$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/99e36b6b-0208-44a2-a5f3-df3bd254fcda.roa File: 99e36b6b-0208-44a2-a5f3-df3bd254fcda.roa (raw, json) Hash identifier: je4m0sKb762yET41J8HiaEi5lHqDd0tHHci6swHI+i0= Subject key identifier: B8:50:B0:37:90:F7:97:DF:B6:B1:98:C6:40:80:7B:53:F6:1A:CB:16 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 06368AFFAAED3C25F85A2F99636B08A7F14B5715 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/99e36b6b-0208-44a2-a5f3-df3bd254fcda.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:36:8a:ff:aa:ed:3c:25:f8:5a:2f:99:63:6b:08:a7:f1:4b:57:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=979c6a272499797605cc7801daf1a7642037147743131a399d620e9b422b24fc, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:20:bf:28:9d:11:63:0b:e7:23:9e:46:ae:a1: 54:22:ba:c9:47:43:9b:39:ab:be:7f:8a:1e:80:c8: d0:78:1c:67:36:81:3f:04:7a:8e:2a:d5:1a:5e:a2: 25:20:f4:66:1d:cf:66:56:2f:01:be:bb:90:f9:a3: 00:40:fe:a8:3a:09:f2:0a:3e:40:9a:66:18:e9:01: 78:3f:08:89:fa:c6:86:e7:de:10:4a:9b:e9:db:7b: ba:f6:c8:59:cc:fe:98:90:1a:80:34:be:0e:21:7c: a2:b7:cc:bc:b8:9b:d0:15:24:ee:97:3b:3c:fa:b8: 8c:4b:96:33:03:b7:53:d5:cf:37:6c:59:0f:22:81: 32:9e:7d:bb:31:18:80:72:70:3b:4e:f9:d9:06:f2: 17:d4:3c:33:f3:01:b6:a6:70:e8:96:13:6c:49:c4: ec:a3:68:c8:41:b3:c5:22:95:d4:2e:65:7f:a3:1a: ba:c6:66:3e:e2:a1:3f:7b:e3:6f:61:73:61:29:1b: cc:77:61:21:56:32:4e:83:49:ca:5b:1b:88:7f:1b: 1b:01:e4:b6:ed:14:e4:d0:d2:26:f1:22:a0:9a:47: 8b:e9:98:66:61:fc:88:5b:57:fc:85:62:f4:88:0f: 0f:33:41:a3:95:a7:1b:6f:8f:e4:dc:5d:1e:a5:04: ef:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:50:B0:37:90:F7:97:DF:B6:B1:98:C6:40:80:7B:53:F6:1A:CB:16 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/99e36b6b-0208-44a2-a5f3-df3bd254fcda.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.184.0/24 Signature Algorithm: sha256WithRSAEncryption 51:0f:28:8b:e9:ab:b1:7a:79:7d:e9:d3:e3:8e:19:9f:f8:8f: a5:a5:22:d4:5d:cb:96:c8:91:cd:bc:57:f8:cc:b9:7e:1a:63: f9:85:e7:c3:5e:c2:ea:79:02:34:15:03:81:8a:d3:5f:4a:a0: bb:fe:3c:2d:9d:d3:b2:e9:42:f7:57:ca:a8:7f:0d:e0:a9:23: 2b:75:4f:f3:38:c2:5b:4c:2f:43:3b:57:6e:64:b3:f3:18:0a: 30:f7:2d:68:5e:30:97:f6:bd:23:2e:ea:5d:5d:58:1a:56:bb: 0f:47:dd:90:eb:9b:17:bc:a0:4b:89:d7:8a:13:cc:8c:90:5f: 89:c6:05:52:f2:47:67:b7:59:59:b5:c7:9e:80:de:9a:18:24: f9:f6:30:d6:8a:d2:42:e7:b9:ad:c2:f0:ab:35:73:86:12:6c: 60:a3:c3:ab:65:aa:99:58:bb:d6:93:77:8b:8c:63:22:59:83: 1f:67:01:eb:9a:54:36:5d:7d:a1:93:c0:26:6b:89:be:ab:b9: 02:c9:9c:a9:6a:73:11:8e:50:ab:8f:bf:6f:e8:d6:ac:81:8f: db:7e:87:9c:32:ea:d9:17:d0:a6:ac:82:e1:cf:25:ab:5a:a2: db:60:fe:66:3d:a3:f3:35:90:88:00:be:ed:f0:e6:77:fe:c5: f1:2d:0e:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBjaK/6rtPCX4Wi+ZY2sIp/FLVxUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzljNmEyNzI0OTk3OTc2MDVjYzc4MDFkYWYxYTc2NDIw MzcxNDc3NDMxMzFhMzk5ZDYyMGU5YjQyMmIyNGZjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTIL8onRFjC+cjnkauoVQiuslHQ5s5q75/ih6AyNB4HGc2 gT8Eeo4q1RpeoiUg9GYdz2ZWLwG+u5D5owBA/qg6CfIKPkCaZhjpAXg/CIn6xobn 3hBKm+nbe7r2yFnM/piQGoA0vg4hfKK3zLy4m9AVJO6XOzz6uIxLljMDt1PVzzds WQ8igTKefbsxGIBycDtO+dkG8hfUPDPzAbamcOiWE2xJxOyjaMhBs8UildQuZX+j GrrGZj7ioT97429hc2EpG8x3YSFWMk6DScpbG4h/GxsB5LbtFOTQ0ibxIqCaR4vp mGZh/IhbV/yFYvSIDw8zQaOVpxtvj+TcXR6lBO93AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuFCwN5D3l9+2sZjGQIB7U/YayxYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk5ZTM2YjZiLTAyMDgtNDRhMi1hNWYzLWRmM2JkMjU0ZmNkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37gwDQYJKoZIhvcNAQELBQADggEBAFEPKIvpq7F6eX3p0+OOGZ/4j6Wl ItRdy5bIkc28V/jMuX4aY/mF58Newup5AjQVA4GK019KoLv+PC2d07LpQvdXyqh/ DeCpIyt1T/M4wltML0M7V25ks/MYCjD3LWheMJf2vSMu6l1dWBpWuw9H3ZDrmxe8 oEuJ14oTzIyQX4nGBVLyR2e3WVm1x56A3poYJPn2MNaK0kLnua3C8Ks1c4YSbGCj w6tlqplYu9aTd4uMYyJZgx9nAeuaVDZdfaGTwCZrib6ruQLJnKlqcxGOUKuPv2/o 1qyBj9t+h5wy6tkX0KasguHPJataottg/mY9o/M1kIgAvu3w5nf+xfEtDrw= -----END CERTIFICATE-----Generated at Sat Sep 9 00:26:29 2023 by rpki-client on console-fra.rpki-client.org