$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa File: e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa (raw, json) Hash identifier: VSNRCKprU1JB6qtlr/K2KQK2ajFZKfggVFWD6BQtv6A= Subject key identifier: B6:03:F7:A4:57:BA:A1:4F:85:8B:AC:DD:39:6C:A7:A1:4F:EC:27:5F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4BCDAE539A16DECA6AC9BADEBEC4D9A67573B2B2 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa Signing time: Wed 04 Oct 2023 00:00:00 +0000 ROA not before: Wed 04 Oct 2023 00:00:00 +0000 ROA not after: Wed 08 Nov 2023 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Oct 2023 12:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:cd:ae:53:9a:16:de:ca:6a:c9:ba:de:be:c4:d9:a6:75:73:b2:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:00:00 2023 GMT Not After : Nov 8 23:59:59 2023 GMT Subject: serialNumber=d54ac35146b95b3438592ec436e8a00a42f3a0a27bbc84828caf29ca62c65331, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4d:91:29:82:35:20:98:3b:c8:43:98:7a:44: a0:e6:3f:e0:81:88:36:03:eb:be:4a:d7:b1:a2:f9: ae:cb:d0:f1:b3:12:e1:6b:1d:fe:37:fa:14:97:33: e4:7a:65:b6:da:47:3f:02:34:37:08:5d:ea:49:e6: 79:af:9f:e4:dc:56:6b:5d:65:72:e0:71:62:52:5e: be:69:1d:c1:56:e4:50:a6:1e:8f:49:38:67:85:e2: 8b:66:61:7d:4c:1a:87:7f:c5:b9:0f:99:fc:e0:17: 64:be:f7:2a:2a:19:35:c2:f5:f9:d9:3b:52:60:8f: e6:83:ce:c3:48:e1:f9:99:d5:64:e3:f5:55:10:8a: 3b:06:c3:7e:98:4c:bb:3b:9c:72:55:f7:5a:d6:e0: bb:07:62:2e:ff:b2:01:09:70:c0:6a:ae:4f:8a:ce: f5:fb:d2:b1:d5:d2:75:ef:01:cd:01:03:ba:15:bd: 7f:23:63:c6:4f:91:29:36:08:67:5a:12:15:7b:8e: f0:ad:bf:9e:9e:eb:75:32:f4:5a:c5:a5:7c:98:34: 7d:68:1a:c7:6a:a5:5a:a8:4d:29:87:ff:f7:cf:14: c9:8e:e8:42:01:f2:08:80:19:6b:53:a5:43:d9:c3: 33:3c:08:f1:27:c6:c8:bd:4c:20:a7:26:ef:2b:40: fc:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:03:F7:A4:57:BA:A1:4F:85:8B:AC:DD:39:6C:A7:A1:4F:EC:27:5F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.190.0/24 Signature Algorithm: sha256WithRSAEncryption 25:b5:71:ad:10:3c:0e:e9:84:b4:5f:97:69:bf:7b:29:cd:65: fb:a7:a4:0b:84:44:7e:ad:60:a9:69:37:d6:3e:18:0d:24:7d: cd:4b:06:e5:47:56:ee:b0:61:d1:0c:e1:bd:45:45:66:37:13: 15:f5:58:28:94:43:62:4f:07:81:82:92:aa:4c:a2:b8:13:33: 5f:27:81:3a:50:f1:86:08:bb:d8:fa:4f:16:13:0a:a8:02:72: de:93:87:7c:7b:81:e2:66:56:de:cc:ee:12:ab:40:ee:d6:2a: 55:50:69:e8:5d:33:24:a4:3b:3a:13:b7:5a:c9:89:52:b7:7a: 14:e8:54:0a:a5:80:96:50:37:9d:ef:f6:ba:0b:38:e7:c9:05: f9:2f:10:72:75:8c:6b:4c:cb:f5:63:34:cd:1e:c5:c1:4c:b5: 74:ac:bd:7c:24:45:1c:be:83:23:a5:b7:31:82:04:54:42:ff: 3e:41:62:af:c2:d4:f2:6c:29:de:be:1a:b2:63:86:68:44:7d: 2d:45:e3:32:58:b6:aa:b6:8e:73:85:74:3e:b2:d1:64:43:68: 4f:1c:b6:5b:64:69:bc:da:1a:61:1d:82:75:1c:5f:4f:9d:5c: 86:52:77:2d:98:29:25:a7:24:4a:50:f8:f1:a8:c9:43:22:46: e7:3f:5c:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS82uU5oW3spqybrevsTZpnVzsrIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjMxMDA0MDAwMDAwWhcNMjMxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTRhYzM1MTQ2Yjk1YjM0Mzg1OTJlYzQzNmU4YTAwYTQy ZjNhMGEyN2JiYzg0ODI4Y2FmMjljYTYyYzY1MzMxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+TZEpgjUgmDvIQ5h6RKDmP+CBiDYD675K17Gi+a7L0PGz EuFrHf43+hSXM+R6ZbbaRz8CNDcIXepJ5nmvn+TcVmtdZXLgcWJSXr5pHcFW5FCm Ho9JOGeF4otmYX1MGod/xbkPmfzgF2S+9yoqGTXC9fnZO1Jgj+aDzsNI4fmZ1WTj 9VUQijsGw36YTLs7nHJV91rW4LsHYi7/sgEJcMBqrk+KzvX70rHV0nXvAc0BA7oV vX8jY8ZPkSk2CGdaEhV7jvCtv56e63Uy9FrFpXyYNH1oGsdqpVqoTSmH//fPFMmO 6EIB8giAGWtTpUPZwzM8CPEnxsi9TCCnJu8rQPzxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtgP3pFe6oU+Fi6zdOWynoU/sJ18wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2UzYjg2OTg0LTRlYmYtNGZkZS1iNjhjLWNhMmUzZmJmNzgyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM374wDQYJKoZIhvcNAQELBQADggEBACW1ca0QPA7phLRfl2m/eynNZfun pAuERH6tYKlpN9Y+GA0kfc1LBuVHVu6wYdEM4b1FRWY3ExX1WCiUQ2JPB4GCkqpM orgTM18ngTpQ8YYIu9j6TxYTCqgCct6Th3x7geJmVt7M7hKrQO7WKlVQaehdMySk OzoTt1rJiVK3ehToVAqlgJZQN53v9roLOOfJBfkvEHJ1jGtMy/VjNM0excFMtXSs vXwkRRy+gyOltzGCBFRC/z5BYq/C1PJsKd6+GrJjhmhEfS1F4zJYtqq2jnOFdD6y 0WRDaE8ctltkabzaGmEdgnUcX0+dXIZSdy2YKSWnJEpQ+PGoyUMiRuc/XB4= -----END CERTIFICATE-----Generated at Wed Oct 4 00:31:03 2023 by rpki-client on console-fra.rpki-client.org