$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa File: df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa (raw, json) Hash identifier: IqvlfTi+eShgpMRV3FsEbRAbUPyDzmsHAxqdwLNLZug= Subject key identifier: 30:CD:26:98:DA:DD:E1:32:EC:0C:93:22:A1:9F:F9:85:08:D0:93:45 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 260B7E5FB35FC2706D137E9AF8108D02E9FCAF67 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:0b:7e:5f:b3:5f:c2:70:6d:13:7e:9a:f8:10:8d:02:e9:fc:af:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=e6cd15caa2dabfec40eeac70a44ed69633a58e9feef4947d8d72593d3da438b7, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fd:cf:ad:a3:97:fe:22:35:38:b9:25:62:53: a1:69:11:7d:fe:60:6d:f3:2d:9f:97:96:eb:58:2a: 51:40:a3:b2:2d:5c:b7:55:ac:c6:c1:9d:d1:f2:41: 47:27:09:f7:6a:e5:12:9f:74:26:66:6a:73:6b:87: 12:83:53:b9:dd:e0:31:8b:a7:7d:ee:a6:1d:be:5f: 6a:8f:70:91:c6:e2:a1:f5:2e:b6:af:92:27:12:34: b3:a2:74:f1:b6:04:bb:3e:88:b5:32:db:d7:b9:4a: bb:87:5e:be:9a:b1:d0:2a:32:f0:8a:86:11:3b:34: 71:aa:b2:22:2c:1d:9e:ad:8e:f2:1f:ae:52:3a:64: cf:ba:fa:a1:d0:d9:49:37:50:33:21:27:88:a1:7b: 03:b6:5f:84:67:83:c9:be:3d:12:82:3c:6a:0c:4e: 34:78:a0:9d:72:74:bc:96:73:a6:a7:1b:8d:b0:b0: 53:af:26:74:08:24:11:8f:1b:de:c6:64:d8:db:46: 30:22:99:26:94:20:1a:ca:56:37:db:dc:9c:32:dd: 45:f6:6d:ae:c2:9f:83:0d:57:19:cd:d6:2b:8e:0c: 7f:f6:a0:d6:6b:7e:aa:7e:03:1a:f4:44:70:5f:b3: 03:0b:01:28:64:f2:4f:35:48:63:98:68:c2:e3:f9: ff:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:CD:26:98:DA:DD:E1:32:EC:0C:93:22:A1:9F:F9:85:08:D0:93:45 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.232.0/24 Signature Algorithm: sha256WithRSAEncryption 87:8b:86:b8:d3:f0:6b:ce:29:16:77:fb:9d:c2:34:a7:0b:94: 0c:f7:12:b5:b9:c4:f8:0f:d9:0b:60:4b:8c:1a:84:7b:91:01: 63:89:b1:95:5c:49:86:19:82:58:d6:07:14:9c:1f:85:62:5f: bf:84:fd:98:b2:58:ee:a5:6e:b3:ca:38:c4:60:85:ee:e5:65: 54:de:ee:19:8e:ac:75:b4:67:c7:85:d3:f3:b0:f8:ce:1f:ef: 42:7e:c2:8e:f4:7d:64:a9:63:58:88:68:a6:04:74:7f:75:86: aa:9d:dc:41:3c:fa:44:02:40:05:0a:43:d1:f1:1c:4b:86:07: 6c:58:e8:38:40:cf:e1:9d:17:c8:1b:84:75:b6:17:79:2d:79: b4:bc:7f:14:1f:bd:33:d7:87:13:f0:d8:ac:5a:df:01:99:ac: cc:61:e0:a8:3c:f5:1a:89:19:a8:27:02:0c:b7:6b:df:70:90: dc:37:be:24:82:94:54:6d:aa:85:ad:8d:2e:d6:36:eb:a9:4a: c5:d0:af:86:d9:ea:6b:dc:b6:c7:51:00:75:c4:df:44:06:7c: 73:8a:cd:f0:a4:c0:f6:8a:8c:4d:ef:ab:40:b4:45:01:5a:a2: 30:b5:c4:48:94:bd:7f:9c:02:3f:66:f3:0a:ca:d5:e1:0a:db: ac:a5:70:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJgt+X7NfwnBtE36a+BCNAun8r2cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmNkMTVjYWEyZGFiZmVjNDBlZWFjNzBhNDRlZDY5NjMz YTU4ZTlmZWVmNDk0N2Q4ZDcyNTkzZDNkYTQzOGI3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf/c+to5f+IjU4uSViU6FpEX3+YG3zLZ+XlutYKlFAo7It XLdVrMbBndHyQUcnCfdq5RKfdCZmanNrhxKDU7nd4DGLp33uph2+X2qPcJHG4qH1 LravkicSNLOidPG2BLs+iLUy29e5SruHXr6asdAqMvCKhhE7NHGqsiIsHZ6tjvIf rlI6ZM+6+qHQ2Uk3UDMhJ4ihewO2X4Rng8m+PRKCPGoMTjR4oJ1ydLyWc6anG42w sFOvJnQIJBGPG97GZNjbRjAimSaUIBrKVjfb3Jwy3UX2ba7Cn4MNVxnN1iuODH/2 oNZrfqp+Axr0RHBfswMLAShk8k81SGOYaMLj+f+HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMM0mmNrd4TLsDJMioZ/5hQjQk0UwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2RmMTk3ZWNmLWJiOWEtNDJhZS1hMTlhLWE0MTY4ZmU2YTNhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++gwDQYJKoZIhvcNAQELBQADggEBAIeLhrjT8GvOKRZ3+53CNKcLlAz3 ErW5xPgP2QtgS4wahHuRAWOJsZVcSYYZgljWBxScH4ViX7+E/ZiyWO6lbrPKOMRg he7lZVTe7hmOrHW0Z8eF0/Ow+M4f70J+wo70fWSpY1iIaKYEdH91hqqd3EE8+kQC QAUKQ9HxHEuGB2xY6DhAz+GdF8gbhHW2F3ktebS8fxQfvTPXhxPw2Kxa3wGZrMxh 4Kg89RqJGagnAgy3a99wkNw3viSClFRtqoWtjS7WNuupSsXQr4bZ6mvctsdRAHXE 30QGfHOKzfCkwPaKjE3vq0C0RQFaojC1xEiUvX+cAj9m8wrK1eEK26ylcMo= -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:58 2024 by rpki-client on console-ams.rpki-client.org