$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa File: 946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa (raw, json) Hash identifier: j5B8q4DCGVerh1lQjASWh6wfprxoQkQfGNw5bSxDNhI= Subject key identifier: BF:25:5B:61:FD:91:59:D2:54:80:89:64:5E:25:30:5A:23:D9:28:66 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3C74A7B37617B824EC036A72ABE8547D0DBD13B2 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:74:a7:b3:76:17:b8:24:ec:03:6a:72:ab:e8:54:7d:0d:bd:13:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=5547a55cda278079fa16500f487caeae2d62ea59af4c1a0b113062d3fe6a3db6, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:26:4f:c0:b0:fd:23:93:eb:fc:3f:0c:d2:c9: 92:95:29:13:69:51:79:dd:41:2d:8a:93:a4:8b:bb: 51:41:40:63:59:e0:a7:84:ca:43:66:da:cc:10:52: ae:bb:92:2b:a5:86:74:a1:d2:70:b2:8b:ab:a1:7f: 27:e5:9e:ab:3d:f2:55:63:90:43:f9:4e:f5:0f:be: 45:9e:25:fd:00:27:a0:f9:78:2a:ac:22:75:90:10: 25:b7:6a:90:95:e0:ce:aa:25:00:66:44:6c:15:d1: 6c:58:01:b1:31:8e:4d:05:8d:53:32:e3:5b:bc:5c: ab:70:00:27:8f:5c:41:8d:fd:5e:79:e2:ad:f8:03: 14:22:f5:15:93:5f:8a:7a:25:1a:4a:72:32:61:eb: e4:38:47:a4:9f:24:b8:0f:0d:f5:07:a0:cc:69:5b: 1b:ef:50:dc:c3:ab:1c:26:09:22:7a:ae:1b:cc:f1: 1f:c1:21:31:a2:e3:ae:f7:f8:58:98:a5:84:9d:f1: f2:f5:82:71:60:cf:a0:13:f0:41:f3:13:d5:d9:54: 19:0f:48:51:f0:2e:7b:64:a5:65:83:5a:76:8c:bb: cc:58:03:d0:59:81:a5:08:bd:37:35:5c:b2:01:b1: ef:3b:29:23:c9:6f:74:a7:19:09:99:19:78:5e:c4: 02:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:25:5B:61:FD:91:59:D2:54:80:89:64:5E:25:30:5A:23:D9:28:66 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.225.0/24 Signature Algorithm: sha256WithRSAEncryption 81:76:6f:9f:2a:4b:88:b3:eb:03:b0:a4:59:c8:5c:bc:27:85: ae:7d:4d:a6:ba:67:2e:a9:8c:9f:1a:13:91:86:c6:ce:29:5d: e3:16:06:7a:a5:dd:9f:17:fc:02:00:b5:2d:16:27:fe:12:90: fd:f3:36:13:85:49:b3:05:20:39:8d:a0:2e:94:4a:6c:c1:2c: 0e:f0:34:2f:26:4f:d7:c6:c3:3c:6d:0b:f4:a6:7c:0e:f3:67: 5c:75:e2:7b:71:8e:df:16:eb:3b:b7:97:ec:a3:be:ba:d2:52: 50:63:1f:47:83:85:bf:b5:f6:97:8b:87:2f:94:3a:9a:56:43: 47:5c:29:ce:77:db:71:3c:00:56:a0:ad:04:2c:e2:31:c1:a0: 83:21:9f:7a:12:62:82:4e:19:58:6d:10:a5:03:cc:b0:a9:9d: 02:7f:c2:b5:46:18:9f:b6:94:6a:52:ea:31:d3:12:de:e7:5f: ec:d5:b2:77:aa:d6:ca:6d:07:3a:db:51:56:3d:23:3b:17:f2: 04:a7:13:9f:25:a8:ba:31:51:2b:78:9f:40:9f:4c:b2:e6:ed: 0d:88:c3:45:87:05:45:28:29:60:ae:8b:ac:97:bd:47:be:9a: b0:c9:2b:eb:ab:ee:60:a8:a7:ec:bb:eb:2c:dc:ae:e7:d6:60: 10:f9:46:a2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPHSns3YXuCTsA2pyq+hUfQ29E7IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTQ3YTU1Y2RhMjc4MDc5ZmExNjUwMGY0ODdjYWVhZTJk NjJlYTU5YWY0YzFhMGIxMTMwNjJkM2ZlNmEzZGI2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJJk/AsP0jk+v8PwzSyZKVKRNpUXndQS2Kk6SLu1FBQGNZ 4KeEykNm2swQUq67kiulhnSh0nCyi6uhfyflnqs98lVjkEP5TvUPvkWeJf0AJ6D5 eCqsInWQECW3apCV4M6qJQBmRGwV0WxYAbExjk0FjVMy41u8XKtwACePXEGN/V55 4q34AxQi9RWTX4p6JRpKcjJh6+Q4R6SfJLgPDfUHoMxpWxvvUNzDqxwmCSJ6rhvM 8R/BITGi4673+FiYpYSd8fL1gnFgz6AT8EHzE9XZVBkPSFHwLntkpWWDWnaMu8xY A9BZgaUIvTc1XLIBse87KSPJb3SnGQmZGXhexAJJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvyVbYf2RWdJUgIlkXiUwWiPZKGYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk0NmFlYzBhLWRkZGYtNDlhYi1iNWJmLWVjNzI4MWViMWU3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++EwDQYJKoZIhvcNAQELBQADggEBAIF2b58qS4iz6wOwpFnIXLwnha59 Taa6Zy6pjJ8aE5GGxs4pXeMWBnql3Z8X/AIAtS0WJ/4SkP3zNhOFSbMFIDmNoC6U SmzBLA7wNC8mT9fGwzxtC/SmfA7zZ1x14ntxjt8W6zu3l+yjvrrSUlBjH0eDhb+1 9peLhy+UOppWQ0dcKc5323E8AFagrQQs4jHBoIMhn3oSYoJOGVhtEKUDzLCpnQJ/ wrVGGJ+2lGpS6jHTEt7nX+zVsneq1sptBzrbUVY9IzsX8gSnE58lqLoxUSt4n0Cf TLLm7Q2Iw0WHBUUoKWCui6yXvUe+mrDJK+ur7mCop+y76yzcrufWYBD5RqI= -----END CERTIFICATE-----Generated at Sat Sep 9 00:20:01 2023 by rpki-client on console-ams.rpki-client.org