$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/26d77bd4-20cb-42ee-8bae-c418156ab7e4.roa File: 26d77bd4-20cb-42ee-8bae-c418156ab7e4.roa (raw, json) Hash identifier: LgDT7NmZHJ+pupwM1YzzzWLNAHm2aYo76hH9FHmeDm4= Subject key identifier: AB:22:3E:2A:26:E4:06:9C:93:75:4D:54:90:48:D0:44:BC:8D:7C:EC Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 66B5D96030071C49156BDAAC4FC447BFA2471FCA Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/26d77bd4-20cb-42ee-8bae-c418156ab7e4.roa Signing time: Sat 25 Jan 2025 00:00:00 +0000 ROA not before: Sat 25 Jan 2025 00:00:00 +0000 ROA not after: Sat 01 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b5:d9:60:30:07:1c:49:15:6b:da:ac:4f:c4:47:bf:a2:47:1f:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jan 25 00:00:00 2025 GMT Not After : Mar 1 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:58:45:79:f4:eb:cb:59:9b:a5:a8:60:54:6b: 0b:b5:c4:c5:05:f4:2c:de:fb:a9:06:5a:6d:c8:51: 17:3a:70:05:68:d5:ba:e3:c9:9f:24:c1:c2:84:ed: 74:c1:8a:e3:be:1f:d3:e8:c6:88:82:01:99:64:a0: 5c:6a:2a:29:42:d0:c1:88:e0:04:41:a4:84:16:e4: 53:7c:3b:c4:0b:94:d3:47:16:a1:df:f1:7d:32:31: 22:bb:45:3d:de:d8:0b:73:22:dd:14:c7:3a:d2:c1: c3:c0:71:1a:77:2a:ec:fb:51:b5:3b:7e:fa:e2:50: 9a:f3:09:d0:48:be:90:b6:5f:f6:81:6d:cd:e0:dd: b1:23:68:e3:58:e0:e9:6f:b7:73:b9:5f:52:2e:73: b2:2f:0e:f2:5a:1a:95:65:3c:37:13:5c:f1:d5:5a: fa:8b:3d:2f:12:14:24:86:1c:08:90:e5:6a:c0:c1: b7:0f:4b:7f:e2:71:b0:50:41:c2:93:5c:7d:e7:13: ef:77:45:5c:b3:c1:f0:d1:0a:da:e2:d8:80:00:a8: 31:fa:d1:59:ce:35:e4:73:e1:f9:9c:8c:ec:67:51: 4c:4e:ab:50:b8:8e:48:6f:db:4d:c0:55:87:a1:a1: 7f:09:68:4f:52:00:2f:b5:d3:6c:8b:22:0b:04:3d: 24:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:22:3E:2A:26:E4:06:9C:93:75:4D:54:90:48:D0:44:BC:8D:7C:EC X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/26d77bd4-20cb-42ee-8bae-c418156ab7e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.236.0/24 Signature Algorithm: sha256WithRSAEncryption 78:68:49:c1:04:b1:8e:91:74:4d:94:ad:19:cd:15:5e:a8:d7: 52:ba:8d:ae:56:c3:9a:fc:99:a5:2b:a5:60:a2:d5:76:a8:a6: 2b:2b:2a:b5:97:10:77:6c:a2:b5:92:e0:42:5b:42:6a:6e:84: 30:95:c9:5a:43:de:87:fd:15:3a:ef:18:1a:c0:5f:01:b9:0d: 3e:7f:d1:0d:c3:da:06:8b:e7:cc:de:4e:f1:76:27:a1:bd:6e: 16:71:d2:25:7e:9d:6c:98:b8:9d:f1:0a:a3:78:78:9e:81:9f: 94:1d:0f:89:1f:c3:a6:a0:d1:53:6c:85:54:66:fa:75:46:9d: 38:a7:72:e7:08:38:75:e3:c5:5c:4c:54:ed:15:7f:0d:1f:c2: 2e:c1:a3:1f:81:ec:f2:43:3b:44:18:ae:07:f0:dc:a9:39:f9: 91:df:39:b5:f0:96:56:d7:5d:89:70:9f:1d:60:c7:6e:e1:19: 9e:f3:d3:3b:cb:0a:19:18:56:70:70:7f:75:ca:49:d9:d9:e1: a9:9b:91:47:21:3e:1e:37:80:a8:b9:8a:f3:bf:ac:0b:9f:0f: 08:7a:1d:5b:65:1a:f5:ce:11:70:d4:7c:7b:d8:37:2b:8c:70: 05:34:cc:1c:95:6a:56:1f:d0:bf:17:f3:89:df:62:c6:c7:c1: 3c:f8:19:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZrXZYDAHHEkVa9qsT8RHv6JHH8owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMTI1MDAwMDAwWhcNMjUwMzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNmNmZjUxNDVhOGJiZWIyMDU0Yzg0M2I4NWZlOTUwZjU4 MzZiYjkyMzQzOWZhMzMwZDZkMjk2ZWQ5ZjIzZWZiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcWEV59OvLWZulqGBUawu1xMUF9Cze+6kGWm3IURc6cAVo 1brjyZ8kwcKE7XTBiuO+H9PoxoiCAZlkoFxqKilC0MGI4ARBpIQW5FN8O8QLlNNH FqHf8X0yMSK7RT3e2AtzIt0UxzrSwcPAcRp3Kuz7UbU7fvriUJrzCdBIvpC2X/aB bc3g3bEjaONY4Olvt3O5X1Iuc7IvDvJaGpVlPDcTXPHVWvqLPS8SFCSGHAiQ5WrA wbcPS3/icbBQQcKTXH3nE+93RVyzwfDRCtri2IAAqDH60VnONeRz4fmcjOxnUUxO q1C4jkhv203AVYehoX8JaE9SAC+102yLIgsEPSS3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqyI+KibkBpyTdU1UkEjQRLyNfOwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzI2ZDc3YmQ0LTIwY2ItNDJlZS04YmFlLWM0MTgxNTZhYjdlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqewwDQYJKoZIhvcNAQELBQADggEBAHhoScEEsY6RdE2UrRnNFV6o11K6 ja5Ww5r8maUrpWCi1XaopisrKrWXEHdsorWS4EJbQmpuhDCVyVpD3of9FTrvGBrA XwG5DT5/0Q3D2gaL58zeTvF2J6G9bhZx0iV+nWyYuJ3xCqN4eJ6Bn5QdD4kfw6ag 0VNshVRm+nVGnTincucIOHXjxVxMVO0Vfw0fwi7Box+B7PJDO0QYrgfw3Kk5+ZHf ObXwllbXXYlwnx1gx27hGZ7z0zvLChkYVnBwf3XKSdnZ4ambkUchPh43gKi5ivO/ rAufDwh6HVtlGvXOEXDUfHvYNyuMcAU0zByValYf0L8X84nfYsbHwTz4GZ0= -----END CERTIFICATE-----Generated at Sun Feb 16 15:27:59 2025 by rpki-client