$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa File: 8a554833-7334-4e02-8426-138572f3d41a.roa (raw, json) Hash identifier: xA/fhlB3OM5yJOjcusrWZzRfH5uBRkzTGiCCGZtxRyw= Subject key identifier: 56:11:62:0B:B7:A2:E9:72:CA:BB:DC:0B:42:A3:E7:59:6E:19:00:5C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5DE02835DDB75171239557F3CE453ABDE1EBE9EF Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:e0:28:35:dd:b7:51:71:23:95:57:f3:ce:45:3a:bd:e1:eb:e9:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=598880530d3e99520f7621fe3a451a30adf9e3324cbd128241c3f825ac2e3263, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:01:79:03:cc:85:f7:de:57:22:33:3e:27:ff: a0:51:89:63:29:82:d3:4c:9f:ab:76:3a:17:95:2a: be:52:1d:72:82:78:6c:85:aa:3a:11:0b:a4:fc:8f: 14:72:db:01:4e:c5:87:86:41:f9:5d:65:e8:ed:06: 3b:00:e8:3e:74:d3:96:ec:29:9d:b1:78:dc:02:e2: 41:65:40:f1:cb:b4:6b:7b:19:ab:e4:df:ff:d9:30: 4e:0f:bb:1d:d6:88:a1:1e:1a:aa:6e:8b:37:9c:73: c0:f4:5b:6b:3b:8c:f0:e0:b8:c0:e2:a4:f0:e0:e5: 18:4d:cc:c9:e6:fa:41:a0:92:cd:c8:97:0a:6f:ba: b2:41:92:b5:83:82:72:55:66:8c:08:40:2b:5f:c8: c3:8f:ca:94:fa:cf:86:e0:40:e9:80:59:9d:53:3a: e4:cf:7b:1c:22:1a:5c:4d:19:f3:0a:a2:ac:52:b2: 6b:fd:42:ad:f9:58:18:b3:1f:72:27:e9:3b:bb:1b: 5d:27:37:15:e9:8e:40:09:c9:48:cf:d9:36:65:73: ae:f8:18:b8:07:0a:ec:5a:b8:bf:5c:64:e5:9e:0a: 92:3c:5d:ea:4f:ad:f1:d1:7b:12:41:8a:3f:56:6d: 5f:83:04:92:a7:52:83:cb:ee:ef:ac:3f:7b:6a:38: 11:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:11:62:0B:B7:A2:E9:72:CA:BB:DC:0B:42:A3:E7:59:6E:19:00:5C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.217.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:22:5e:e9:1c:08:e8:5d:80:86:ac:ea:81:a3:4b:22:7c:ad: d4:3e:54:a2:04:d7:76:e6:37:dc:c6:6d:a8:8b:52:43:f9:50: 30:df:21:5c:62:a0:d5:59:45:5c:20:37:c4:e3:32:af:ec:b6: d1:81:6a:4e:1a:03:08:2f:55:fa:42:ea:a0:e8:6c:7c:77:cb: d4:89:ff:a1:b8:05:81:39:2f:16:55:4c:85:0c:c0:26:9d:be: ee:23:8e:7c:43:f4:36:8d:d5:51:42:e7:b2:83:eb:9a:47:d1: 06:65:9b:e3:b5:56:9d:1f:0e:a7:67:50:49:1f:c6:f9:45:81: d5:6c:73:b0:80:df:73:09:73:1f:6b:85:d7:53:69:ad:e0:5b: 5c:3c:50:64:01:12:f7:5b:99:10:be:a5:38:e6:f1:e1:22:52: 53:9e:37:66:81:af:62:11:67:25:54:5a:d9:29:b3:7a:9e:d0: 1a:3d:97:bc:2e:f5:70:1e:6d:84:7c:1e:b0:61:aa:03:ea:a0: 39:8e:ec:24:71:69:f8:85:49:ad:ca:f2:2f:ce:7a:2a:a4:72: 1e:03:d3:b7:d4:ef:b7:9b:cb:39:72:c6:49:bc:1f:33:b1:78: 1f:b3:5d:55:48:85:a8:3b:26:f4:3a:07:c3:b8:85:50:98:ce: 1f:86:8f:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXeAoNd23UXEjlVfzzkU6veHr6e8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTg4ODA1MzBkM2U5OTUyMGY3NjIxZmUzYTQ1MWEzMGFk ZjllMzMyNGNiZDEyODI0MWMzZjgyNWFjMmUzMjYzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjAXkDzIX33lciMz4n/6BRiWMpgtNMn6t2OheVKr5SHXKC eGyFqjoRC6T8jxRy2wFOxYeGQfldZejtBjsA6D5005bsKZ2xeNwC4kFlQPHLtGt7 Gavk3//ZME4Pux3WiKEeGqpuizecc8D0W2s7jPDguMDipPDg5RhNzMnm+kGgks3I lwpvurJBkrWDgnJVZowIQCtfyMOPypT6z4bgQOmAWZ1TOuTPexwiGlxNGfMKoqxS smv9Qq35WBizH3In6Tu7G10nNxXpjkAJyUjP2TZlc674GLgHCuxauL9cZOWeCpI8 XepPrfHRexJBij9WbV+DBJKnUoPL7u+sP3tqOBGzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVhFiC7ei6XLKu9wLQqPnWW4ZAFwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzhhNTU0ODMzLTczMzQtNGUwMi04NDI2LTEzODU3MmYzZDQxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dkwDQYJKoZIhvcNAQELBQADggEBAE0iXukcCOhdgIas6oGjSyJ8rdQ+ VKIE13bmN9zGbaiLUkP5UDDfIVxioNVZRVwgN8TjMq/sttGBak4aAwgvVfpC6qDo bHx3y9SJ/6G4BYE5LxZVTIUMwCadvu4jjnxD9DaN1VFC57KD65pH0QZlm+O1Vp0f DqdnUEkfxvlFgdVsc7CA33MJcx9rhddTaa3gW1w8UGQBEvdbmRC+pTjm8eEiUlOe N2aBr2IRZyVUWtkps3qe0Bo9l7wu9XAebYR8HrBhqgPqoDmO7CRxafiFSa3K8i/O eiqkch4D07fU77ebyzlyxkm8HzOxeB+zXVVIhag7JvQ6B8O4hVCYzh+Gj+Y= -----END CERTIFICATE-----Generated at Thu Nov 21 18:50:38 2024 by rpki-client on console-ams.rpki-client.org