$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ebd968d3-ce48-4118-aed7-b938cd13153f.roa File: ebd968d3-ce48-4118-aed7-b938cd13153f.roa (raw, json) Hash identifier: U4fbD+21CR9saBZRE9l9evVGkWi8Et7WAT7tnqWewic= Subject key identifier: 37:B1:D9:FA:61:0C:37:64:76:F6:87:76:A9:49:0B:98:92:96:B0:D4 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2EBC41D2B8512D94DCAA61DF692C38C4981D43CF Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ebd968d3-ce48-4118-aed7-b938cd13153f.roa Signing time: Fri 29 Mar 2024 00:00:00 +0000 ROA not before: Fri 29 Mar 2024 00:00:00 +0000 ROA not after: Fri 03 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:bc:41:d2:b8:51:2d:94:dc:aa:61:df:69:2c:38:c4:98:1d:43:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Mar 29 00:00:00 2024 GMT Not After : May 3 23:59:59 2024 GMT Subject: serialNumber=eb574d9f48b3b9a00c1a5f97a7a1dfb1200f24ffb10a4f88d46c33cb7643a338, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f0:77:d2:5c:78:71:25:15:f0:28:4c:6f:85: f0:85:68:6b:a0:d9:53:99:b0:a9:a9:32:05:85:93: 6c:33:c3:c0:6e:22:ea:02:53:89:30:40:47:35:71: 0a:53:d8:57:62:ba:98:ef:eb:09:0c:01:bc:a0:37: f1:ea:bf:20:50:d8:a7:c4:fa:0a:05:7e:1b:43:3d: ae:a1:bc:2b:2e:b7:fb:d7:43:45:29:bc:23:92:7f: 43:28:41:bb:e8:4c:96:73:ff:76:16:ee:1c:38:33: db:f1:65:eb:61:d7:19:c4:54:e7:ce:ff:24:f4:48: 26:63:10:cb:7c:48:62:6a:a4:4a:14:ae:b0:92:ea: f4:db:52:a7:57:5b:7b:b2:ef:26:93:22:26:2c:39: e0:c1:31:97:ac:38:ee:ba:b1:9e:fd:05:3e:f9:f4: 8d:45:17:68:68:83:d1:4e:12:06:02:e2:a5:95:6a: 96:11:19:54:ea:37:b0:3e:aa:fb:87:91:7e:76:6d: 7b:ed:74:c2:f1:e6:a6:27:e5:cc:e1:fe:bb:e5:a9: af:56:e6:c2:68:f0:02:e5:9e:39:2e:d9:4c:1c:27: 41:fb:74:88:85:c9:02:ad:67:9a:f3:8a:2e:2a:4b: 2b:10:83:bc:13:23:48:3a:96:52:80:03:bc:8d:78: b9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:B1:D9:FA:61:0C:37:64:76:F6:87:76:A9:49:0B:98:92:96:B0:D4 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ebd968d3-ce48-4118-aed7-b938cd13153f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.228.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:dd:06:21:07:cf:65:85:f3:a6:8f:bf:c1:10:61:5c:fe:11: 11:7d:b7:a7:2c:29:73:0d:20:4e:8d:57:87:06:3d:01:2b:71: 50:fa:9e:d9:69:83:47:0c:3a:d6:2c:fb:99:ea:a7:71:ea:6f: d5:33:04:dc:4b:82:d9:ed:b5:5b:0b:e4:61:e2:aa:57:74:44: c6:da:0b:0a:9e:af:d8:5b:36:0f:ad:5b:7f:31:cb:90:a3:f9: 84:1d:ac:b6:e9:a7:d8:0b:df:81:0a:ea:25:6f:cd:f0:ce:2e: c6:30:e0:21:9c:ec:11:13:77:a9:21:1f:87:59:af:e3:5e:0e: 54:b7:d7:0b:bd:fc:6c:de:c0:b1:cf:64:c3:95:14:0f:46:6e: 21:9a:27:31:ce:71:d4:e5:3b:60:ce:e9:0b:41:4d:ed:3a:65: 80:e1:b5:4a:a8:f3:2e:45:67:3b:78:aa:82:7c:1c:48:8b:ed: 5e:80:f7:cc:33:d9:30:94:ef:1b:f2:d4:fd:55:34:60:45:51: e1:79:20:4c:0b:a1:40:e3:e8:b2:87:aa:81:c8:02:8a:bb:8a: a8:45:4d:fb:72:b1:9f:b8:0c:68:9e:bf:d3:6d:b2:82:ae:3f: ed:e6:72:fb:f0:50:60:e0:63:4a:fe:25:94:3b:3c:6c:20:94: 98:3f:61:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULrxB0rhRLZTcqmHfaSw4xJgdQ88wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQwMzI5MDAwMDAwWhcNMjQwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjU3NGQ5ZjQ4YjNiOWEwMGMxYTVmOTdhN2ExZGZiMTIw MGYyNGZmYjEwYTRmODhkNDZjMzNjYjc2NDNhMzM4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy8HfSXHhxJRXwKExvhfCFaGug2VOZsKmpMgWFk2wzw8Bu IuoCU4kwQEc1cQpT2Fdiupjv6wkMAbygN/HqvyBQ2KfE+goFfhtDPa6hvCsut/vX Q0UpvCOSf0MoQbvoTJZz/3YW7hw4M9vxZeth1xnEVOfO/yT0SCZjEMt8SGJqpEoU rrCS6vTbUqdXW3uy7yaTIiYsOeDBMZesOO66sZ79BT759I1FF2hog9FOEgYC4qWV apYRGVTqN7A+qvuHkX52bXvtdMLx5qYn5czh/rvlqa9W5sJo8ALlnjku2UwcJ0H7 dIiFyQKtZ5rzii4qSysQg7wTI0g6llKAA7yNeLm9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUN7HZ+mEMN2R29od2qUkLmJKWsNQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ViZDk2OGQzLWNlNDgtNDExOC1hZWQ3LWI5MzhjZDEzMTUzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeQwDQYJKoZIhvcNAQELBQADggEBAEvdBiEHz2WF86aPv8EQYVz+ERF9 t6csKXMNIE6NV4cGPQErcVD6ntlpg0cMOtYs+5nqp3Hqb9UzBNxLgtnttVsL5GHi qld0RMbaCwqer9hbNg+tW38xy5Cj+YQdrLbpp9gL34EK6iVvzfDOLsYw4CGc7BET d6khH4dZr+NeDlS31wu9/GzewLHPZMOVFA9GbiGaJzHOcdTlO2DO6QtBTe06ZYDh tUqo8y5FZzt4qoJ8HEiL7V6A98wz2TCU7xvy1P1VNGBFUeF5IEwLoUDj6LKHqoHI Aoq7iqhFTftysZ+4DGiev9NtsoKuP+3mcvvwUGDgY0r+JZQ7PGwglJg/YXI= -----END CERTIFICATE-----Generated at Thu Apr 18 00:21:02 2024 by rpki-client on console-ams.rpki-client.org