$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa File: 951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa (raw, json) Hash identifier: 0R65YDQIZcllkhSfC4Oa2ykENhEr7RGiyQXKXXrH1Ic= Subject key identifier: BD:29:31:62:9F:E2:53:F3:24:03:DC:7E:A7:37:14:45:0B:BB:F4:22 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5EABC130198B38D29DEAA655E92A062FC3F066B0 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ab:c1:30:19:8b:38:d2:9d:ea:a6:55:e9:2a:06:2f:c3:f0:66:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=166883d1aee1cce79bbe99f5c8181529235c5e90c8d61b40e46e86a397444cb9, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:c7:78:6f:6f:68:fd:50:69:df:97:ef:05:60: 86:a8:12:c5:c2:37:5c:9a:ab:dc:fe:1b:d8:61:6d: c9:45:49:99:12:35:97:77:d9:a5:2f:3b:78:e0:5b: e8:a2:31:a3:f2:50:46:97:6c:0b:73:13:83:37:c9: 78:ff:71:f6:de:03:eb:8b:31:94:c4:4a:dc:7f:7f: 06:e1:02:de:5c:e3:41:ae:fa:85:26:be:55:a8:39: cb:74:68:66:9c:e3:4c:9d:35:af:1d:34:75:58:12: cb:44:67:e1:af:de:5a:7a:4d:5a:e3:b3:fa:2f:69: 7c:19:c8:29:c5:70:10:20:78:92:db:da:d3:8a:1b: 9b:3a:ca:e6:9e:f1:f8:4c:34:a1:99:cb:5d:a9:7f: b4:a4:9b:38:9f:ac:e3:27:31:79:29:5e:3f:17:f2: 82:ec:b1:65:5e:0a:fe:ff:eb:b0:0b:96:56:a5:ef: 22:cf:76:5c:aa:bc:fe:b2:a2:9f:4a:5c:74:d1:41: 5a:f7:27:a5:64:59:f0:36:8b:b8:12:95:cc:6c:37: b6:fe:f4:8e:32:c5:cc:7a:f7:97:03:bf:7b:85:89: 9c:90:13:b4:17:d2:99:1d:1c:1c:cc:75:48:64:43: 2c:e3:c8:28:b4:cf:5b:2b:03:96:13:62:50:45:6c: 2e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:29:31:62:9F:E2:53:F3:24:03:DC:7E:A7:37:14:45:0B:BB:F4:22 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.218.0/23 Signature Algorithm: sha256WithRSAEncryption 39:93:fb:f9:31:95:ca:97:ef:82:a1:e8:20:f5:46:0b:7a:2c: 7f:0c:d2:cd:a3:d6:d0:77:58:dd:31:3c:15:5d:bc:2d:47:00: 31:b8:2f:e2:c2:94:7d:fb:ba:e6:e5:4c:54:55:45:67:9b:ec: bc:d1:77:a7:d2:9c:be:c8:c3:9e:ec:06:f9:4f:45:17:66:60: 0e:e7:fe:43:8a:a6:a4:af:6a:55:67:72:d8:4f:7a:a3:c4:0d: 5b:1c:d1:d8:94:b0:d2:e8:b0:ee:6b:39:bb:08:81:5c:e2:a0: 7a:62:95:a0:ed:cb:b3:ef:cb:75:3d:8d:ca:be:1c:5f:1b:62: b6:98:f3:af:12:cb:c6:23:7c:b7:66:90:ed:bc:37:54:9e:ac: 49:8d:e6:62:79:40:0a:bc:48:7b:c7:2b:80:f7:5e:4a:d0:2d: 96:1c:0c:15:d3:f6:e5:9e:71:07:a1:53:90:9b:5b:bd:7c:0c: 12:1c:ea:16:7b:97:8c:bd:a9:cc:27:4e:ee:6e:96:70:ee:a0: 4f:7f:6a:82:f5:3f:61:2a:c3:24:a3:c3:84:30:ce:a4:a3:66: 19:3e:3f:97:6d:98:86:c3:1b:2f:b7:c4:fe:bd:9c:9c:fe:6d: c8:11:4b:c6:d5:5b:ca:a4:90:96:7f:85:65:fb:d7:8e:81:86: 12:4d:20:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXqvBMBmLONKd6qZV6SoGL8PwZrAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjY4ODNkMWFlZTFjY2U3OWJiZTk5ZjVjODE4MTUyOTIz NWM1ZTkwYzhkNjFiNDBlNDZlODZhMzk3NDQ0Y2I5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtx3hvb2j9UGnfl+8FYIaoEsXCN1yaq9z+G9hhbclFSZkS NZd32aUvO3jgW+iiMaPyUEaXbAtzE4M3yXj/cfbeA+uLMZTEStx/fwbhAt5c40Gu +oUmvlWoOct0aGac40ydNa8dNHVYEstEZ+Gv3lp6TVrjs/ovaXwZyCnFcBAgeJLb 2tOKG5s6yuae8fhMNKGZy12pf7SkmzifrOMnMXkpXj8X8oLssWVeCv7/67ALllal 7yLPdlyqvP6yop9KXHTRQVr3J6VkWfA2i7gSlcxsN7b+9I4yxcx695cDv3uFiZyQ E7QX0pkdHBzMdUhkQyzjyCi0z1srA5YTYlBFbC4rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvSkxYp/iU/MkA9x+pzcURQu79CIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk1MWI2NmYwLTg5OTMtNDdkMi05YmY1LWU4NWY0YWQ1ZTMyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+dowDQYJKoZIhvcNAQELBQADggEBADmT+/kxlcqX74Kh6CD1Rgt6LH8M 0s2j1tB3WN0xPBVdvC1HADG4L+LClH37uublTFRVRWeb7LzRd6fSnL7Iw57sBvlP RRdmYA7n/kOKpqSvalVncthPeqPEDVsc0diUsNLosO5rObsIgVzioHpilaDty7Pv y3U9jcq+HF8bYraY868Sy8YjfLdmkO28N1SerEmN5mJ5QAq8SHvHK4D3XkrQLZYc DBXT9uWecQehU5CbW718DBIc6hZ7l4y9qcwnTu5ulnDuoE9/aoL1P2EqwySjw4Qw zqSjZhk+P5dtmIbDGy+3xP69nJz+bcgRS8bVW8qkkJZ/hWX7146BhhJNIEI= -----END CERTIFICATE-----Generated at Fri Apr 26 08:26:19 2024 by rpki-client on console-ams.rpki-client.org