$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa File: 951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa (raw, json) Hash identifier: PHB63xzV2QUoQpczY90qE0SJPXtE31AyjUpn7bRIZJc= Subject key identifier: 8B:06:63:2C:22:46:1F:1C:AF:18:0B:57:33:90:7C:2D:03:E3:91:36 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 48FA985883F18206A3557355A5759AD871C84A8E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:fa:98:58:83:f1:82:06:a3:55:73:55:a5:75:9a:d8:71:c8:4a:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=121ef9b0d2a0038ba20047c905a4ad2f869f282a37c4c1a8f55b13a840a76b3d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0b:0d:da:a9:e2:8a:97:56:90:32:74:d4:8a: 2d:dc:05:33:60:2c:ba:b9:73:62:d9:5d:04:47:c2: ad:a9:34:11:f1:09:5a:1e:55:e1:5a:6d:6c:13:53: bb:14:95:62:ae:c6:c2:7e:10:00:e4:42:f4:3f:0f: 66:d5:7f:55:4a:83:91:77:e5:3a:96:0c:bf:ee:0a: 21:6d:65:24:6e:af:66:c8:6a:65:1d:c1:80:54:9c: 34:b0:18:fb:c7:df:18:2c:56:70:71:5c:88:db:28: 2b:4c:7d:f7:aa:af:ca:98:b5:41:52:38:4b:9e:d2: 7f:0f:bb:a1:aa:e0:6f:66:37:0a:f1:ca:8b:91:2d: 2f:57:ef:b0:8b:f3:3d:d0:23:a8:53:47:d2:4b:97: d8:31:b8:c2:14:37:c2:18:94:5a:91:b7:93:c4:68: cd:32:89:6b:9e:a3:ed:36:c6:41:77:20:6d:de:d4: 4f:c6:b7:42:c4:49:df:84:e3:d8:67:27:1f:da:c3: f8:80:75:1e:6f:53:cb:ec:ab:a8:de:ca:0e:88:5e: 44:fa:50:1e:67:70:a0:d2:f8:75:30:df:a4:a1:1c: 26:4b:ea:d1:7e:f5:a6:0d:c3:61:9e:53:0f:d4:b7: 1d:b8:69:5d:8e:8f:52:a2:77:da:c8:90:b9:74:c5: ce:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:06:63:2C:22:46:1F:1C:AF:18:0B:57:33:90:7C:2D:03:E3:91:36 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.218.0/23 Signature Algorithm: sha256WithRSAEncryption 59:2c:35:df:98:59:91:ca:95:f2:78:13:17:db:16:f1:9f:36: b4:3e:9c:4d:a5:ae:84:35:56:87:d0:ce:c0:35:ce:ca:51:f4: 00:a4:b0:4a:2e:e1:60:87:4f:99:30:05:9e:de:5b:16:bb:fb: 05:cd:33:ef:7b:7c:4a:a8:eb:c4:63:3c:13:c0:1f:fb:4e:8c: e5:71:3c:ea:d9:2a:06:c9:92:80:94:7b:27:b0:cb:03:93:e7: 18:56:de:c2:a7:1c:4b:39:b3:06:d5:b3:5f:c4:15:f1:d1:7f: 29:d7:05:bf:67:9c:47:e6:26:e8:7d:9d:be:e4:fc:bf:34:6f: e5:2b:46:19:9e:49:1b:29:a8:ab:99:17:8f:35:9e:39:e2:83: 86:97:91:94:a6:40:d3:e3:d2:ea:73:75:e7:09:db:96:f2:1d: f3:69:59:74:37:b1:da:da:3b:00:80:d5:50:0b:86:72:1d:e2: 4a:68:22:96:f0:fc:6a:0a:f0:11:5f:db:8e:a4:7c:1d:a8:8d: 83:a6:86:61:c6:1d:22:09:c2:c2:cb:7e:05:89:65:85:a0:f5: d0:69:f6:b3:9e:db:19:8c:38:93:67:6b:c0:f5:6a:17:c8:42: 32:73:d5:8b:90:84:93:7d:78:fc:43:24:c3:f3:5e:7d:1f:ae: e9:4c:20:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSPqYWIPxggajVXNVpXWa2HHISo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjFlZjliMGQyYTAwMzhiYTIwMDQ3YzkwNWE0YWQyZjg2 OWYyODJhMzdjNGMxYThmNTViMTNhODQwYTc2YjNkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9Cw3aqeKKl1aQMnTUii3cBTNgLLq5c2LZXQRHwq2pNBHx CVoeVeFabWwTU7sUlWKuxsJ+EADkQvQ/D2bVf1VKg5F35TqWDL/uCiFtZSRur2bI amUdwYBUnDSwGPvH3xgsVnBxXIjbKCtMffeqr8qYtUFSOEue0n8Pu6Gq4G9mNwrx youRLS9X77CL8z3QI6hTR9JLl9gxuMIUN8IYlFqRt5PEaM0yiWueo+02xkF3IG3e 1E/Gt0LESd+E49hnJx/aw/iAdR5vU8vsq6jeyg6IXkT6UB5ncKDS+HUw36ShHCZL 6tF+9aYNw2GeUw/Utx24aV2Oj1Kid9rIkLl0xc69AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiwZjLCJGHxyvGAtXM5B8LQPjkTYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk1MWI2NmYwLTg5OTMtNDdkMi05YmY1LWU4NWY0YWQ1ZTMyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+dowDQYJKoZIhvcNAQELBQADggEBAFksNd+YWZHKlfJ4ExfbFvGfNrQ+ nE2lroQ1VofQzsA1zspR9ACksEou4WCHT5kwBZ7eWxa7+wXNM+97fEqo68RjPBPA H/tOjOVxPOrZKgbJkoCUeyewywOT5xhW3sKnHEs5swbVs1/EFfHRfynXBb9nnEfm Juh9nb7k/L80b+UrRhmeSRspqKuZF481njnig4aXkZSmQNPj0upzdecJ25byHfNp WXQ3sdraOwCA1VALhnId4kpoIpbw/GoK8BFf246kfB2ojYOmhmHGHSIJwsLLfgWJ ZYWg9dBp9rOe2xmMOJNna8D1ahfIQjJz1YuQhJN9ePxDJMPzXn0frulMIEw= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:21 2024 by rpki-client on console-fra.rpki-client.org