$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cac99dc1-c0fc-4f06-a349-1676349923b9.roa File: cac99dc1-c0fc-4f06-a349-1676349923b9.roa (raw, json) Hash identifier: IauuIg8+rsQDvffS4Of70seC8D3Pezda5l5DQ4PBLXg= Subject key identifier: 7C:42:04:80:C8:9A:29:AB:0D:65:E8:1D:F4:5B:C5:0B:82:F1:01:79 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 641EC2F50B5BBDC21003218A7EDDC15DF6CE8F6E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cac99dc1-c0fc-4f06-a349-1676349923b9.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:1e:c2:f5:0b:5b:bd:c2:10:03:21:8a:7e:dd:c1:5d:f6:ce:8f:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=f3e7921f2d81d4fcd7b985c51b6866720d9e030e35e108cc131d9fe3714c39e9, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d9:ae:eb:1c:9e:b4:ee:1d:f0:2b:79:22:e6: f6:20:da:fd:81:ef:96:a3:fc:09:e2:a0:f1:bd:74: 57:2f:61:61:31:a9:4f:29:f9:cc:2c:2a:d4:f5:ff: 4a:de:8c:44:ce:46:85:6f:c7:cf:e0:70:84:ec:36: 97:9a:85:1f:66:d9:03:d7:ff:4c:7e:66:4a:10:dc: f9:be:f7:69:1a:bf:25:cc:65:8c:5e:0e:95:2f:bf: 65:89:c4:06:9c:15:d4:37:43:17:eb:47:90:62:f8: 44:8d:e1:a3:96:48:58:88:1b:b2:45:c0:69:a9:09: ea:12:c1:e4:b8:7f:91:6d:79:da:3d:2f:5c:61:d2: f7:28:6c:7d:30:07:4c:a4:32:da:bf:63:73:3c:b1: 83:a3:33:c4:61:1d:03:c9:2d:f2:8f:e2:b1:24:ca: 45:c5:83:65:66:f8:18:a7:4c:87:cb:e8:d9:07:0d: b8:36:cd:d9:0e:eb:e0:2a:2a:a5:14:38:33:23:74: 3e:62:10:4b:d1:c9:5e:fc:32:96:89:a8:dc:6e:c5: 9b:fd:14:2b:a1:f7:c0:b9:32:ed:04:43:58:6e:ea: cd:90:4a:09:a4:0f:54:a9:7c:7c:7f:1c:bb:38:a9: 5b:11:4c:a4:48:bf:99:b3:fd:12:1f:0e:18:14:3d: 01:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:42:04:80:C8:9A:29:AB:0D:65:E8:1D:F4:5B:C5:0B:82:F1:01:79 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cac99dc1-c0fc-4f06-a349-1676349923b9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.208.0/20 Signature Algorithm: sha256WithRSAEncryption 41:d3:0c:15:43:7a:32:44:3c:10:70:8b:4c:0c:76:09:f8:47: e0:aa:ec:30:51:c1:36:ae:73:2b:94:f6:7f:c3:ab:ca:e1:58: dc:59:ad:39:69:bd:79:66:d2:34:28:50:a4:b3:9c:90:63:7a: a0:e7:17:e1:5d:de:a0:5d:da:c7:ed:78:c4:6a:81:8d:ee:6c: 72:26:14:93:26:85:d4:3b:2f:fb:2d:6f:8d:5d:22:24:91:7d: f2:a4:03:19:b4:ec:99:24:2f:26:0d:1e:57:75:b5:0a:e2:19: a0:8a:6a:e5:ce:40:4d:cd:15:8d:13:b7:18:67:0d:c3:6d:65: 93:b8:d2:3c:2f:18:ad:c8:d6:d9:89:9d:98:fd:34:17:46:d6: 19:b1:39:d0:6a:08:bf:bd:8b:cb:f9:2c:8b:b3:21:a7:20:ad: 26:51:da:26:30:9b:f4:96:94:98:ec:62:a8:6c:76:26:f8:45: f9:eb:4e:cb:df:02:c1:b8:28:4f:42:89:81:7d:60:d3:8a:d1: 0e:8e:2b:12:b1:98:30:88:eb:e3:aa:50:8f:af:eb:b2:c8:e0: 93:7a:34:73:85:48:b0:25:bd:55:39:c9:0d:f3:6e:2f:09:24: c9:44:d5:6e:66:e7:cf:0f:57:be:ce:94:e0:51:97:50:93:94: f5:91:91:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZB7C9QtbvcIQAyGKft3BXfbOj24wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmM2U3OTIxZjJkODFkNGZjZDdiOTg1YzUxYjY4NjY3MjBk OWUwMzBlMzVlMTA4Y2MxMzFkOWZlMzcxNGMzOWU5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDN2a7rHJ607h3wK3ki5vYg2v2B75aj/AnioPG9dFcvYWEx qU8p+cwsKtT1/0rejETORoVvx8/gcITsNpeahR9m2QPX/0x+ZkoQ3Pm+92kavyXM ZYxeDpUvv2WJxAacFdQ3QxfrR5Bi+ESN4aOWSFiIG7JFwGmpCeoSweS4f5Ftedo9 L1xh0vcobH0wB0ykMtq/Y3M8sYOjM8RhHQPJLfKP4rEkykXFg2Vm+BinTIfL6NkH Dbg2zdkO6+AqKqUUODMjdD5iEEvRyV78MpaJqNxuxZv9FCuh98C5Mu0EQ1hu6s2Q SgmkD1SpfHx/HLs4qVsRTKRIv5mz/RIfDhgUPQGTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfEIEgMiaKasNZegd9FvFC4LxAXkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NhYzk5ZGMxLWMwZmMtNGYwNi1hMzQ5LTE2NzYzNDk5MjNiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQX+dAwDQYJKoZIhvcNAQELBQADggEBAEHTDBVDejJEPBBwi0wMdgn4R+Cq 7DBRwTaucyuU9n/Dq8rhWNxZrTlpvXlm0jQoUKSznJBjeqDnF+Fd3qBd2sfteMRq gY3ubHImFJMmhdQ7L/stb41dIiSRffKkAxm07JkkLyYNHld1tQriGaCKauXOQE3N FY0TtxhnDcNtZZO40jwvGK3I1tmJnZj9NBdG1hmxOdBqCL+9i8v5LIuzIacgrSZR 2iYwm/SWlJjsYqhsdib4RfnrTsvfAsG4KE9CiYF9YNOK0Q6OKxKxmDCI6+OqUI+v 67LI4JN6NHOFSLAlvVU5yQ3zbi8JJMlE1W5m588PV77OlOBRl1CTlPWRkZw= -----END CERTIFICATE-----Generated at Thu Nov 21 18:50:38 2024 by rpki-client on console-ams.rpki-client.org