$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa File: e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa (raw, json) Hash identifier: nX9tvwo3VynuQOkPCtbwqhswXJehDtHXe9FdnTujv8M= Subject key identifier: 4A:6A:DE:B5:FF:95:4E:33:6F:77:F1:AD:45:CD:67:82:AD:8D:67:D7 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 379F2382F90EB3868595B0A11857BFFCEBBC1051 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:9f:23:82:f9:0e:b3:86:85:95:b0:a1:18:57:bf:fc:eb:bc:10:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=eb71bc291f3902dd0199b6eddcca34379c04bc7c60650baedb183a2162416785, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a6:e8:86:0c:84:29:a8:8f:85:78:08:6c:35: 6e:1e:93:d9:49:c2:16:86:2b:00:d4:2c:4c:30:36: ae:39:bb:13:2f:57:82:81:fa:4f:06:04:b7:c0:64: e8:20:70:bd:f9:38:a6:f9:1f:2f:0a:84:df:4a:7d: b1:6f:ab:5e:ab:fa:a6:fd:12:54:e3:0e:26:d6:30: ec:1d:74:3e:f6:6e:87:f0:4d:61:11:89:34:94:79: f8:5e:15:53:25:7a:b2:ae:d8:6f:78:78:3d:48:7d: 49:36:f6:f7:46:ec:2f:7d:6f:27:fb:9a:b4:ce:14: 1b:f0:66:a4:c1:f9:a9:6e:73:65:2e:e8:e9:38:80: be:f8:9a:69:c2:9b:2e:0c:b3:fb:f6:79:b5:22:a8: 44:06:42:f7:8b:fc:7c:87:41:3e:28:d4:77:9b:41: a4:98:da:59:72:fc:87:b5:b2:3b:4d:c4:19:5c:c7: 0b:8d:d2:05:2e:8c:5e:d8:d9:2f:c0:1d:46:b5:77: af:d9:d1:ed:ac:0d:e2:5f:53:25:5b:c5:2f:00:63: 1a:a3:50:d0:47:b5:53:50:1c:3e:1e:29:25:4a:1f: 48:00:41:f8:fe:8b:d4:ec:0f:68:c8:6e:b6:4e:87: 4a:d1:e8:b2:ed:ba:f9:c6:d5:6b:f1:77:0d:39:67: 3b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6A:DE:B5:FF:95:4E:33:6F:77:F1:AD:45:CD:67:82:AD:8D:67:D7 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.190.0/24 Signature Algorithm: sha256WithRSAEncryption 73:0f:16:73:af:fc:8e:cb:aa:a2:b4:48:70:b0:5b:7e:b4:86: 66:e6:c8:3a:b8:ad:89:af:15:97:e4:84:d6:fa:52:9b:59:a8: eb:b3:47:df:06:f0:39:1b:be:54:b5:37:9e:14:68:3a:de:9f: e0:a1:ad:b9:cb:89:09:ca:82:e9:64:13:37:58:2f:02:d1:49: 62:6e:bb:32:e4:1d:39:8f:33:0d:5c:02:5a:3d:9d:b4:fa:c1: 0c:6d:0b:ef:8e:86:e9:22:0a:cc:08:15:d2:64:6b:22:b1:08: 89:3a:55:95:67:7a:c4:16:91:f3:2a:5b:95:75:ad:ac:db:94: 17:67:54:f1:22:75:90:8b:6c:3c:02:fe:88:cc:da:9b:fa:3a: 90:3c:ae:8d:04:17:3e:ed:64:21:91:83:f7:48:24:e9:df:da: ba:9a:e2:c6:34:aa:49:85:f4:2b:eb:8c:a3:36:27:af:fe:ed: 87:52:c0:4d:3c:b8:27:42:5f:ba:b2:59:68:53:7d:43:4a:78: 00:14:51:9c:ba:5f:38:98:07:a9:1f:2a:be:7f:38:be:e4:7d: a8:b9:fe:cf:a4:54:fb:cc:8a:e6:79:89:6d:4f:14:6e:5f:9b: 2d:3f:4d:94:eb:0f:30:4c:0d:f1:40:65:72:24:8b:10:5e:b9: 03:f9:09:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN58jgvkOs4aFlbChGFe//Ou8EFEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjcxYmMyOTFmMzkwMmRkMDE5OWI2ZWRkY2NhMzQzNzlj MDRiYzdjNjA2NTBiYWVkYjE4M2EyMTYyNDE2Nzg1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIpuiGDIQpqI+FeAhsNW4ek9lJwhaGKwDULEwwNq45uxMv V4KB+k8GBLfAZOggcL35OKb5Hy8KhN9KfbFvq16r+qb9ElTjDibWMOwddD72bofw TWERiTSUefheFVMlerKu2G94eD1IfUk29vdG7C99byf7mrTOFBvwZqTB+aluc2Uu 6Ok4gL74mmnCmy4Ms/v2ebUiqEQGQveL/HyHQT4o1HebQaSY2lly/Ie1sjtNxBlc xwuN0gUujF7Y2S/AHUa1d6/Z0e2sDeJfUyVbxS8AYxqjUNBHtVNQHD4eKSVKH0gA Qfj+i9TsD2jIbrZOh0rR6LLtuvnG1Wvxdw05ZztvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSmretf+VTjNvd/GtRc1ngq2NZ9cwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2UzYjg2OTg0LTRlYmYtNGZkZS1iNjhjLWNhMmUzZmJmNzgyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM374wDQYJKoZIhvcNAQELBQADggEBAHMPFnOv/I7LqqK0SHCwW360hmbm yDq4rYmvFZfkhNb6UptZqOuzR98G8DkbvlS1N54UaDren+ChrbnLiQnKgulkEzdY LwLRSWJuuzLkHTmPMw1cAlo9nbT6wQxtC++OhukiCswIFdJkayKxCIk6VZVnesQW kfMqW5V1razblBdnVPEidZCLbDwC/ojM2pv6OpA8ro0EFz7tZCGRg/dIJOnf2rqa 4sY0qkmF9CvrjKM2J6/+7YdSwE08uCdCX7qyWWhTfUNKeAAUUZy6XziYB6kfKr5/ OL7kfai5/s+kVPvMiuZ5iW1PFG5fmy0/TZTrDzBMDfFAZXIkixBeuQP5Cdk= -----END CERTIFICATE-----Generated at Thu Nov 21 17:28:40 2024 by rpki-client on console-fra.rpki-client.org