$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa File: 84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa (raw, json) Hash identifier: 4awFrJtdypExUidaYKxd2ciSM4/WAM6qVSce0qDHaps= Subject key identifier: 9E:49:FC:40:46:BF:DA:64:67:23:9A:7B:DD:AB:B6:04:D6:89:20:09 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 17E0F28BE167263F570B7E3C11701BDFE22A9B0E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:e0:f2:8b:e1:67:26:3f:57:0b:7e:3c:11:70:1b:df:e2:2a:9b:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=ae16a961d624744aa1c2d28b6b18149a4357575a28b957a36b0d63fa6e256bd9, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0d:8e:ef:f8:bf:97:75:b9:65:eb:d8:80:9d: 7f:57:b9:20:00:0e:b1:59:8a:f4:ab:44:d0:cc:f6: 1b:4c:96:7d:ca:92:b2:e4:73:16:e8:87:11:a7:c9: 56:b5:9b:59:f2:c8:4e:75:30:bc:bf:cb:9d:56:00: e4:d0:c6:a5:45:5d:ad:45:ab:bc:fe:52:81:4c:3c: 21:f3:24:cf:6d:e0:e4:22:a3:76:7d:50:4e:d9:34: 06:65:5f:61:53:89:91:6a:0f:71:06:b3:58:1c:e1: 0a:5b:e6:df:f4:a1:49:89:57:be:7b:42:03:3a:67: 18:5a:09:c7:c3:8e:de:42:a6:7a:82:e3:da:df:51: ea:9b:b0:d8:d7:cc:b1:1e:0e:1c:36:be:af:82:4d: 2e:ce:a9:77:41:1c:19:fb:3e:18:13:1d:f3:5c:7d: 6f:80:5b:2d:ae:28:48:83:69:83:a5:5e:7b:ba:bb: c1:15:da:07:44:f5:d5:25:3d:76:d2:e4:a8:17:ad: 50:7a:5d:33:7a:16:29:d8:21:eb:ff:d5:72:5b:3c: 70:4a:ed:74:13:d9:54:14:c3:48:b7:48:4b:4a:ab: ed:6b:ad:2b:30:f6:b4:37:90:d2:1c:b8:56:b1:20: fc:fe:66:9f:9d:c6:cc:a8:34:ff:cf:ea:1a:37:23: ab:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:49:FC:40:46:BF:DA:64:67:23:9A:7B:DD:AB:B6:04:D6:89:20:09 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.234.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:62:28:e6:8c:ab:e2:3f:06:dc:74:ba:14:28:7d:de:6c:2d: 86:3c:ec:f1:88:b8:6b:5e:0e:84:80:35:61:c7:c2:c0:89:3f: 9f:6f:71:f8:65:44:68:c5:9b:31:b4:ab:96:4e:83:4b:5b:b6: c1:1e:b0:44:78:f0:40:11:5f:c1:82:a0:37:28:c4:80:8a:c0: f6:84:aa:f4:4d:92:d6:0f:78:e0:0f:c6:00:cb:73:05:2f:0c: 33:ca:4e:f6:c8:c0:21:31:a6:c1:17:ed:c9:5c:38:64:ed:92: c7:8c:d0:7e:26:cd:1c:3f:71:dd:16:49:87:f9:be:68:9f:33: a5:e3:d4:78:16:25:d9:c9:2c:5d:3f:7a:50:a8:2a:54:c3:63: be:50:be:a1:83:c9:21:4e:f9:b0:b9:08:41:80:2d:06:28:47: 43:75:6a:0f:16:54:76:7a:c3:14:86:66:a4:15:7d:07:b7:f6: 2d:53:a2:4d:18:8d:23:b5:8c:d1:d1:16:d7:9f:55:18:34:de: 13:49:86:22:ff:d8:6f:d0:a5:7f:8c:45:57:69:78:14:25:f1: 10:cb:ff:16:cb:2e:c0:b9:f8:36:1c:d2:09:11:e9:a1:e3:65: 20:20:9e:83:b5:15:e6:0d:8f:cd:a0:6e:05:04:84:9a:7e:ee: 3f:59:3f:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF+Dyi+FnJj9XC348EXAb3+Iqmw4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTE2YTk2MWQ2MjQ3NDRhYTFjMmQyOGI2YjE4MTQ5YTQz NTc1NzVhMjhiOTU3YTM2YjBkNjNmYTZlMjU2YmQ5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtDY7v+L+Xdbll69iAnX9XuSAADrFZivSrRNDM9htMln3K krLkcxbohxGnyVa1m1nyyE51MLy/y51WAOTQxqVFXa1Fq7z+UoFMPCHzJM9t4OQi o3Z9UE7ZNAZlX2FTiZFqD3EGs1gc4Qpb5t/0oUmJV757QgM6ZxhaCcfDjt5CpnqC 49rfUeqbsNjXzLEeDhw2vq+CTS7OqXdBHBn7PhgTHfNcfW+AWy2uKEiDaYOlXnu6 u8EV2gdE9dUlPXbS5KgXrVB6XTN6FinYIev/1XJbPHBK7XQT2VQUw0i3SEtKq+1r rSsw9rQ3kNIcuFaxIPz+Zp+dxsyoNP/P6ho3I6vNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnkn8QEa/2mRnI5p73au2BNaJIAkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg0YzAzOGFlLTdhNWEtNDE0YS1iZDAwLTFlZGI2ZmJlNWFkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++owDQYJKoZIhvcNAQELBQADggEBAA5iKOaMq+I/Btx0uhQofd5sLYY8 7PGIuGteDoSANWHHwsCJP59vcfhlRGjFmzG0q5ZOg0tbtsEesER48EARX8GCoDco xICKwPaEqvRNktYPeOAPxgDLcwUvDDPKTvbIwCExpsEX7clcOGTtkseM0H4mzRw/ cd0WSYf5vmifM6Xj1HgWJdnJLF0/elCoKlTDY75QvqGDySFO+bC5CEGALQYoR0N1 ag8WVHZ6wxSGZqQVfQe39i1Tok0YjSO1jNHRFtefVRg03hNJhiL/2G/QpX+MRVdp eBQl8RDL/xbLLsC5+DYc0gkR6aHjZSAgnoO1FeYNj82gbgUEhJp+7j9ZP1A= -----END CERTIFICATE-----Generated at Sat Sep 9 00:50:17 2023 by rpki-client on console-ams.rpki-client.org