$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a16d3500-025c-4019-a854-0f0dbdbcbb3a.roa File: a16d3500-025c-4019-a854-0f0dbdbcbb3a.roa (raw, json) Hash identifier: XRy+F5QmjWQ5ATr6c9EKGGVWX0rS6P4+ybmIpQ+Vs4s= Subject key identifier: 7E:64:98:0F:1C:15:88:61:3B:32:AD:D7:1D:EC:92:07:57:9A:EF:27 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 744006D9EA83701F84D1F648BFF9D1DABCA2EED0 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a16d3500-025c-4019-a854-0f0dbdbcbb3a.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:40:06:d9:ea:83:70:1f:84:d1:f6:48:bf:f9:d1:da:bc:a2:ee:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=e7c05e39a8d613ce087aeab7c77703b3b685158929c188d1a0e96708f82f38e5, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1f:9d:63:19:5e:e0:e8:5e:41:54:12:cc:fc: ed:ad:c3:01:96:3d:23:8d:97:d0:16:a1:78:51:a1: b2:68:b1:5a:04:a0:de:00:41:c3:c3:35:9b:90:c1: 23:78:4b:48:62:6d:3c:ba:c9:5e:39:ef:66:d6:ff: c5:26:19:50:0c:aa:ab:7c:07:b9:53:0f:9f:da:ae: f5:99:dc:d3:0f:01:dc:b9:b0:e8:63:66:c5:31:5c: 1d:25:01:aa:b5:48:ef:53:bb:03:6e:d8:08:27:ad: d9:74:70:b9:63:b0:00:a7:3a:9c:2d:12:92:aa:bf: 6e:1a:c5:cd:64:a6:43:a6:48:0f:3d:f3:78:21:67: 75:99:78:9c:91:e2:c2:26:e7:0c:09:c6:b0:80:62: 6d:20:ec:b2:0c:74:77:92:b1:08:57:17:ee:45:e5: 4a:0c:c0:1d:b3:6c:fe:80:28:97:6a:f3:65:a6:f7: 48:d2:a3:a3:f6:89:2e:d5:4c:fe:c4:5d:50:e9:d3: 78:cd:73:78:c6:88:f0:d3:62:45:15:ef:40:12:ef: 19:e5:e0:0a:0b:88:e4:7e:a0:3b:bb:55:d2:47:33: 7a:ae:23:59:e5:27:4b:38:21:5f:59:25:15:4c:71: df:b4:c4:10:ce:1d:1b:1a:04:99:e0:33:d9:ee:3d: 80:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:64:98:0F:1C:15:88:61:3B:32:AD:D7:1D:EC:92:07:57:9A:EF:27 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a16d3500-025c-4019-a854-0f0dbdbcbb3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.208.0/20 Signature Algorithm: sha256WithRSAEncryption 47:2d:fe:b0:f1:4a:7c:f0:25:e9:5c:40:b3:e4:92:9c:55:3d: b1:8c:00:a8:83:e4:e9:95:fd:22:0c:c6:4c:8d:4b:a4:47:d3: db:d6:01:a5:42:08:63:e1:11:86:3a:13:06:fd:e5:52:98:ac: 50:21:f5:90:96:8a:9e:bb:9b:d0:77:3c:42:94:38:dc:cf:41: bc:33:30:e2:98:ec:98:f6:7e:b8:bc:d3:ca:7f:2a:8e:84:2b: 86:c6:aa:fa:5c:f6:b3:0f:03:23:be:06:01:51:80:f7:02:22: 83:f8:b6:71:74:8e:48:12:f6:8c:ed:fc:22:a7:b4:11:25:be: d6:53:ea:aa:c1:f3:61:a8:9c:00:61:4e:8b:2c:ab:8c:67:37: 01:a2:fd:80:5e:f5:d3:67:c6:b3:4c:87:a5:c4:39:ae:56:82: c5:39:73:cc:f6:3a:c0:5f:2f:2b:47:77:9b:c6:b5:63:4f:70: 2e:27:ec:89:0d:9d:3b:b9:71:58:21:e0:fe:7b:5b:6b:81:79: c3:f2:39:2f:92:ce:51:a1:b1:96:46:ec:47:61:e7:91:1f:69: aa:15:f0:e4:e3:32:b7:a7:4e:6c:1d:4c:46:88:0a:03:63:28: 3e:fe:17:34:62:6f:32:08:27:25:9f:0a:a1:c4:91:cd:59:75: 53:4a:29:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdEAG2eqDcB+E0fZIv/nR2ryi7tAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlN2MwNWUzOWE4ZDYxM2NlMDg3YWVhYjdjNzc3MDNiM2I2 ODUxNTg5MjljMTg4ZDFhMGU5NjcwOGY4MmYzOGU1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzH51jGV7g6F5BVBLM/O2twwGWPSONl9AWoXhRobJosVoE oN4AQcPDNZuQwSN4S0hibTy6yV4572bW/8UmGVAMqqt8B7lTD5/arvWZ3NMPAdy5 sOhjZsUxXB0lAaq1SO9TuwNu2Agnrdl0cLljsACnOpwtEpKqv24axc1kpkOmSA89 83ghZ3WZeJyR4sIm5wwJxrCAYm0g7LIMdHeSsQhXF+5F5UoMwB2zbP6AKJdq82Wm 90jSo6P2iS7VTP7EXVDp03jNc3jGiPDTYkUV70AS7xnl4AoLiOR+oDu7VdJHM3qu I1nlJ0s4IV9ZJRVMcd+0xBDOHRsaBJngM9nuPYD7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfmSYDxwViGE7Mq3XHeySB1ea7ycwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ExNmQzNTAwLTAyNWMtNDAxOS1hODU0LTBmMGRiZGJjYmIzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQX+dAwDQYJKoZIhvcNAQELBQADggEBAEct/rDxSnzwJelcQLPkkpxVPbGM AKiD5OmV/SIMxkyNS6RH09vWAaVCCGPhEYY6Ewb95VKYrFAh9ZCWip67m9B3PEKU ONzPQbwzMOKY7Jj2fri808p/Ko6EK4bGqvpc9rMPAyO+BgFRgPcCIoP4tnF0jkgS 9ozt/CKntBElvtZT6qrB82GonABhTossq4xnNwGi/YBe9dNnxrNMh6XEOa5WgsU5 c8z2OsBfLytHd5vGtWNPcC4n7IkNnTu5cVgh4P57W2uBecPyOS+SzlGhsZZG7Edh 55EfaaoV8OTjMrenTmwdTEaICgNjKD7+FzRibzIIJyWfCqHEkc1ZdVNKKZU= -----END CERTIFICATE-----Generated at Thu May 2 00:52:49 2024 by rpki-client on console-ams.rpki-client.org