$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa File: 16b57026-c673-4ef1-bc38-7596daa2e043.roa (raw, json) Hash identifier: LMB3d4T7cPvCTrND2vRY7L3mgzCs97BD1rc7JwB5pus= Subject key identifier: 7F:DB:B2:9F:DD:74:9C:6F:E1:DB:C5:5F:4E:79:14:BE:3B:C5:EF:59 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2C5249BDFF917B04CE084021AFD95F44C6ACB20D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa Signing time: Wed 19 Feb 2025 00:20:14 +0000 ROA not before: Wed 19 Feb 2025 00:20:14 +0000 ROA not after: Wed 26 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:52:49:bd:ff:91:7b:04:ce:08:40:21:af:d9:5f:44:c6:ac:b2:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 19 00:20:14 2025 GMT Not After : Mar 26 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ed:10:60:36:4a:6f:e2:70:a0:1f:9f:fa:3f: ad:c0:36:b6:5f:fe:87:29:7b:dc:0a:a2:5f:04:d5: f6:fa:90:27:d3:15:77:d4:d0:4b:0c:ef:ed:83:0e: 70:ff:9c:3d:83:45:2e:cf:86:68:b2:18:7e:14:98: d7:5c:78:74:fb:e3:f2:50:8a:07:71:45:4f:5c:9b: 98:16:5a:df:41:c2:71:9a:f8:16:92:f4:fa:ab:b0: 81:2b:c4:63:52:71:93:de:ad:60:f1:75:35:fb:17: 78:e8:5c:c6:12:b0:01:5e:18:9a:1e:5a:87:01:13: 49:e7:44:cc:95:78:79:5a:75:18:bc:6e:aa:99:b2: e9:93:dd:93:55:6f:41:8b:26:df:bc:bb:3f:43:16: 69:12:d8:90:24:32:3e:63:98:ec:25:83:83:b1:22: 7a:f5:c8:db:7b:1a:2c:65:9c:e9:d7:f5:08:7e:05: 72:e3:c1:40:d9:be:b5:e3:7f:d8:e2:8c:9e:a7:8a: 69:f5:10:dc:73:a8:ad:24:d1:bd:af:fa:a4:bb:d6: f7:b1:ab:43:99:36:d7:9f:54:5c:78:1d:14:fb:2c: 52:5f:29:99:5a:95:2b:67:93:64:1e:14:6d:74:07: 24:4b:7b:c6:26:8a:64:77:c9:2b:2b:c4:0b:11:6d: f4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:DB:B2:9F:DD:74:9C:6F:E1:DB:C5:5F:4E:79:14:BE:3B:C5:EF:59 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.226.0/24 Signature Algorithm: sha256WithRSAEncryption 89:45:88:3e:cb:26:bf:7c:1b:d7:73:46:a7:02:d7:58:70:d4: c1:25:b0:f8:76:f7:e8:3d:c4:2b:5a:cf:17:80:9b:6a:df:e7: 16:41:f3:1c:68:ce:a3:20:04:4b:19:56:5b:f0:21:08:1b:b4: 36:18:d6:31:5c:b2:36:3e:f8:b3:53:0e:c8:51:f2:d5:1b:f4: 3d:73:87:7c:02:7c:e3:a0:f6:8b:32:e8:7e:0d:4a:96:95:2b: cb:b5:d5:fe:cd:58:8a:e6:d4:4d:76:e2:e1:0c:09:38:3f:73: dc:ad:49:be:cb:e3:2e:4f:2e:37:00:c0:f4:f7:0b:3b:d8:92: bf:63:37:bd:86:71:c2:42:39:1d:82:fd:89:ce:7c:ba:74:aa: 17:c1:70:16:70:6a:6b:81:95:3f:2c:ae:00:68:88:44:16:d5: 3b:40:eb:0c:fa:14:cd:2f:01:9b:5f:65:47:47:92:34:46:5f: 30:0b:cd:a2:a9:63:c6:b5:99:90:e7:1f:65:aa:c0:b6:4a:de: da:9a:fb:4f:a0:07:30:41:fb:10:04:3d:c4:2e:9b:4a:c4:c3: 29:6d:d7:08:9c:a1:98:8a:a7:e5:d2:c9:5b:7a:25:c5:8f:d9: ac:f3:5c:3b:45:78:89:59:35:f5:9a:27:0c:e1:36:2d:95:73: 4d:d4:76:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULFJJvf+RewTOCEAhr9lfRMassg0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMjE5MDAyMDE0WhcNMjUwMzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2IwMTZjYjQ0MjkxNGJiMTA1Njg3ZDBjODhlZmMyZGVl OGYwNWQ5MTNkOWNhYzIwMGUwYzVhMzUxYjAxZjliMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDb7RBgNkpv4nCgH5/6P63ANrZf/ocpe9wKol8E1fb6kCfT FXfU0EsM7+2DDnD/nD2DRS7PhmiyGH4UmNdceHT74/JQigdxRU9cm5gWWt9BwnGa +BaS9PqrsIErxGNScZPerWDxdTX7F3joXMYSsAFeGJoeWocBE0nnRMyVeHladRi8 bqqZsumT3ZNVb0GLJt+8uz9DFmkS2JAkMj5jmOwlg4OxInr1yNt7GixlnOnX9Qh+ BXLjwUDZvrXjf9jijJ6nimn1ENxzqK0k0b2v+qS71vexq0OZNtefVFx4HRT7LFJf KZlalStnk2QeFG10ByRLe8YmimR3ySsrxAsRbfSrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf9uyn910nG/h28VfTnkUvjvF71kwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzE2YjU3MDI2LWM2NzMtNGVmMS1iYzM4LTc1OTZkYWEyZTA0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeIwDQYJKoZIhvcNAQELBQADggEBAIlFiD7LJr98G9dzRqcC11hw1MEl sPh29+g9xCtazxeAm2rf5xZB8xxozqMgBEsZVlvwIQgbtDYY1jFcsjY++LNTDshR 8tUb9D1zh3wCfOOg9osy6H4NSpaVK8u11f7NWIrm1E124uEMCTg/c9ytSb7L4y5P LjcAwPT3CzvYkr9jN72GccJCOR2C/YnOfLp0qhfBcBZwamuBlT8srgBoiEQW1TtA 6wz6FM0vAZtfZUdHkjRGXzALzaKpY8a1mZDnH2WqwLZK3tqa+0+gBzBB+xAEPcQu m0rEwylt1wicoZiKp+XSyVt6JcWP2azzXDtFeIlZNfWaJwzhNi2Vc03Udns= -----END CERTIFICATE-----Generated at Thu Mar 13 23:27:08 2025 by rpki-client