$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b9bfd24e-7c6a-44a6-adcf-d47b47f8fee6.roa File: b9bfd24e-7c6a-44a6-adcf-d47b47f8fee6.roa (raw, json) Hash identifier: 9/lAOXDmqjYTVsbA9Be5JGcEF9wtg+6zI4pFJsfgv5c= Subject key identifier: 3D:27:A7:AE:C9:79:59:95:A8:21:CF:09:C0:3E:50:05:82:74:FA:9E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0C865A213E38F77F6E4B604C83280AB747C370F3 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b9bfd24e-7c6a-44a6-adcf-d47b47f8fee6.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 76.223.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:86:5a:21:3e:38:f7:7f:6e:4b:60:4c:83:28:0a:b7:47:c3:70:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=6c28099db0662ee802ebe6e553a54619571bcc3f2c9c3e1398f8bb6db8a7f63a, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6b:f9:ff:28:ea:50:95:8b:70:cc:0e:23:05: e0:0e:50:d9:89:0b:1b:8f:a4:87:7e:33:6c:ed:6f: d3:77:13:7f:01:fb:29:ee:16:8a:db:40:1b:bf:49: ce:27:37:e7:5a:ed:7c:61:0b:eb:6c:88:c5:3d:d0: 10:b0:28:67:dc:78:63:d4:bf:58:ae:29:c9:ca:32: ec:8c:2f:bc:50:ee:b0:bc:64:c2:35:dc:1c:12:ce: da:7d:f0:69:04:0b:e0:e5:5f:e1:94:13:db:1b:e1: 1e:c4:5b:10:7a:28:6c:c4:4b:61:7e:91:b5:fe:a3: dd:44:c8:fa:c4:45:02:e7:d3:a5:35:c9:b0:bd:a8: b4:a7:08:fa:e2:60:c9:11:42:61:5f:45:d4:0b:41: 97:a6:05:6d:e5:c6:92:9d:9a:0b:46:13:a9:83:bc: 38:21:61:98:2f:f1:8a:08:3d:58:8a:9f:e6:17:8b: 27:e4:a1:82:5f:27:36:66:47:b4:10:e2:50:92:e6: 37:89:ce:8e:40:cb:e1:9a:f4:92:d0:98:fe:e2:2c: 77:23:08:1b:cd:8a:0a:dc:ee:e0:c4:f7:61:a4:34: b3:22:0d:53:de:3b:5a:df:93:97:b4:bc:4a:e7:82: c9:e0:c4:f3:1b:fb:bd:4d:7e:2d:60:a9:36:4a:85: fd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:27:A7:AE:C9:79:59:95:A8:21:CF:09:C0:3E:50:05:82:74:FA:9E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b9bfd24e-7c6a-44a6-adcf-d47b47f8fee6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.176.0/20 Signature Algorithm: sha256WithRSAEncryption 27:25:39:49:48:51:44:e1:e0:51:f7:04:9b:06:d8:64:77:38: 97:02:36:ba:ab:c3:5b:0e:ea:a4:26:a9:bf:e0:94:e9:88:d8: 10:c2:6d:00:15:41:7b:f0:08:2f:f2:fb:fd:87:2d:cb:16:08: 9e:cb:68:f5:39:ce:f4:f4:ee:42:38:c3:58:0e:46:b8:9c:fc: 38:36:d9:16:14:05:ea:f9:01:f7:65:df:d5:e1:79:86:73:9e: 1c:4a:9b:6f:67:8c:2b:f2:4e:e1:53:58:f3:69:ce:5a:4e:95: d3:0b:25:e8:e0:03:9f:42:2b:9a:f5:ba:de:e6:85:b6:c1:20: f9:69:55:d9:12:6a:0d:ad:5a:d1:2b:4b:fc:57:3b:18:dd:57: 07:d7:db:0a:0b:2d:30:f2:39:50:8b:64:a9:f7:96:90:bd:16: 80:96:5b:16:ef:31:75:ff:d2:9f:75:a9:de:45:3c:fa:cb:83: 1e:7d:03:5b:ba:56:98:d9:09:f7:5e:f1:77:80:0d:88:bd:17: 71:5f:48:70:1f:51:cd:ff:73:5e:c9:f7:be:ed:34:29:ba:6e: 09:57:58:1a:db:0f:96:3f:5e:5a:45:5a:48:39:ba:cf:ae:f8: fb:75:cf:0d:78:56:8f:40:cd:13:1c:7f:e8:42:2d:bd:ee:8c: 93:74:10:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDIZaIT44939uS2BMgygKt0fDcPMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzI4MDk5ZGIwNjYyZWU4MDJlYmU2ZTU1M2E1NDYxOTU3 MWJjYzNmMmM5YzNlMTM5OGY4YmI2ZGI4YTdmNjNhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxa/n/KOpQlYtwzA4jBeAOUNmJCxuPpId+M2ztb9N3E38B +ynuForbQBu/Sc4nN+da7XxhC+tsiMU90BCwKGfceGPUv1iuKcnKMuyML7xQ7rC8 ZMI13BwSztp98GkEC+DlX+GUE9sb4R7EWxB6KGzES2F+kbX+o91EyPrERQLn06U1 ybC9qLSnCPriYMkRQmFfRdQLQZemBW3lxpKdmgtGE6mDvDghYZgv8YoIPViKn+YX iyfkoYJfJzZmR7QQ4lCS5jeJzo5Ay+Ga9JLQmP7iLHcjCBvNigrc7uDE92GkNLMi DVPeO1rfk5e0vErngsngxPMb+71Nfi1gqTZKhf2/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPSenrsl5WZWoIc8JwD5QBYJ0+p4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I5YmZkMjRlLTdjNmEtNDRhNi1hZGNmLWQ0N2I0N2Y4ZmVlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARM37AwDQYJKoZIhvcNAQELBQADggEBACclOUlIUUTh4FH3BJsG2GR3OJcC Nrqrw1sO6qQmqb/glOmI2BDCbQAVQXvwCC/y+/2HLcsWCJ7LaPU5zvT07kI4w1gO Rric/Dg22RYUBer5Afdl39XheYZznhxKm29njCvyTuFTWPNpzlpOldMLJejgA59C K5r1ut7mhbbBIPlpVdkSag2tWtErS/xXOxjdVwfX2woLLTDyOVCLZKn3lpC9FoCW WxbvMXX/0p91qd5FPPrLgx59A1u6VpjZCfde8XeADYi9F3FfSHAfUc3/c17J977t NCm6bglXWBrbD5Y/XlpFWkg5us+u+Pt1zw14Vo9AzRMcf+hCLb3ujJN0EJU= -----END CERTIFICATE-----Generated at Thu May 9 00:30:03 2024 by rpki-client on console-ams.rpki-client.org