$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b674dc7d-6b89-40a0-ae91-a9c4907a142f.roa File: b674dc7d-6b89-40a0-ae91-a9c4907a142f.roa (raw, json) Hash identifier: AX8VYaIAeqZOWPNcGjChXpEP4T+NIGFdX50OwOPgdD4= Subject key identifier: 93:54:69:72:9F:9C:DD:8C:F5:24:B6:92:A3:E2:1F:B2:FC:2C:3B:EC Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2354C95881ACB43054BB9AA32C0E122215C176AF Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b674dc7d-6b89-40a0-ae91-a9c4907a142f.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:54:c9:58:81:ac:b4:30:54:bb:9a:a3:2c:0e:12:22:15:c1:76:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=433a2465e4a3244d2b00e5606f9fb6afa2e23d3f5617e41d07f6569a34fc2d1a, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0c:76:20:73:0b:7b:45:90:ad:70:b9:df:07: fe:d0:51:08:59:b7:ce:5b:2e:a3:65:1e:ab:ec:82: 42:54:37:bb:dc:b1:28:c0:2f:3f:04:3e:51:9b:2c: c8:05:af:71:44:a4:c5:36:b5:82:a7:ca:9a:4c:14: 67:2c:03:b3:c5:bf:c0:6e:2c:05:54:bd:63:50:a9: a0:cf:f8:44:3c:e6:40:dd:92:33:70:c3:04:34:0d: 2d:dd:0a:8d:37:a8:74:91:13:b0:b1:32:a0:78:be: a7:a9:2e:4c:ab:d0:81:b0:a0:b5:04:67:64:24:45: b8:35:15:cb:33:71:e1:d5:1f:8f:cf:0f:72:d0:ae: 13:fd:0d:6a:1a:39:9b:a4:f7:a2:d1:01:1e:69:e9: 63:ff:09:eb:d3:52:96:35:64:01:9c:b0:62:e9:9f: fc:71:a5:be:24:27:94:77:24:e8:53:db:f3:73:88: a6:10:45:a7:ec:4f:b1:ee:74:40:38:d5:5f:92:25: 50:76:f4:41:58:86:d2:27:7a:46:b8:4e:cc:a9:f0: 54:1b:bc:88:e8:0a:f6:86:8f:53:aa:7d:bc:69:69: ce:58:bc:b8:b7:ec:0f:44:ee:b1:58:41:93:cf:67: 25:d1:00:95:d5:4e:a7:ef:b7:b6:e7:4c:fe:e8:70: a8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:54:69:72:9F:9C:DD:8C:F5:24:B6:92:A3:E2:1F:B2:FC:2C:3B:EC X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b674dc7d-6b89-40a0-ae91-a9c4907a142f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.250.0/23 Signature Algorithm: sha256WithRSAEncryption 02:1c:01:cf:a5:3d:8f:12:a8:8e:74:4f:9c:dd:ad:d4:4f:00: e6:47:6e:e0:55:e0:57:aa:cb:a3:e4:03:b7:f0:5f:ba:e7:2a: 42:ac:18:2d:93:23:3e:f7:32:b2:98:d1:b4:42:be:49:11:9a: 74:20:45:24:01:2e:ff:04:fe:9e:db:f4:09:32:12:27:47:52: 4d:5f:fb:c3:75:30:0b:2f:d8:b4:21:ca:96:6c:11:fa:ef:36: f0:bb:d6:b5:0a:b0:14:64:a6:54:34:62:f2:03:c1:34:75:5b: 0b:c8:a4:33:30:ec:b7:75:9b:58:50:43:4c:58:63:76:e7:ea: 34:f2:db:89:dd:91:68:2f:0a:4a:f9:3b:6d:41:8c:df:34:65: a9:89:a6:14:93:c5:d6:98:2d:93:7c:e3:29:58:5e:1c:aa:9c: 94:ab:a9:0f:1b:5e:69:84:72:d3:a9:ca:28:46:d3:1b:cb:e5: 36:87:f8:fc:32:8d:9c:c3:fe:bf:47:ad:b1:b9:df:c3:d2:1e: c2:57:61:41:6b:42:14:ab:bb:ba:a4:c0:b4:7a:fe:21:9c:14: 87:98:c9:50:01:48:71:e8:67:21:d4:ce:52:51:32:d1:d8:48: 04:82:ae:87:3b:5c:ad:05:8f:40:fa:e2:31:bb:84:2b:14:d2: 53:36:bc:af -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI1TJWIGstDBUu5qjLA4SIhXBdq8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzNhMjQ2NWU0YTMyNDRkMmIwMGU1NjA2ZjlmYjZhZmEy ZTIzZDNmNTYxN2U0MWQwN2Y2NTY5YTM0ZmMyZDFhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3DHYgcwt7RZCtcLnfB/7QUQhZt85bLqNlHqvsgkJUN7vc sSjALz8EPlGbLMgFr3FEpMU2tYKnyppMFGcsA7PFv8BuLAVUvWNQqaDP+EQ85kDd kjNwwwQ0DS3dCo03qHSRE7CxMqB4vqepLkyr0IGwoLUEZ2QkRbg1FcszceHVH4/P D3LQrhP9DWoaOZuk96LRAR5p6WP/CevTUpY1ZAGcsGLpn/xxpb4kJ5R3JOhT2/Nz iKYQRafsT7HudEA41V+SJVB29EFYhtIneka4Tsyp8FQbvIjoCvaGj1Oqfbxpac5Y vLi37A9E7rFYQZPPZyXRAJXVTqfvt7bnTP7ocKibAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk1Rpcp+c3Yz1JLaSo+IfsvwsO+wwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2NzRkYzdkLTZiODktNDBhMC1hZTkxLWE5YzQ5MDdhMTQyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+/owDQYJKoZIhvcNAQELBQADggEBAAIcAc+lPY8SqI50T5zdrdRPAOZH buBV4Feqy6PkA7fwX7rnKkKsGC2TIz73MrKY0bRCvkkRmnQgRSQBLv8E/p7b9Aky EidHUk1f+8N1MAsv2LQhypZsEfrvNvC71rUKsBRkplQ0YvIDwTR1WwvIpDMw7Ld1 m1hQQ0xYY3bn6jTy24ndkWgvCkr5O21BjN80ZamJphSTxdaYLZN84ylYXhyqnJSr qQ8bXmmEctOpyihG0xvL5TaH+PwyjZzD/r9HrbG538PSHsJXYUFrQhSru7qkwLR6 /iGcFIeYyVABSHHoZyHUzlJRMtHYSASCroc7XK0Fj0D64jG7hCsU0lM2vK8= -----END CERTIFICATE-----Generated at Sat Sep 9 00:26:29 2023 by rpki-client on console-fra.rpki-client.org