$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa File: d61aefde-15db-4326-8486-f4cd98992cbc.roa (raw, json) Hash identifier: UQTtNIrS89EJq3BvYc+UHu7AS4DY3INFbDOo3x5/xt4= Subject key identifier: F2:55:8E:B0:3A:75:C9:40:AC:A2:C9:6F:25:84:14:27:E9:D5:5D:A4 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 278D7AFF1B3417EE26F1F7EFE06FFC9F642768E8 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 02 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:8d:7a:ff:1b:34:17:ee:26:f1:f7:ef:e0:6f:fc:9f:64:27:68:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=f0500971929db43ef89d9313fcab1cd0c11148177001bc5ef3fcb31dd57eb5d9, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ad:d5:1f:43:c1:7c:2f:1b:a2:3d:b3:dd:30: 31:d1:bd:05:4b:a0:db:e3:dd:0a:77:3c:49:3f:aa: f2:c1:2a:3d:16:8e:c1:1b:73:99:6f:29:70:e0:e7: e9:54:6a:75:7b:f0:db:24:64:42:92:56:37:c4:f7: 1a:70:12:90:c7:1b:59:1d:81:3a:fa:60:f2:0c:58: 1c:5e:3f:db:05:0b:c9:ed:4c:7d:97:30:84:77:c3: fc:7a:65:8f:85:3f:f9:b9:cc:a4:de:dc:ab:59:83: ec:6d:16:15:3c:ca:ff:0a:06:1f:80:b5:f8:0d:c5: df:aa:4b:d7:5f:9c:ca:5c:1c:95:66:85:d1:f9:b7: 00:41:16:50:45:b5:26:9f:c7:16:55:4f:59:cc:dd: ad:5f:75:e0:e8:34:1b:8e:46:f0:8f:cb:2f:58:a5: 59:a9:c8:ee:fd:a8:05:25:4c:d8:a4:2b:d1:1d:c2: 31:1e:aa:8c:87:45:fe:a1:67:37:a7:f5:a1:7f:da: 76:fb:b6:7f:46:48:f9:4d:08:92:8f:c1:46:59:6c: 7b:4d:2c:b8:44:7e:8e:d7:13:0c:5d:60:dc:87:f9: 13:6f:d0:63:97:ff:30:cb:dc:b3:93:ea:f0:6d:ff: 60:c0:61:6e:47:fb:f6:cd:79:63:b2:50:35:f0:67: d0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:55:8E:B0:3A:75:C9:40:AC:A2:C9:6F:25:84:14:27:E9:D5:5D:A4 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.223.0/24 Signature Algorithm: sha256WithRSAEncryption 91:d5:61:df:02:a7:be:05:60:c4:1a:00:f2:42:dc:8b:4c:10: 55:82:85:a4:44:f3:52:7d:f4:b6:d9:41:a8:d6:59:ae:ba:58: 1e:2b:54:fb:89:0d:47:cc:08:9d:1b:5d:27:84:c2:6a:59:8c: 33:47:57:e6:45:1d:49:1c:a9:99:55:0d:bf:4c:1e:19:66:fb: c0:50:8b:bb:35:0b:4d:4f:b8:aa:55:86:cd:92:c0:44:7a:e2: aa:21:dc:f2:97:0b:18:de:74:07:73:e2:f0:79:a1:03:2e:11: 21:db:f6:3c:e4:1a:9b:bd:73:a7:86:d7:93:ca:13:be:42:f6: 7e:e7:3e:24:16:7b:f7:b8:c6:7f:0b:c6:6f:15:e2:fe:89:8f: e4:e0:23:70:d6:4f:51:79:95:a8:eb:da:28:d9:55:6c:fa:b3: a7:01:ae:bf:c6:7a:a3:00:cd:13:4d:53:64:f8:e7:b2:bf:bc: 93:93:2e:5c:1e:45:48:ae:89:10:48:ef:1f:a3:77:25:7c:79: aa:40:0a:76:73:ff:fc:b2:85:4e:79:66:e2:d7:2b:8f:80:0f: 73:9c:d2:52:3b:2d:97:2d:4d:38:73:24:2b:1b:20:83:9f:28: f7:76:25:e6:f6:be:e7:67:b1:c3:72:52:0a:36:c3:3d:9a:2d: 11:3e:92:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ416/xs0F+4m8ffv4G/8n2QnaOgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDUwMDk3MTkyOWRiNDNlZjg5ZDkzMTNmY2FiMWNkMGMx MTE0ODE3NzAwMWJjNWVmM2ZjYjMxZGQ1N2ViNWQ5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDerdUfQ8F8LxuiPbPdMDHRvQVLoNvj3Qp3PEk/qvLBKj0W jsEbc5lvKXDg5+lUanV78NskZEKSVjfE9xpwEpDHG1kdgTr6YPIMWBxeP9sFC8nt TH2XMIR3w/x6ZY+FP/m5zKTe3KtZg+xtFhU8yv8KBh+AtfgNxd+qS9dfnMpcHJVm hdH5twBBFlBFtSafxxZVT1nM3a1fdeDoNBuORvCPyy9YpVmpyO79qAUlTNikK9Ed wjEeqoyHRf6hZzen9aF/2nb7tn9GSPlNCJKPwUZZbHtNLLhEfo7XEwxdYNyH+RNv 0GOX/zDL3LOT6vBt/2DAYW5H+/bNeWOyUDXwZ9DzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8lWOsDp1yUCsoslvJYQUJ+nVXaQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Q2MWFlZmRlLTE1ZGItNDMyNi04NDg2LWY0Y2Q5ODk5MmNiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d8wDQYJKoZIhvcNAQELBQADggEBAJHVYd8Cp74FYMQaAPJC3ItMEFWC haRE81J99LbZQajWWa66WB4rVPuJDUfMCJ0bXSeEwmpZjDNHV+ZFHUkcqZlVDb9M Hhlm+8BQi7s1C01PuKpVhs2SwER64qoh3PKXCxjedAdz4vB5oQMuESHb9jzkGpu9 c6eG15PKE75C9n7nPiQWe/e4xn8Lxm8V4v6Jj+TgI3DWT1F5lajr2ijZVWz6s6cB rr/GeqMAzRNNU2T457K/vJOTLlweRUiuiRBI7x+jdyV8eapACnZz//yyhU55ZuLX K4+AD3Oc0lI7LZctTThzJCsbIIOfKPd2Jeb2vudnscNyUgo2wz2aLRE+kmY= -----END CERTIFICATE-----Generated at Wed May 1 01:04:00 2024 by rpki-client on console-fra.rpki-client.org