba:89:b7:44:e1:24:a7:b7:8a:a7:71:1a:74:6f:de:e8: 0b:0c:08:4b:4b:f8:5a:d0:89:ef:85:d2:69:1b:ae:f5:4e:84: 28:19:d7:c0:3c:ef:a4:82:93:82:66:ff:c5:a3:74:96:81:8b: 5a:ac:4b:14:30:43:8d:cd:29:13:60:1c:bc:cc:28:35:a2:3b: cd:ca:5b:60:45:3e:88:bd:62:47:e6:05:14:28:c7:c1:98:b9: cb:5f:9e:66:fb:ad:53:d0:7a:84:39:84:9f:ba:66:24:a5:33: 98:a0:b3:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWIaBxeyLXBy8f+5qCtbnbatZYTgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3M2U5YjAxZjM5OGM5OTNhMzJhZjZlODJmNDkxNjI3ODg5 Zjc0NTVjMjIyZDU1NDM0NTk1YWRhMGUxNThkOTk3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNAJm7BV/jKJNtZM9Fjcv16JG3oM3z7sW/vRBzrSIurLAo hVFZeu2ubuoER/Oql63XaxSUxFzLyRhqAvFFYJvs8n6iaq6B8tE6IsG1uZAKNe2N Z1MWIubW8EIaPVUVaazdXQzJWwRx/F5mpcchOwIjSZgJSx/V1QAqzK/4ON8i5ozc RxwCzdutSRmRH2XOpJImvJ2Hg7DZOfEoY+5WZUT3E9RgGTAg1TtJl5uj1SjR/YBB n1Tz97FiYDkVipP5e+IVyE1mAlnolRVZV8k4k3FTw3nkSZij45Fnw0PLs8vQEAwi G3Mtu+iefs2MSwifF55SBknRCuruH+cP6FdMZngtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmx9WowIWBnqcau9vX/Cb7wzchq8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzdjNTQxODM4LTEyYjctNDcwYS1iMDQ0LWYzMWQzYWI3MmVkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+dAwDQYJKoZIhvcNAQELBQADggEBAFHu/cCsCqCrTGj0+K0uCtmeTs9C 2EsxJzwjQwhBGH6QMo/AUrTgMuCCjmMoZ1hpxpbGwNWDQEiGT+9riItDhlmJAYSX iUCnNiD6dSWewvj3/3TNDS0sTQuObSmF7Ud2qN5tHIRcxj4VoWZbFdhZ/HL3wrZr ZkQSe0ZPEHD63DVhdPh9Sg2h4cnFD1/2qcI/CHjtuom3ROEkp7eKp3EadG/e6AsM CEtL+FrQie+F0mkbrvVOhCgZ18A876SCk4Jm/8WjdJaBi1qsSxQwQ43NKRNgHLzM KDWiO83KW2BFPoi9YkfmBRQox8GYuctfnmb7rVPQeoQ5hJ+6ZiSlM5igs2s= -----END CERTIFICATE-----Generated at Sun Nov 24 01:32:37 2024 by rpki-client on console-ams.rpki-client.org