$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa File: 8621c38c-da14-4436-8fad-6252da797f1a.roa (raw, json) Hash identifier: 4owEI8u31v6g7VnfP/VfNnOU9QUbL1cVLLuHfRy62SA= Subject key identifier: 06:77:1E:B4:94:41:5F:AF:B3:71:34:3A:31:76:69:81:6C:BE:AE:EA Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1F51F922B126FAAB1AF7EC38D634A89315A33E1B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:51:f9:22:b1:26:fa:ab:1a:f7:ec:38:d6:34:a8:93:15:a3:3e:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=2d8c719eeafff5d50ec998c26729af12636b6b58538e674d5e6c833a1759112b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:cd:a5:08:84:77:24:4f:0a:1b:a5:15:82:c5: b4:b0:31:ed:9f:2e:87:63:1f:16:13:3e:87:b7:bd: 8d:53:30:1e:e9:dc:5c:7e:7a:af:b5:2d:8a:e1:ba: 39:69:e3:13:2f:d3:56:69:aa:3c:9f:7d:09:69:a9: 79:2c:ab:39:ff:24:8d:c3:1d:dd:3f:99:d2:01:e3: 57:9e:7d:71:3a:51:cd:8b:5d:2d:78:8f:6f:72:65: 24:6b:f7:69:13:cd:34:1b:62:b6:8c:91:16:18:2f: 6c:73:bf:d1:86:d9:ac:70:0d:8e:6d:e6:05:83:ba: 98:d6:e4:a3:65:7c:eb:06:c6:9e:d2:e5:93:f9:02: e6:f5:7b:f9:84:67:de:1a:7c:b0:70:87:4e:bf:c2: b4:d1:b9:cd:d9:43:ee:93:13:de:58:40:c7:06:c7: ac:ea:3a:e1:a2:fb:ea:86:a4:d1:59:5b:12:e5:ed: 32:0d:c6:3e:3d:00:67:3a:e3:17:32:cc:8c:15:b8: a8:4a:61:80:0d:13:1e:b4:80:fa:9e:19:f3:ce:31: 58:8b:2e:4a:b4:77:ae:81:54:a2:5b:f6:46:42:c9: 0b:95:d4:a5:62:42:31:d8:83:e1:2d:d7:b2:b8:7d: c3:a0:c3:cd:39:d0:ed:bc:8f:16:56:d3:e2:4a:99: ac:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:77:1E:B4:94:41:5F:AF:B3:71:34:3A:31:76:69:81:6C:BE:AE:EA X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.222.0/24 Signature Algorithm: sha256WithRSAEncryption 72:dd:3e:15:bc:16:8d:1e:52:ba:cc:54:87:0a:5d:a5:bb:fa: c9:8d:b8:80:50:3c:2f:b6:37:c4:e0:fb:7a:74:74:9d:4c:a2: 2a:2b:c7:fe:b3:81:48:59:4c:d3:8b:02:9e:06:1a:dc:03:96: 1d:3e:eb:8f:11:2b:c2:b6:f7:9a:8c:82:d6:50:a8:3c:db:d6: b7:ea:cd:11:91:34:df:a4:5d:ca:87:c6:15:a2:f2:58:b7:61: 19:5e:35:5d:64:47:a8:c0:56:18:cf:65:da:26:18:34:6e:63: a3:7d:c5:5e:26:da:93:48:57:91:cb:0e:02:7c:0d:6a:20:b0: a5:ed:f7:5e:b8:a9:21:1a:84:47:73:58:fd:9c:bd:b7:4a:9d: af:8b:0f:84:e1:9d:0b:ea:6b:f4:50:ee:0d:44:bd:74:fb:a3: 96:bc:84:87:d3:68:62:ba:09:f4:c6:d0:92:4f:2f:ea:12:2a: 1e:0f:40:d4:3a:9d:b6:75:d5:5f:65:a5:b9:8a:ea:7f:e8:2f: f7:26:30:7a:62:1e:9c:28:88:d3:3a:16:b2:fe:1f:46:fb:db: 67:a9:5c:a0:83:e2:d7:1d:9f:94:6b:10:1a:e8:db:96:dc:74: 73:a1:5b:a9:21:a8:15:b0:9e:2b:4f:1c:bd:fb:3d:08:78:dc: 07:4a:7e:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH1H5IrEm+qsa9+w41jSokxWjPhswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDhjNzE5ZWVhZmZmNWQ1MGVjOTk4YzI2NzI5YWYxMjYz NmI2YjU4NTM4ZTY3NGQ1ZTZjODMzYTE3NTkxMTJiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD7zaUIhHckTwobpRWCxbSwMe2fLodjHxYTPoe3vY1TMB7p 3Fx+eq+1LYrhujlp4xMv01ZpqjyffQlpqXksqzn/JI3DHd0/mdIB41eefXE6Uc2L XS14j29yZSRr92kTzTQbYraMkRYYL2xzv9GG2axwDY5t5gWDupjW5KNlfOsGxp7S 5ZP5Aub1e/mEZ94afLBwh06/wrTRuc3ZQ+6TE95YQMcGx6zqOuGi++qGpNFZWxLl 7TINxj49AGc64xcyzIwVuKhKYYANEx60gPqeGfPOMViLLkq0d66BVKJb9kZCyQuV 1KViQjHYg+Et17K4fcOgw8050O28jxZW0+JKmawTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBncetJRBX6+zcTQ6MXZpgWy+ruowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg2MjFjMzhjLWRhMTQtNDQzNi04ZmFkLTYyNTJkYTc5N2YxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d4wDQYJKoZIhvcNAQELBQADggEBAHLdPhW8Fo0eUrrMVIcKXaW7+smN uIBQPC+2N8Tg+3p0dJ1Moiorx/6zgUhZTNOLAp4GGtwDlh0+648RK8K295qMgtZQ qDzb1rfqzRGRNN+kXcqHxhWi8li3YRleNV1kR6jAVhjPZdomGDRuY6N9xV4m2pNI V5HLDgJ8DWogsKXt9164qSEahEdzWP2cvbdKna+LD4ThnQvqa/RQ7g1EvXT7o5a8 hIfTaGK6CfTG0JJPL+oSKh4PQNQ6nbZ11V9lpbmK6n/oL/cmMHpiHpwoiNM6FrL+ H0b722epXKCD4tcdn5RrEBro25bcdHOhW6khqBWwnitPHL37PQh43AdKfgk= -----END CERTIFICATE-----Generated at Sat Sep 9 00:50:17 2023 by rpki-client on console-ams.rpki-client.org