$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a11252a-2e01-45b8-9435-cfe1354f76d6.roa File: 8a11252a-2e01-45b8-9435-cfe1354f76d6.roa (raw, json) Hash identifier: 6tBqLyD0OBJ5HCW0hTTMLihl0Q7shiCE1JO3Y0mREIs= Subject key identifier: D9:D6:71:36:31:B8:DC:60:B3:70:58:68:78:1C:33:68:3D:0D:18:16 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 460396939BD39499263A67BE2CFB370B0CB7A615 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a11252a-2e01-45b8-9435-cfe1354f76d6.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:03:96:93:9b:d3:94:99:26:3a:67:be:2c:fb:37:0b:0c:b7:a6:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=61b0bf227b182167a711253daef68f852cd486c9b9da8779c1affcedd82119cd, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:99:bb:6e:43:8e:df:c0:a3:73:59:fc:ad:1c: 50:29:ae:be:fe:c4:8c:8e:71:ab:3d:d0:51:6f:b4: 8a:e3:56:09:5b:f3:1b:97:fb:8c:13:0d:c8:ff:3b: ee:f1:ab:f7:1b:cf:c1:2a:8f:17:44:e2:66:33:c0: 5b:2f:b7:05:04:77:63:e5:88:c0:bc:2e:b8:be:f5: 21:61:5a:e3:16:79:af:29:12:05:09:5b:0a:74:fb: 94:8a:9f:b2:57:57:4a:60:93:48:85:05:5e:83:f7: 45:6e:6e:a7:8e:09:97:73:03:7b:97:b1:68:db:35: 2f:a0:f7:4a:13:70:f7:18:6c:e9:28:70:5f:28:e8: 66:82:10:0a:ec:81:14:f2:e2:80:be:8c:74:9f:d8: 75:53:76:c6:41:ae:fa:8f:12:91:97:8b:a6:d2:48: 6c:d6:c7:0c:13:5e:c5:63:08:f7:54:5f:ba:b9:15: d4:03:00:41:b4:95:57:22:f9:aa:9c:43:23:3d:47: 5a:4a:3d:d4:4c:b9:58:ff:f2:f7:69:ba:81:54:b5: 41:25:fc:35:46:40:42:fe:a5:8c:b8:31:c4:13:85: 38:b4:e4:b4:1f:2e:de:ea:90:1c:ec:06:e5:b2:6f: 86:36:28:a5:ac:a7:58:ec:32:d3:f3:dc:1e:1e:01: 9b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D6:71:36:31:B8:DC:60:B3:70:58:68:78:1C:33:68:3D:0D:18:16 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a11252a-2e01-45b8-9435-cfe1354f76d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.210.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:59:90:81:61:0c:a7:57:ea:bd:5b:ba:c2:28:34:33:0a:c8: fc:7e:6a:59:08:45:11:24:81:78:9c:ba:b9:47:c0:38:a8:3b: 73:86:ad:e0:22:93:24:00:08:53:4b:24:88:9d:41:39:2c:ad: da:9c:df:62:97:87:60:3c:e6:7b:da:9f:da:37:ae:e8:4d:8c: 2c:3f:24:77:e9:0f:1d:73:7b:85:43:08:df:c3:3b:2b:48:2b: 54:89:fa:31:d4:96:8c:62:8e:76:d1:07:4a:2c:19:71:ad:99: 18:3d:36:1a:e5:0d:12:40:f7:27:52:cc:d8:fc:1b:45:83:b2: ca:e8:14:6a:34:4f:b7:ad:69:8d:75:c2:d3:67:13:1d:b9:32: ca:8a:f2:fa:49:ab:b7:45:3f:fb:49:9c:f7:26:7d:6f:62:7b: 41:01:b1:2f:4b:b0:d9:3e:34:83:cb:70:77:43:ee:66:72:4c: 90:2e:59:27:fb:16:84:b5:5e:8a:4d:63:9a:f5:2c:bc:95:0e: 30:68:db:07:5f:d2:ff:38:c1:a8:33:c5:94:5e:e4:45:cc:a9: 01:23:2a:30:9b:8d:78:3d:57:ad:87:4c:5e:b3:f9:83:1e:8b: 05:41:d6:f5:e5:97:d3:15:7c:68:ce:25:52:75:0d:50:f1:49: ec:fc:9a:67 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURgOWk5vTlJkmOme+LPs3Cwy3phUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWIwYmYyMjdiMTgyMTY3YTcxMTI1M2RhZWY2OGY4NTJj ZDQ4NmM5YjlkYTg3NzljMWFmZmNlZGQ4MjExOWNkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqmbtuQ47fwKNzWfytHFAprr7+xIyOcas90FFvtIrjVglb 8xuX+4wTDcj/O+7xq/cbz8EqjxdE4mYzwFsvtwUEd2PliMC8Lri+9SFhWuMWea8p EgUJWwp0+5SKn7JXV0pgk0iFBV6D90VubqeOCZdzA3uXsWjbNS+g90oTcPcYbOko cF8o6GaCEArsgRTy4oC+jHSf2HVTdsZBrvqPEpGXi6bSSGzWxwwTXsVjCPdUX7q5 FdQDAEG0lVci+aqcQyM9R1pKPdRMuVj/8vdpuoFUtUEl/DVGQEL+pYy4McQThTi0 5LQfLt7qkBzsBuWyb4Y2KKWsp1jsMtPz3B4eAZuFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2dZxNjG43GCzcFhoeBwzaD0NGBYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzhhMTEyNTJhLTJlMDEtNDViOC05NDM1LWNmZTEzNTRmNzZkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+dIwDQYJKoZIhvcNAQELBQADggEBADpZkIFhDKdX6r1busIoNDMKyPx+ alkIRREkgXicurlHwDioO3OGreAikyQACFNLJIidQTksrdqc32KXh2A85nvan9o3 ruhNjCw/JHfpDx1ze4VDCN/DOytIK1SJ+jHUloxijnbRB0osGXGtmRg9NhrlDRJA 9ydSzNj8G0WDssroFGo0T7etaY11wtNnEx25MsqK8vpJq7dFP/tJnPcmfW9ie0EB sS9LsNk+NIPLcHdD7mZyTJAuWSf7FoS1XopNY5r1LLyVDjBo2wdf0v84wagzxZRe 5EXMqQEjKjCbjXg9V62HTF6z+YMeiwVB1vXll9MVfGjOJVJ1DVDxSez8mmc= -----END CERTIFICATE-----Generated at Thu Nov 21 17:28:40 2024 by rpki-client on console-fra.rpki-client.org