$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2fe9db9b-190c-4cb8-b39b-c434b766e412.roa File: 2fe9db9b-190c-4cb8-b39b-c434b766e412.roa (raw, json) Hash identifier: wjz5odlS14dHC4yjiRR8Jaalu2Rs3f4RWtPCipby9Fw= Subject key identifier: 24:82:6F:B6:62:85:D1:FD:BA:F9:CD:6C:53:E0:DF:22:E8:75:88:AC Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 0AED41D7129D1C6E0E2608CB83A7B356C1D94C27 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2fe9db9b-190c-4cb8-b39b-c434b766e412.roa Signing time: Wed 05 Feb 2025 00:00:00 +0000 ROA not before: Wed 05 Feb 2025 00:00:00 +0000 ROA not after: Wed 12 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:ed:41:d7:12:9d:1c:6e:0e:26:08:cb:83:a7:b3:56:c1:d9:4c:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Feb 5 00:00:00 2025 GMT Not After : Mar 12 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:3d:e0:67:7d:5d:63:94:e0:9d:a6:5f:f3: 1b:e7:a6:3f:a7:52:73:f9:88:da:f4:6c:20:f8:71: 3c:7d:6d:f5:fb:2e:04:89:7a:b2:81:a1:e7:9b:74: e5:57:b9:29:77:f9:de:67:8f:ff:f5:bc:89:21:be: a0:8e:8b:8d:b3:9b:b5:ea:a1:26:d7:f5:03:5a:dc: 8b:9c:a5:b4:46:58:ca:d6:27:7f:a5:cc:88:3e:cd: 2c:b7:30:78:57:98:c2:35:3e:61:0e:34:9e:6a:92: 88:d4:3a:e2:8a:65:37:df:24:47:36:33:8e:cc:06: c5:41:20:ee:11:33:cd:27:0c:3b:30:8b:b9:43:c8: 5b:15:0b:2e:45:0b:f5:bf:88:cf:bd:9d:c8:3b:0d: be:17:3b:d8:2d:c6:f3:cd:13:4c:d9:0c:75:f9:26: 8a:cf:d5:af:31:d2:2a:50:74:55:34:71:6b:60:6f: 12:90:34:35:ba:97:e4:b6:02:03:0e:e0:b1:a4:94: 4f:ea:58:08:0f:80:47:bf:83:d6:21:9f:25:bc:97: 26:43:d9:3e:f3:d7:d8:4d:09:3a:b0:5d:b8:8e:46: 4c:f7:ee:af:8f:63:08:5a:d5:c3:35:10:4a:69:f3: 7d:a9:a0:a5:a6:17:62:80:6c:ae:29:53:75:88:f1: 76:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:82:6F:B6:62:85:D1:FD:BA:F9:CD:6C:53:E0:DF:22:E8:75:88:AC X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2fe9db9b-190c-4cb8-b39b-c434b766e412.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.16.0/24 Signature Algorithm: sha256WithRSAEncryption 28:8d:e4:77:1b:29:9e:c3:a8:68:ce:27:97:14:bc:68:0d:a1: 57:89:6b:72:19:3b:39:c2:eb:46:41:1e:38:49:50:a4:c5:e5: 25:77:73:0f:37:e9:f9:f4:54:74:6e:83:45:9d:77:a9:55:3f: b8:e0:82:81:b7:81:a0:d9:0b:f9:ed:5a:b9:48:e4:4c:2f:48: d3:84:15:29:61:28:85:95:81:fe:44:44:d2:6f:8c:85:ae:f4: 11:16:6a:63:9a:88:89:91:f5:69:66:4e:7a:fa:93:76:c7:1b: 88:19:b7:3c:e2:95:d2:d3:d9:ff:7b:6f:c5:b7:69:dc:98:66: 71:bd:15:6f:52:c9:6d:fb:da:93:ed:06:2c:d0:4b:19:dd:50: 65:16:99:f0:35:6f:93:d3:36:57:e9:ec:7f:84:de:d4:90:e8: 22:6b:90:11:8c:3a:cc:86:f8:00:77:f0:26:28:0a:d2:3c:a0: bd:60:32:b8:2b:a5:67:60:96:71:f2:95:a3:6d:c9:d5:27:6c: 36:02:74:8d:dc:24:4b:ee:65:60:d5:7b:10:11:8e:08:cc:40: ca:1a:86:50:a4:2e:4a:b5:64:cb:ab:4f:cb:69:90:70:b4:bd: d7:e2:08:eb:6c:5d:23:ed:b4:fd:6e:86:d9:0a:33:80:4f:24: d5:4e:3b:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCu1B1xKdHG4OJgjLg6ezVsHZTCcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMjA1MDAwMDAwWhcNMjUwMzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDg0MDQ2NGEwMTFmYzdlOGFkNDVkODVhM2EzYTRkOTQ0 OGE3MGUzNzc3NzVmZmNlZGJkNWJkMGMxYmY1YTk4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOzD3gZ31dY5TgnaZf8xvnpj+nUnP5iNr0bCD4cTx9bfX7 LgSJerKBoeebdOVXuSl3+d5nj//1vIkhvqCOi42zm7XqoSbX9QNa3IucpbRGWMrW J3+lzIg+zSy3MHhXmMI1PmEONJ5qkojUOuKKZTffJEc2M47MBsVBIO4RM80nDDsw i7lDyFsVCy5FC/W/iM+9ncg7Db4XO9gtxvPNE0zZDHX5JorP1a8x0ipQdFU0cWtg bxKQNDW6l+S2AgMO4LGklE/qWAgPgEe/g9YhnyW8lyZD2T7z19hNCTqwXbiORkz3 7q+PYwha1cM1EEpp832poKWmF2KAbK4pU3WI8XYtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJIJvtmKF0f26+c1sU+DfIuh1iKwwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJmZTlkYjliLTE5MGMtNGNiOC1iMzliLWM0MzRiNzY2ZTQxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUhAwDQYJKoZIhvcNAQELBQADggEBACiN5HcbKZ7DqGjOJ5cUvGgNoVeJ a3IZOznC60ZBHjhJUKTF5SV3cw836fn0VHRug0Wdd6lVP7jggoG3gaDZC/ntWrlI 5EwvSNOEFSlhKIWVgf5ERNJvjIWu9BEWamOaiImR9WlmTnr6k3bHG4gZtzzildLT 2f97b8W3adyYZnG9FW9SyW372pPtBizQSxndUGUWmfA1b5PTNlfp7H+E3tSQ6CJr kBGMOsyG+AB38CYoCtI8oL1gMrgrpWdglnHylaNtydUnbDYCdI3cJEvuZWDVexAR jgjMQMoahlCkLkq1ZMurT8tpkHC0vdfiCOtsXSPttP1uhtkKM4BPJNVOO5M= -----END CERTIFICATE-----Generated at Sun Feb 16 15:29:01 2025 by rpki-client