$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa File: d61aefde-15db-4326-8486-f4cd98992cbc.roa (raw, json) Hash identifier: 6CNeVFXzAKCI7C8bXQL6lFEglYwYARi9gE9iQ1uEtYc= Subject key identifier: F0:E8:37:D4:D1:64:7C:63:39:C8:4B:11:6C:84:E5:30:10:90:40:E1 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1B1F40E61B1F378816416F2EC40A3D666D5E415D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa Signing time: Sat 09 Sep 2023 00:00:00 +0000 ROA not before: Sat 09 Sep 2023 00:00:00 +0000 ROA not after: Sat 14 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Sep 2023 12:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:1f:40:e6:1b:1f:37:88:16:41:6f:2e:c4:0a:3d:66:6d:5e:41:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:00:00 2023 GMT Not After : Oct 14 23:59:59 2023 GMT Subject: serialNumber=bdd271fd5456dadbc4de280aaec804b6626e5e88e21bfdd3b566d47bea7ed2db, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e6:c3:fb:fc:48:40:36:8b:28:a1:34:f4:60: 1e:f0:1b:0b:00:99:15:57:2f:c1:7c:0d:0a:03:2e: 20:73:e2:f9:c1:82:b6:0e:39:7f:12:91:95:bc:91: 2c:94:9b:b2:4f:d2:2b:2e:c3:7c:fe:35:51:12:b3: ea:dd:a4:76:ab:b1:ae:9c:0e:9c:8d:71:fd:25:55: f2:ac:33:f3:42:69:85:8d:b6:fb:b3:09:e1:71:ce: 42:8c:02:1b:9e:50:7b:bf:55:d4:f2:db:e7:fa:65: 4e:e0:95:fa:90:29:8f:24:20:f3:47:75:be:d1:eb: 04:95:56:d4:43:87:c6:9f:27:d7:e5:04:f1:3a:a9: fc:7a:ad:ea:31:f3:05:91:64:af:b6:d3:1a:65:c6: f2:8e:c8:ee:c8:d8:60:a7:70:f1:3d:ce:18:06:de: 5a:c2:d1:7e:ba:23:7a:f2:cc:27:86:00:27:a8:4e: 08:c9:e8:74:23:1a:90:1d:27:9e:1d:17:55:de:fe: fa:87:f4:fe:09:f5:49:a7:4b:2c:67:ba:c1:88:11: 70:52:c8:76:a7:bc:59:4c:cb:d6:41:1c:fd:d5:56: 3c:c6:ac:d5:11:a4:dd:80:3a:3f:bf:60:30:01:2d: de:da:81:c4:30:c2:89:62:11:d0:08:d4:72:74:36: 16:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E8:37:D4:D1:64:7C:63:39:C8:4B:11:6C:84:E5:30:10:90:40:E1 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.223.0/24 Signature Algorithm: sha256WithRSAEncryption 78:e9:11:d1:99:e6:0c:05:e9:1e:80:5d:b1:17:48:1f:18:77: 20:5c:37:63:a8:c4:c0:2c:eb:76:9c:30:8e:d0:f4:da:67:aa: f2:68:d3:1b:b0:a9:de:40:47:c3:c2:04:ea:20:e6:38:b6:91: 5d:6d:e0:db:f1:0a:61:8c:a7:6e:02:bf:71:42:d8:28:e4:fe: d4:0d:38:58:99:b1:bd:11:92:c4:bc:a5:b2:a7:5a:28:ff:7b: 5a:67:40:8d:31:93:bb:55:61:62:be:01:e8:b0:59:27:f4:16: 02:c1:be:df:42:84:f8:f0:42:e3:98:0e:65:6e:1c:69:2c:f1: 10:36:b7:d4:f3:b8:70:a1:30:df:2b:77:5a:e4:30:70:76:b1: c9:c5:c0:b0:19:76:8c:0e:a5:50:3a:52:94:17:64:28:3c:a5: 6f:f7:de:63:0d:be:7f:fe:34:0d:ce:20:c9:a1:ae:84:33:4c: 08:9d:dd:68:e6:ab:08:24:51:e5:d4:d8:c7:d1:bf:f9:18:09: 18:b0:ab:2d:5f:19:74:7e:83:a5:34:03:83:51:83:5c:d5:49: c0:34:c8:50:30:f9:d6:07:19:4a:2d:83:96:d3:4a:c5:eb:b2: b6:51:c4:13:5d:1f:a2:ad:46:ae:42:ff:d8:3f:e3:98:ab:90: 0b:a3:26:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGx9A5hsfN4gWQW8uxAo9Zm1eQV0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjMwOTA5MDAwMDAwWhcNMjMxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZGQyNzFmZDU0NTZkYWRiYzRkZTI4MGFhZWM4MDRiNjYy NmU1ZTg4ZTIxYmZkZDNiNTY2ZDQ3YmVhN2VkMmRiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ5sP7/EhANosooTT0YB7wGwsAmRVXL8F8DQoDLiBz4vnB grYOOX8SkZW8kSyUm7JP0isuw3z+NVESs+rdpHarsa6cDpyNcf0lVfKsM/NCaYWN tvuzCeFxzkKMAhueUHu/VdTy2+f6ZU7glfqQKY8kIPNHdb7R6wSVVtRDh8afJ9fl BPE6qfx6reox8wWRZK+20xplxvKOyO7I2GCncPE9zhgG3lrC0X66I3ryzCeGACeo TgjJ6HQjGpAdJ54dF1Xe/vqH9P4J9UmnSyxnusGIEXBSyHanvFlMy9ZBHP3VVjzG rNURpN2AOj+/YDABLd7agcQwwoliEdAI1HJ0NhaTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8Og31NFkfGM5yEsRbITlMBCQQOEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Q2MWFlZmRlLTE1ZGItNDMyNi04NDg2LWY0Y2Q5ODk5MmNiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d8wDQYJKoZIhvcNAQELBQADggEBAHjpEdGZ5gwF6R6AXbEXSB8YdyBc N2OoxMAs63acMI7Q9NpnqvJo0xuwqd5AR8PCBOog5ji2kV1t4NvxCmGMp24Cv3FC 2Cjk/tQNOFiZsb0RksS8pbKnWij/e1pnQI0xk7tVYWK+AeiwWSf0FgLBvt9ChPjw QuOYDmVuHGks8RA2t9TzuHChMN8rd1rkMHB2scnFwLAZdowOpVA6UpQXZCg8pW/3 3mMNvn/+NA3OIMmhroQzTAid3WjmqwgkUeXU2MfRv/kYCRiwqy1fGXR+g6U0A4NR g1zVScA0yFAw+dYHGUotg5bTSsXrsrZRxBNdH6KtRq5C/9g/45irkAujJrg= -----END CERTIFICATE-----Generated at Sat Sep 9 00:50:17 2023 by rpki-client on console-ams.rpki-client.org