$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa File: b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa (raw, json) Hash identifier: ymu4DbNv/PwXSO77mmfMvvcBxl5+h4dwfwoAgZ8beGQ= Subject key identifier: A7:16:CB:8E:7E:EE:F8:2C:FF:A2:67:00:2C:18:76:C5:8F:F4:BB:62 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0DFD83A1E1316D5BA88E90E999A09853EFACE9EF Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:fd:83:a1:e1:31:6d:5b:a8:8e:90:e9:99:a0:98:53:ef:ac:e9:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=5df15c98bf9de322d121d2e4edfe6a9262047b9249a9f7e79d85c1df30e0a297, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a9:20:bf:36:56:11:5c:d1:77:8d:e0:a2:e8: 7e:90:4f:ba:7f:ce:c1:ca:f2:62:6b:06:02:98:31: 41:92:68:a6:c4:6d:fc:24:f5:48:72:5f:6e:92:6e: 33:60:86:10:ed:e9:fa:41:77:3c:ff:04:9e:0f:5f: 04:f0:49:75:d5:16:2f:48:7b:35:26:6b:ac:80:45: 06:46:f2:9e:2e:d3:22:01:4e:aa:ff:95:7a:c1:ba: 25:bd:e0:3f:b7:35:6c:29:13:83:26:23:95:78:fa: 00:e2:6a:a8:0c:82:a8:5e:01:9f:51:ba:26:94:75: 24:65:8a:f1:dd:56:b2:96:47:69:22:3a:00:95:1d: da:85:dc:a4:11:99:96:4e:15:d0:ce:d5:dc:ba:83: 25:ad:0d:03:ea:94:51:eb:c0:ce:bb:5e:3f:06:64: 83:b4:35:c9:b9:f9:7e:1e:20:a2:c9:f8:be:22:46: 2a:ff:fa:df:0f:bc:31:43:05:e3:63:8a:9c:90:3f: b2:08:97:bf:9f:8f:30:8f:92:19:e5:a4:b8:5b:5f: 01:45:f4:2b:83:0e:fe:d7:78:4f:ee:06:56:61:1c: f2:45:c8:27:3e:0b:9f:06:f1:be:2a:e1:d9:5e:c2: a1:fa:76:7b:bf:a4:22:d9:df:66:2c:35:f0:89:31: e1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:16:CB:8E:7E:EE:F8:2C:FF:A2:67:00:2C:18:76:C5:8F:F4:BB:62 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b4bb9851-b5aa-4370-bffe-4fc1fd414858.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.236.0/23 Signature Algorithm: sha256WithRSAEncryption 80:e4:03:17:30:6e:4e:5a:74:51:9a:fe:71:9c:46:e6:04:27: 5b:c8:7d:c8:f5:06:a7:74:c4:8e:5f:cb:46:c9:fc:a7:db:a2: 8a:77:7b:66:5e:64:a4:14:b9:03:e1:7f:93:9a:37:83:4b:5f: 04:2c:b8:e5:b5:31:df:a0:00:9c:e4:68:22:9c:18:19:9a:29: 5f:d5:bf:5f:17:cd:7e:8c:76:d5:23:c8:ff:ce:a2:10:c9:00: 61:df:e0:07:cd:3b:19:4c:87:9d:4d:d5:ba:23:12:f5:13:30: c4:49:9d:a7:4e:5f:19:02:58:e6:83:73:61:e8:cb:2e:66:47: 26:ba:e8:d7:b4:e1:c7:30:6c:33:df:a8:99:26:7b:53:96:f7: 9a:ba:de:d1:b5:4c:46:c8:54:ce:4b:b0:34:db:80:14:92:b9: 78:4a:ea:e1:07:06:7c:99:8a:e5:b2:ca:66:7a:17:12:96:48: 75:b9:5a:93:f8:ab:e9:2f:5c:75:c2:fb:1a:a6:3c:79:1a:69: 07:31:b1:c4:b7:0c:6e:7b:95:08:b2:92:ab:e0:35:48:6f:34: a7:b9:32:00:3b:70:f4:21:79:b1:31:8f:53:bd:76:f8:a1:f0: f0:97:a2:41:cd:2a:75:08:1c:11:96:67:45:68:c9:ac:33:86: d9:9f:f4:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDf2DoeExbVuojpDpmaCYU++s6e8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZGYxNWM5OGJmOWRlMzIyZDEyMWQyZTRlZGZlNmE5MjYy MDQ3YjkyNDlhOWY3ZTc5ZDg1YzFkZjMwZTBhMjk3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzqSC/NlYRXNF3jeCi6H6QT7p/zsHK8mJrBgKYMUGSaKbE bfwk9UhyX26SbjNghhDt6fpBdzz/BJ4PXwTwSXXVFi9IezUma6yARQZG8p4u0yIB Tqr/lXrBuiW94D+3NWwpE4MmI5V4+gDiaqgMgqheAZ9RuiaUdSRlivHdVrKWR2ki OgCVHdqF3KQRmZZOFdDO1dy6gyWtDQPqlFHrwM67Xj8GZIO0Ncm5+X4eIKLJ+L4i Rir/+t8PvDFDBeNjipyQP7IIl7+fjzCPkhnlpLhbXwFF9CuDDv7XeE/uBlZhHPJF yCc+C58G8b4q4dlewqH6dnu/pCLZ32YsNfCJMeGxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpxbLjn7u+Cz/omcALBh2xY/0u2IwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I0YmI5ODUxLWI1YWEtNDM3MC1iZmZlLTRmYzFmZDQxNDg1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX++wwDQYJKoZIhvcNAQELBQADggEBAIDkAxcwbk5adFGa/nGcRuYEJ1vI fcj1Bqd0xI5fy0bJ/Kfboop3e2ZeZKQUuQPhf5OaN4NLXwQsuOW1Md+gAJzkaCKc GBmaKV/Vv18XzX6MdtUjyP/OohDJAGHf4AfNOxlMh51N1bojEvUTMMRJnadOXxkC WOaDc2Hoyy5mRya66Ne04ccwbDPfqJkme1OW95q63tG1TEbIVM5LsDTbgBSSuXhK 6uEHBnyZiuWyymZ6FxKWSHW5WpP4q+kvXHXC+xqmPHkaaQcxscS3DG57lQiykqvg NUhvNKe5MgA7cPQhebExj1O9dvih8PCXokHNKnUIHBGWZ0Voyawzhtmf9BQ= -----END CERTIFICATE-----Generated at Sat Sep 9 00:20:01 2023 by rpki-client on console-ams.rpki-client.org