$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/26d77bd4-20cb-42ee-8bae-c418156ab7e4.roa File: 26d77bd4-20cb-42ee-8bae-c418156ab7e4.roa (raw, json) Hash identifier: v677y2qJgpgSZLfxWmJl3tSPjJa9ALUk166BeEdIPPI= Subject key identifier: 78:F9:35:B2:9D:C9:83:A7:58:9C:50:7F:E4:F6:77:67:D1:B4:F5:F1 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 76BE5BDDE7B248A8D44C1FEE4470203ADDC86BD1 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/26d77bd4-20cb-42ee-8bae-c418156ab7e4.roa Signing time: Wed 19 Feb 2025 00:20:05 +0000 ROA not before: Wed 19 Feb 2025 00:20:05 +0000 ROA not after: Wed 26 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:be:5b:dd:e7:b2:48:a8:d4:4c:1f:ee:44:70:20:3a:dd:c8:6b:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 19 00:20:05 2025 GMT Not After : Mar 26 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c2:d1:14:4a:56:e7:14:56:f9:0f:a5:bf:48: a0:8a:08:d9:ba:ae:9f:14:fc:8b:a4:b7:8f:e5:6d: 36:d4:b8:0f:15:57:f2:77:d9:34:4a:be:f2:93:b3: 8d:d9:b9:f9:fc:1c:2e:69:30:24:74:00:e3:99:0d: 68:ce:09:ba:85:c4:5c:bc:5c:0d:5a:d0:dc:3e:e8: 3e:d0:63:56:e1:d8:f5:66:d6:01:60:b3:80:aa:9c: 2c:22:c1:e4:9c:29:03:cb:64:ae:86:9a:17:c2:6a: a5:c1:92:7d:98:0a:c4:d0:57:0f:eb:98:37:e6:59: 51:d9:50:0c:0e:78:45:ef:b3:ab:d6:42:42:4d:37: c0:13:bb:67:b6:91:58:17:28:98:13:69:8e:eb:b8: 7c:86:5e:69:4a:89:33:c9:4d:41:4e:ca:51:1e:49: 3b:45:a2:b9:a9:4a:98:c0:da:60:45:30:7c:96:81: 8c:cc:92:75:e1:4d:27:4e:60:f5:3b:64:fa:95:f4: 6d:8c:5d:66:0c:ad:b8:0f:1d:b1:6d:19:7f:75:ad: c1:77:82:cd:ab:85:62:35:9b:a8:a4:7d:dc:16:14: 29:c5:d9:b5:a3:d8:8e:93:d2:ad:41:37:dd:f5:5e: 5a:a2:cf:4f:42:ed:78:69:39:1e:f8:b4:94:fd:1b: d0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F9:35:B2:9D:C9:83:A7:58:9C:50:7F:E4:F6:77:67:D1:B4:F5:F1 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/26d77bd4-20cb-42ee-8bae-c418156ab7e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.236.0/24 Signature Algorithm: sha256WithRSAEncryption 61:85:a1:04:c4:da:a3:a3:b2:0f:02:28:d4:be:81:17:37:dc: 08:22:78:c9:5d:7c:8c:07:0c:31:25:21:55:04:4f:36:5d:28: 40:f0:81:77:be:66:aa:ff:5e:b3:69:78:a6:a1:70:25:e3:6d: c7:26:97:ae:33:49:23:a5:82:ff:6b:1f:ac:c6:b3:24:eb:ca: 59:fd:54:5c:25:0c:5c:68:d7:4f:40:9d:f0:95:e0:11:97:d8: a6:44:ca:bc:34:c5:bc:fc:76:2b:a7:a1:da:1a:c2:00:48:a2: d2:8d:6c:ca:aa:71:f8:41:1c:09:9b:a0:7c:32:97:0f:19:83: a8:12:dc:03:38:01:63:a5:59:f2:7e:01:a0:52:28:d0:06:59: 75:92:3f:0d:cf:c0:12:26:33:68:b2:33:f3:41:7d:94:03:0e: a3:46:f1:f6:19:95:05:35:c2:ae:39:78:d9:3a:ee:e9:fb:85: 69:f1:cb:8b:08:2c:22:d5:dd:d2:81:c0:8c:36:df:e6:21:b7: 6e:9d:81:53:1b:99:56:85:40:12:7f:87:9b:3a:c9:d1:c7:71: 44:20:17:73:3c:74:7e:99:4b:4d:23:2b:65:d9:d4:b8:f2:c2: dc:e1:77:b4:7f:46:6b:39:66:e9:fd:05:91:21:2e:1e:98:bb: a6:f8:5e:de -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdr5b3eeySKjUTB/uRHAgOt3Ia9EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMjE5MDAyMDA1WhcNMjUwMzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWZiNGVkNGU3ZDEzYzdhZDYyNWQwMmM1MWVkMTNlYzY5 YTQyZWIyZjdjODYxNThhNWYyMWY4OWI3NjExMDUzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiwtEUSlbnFFb5D6W/SKCKCNm6rp8U/Iukt4/lbTbUuA8V V/J32TRKvvKTs43Zufn8HC5pMCR0AOOZDWjOCbqFxFy8XA1a0Nw+6D7QY1bh2PVm 1gFgs4CqnCwiweScKQPLZK6GmhfCaqXBkn2YCsTQVw/rmDfmWVHZUAwOeEXvs6vW QkJNN8ATu2e2kVgXKJgTaY7ruHyGXmlKiTPJTUFOylEeSTtFormpSpjA2mBFMHyW gYzMknXhTSdOYPU7ZPqV9G2MXWYMrbgPHbFtGX91rcF3gs2rhWI1m6ikfdwWFCnF 2bWj2I6T0q1BN931Xlqiz09C7XhpOR74tJT9G9A1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUePk1sp3Jg6dYnFB/5PZ3Z9G09fEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzI2ZDc3YmQ0LTIwY2ItNDJlZS04YmFlLWM0MTgxNTZhYjdlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqewwDQYJKoZIhvcNAQELBQADggEBAGGFoQTE2qOjsg8CKNS+gRc33Agi eMldfIwHDDElIVUETzZdKEDwgXe+Zqr/XrNpeKahcCXjbccml64zSSOlgv9rH6zG syTryln9VFwlDFxo109AnfCV4BGX2KZEyrw0xbz8diunodoawgBIotKNbMqqcfhB HAmboHwylw8Zg6gS3AM4AWOlWfJ+AaBSKNAGWXWSPw3PwBImM2iyM/NBfZQDDqNG 8fYZlQU1wq45eNk67un7hWnxy4sILCLV3dKBwIw23+Yht26dgVMbmVaFQBJ/h5s6 ydHHcUQgF3M8dH6ZS00jK2XZ1Ljywtzhd7R/Rms5Zun9BZEhLh6Yu6b4Xt4= -----END CERTIFICATE-----Generated at Thu Mar 13 23:25:40 2025 by rpki-client