$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cac99dc1-c0fc-4f06-a349-1676349923b9.roa File: cac99dc1-c0fc-4f06-a349-1676349923b9.roa (raw, json) Hash identifier: 33ISgxFvJBTTmU6X4HclgPgYSDYsIEBJ77/y09rn/6E= Subject key identifier: 0E:32:5C:FF:DF:21:5D:46:D6:2B:53:83:C6:A8:17:36:BB:B0:EB:4F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 67B7B5EE6B4095E666514F14CEDF735C5DA30735 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cac99dc1-c0fc-4f06-a349-1676349923b9.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:b7:b5:ee:6b:40:95:e6:66:51:4f:14:ce:df:73:5c:5d:a3:07:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=1c17b469aa30d44989c2a3496ab569a510bd8e17f98cc38365d90374fceca972, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f5:72:bf:2b:be:be:99:56:9b:bd:6d:c0:f8: 60:e6:0f:88:e0:70:a3:94:3e:17:64:4f:1e:40:df: 12:44:53:1a:b2:e7:7b:bf:2c:6b:1d:17:12:5c:aa: 49:68:0f:c6:b3:23:20:b6:47:e9:5d:dd:94:1a:43: 85:33:70:0b:bc:6e:c6:90:39:e5:d2:65:43:e5:9f: 3e:6f:36:b4:e1:bd:f1:e5:62:62:85:25:24:38:0a: 3c:bd:ed:fa:51:95:11:e5:df:54:2b:5b:a1:41:41: 90:ee:d3:3f:1a:5a:f1:d1:81:17:05:b2:09:50:c3: c1:be:08:f9:2b:67:14:26:4b:45:04:2f:8d:16:67: 62:79:7c:49:f7:d3:5d:d0:63:01:3f:f9:d9:ad:e5: 49:b5:cf:9a:86:05:03:7b:7a:e6:37:65:0c:54:60: e0:6d:36:15:09:ac:18:30:fa:11:a4:32:37:d4:50: ac:da:ff:a5:37:f4:e0:43:9d:03:7f:56:19:5c:c0: 14:c1:0e:94:df:76:64:ef:6e:0e:fe:8b:60:16:91: ae:a2:25:bc:54:42:c0:6c:fa:df:0f:fe:32:21:62: fc:d8:b4:bf:e0:ff:28:59:f5:56:90:e2:e7:3c:41: 2b:3d:9a:06:84:f5:80:00:3a:5d:ce:45:ee:f0:f9: cf:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:32:5C:FF:DF:21:5D:46:D6:2B:53:83:C6:A8:17:36:BB:B0:EB:4F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cac99dc1-c0fc-4f06-a349-1676349923b9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.208.0/20 Signature Algorithm: sha256WithRSAEncryption 40:6c:45:72:19:7f:14:4c:bc:7e:97:0e:7e:ed:50:16:ac:a6: 82:d7:83:d7:5f:6a:b1:74:3f:37:fa:d6:32:d1:03:c5:72:53: f9:bd:73:b6:01:f6:59:8c:7e:ae:a2:2e:26:93:d6:e4:5b:e3: 69:05:1b:27:7d:dd:34:cb:84:c5:d5:e8:b1:3e:40:14:a0:df: 1b:d5:a6:1f:2b:74:07:a8:ee:85:e2:bf:89:c7:e1:0f:12:ce: 8e:93:68:c2:2c:8d:29:5d:2d:17:8d:9d:76:cb:07:1f:9c:c1: b8:f9:fc:85:dc:14:ce:21:67:a0:b3:f0:6b:42:7d:3e:d1:12: be:22:de:40:f5:88:d1:68:13:d5:bb:0a:4b:a0:25:2f:fe:31: 6a:ed:2d:a9:a2:03:c2:68:64:4d:87:8f:1d:81:4b:29:90:46: 18:e7:a3:cb:b2:38:f3:cb:88:78:f2:8e:4a:37:37:b6:40:c8: cb:e9:0c:8e:b9:c4:b8:7b:57:20:fa:e7:f9:97:b5:3e:0a:ad: 53:db:d7:f9:a8:76:1c:1e:11:7a:27:70:51:c0:5a:c5:3e:53: 0c:f9:71:82:d5:b3:f5:4c:00:84:72:26:c8:4d:5c:65:13:e1: f2:6a:79:cc:0d:9d:bd:53:80:84:a4:da:f7:cb:8e:cc:ad:41: a3:11:b7:94 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ7e17mtAleZmUU8Uzt9zXF2jBzUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzE3YjQ2OWFhMzBkNDQ5ODljMmEzNDk2YWI1NjlhNTEw YmQ4ZTE3Zjk4Y2MzODM2NWQ5MDM3NGZjZWNhOTcyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl9XK/K76+mVabvW3A+GDmD4jgcKOUPhdkTx5A3xJEUxqy 53u/LGsdFxJcqkloD8azIyC2R+ld3ZQaQ4UzcAu8bsaQOeXSZUPlnz5vNrThvfHl YmKFJSQ4Cjy97fpRlRHl31QrW6FBQZDu0z8aWvHRgRcFsglQw8G+CPkrZxQmS0UE L40WZ2J5fEn3013QYwE/+dmt5Um1z5qGBQN7euY3ZQxUYOBtNhUJrBgw+hGkMjfU UKza/6U39OBDnQN/VhlcwBTBDpTfdmTvbg7+i2AWka6iJbxUQsBs+t8P/jIhYvzY tL/g/yhZ9VaQ4uc8QSs9mgaE9YAAOl3ORe7w+c+BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDjJc/98hXUbWK1ODxqgXNruw608wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NhYzk5ZGMxLWMwZmMtNGYwNi1hMzQ5LTE2NzYzNDk5MjNiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQX+dAwDQYJKoZIhvcNAQELBQADggEBAEBsRXIZfxRMvH6XDn7tUBaspoLX g9dfarF0Pzf61jLRA8VyU/m9c7YB9lmMfq6iLiaT1uRb42kFGyd93TTLhMXV6LE+ QBSg3xvVph8rdAeo7oXiv4nH4Q8Szo6TaMIsjSldLReNnXbLBx+cwbj5/IXcFM4h Z6Cz8GtCfT7REr4i3kD1iNFoE9W7CkugJS/+MWrtLamiA8JoZE2Hjx2BSymQRhjn o8uyOPPLiHjyjko3N7ZAyMvpDI65xLh7VyD65/mXtT4KrVPb1/modhweEXoncFHA WsU+Uwz5cYLVs/VMAIRyJshNXGUT4fJqecwNnb1TgISk2vfLjsytQaMRt5Q= -----END CERTIFICATE-----Generated at Thu May 9 00:30:03 2024 by rpki-client on console-ams.rpki-client.org