$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa File: f174f360-a3ca-4335-8414-4727cef110a8.roa (raw, json) Hash identifier: Pzwe7RHa4fvDdEwGJBwr/yblcLc2Y0FuDth/Ckuc4wE= Subject key identifier: AF:EB:67:84:7E:75:06:F1:78:84:1A:EC:A4:58:E8:88:69:72:B8:98 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 06774B3B54578D2C89F1A4090E860531BC219B7A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:77:4b:3b:54:57:8d:2c:89:f1:a4:09:0e:86:05:31:bc:21:9b:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=9616eb975418b50a5439bf05546326ea8f35bad47e24516cc657ee13514cb461, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:3d:23:54:3e:a7:80:8c:fd:18:de:94:29:20: 41:28:bd:fd:a9:d0:69:4d:15:85:f9:6a:f4:30:62: 86:1d:07:93:1d:6d:7c:fc:87:2c:be:b2:37:87:f7: 3a:9a:03:5d:79:c6:2d:1e:0d:57:64:0e:06:76:7c: 33:76:1b:d4:d2:3d:35:1e:43:d4:e8:b1:6e:52:16: aa:34:1c:f6:dc:42:43:85:93:36:c0:67:61:3c:eb: 95:92:5e:a9:67:ff:dd:d6:72:0b:9a:97:20:f1:2e: 05:5d:67:61:f5:37:40:d0:3f:f2:c7:e5:37:71:77: 8f:16:6d:b0:32:37:08:39:32:f9:85:da:cd:60:df: 41:19:1f:7a:86:34:4a:e5:86:bb:c0:85:20:ae:be: 92:ff:f3:e0:7a:5e:40:12:5f:fc:5b:ed:32:91:26: 22:d2:64:5d:c3:f3:c5:35:53:55:75:39:79:8d:64: b1:19:0b:7e:db:a9:1a:91:f2:1c:fc:ae:d3:cc:f0: e5:67:7b:5b:45:17:e6:04:04:b8:07:07:36:ac:9a: 22:9c:94:16:22:49:fb:e8:14:1c:a6:5f:c0:c7:89: 04:e8:04:89:f9:29:bf:d5:95:fa:67:5b:a7:48:e6: 4d:c9:bb:55:e7:69:da:19:41:c1:76:bb:47:c4:40: 83:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:EB:67:84:7E:75:06:F1:78:84:1A:EC:A4:58:E8:88:69:72:B8:98 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 01:16:9a:cd:d5:87:33:35:29:15:ee:5c:32:25:60:ba:69:ca: 04:62:7d:74:66:b2:d1:0b:66:3f:08:8c:c5:7f:60:d2:d5:fd: 0c:78:b6:f3:a5:60:b9:5c:c0:33:dd:af:26:21:20:df:34:30: fb:a5:4a:13:dc:eb:91:18:d8:28:1a:82:fe:bb:e5:ac:0c:47: f4:41:2e:30:63:5c:fb:ff:af:82:64:79:d6:71:12:d7:c5:70: ad:9a:db:5f:d4:41:ae:cc:7c:9a:dd:65:80:53:02:ff:6b:46: c6:7f:c7:44:da:f4:ad:a8:3f:5f:c9:eb:95:0c:63:76:fc:6a: 1e:5f:08:57:66:b3:0f:83:57:03:26:7a:ba:5a:8a:19:a6:fe: 9f:c4:31:a4:df:cd:5d:14:23:d5:80:80:7c:78:63:aa:f1:c4: 9b:8a:5d:cb:f4:67:d9:12:79:37:48:30:93:02:39:73:eb:b2: c9:89:86:2f:53:e5:c4:46:c9:93:43:a3:e1:a3:7e:e0:62:d2: 7e:a7:66:8a:13:d2:25:c3:ad:82:b1:07:32:7c:3b:b5:f3:05: d8:43:92:74:2a:58:c1:51:81:78:9e:b0:ae:b8:4d:0b:a2:dc: a8:1e:0f:72:a9:a6:e2:31:d6:f9:bf:64:ec:d7:3e:11:83:e3: 7d:74:f3:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBndLO1RXjSyJ8aQJDoYFMbwhm3owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjE2ZWI5NzU0MThiNTBhNTQzOWJmMDU1NDYzMjZlYThm MzViYWQ0N2UyNDUxNmNjNjU3ZWUxMzUxNGNiNDYxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKPSNUPqeAjP0Y3pQpIEEovf2p0GlNFYX5avQwYoYdB5Md bXz8hyy+sjeH9zqaA115xi0eDVdkDgZ2fDN2G9TSPTUeQ9TosW5SFqo0HPbcQkOF kzbAZ2E865WSXqln/93WcgualyDxLgVdZ2H1N0DQP/LH5Tdxd48WbbAyNwg5MvmF 2s1g30EZH3qGNErlhrvAhSCuvpL/8+B6XkASX/xb7TKRJiLSZF3D88U1U1V1OXmN ZLEZC37bqRqR8hz8rtPM8OVne1tFF+YEBLgHBzasmiKclBYiSfvoFBymX8DHiQTo BIn5Kb/VlfpnW6dI5k3Ju1XnadoZQcF2u0fEQIM9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUr+tnhH51BvF4hBrspFjoiGlyuJgwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2YxNzRmMzYwLWEzY2EtNDMzNS04NDE0LTQ3MjdjZWYxMTBhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBAAEWms3VhzM1KRXuXDIlYLppygRi fXRmstELZj8IjMV/YNLV/Qx4tvOlYLlcwDPdryYhIN80MPulShPc65EY2Cgagv67 5awMR/RBLjBjXPv/r4JkedZxEtfFcK2a21/UQa7MfJrdZYBTAv9rRsZ/x0Ta9K2o P1/J65UMY3b8ah5fCFdmsw+DVwMmerpaihmm/p/EMaTfzV0UI9WAgHx4Y6rxxJuK Xcv0Z9kSeTdIMJMCOXPrssmJhi9T5cRGyZNDo+GjfuBi0n6nZooT0iXDrYKxBzJ8 O7XzBdhDknQqWMFRgXiesK64TQui3KgeD3KppuIx1vm/ZOzXPhGD43108/I= -----END CERTIFICATE-----Generated at Mon Nov 25 02:47:16 2024 by rpki-client on console-ams.rpki-client.org