$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa File: b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa (raw, json) Hash identifier: 27O2td+muwjj4rXzw4GUkXTVp6GuAO9CRoPOfCkepPI= Subject key identifier: 29:8C:24:A5:19:E0:2E:E2:1A:82:B3:F6:61:32:1C:FF:39:B7:64:FD Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 03AC5C5E9FD4AB76F7F3342E3D7DAD629395B58D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa Signing time: Fri 29 Mar 2024 00:00:00 +0000 ROA not before: Fri 29 Mar 2024 00:00:00 +0000 ROA not after: Fri 03 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ac:5c:5e:9f:d4:ab:76:f7:f3:34:2e:3d:7d:ad:62:93:95:b5:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Mar 29 00:00:00 2024 GMT Not After : May 3 23:59:59 2024 GMT Subject: serialNumber=0e63af432eea4359ddda842c9a0e2c547142e05f0e652f96199d08ccb8ada0a0, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:56:e8:22:dc:c4:04:b1:f0:57:e7:79:05:ed: 6f:85:37:ec:e9:38:8a:c3:08:f3:1f:82:ab:69:d2: b4:51:3e:4d:94:1a:85:b3:69:46:44:0c:6b:0a:6d: bc:ba:ad:17:82:73:8c:98:07:ac:8f:ff:b1:1f:7f: 77:00:db:84:0d:ad:5f:08:b7:2d:3c:e7:5c:dd:8e: 1f:2d:9b:d6:f3:e6:47:18:71:b9:05:6d:d0:f5:74: 3b:e6:06:d3:89:ba:76:6e:bb:a9:fa:74:68:0f:e9: 80:4c:41:a7:bc:24:8a:60:e2:e2:c5:34:da:46:9a: bb:41:12:ef:1a:3e:41:83:10:4c:96:21:37:a3:81: 84:52:a6:82:15:11:aa:cf:fa:58:02:7b:a2:5a:a1: 58:75:05:70:62:ed:77:ff:10:89:cc:5d:50:a5:44: 85:bd:43:c1:01:a8:ff:2d:f7:56:a9:52:6a:72:b5: 26:48:97:0d:44:97:99:f4:b9:78:be:23:73:84:b7: fb:52:56:5f:f0:a7:80:16:d6:34:be:2b:7a:9c:ec: c3:d1:65:13:f8:67:47:97:5d:e8:90:24:96:4d:41: f0:44:ad:e8:77:d0:74:11:39:c8:3e:d1:77:c1:d3: f7:f0:72:a8:dd:6f:c0:32:20:2c:bb:2a:a1:dd:3d: e9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:8C:24:A5:19:E0:2E:E2:1A:82:B3:F6:61:32:1C:FF:39:B7:64:FD X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.236.0/23 Signature Algorithm: sha256WithRSAEncryption 42:9f:22:b1:ad:6f:17:d1:17:c9:ef:a1:cb:94:6f:d2:c0:9b: 2d:a2:37:43:6d:9f:5a:0b:f2:ea:0b:1d:03:2a:ed:1c:ea:b8: 95:d0:5a:71:45:f9:08:a4:93:98:61:bd:f8:5f:09:49:1d:22: 72:e3:36:56:4e:d1:ef:fc:34:0a:d4:89:04:ab:9d:e2:78:bc: 1a:ed:9c:09:5a:fa:33:d3:b6:c5:e5:48:66:6e:63:38:16:e8: 79:43:1e:47:fc:8a:0c:9a:c6:9a:98:8b:eb:11:98:73:be:3c: 99:1e:c7:04:3b:67:73:2d:01:05:10:a4:10:39:34:8f:f1:c2: 13:66:52:95:cf:e5:b3:b6:2c:7e:13:5d:d5:01:74:b1:2b:64: 54:e4:2e:57:a8:34:a7:65:04:20:8b:b1:bc:c2:e2:c5:be:ce: 37:95:79:2d:55:3d:e2:9c:8d:81:66:57:ad:e2:b2:6b:9e:7d: 85:f4:44:ee:40:08:bc:39:3a:f7:36:09:ad:91:7e:c0:4f:d2: ef:c2:aa:b0:ce:c9:9f:52:71:e5:18:46:88:4f:b4:98:e0:e0: e8:84:7d:ab:43:e5:69:31:a6:c0:56:f4:95:87:3e:73:27:af: 30:f9:21:ce:a1:e2:29:53:0b:a6:c0:74:4c:6f:29:0d:10:1d: c7:81:4d:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA6xcXp/Uq3b38zQuPX2tYpOVtY0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwMzI5MDAwMDAwWhcNMjQwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTYzYWY0MzJlZWE0MzU5ZGRkYTg0MmM5YTBlMmM1NDcx NDJlMDVmMGU2NTJmOTYxOTlkMDhjY2I4YWRhMGEwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPVugi3MQEsfBX53kF7W+FN+zpOIrDCPMfgqtp0rRRPk2U GoWzaUZEDGsKbby6rReCc4yYB6yP/7Eff3cA24QNrV8Ity0851zdjh8tm9bz5kcY cbkFbdD1dDvmBtOJunZuu6n6dGgP6YBMQae8JIpg4uLFNNpGmrtBEu8aPkGDEEyW ITejgYRSpoIVEarP+lgCe6JaoVh1BXBi7Xf/EInMXVClRIW9Q8EBqP8t91apUmpy tSZIlw1El5n0uXi+I3OEt/tSVl/wp4AW1jS+K3qc7MPRZRP4Z0eXXeiQJJZNQfBE reh30HQROcg+0XfB0/fwcqjdb8AyICy7KqHdPemnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKYwkpRngLuIagrP2YTIc/zm3ZP0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I0YmI5ODUxLWI1YWEtNDM3MC1iZmZlLTRmYzFmZDQxNDg1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX++wwDQYJKoZIhvcNAQELBQADggEBAEKfIrGtbxfRF8nvocuUb9LAmy2i N0Ntn1oL8uoLHQMq7RzquJXQWnFF+Qikk5hhvfhfCUkdInLjNlZO0e/8NArUiQSr neJ4vBrtnAla+jPTtsXlSGZuYzgW6HlDHkf8igyaxpqYi+sRmHO+PJkexwQ7Z3Mt AQUQpBA5NI/xwhNmUpXP5bO2LH4TXdUBdLErZFTkLleoNKdlBCCLsbzC4sW+zjeV eS1VPeKcjYFmV63ismuefYX0RO5ACLw5Ovc2Ca2RfsBP0u/CqrDOyZ9SceUYRohP tJjg4OiEfatD5WkxpsBW9JWHPnMnrzD5Ic6h4ilTC6bAdExvKQ0QHceBTVk= -----END CERTIFICATE-----Generated at Sat Apr 20 01:09:32 2024 by rpki-client on console-ams.rpki-client.org