$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa File: 16b57026-c673-4ef1-bc38-7596daa2e043.roa (raw, json) Hash identifier: kIPHd+LDiWd3xk/bhaXjq0sqcJp69/+/iLwDt8N12RA= Subject key identifier: D9:83:65:35:D1:EC:D5:A9:4D:EE:8B:32:F7:32:45:7E:D6:E9:B9:5E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 78D112C87654D8CF250DCD3C5C46F68759FD2EAE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa Signing time: Sat 25 Jan 2025 00:00:00 +0000 ROA not before: Sat 25 Jan 2025 00:00:00 +0000 ROA not after: Sat 01 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:d1:12:c8:76:54:d8:cf:25:0d:cd:3c:5c:46:f6:87:59:fd:2e:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jan 25 00:00:00 2025 GMT Not After : Mar 1 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ae:dc:37:ff:c7:22:7d:84:b3:1c:6e:cb:6d: 66:71:d3:46:44:99:97:26:f9:d9:94:0c:97:a6:61: e0:7c:3f:09:4f:57:32:e5:e1:f9:5e:c2:1e:bd:70: eb:cc:05:fb:6e:cf:1b:fe:d6:10:ca:d7:c9:49:d0: 62:e0:3c:e8:30:df:53:d5:b0:93:be:4b:ec:06:61: 80:e9:33:51:c8:1a:c4:68:b1:fc:b5:38:1a:5b:1a: a9:d0:d0:76:01:e8:b8:65:1e:d3:8e:42:1c:3f:a5: 6b:16:ae:9a:a5:03:b3:01:89:79:9e:41:9a:98:48: e9:3a:36:88:87:7d:a8:b7:3c:11:92:93:2d:50:03: 8c:43:e3:ff:f9:3a:55:42:ae:5a:17:60:c3:f8:23: 81:4e:8c:50:d4:9c:af:23:61:5e:49:cf:22:c6:7a: f9:73:86:e3:1a:61:eb:56:56:35:54:dd:80:9f:0c: 03:36:05:85:4c:ff:04:b2:61:b8:79:d7:e5:91:20: 36:d7:6e:7e:9c:a3:83:e1:28:0a:af:47:13:3d:e8: 84:b9:17:e3:e0:be:52:dd:74:c7:20:3c:20:6e:57: 6f:ea:a9:c6:18:fd:32:df:c0:32:c1:4f:eb:f1:64: 70:27:97:46:bc:67:71:bc:74:6b:d9:0f:1f:7f:b2: fa:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:83:65:35:D1:EC:D5:A9:4D:EE:8B:32:F7:32:45:7E:D6:E9:B9:5E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.226.0/24 Signature Algorithm: sha256WithRSAEncryption 62:57:0c:83:e4:fa:37:0c:4a:77:0b:77:c0:d5:1e:50:ab:7f: ce:05:74:40:96:27:04:73:db:2f:28:53:32:36:dd:57:15:46: 0d:d4:ce:7a:7e:bc:25:1b:bb:f6:a8:2b:56:79:70:e8:24:23: d9:4a:39:ac:27:17:82:99:61:d3:48:b8:47:ce:5a:4e:66:3c: 83:92:c6:70:1f:f3:f5:e5:fc:0a:de:e9:2b:b3:e2:fa:8a:4e: b0:c1:55:a5:24:02:6f:0e:e6:7d:83:c0:38:1c:6f:5e:8a:60: 37:ec:ca:cc:52:fb:5d:35:af:e2:ee:17:c1:ad:32:a4:66:f4: 7e:5b:83:93:8b:eb:a2:21:d8:12:cb:e8:e2:9f:69:6c:1d:bd: e4:02:b3:a2:8e:30:5f:da:3c:11:12:ee:b4:54:a0:b8:c3:06: 1c:ed:60:e6:1d:97:a0:b4:ac:0d:9c:b7:be:1a:89:8d:69:54: 3a:bd:b2:4d:a7:0e:34:cd:18:9b:8d:d2:6e:cb:fc:8b:7f:38: 64:32:17:d3:9f:4a:95:f9:1f:1f:4e:42:ae:d6:63:3c:a5:26: 25:b2:c4:d3:17:99:f3:16:32:a6:d2:41:f5:7d:21:c7:47:be: e6:7e:19:f1:37:98:4f:05:a2:62:95:cb:2e:7d:ee:56:45:93: 07:b0:61:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeNESyHZU2M8lDc08XEb2h1n9Lq4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMTI1MDAwMDAwWhcNMjUwMzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTNlMTg1NjBiNGEwOGY0YzE0N2NkMmNmMDYzOGYzM2Y2 NjQ4OWUyZTE3NjQyNWQyOGY3M2QxYmJlMmRhZWViMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1rtw3/8cifYSzHG7LbWZx00ZEmZcm+dmUDJemYeB8PwlP VzLl4flewh69cOvMBftuzxv+1hDK18lJ0GLgPOgw31PVsJO+S+wGYYDpM1HIGsRo sfy1OBpbGqnQ0HYB6LhlHtOOQhw/pWsWrpqlA7MBiXmeQZqYSOk6NoiHfai3PBGS ky1QA4xD4//5OlVCrloXYMP4I4FOjFDUnK8jYV5JzyLGevlzhuMaYetWVjVU3YCf DAM2BYVM/wSyYbh51+WRIDbXbn6co4PhKAqvRxM96IS5F+PgvlLddMcgPCBuV2/q qcYY/TLfwDLBT+vxZHAnl0a8Z3G8dGvZDx9/svqlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2YNlNdHs1alN7osy9zJFftbpuV4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzE2YjU3MDI2LWM2NzMtNGVmMS1iYzM4LTc1OTZkYWEyZTA0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeIwDQYJKoZIhvcNAQELBQADggEBAGJXDIPk+jcMSncLd8DVHlCrf84F dECWJwRz2y8oUzI23VcVRg3Uznp+vCUbu/aoK1Z5cOgkI9lKOawnF4KZYdNIuEfO Wk5mPIOSxnAf8/Xl/Are6Suz4vqKTrDBVaUkAm8O5n2DwDgcb16KYDfsysxS+101 r+LuF8GtMqRm9H5bg5OL66Ih2BLL6OKfaWwdveQCs6KOMF/aPBES7rRUoLjDBhzt YOYdl6C0rA2ct74aiY1pVDq9sk2nDjTNGJuN0m7L/It/OGQyF9OfSpX5Hx9OQq7W YzylJiWyxNMXmfMWMqbSQfV9IcdHvuZ+GfE3mE8FomKVyy597lZFkwewYbg= -----END CERTIFICATE-----Generated at Sun Feb 16 15:28:58 2025 by rpki-client