$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa File: b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa (raw, json) Hash identifier: gwf8gyDLCHyy1xOGwwjBYZtpHkSVGnlIMxqRTD+CflE= Subject key identifier: C8:46:6E:9E:22:B1:12:3D:15:C9:39:10:4A:1A:40:50:98:D8:09:74 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 094ED951B0EAECC673250BE6DC500735882F0B37 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:4e:d9:51:b0:ea:ec:c6:73:25:0b:e6:dc:50:07:35:88:2f:0b:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=4b05a9f148489988373a4d33f440a01e18f7c2cd589e7d749ad1c9971e7f9505, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b6:22:53:e3:f9:45:92:07:d1:89:bf:5c:10: 05:c3:56:d2:f6:f2:6c:c8:31:78:55:9e:95:c7:86: 13:59:98:78:af:55:38:1b:c4:ed:47:40:72:1b:90: 1b:31:70:03:93:b5:99:00:0b:01:67:25:63:a0:c2: a8:6b:9e:82:96:fd:e8:b8:1e:4a:27:6e:f2:06:94: ce:60:24:e4:ce:06:7d:0e:03:58:6b:85:e7:3b:5d: cd:c8:6e:84:42:64:bf:e7:1d:5a:58:4d:f1:fa:74: 22:3e:db:ec:1b:3c:03:fc:1a:6c:2c:e1:f1:5b:8d: e0:dd:fb:2b:af:ab:52:64:74:39:0a:44:18:77:b3: 94:9d:99:d9:15:fb:f5:71:04:83:56:49:40:52:9e: e6:16:ac:73:35:cb:18:a5:ed:2f:72:d9:99:83:3e: 5a:7e:de:29:a4:6e:fd:70:a9:f9:3d:b5:d4:8c:0f: 23:a3:5c:61:13:cd:0c:64:c8:b9:57:af:1e:2f:4c: dd:d9:bf:2c:92:06:96:42:e3:83:b0:7d:2d:eb:58: fc:98:44:78:ec:04:9b:da:c3:6c:da:17:2f:03:57: fc:13:b1:be:14:5b:98:cf:89:b6:15:56:a6:47:4b: 48:2f:5b:9e:09:00:e9:ec:7d:e3:1d:5b:5e:8f:99: c6:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:46:6E:9E:22:B1:12:3D:15:C9:39:10:4A:1A:40:50:98:D8:09:74 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.236.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:2e:8b:ea:02:af:7f:d3:b9:5d:ab:68:f1:ea:6c:dd:7f:71: 01:fe:99:44:c7:de:89:cc:90:f4:09:46:75:46:1f:bf:72:a2: 87:b4:cc:ae:ff:d4:71:bc:1d:98:61:8d:fe:ec:19:f5:46:13: 48:be:16:4e:03:2b:b6:12:7e:a0:0f:a8:7f:89:71:01:9b:79: 83:b4:94:b7:92:2f:62:29:7d:e3:ec:94:40:ea:f2:4a:c0:1f: 0e:64:35:13:56:f6:8d:ea:65:2b:3e:ff:75:86:19:f2:9e:16: 33:08:b4:4a:ac:81:cf:4a:8e:9a:88:b8:12:48:99:50:b2:f8: 18:b9:69:5a:a7:a3:de:bb:60:a4:d5:78:a8:f3:4f:6c:40:da: 26:e1:41:31:40:12:4e:5d:c8:ca:f6:02:8c:ff:b4:82:f7:0c: 51:02:98:76:44:cf:06:10:f0:a0:f9:bc:34:9d:1f:a5:d9:1f: f4:c0:39:e1:09:67:bd:44:4d:e8:6b:0d:41:60:fc:65:d6:1f: 42:cd:29:1b:c7:7c:29:d1:bd:e7:f3:f2:7a:48:d5:d4:37:40: cc:7d:fb:03:47:7c:11:81:ba:29:ac:f5:c3:35:14:9b:ec:1e: 95:77:17:47:e3:c6:26:0d:b8:28:48:70:2a:db:5f:48:d0:1a: bb:12:d5:e7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCU7ZUbDq7MZzJQvm3FAHNYgvCzcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjA1YTlmMTQ4NDg5OTg4MzczYTRkMzNmNDQwYTAxZTE4 ZjdjMmNkNTg5ZTdkNzQ5YWQxYzk5NzFlN2Y5NTA1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVtiJT4/lFkgfRib9cEAXDVtL28mzIMXhVnpXHhhNZmHiv VTgbxO1HQHIbkBsxcAOTtZkACwFnJWOgwqhrnoKW/ei4HkonbvIGlM5gJOTOBn0O A1hrhec7Xc3IboRCZL/nHVpYTfH6dCI+2+wbPAP8Gmws4fFbjeDd+yuvq1JkdDkK RBh3s5SdmdkV+/VxBINWSUBSnuYWrHM1yxil7S9y2ZmDPlp+3imkbv1wqfk9tdSM DyOjXGETzQxkyLlXrx4vTN3ZvyySBpZC44OwfS3rWPyYRHjsBJvaw2zaFy8DV/wT sb4UW5jPibYVVqZHS0gvW54JAOnsfeMdW16PmcaFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyEZuniKxEj0VyTkQShpAUJjYCXQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I0YmI5ODUxLWI1YWEtNDM3MC1iZmZlLTRmYzFmZDQxNDg1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX++wwDQYJKoZIhvcNAQELBQADggEBAH8ui+oCr3/TuV2raPHqbN1/cQH+ mUTH3onMkPQJRnVGH79yooe0zK7/1HG8HZhhjf7sGfVGE0i+Fk4DK7YSfqAPqH+J cQGbeYO0lLeSL2IpfePslEDq8krAHw5kNRNW9o3qZSs+/3WGGfKeFjMItEqsgc9K jpqIuBJImVCy+Bi5aVqno967YKTVeKjzT2xA2ibhQTFAEk5dyMr2Aoz/tIL3DFEC mHZEzwYQ8KD5vDSdH6XZH/TAOeEJZ71ETehrDUFg/GXWH0LNKRvHfCnRvefz8npI 1dQ3QMx9+wNHfBGBuims9cM1FJvsHpV3F0fjxiYNuChIcCrbX0jQGrsS1ec= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:21 2024 by rpki-client on console-fra.rpki-client.org