$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa File: 5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa (raw, json) Hash identifier: 4DmZuCwd0x34dKwSEn8aakRFDCZxG0I+yXldcmej7Ik= Subject key identifier: 6F:83:1F:B8:08:5A:B1:81:D8:6A:4E:C7:F3:DB:FA:CA:25:2D:8F:49 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7D07C8706B280245FD370654836883D39FCF54A1 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa Signing time: Sat 25 Jan 2025 00:00:00 +0000 ROA not before: Sat 25 Jan 2025 00:00:00 +0000 ROA not after: Sat 01 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:07:c8:70:6b:28:02:45:fd:37:06:54:83:68:83:d3:9f:cf:54:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jan 25 00:00:00 2025 GMT Not After : Mar 1 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:61:44:b4:84:80:ea:cd:0d:76:2d:ac:90:3d: 31:28:f0:4e:a8:7e:02:b3:fa:70:16:f9:1d:a7:e3: e8:dd:cc:c3:a9:91:2e:98:ad:54:52:6a:e6:7c:42: 09:fc:45:1d:75:ad:e0:f4:2c:d6:cd:e5:2a:44:2d: 97:5b:e3:8e:13:9e:36:01:ea:20:04:c3:c5:06:e4: 07:40:3a:0a:e7:c1:45:c3:cb:fe:94:91:61:b8:85: e6:35:0d:c8:54:f1:f0:28:dd:d9:6a:6d:94:a5:6c: 61:6e:65:9d:37:e9:99:d6:7d:8d:58:88:b8:59:39: fc:25:69:d5:c0:44:11:30:b8:df:7f:d4:db:78:6a: a8:7e:29:10:b2:20:15:17:82:c8:0e:a6:3b:d6:01: 9b:a6:aa:98:60:b2:59:9d:35:f9:bd:55:09:2f:e6: e8:0b:ce:98:23:bd:19:97:f5:c2:24:ee:c6:8e:e4: a0:81:84:da:89:e3:0c:19:87:09:7e:de:a6:69:4e: 00:56:14:13:a0:14:d4:fb:0e:5b:49:b9:15:96:eb: c0:e3:fc:76:16:26:2b:4e:6c:6c:fd:20:0d:a9:6e: 43:54:43:7e:ea:bc:fa:f7:49:86:3a:35:bf:53:9e: 72:e0:af:14:f1:c9:d3:88:27:fc:c1:fe:fe:35:77: 20:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:83:1F:B8:08:5A:B1:81:D8:6A:4E:C7:F3:DB:FA:CA:25:2D:8F:49 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.233.0/24 Signature Algorithm: sha256WithRSAEncryption 79:c8:c1:72:24:df:60:96:06:8e:1c:10:8c:1c:62:d8:58:f8: 16:b0:f5:43:69:99:bd:36:67:ca:53:02:a5:3c:3f:70:1a:90: 77:3c:74:bb:0b:c5:5c:24:b9:4b:fb:5f:0f:d4:4b:b4:59:94: 5d:eb:0b:fe:c5:a6:93:3b:b8:f4:a9:b1:e8:61:0a:e7:5e:f1: e7:c6:45:79:a1:24:2e:f5:3d:4c:05:52:ce:9b:57:75:4c:2e: 48:a8:00:06:14:1d:5a:d1:f2:a0:83:28:75:7c:a8:7c:30:5b: aa:89:45:f4:c3:27:4e:80:b8:b4:48:71:5d:05:78:70:d9:27: 7a:57:53:a1:c5:5d:fd:d0:62:82:1d:2d:e1:36:06:48:29:52: 6a:80:99:9b:45:3b:09:a2:3f:36:58:a0:17:18:65:51:67:0f: 29:b4:d2:1f:6d:8c:b7:1b:18:01:48:08:ab:63:c3:f4:2f:11: 77:6f:a5:df:18:0b:8d:e4:1f:8a:bf:2c:b9:a9:86:a6:e2:dd: a8:dd:e9:ea:e3:94:9c:8b:bb:42:86:76:71:5c:cd:65:c4:24: 6b:55:cf:10:9c:05:c0:e3:46:9a:05:b9:e7:23:3a:b4:28:1a: af:78:4e:e5:39:08:86:f6:bd:b6:6e:64:a1:aa:7c:5c:26:f4: ba:6d:33:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfQfIcGsoAkX9NwZUg2iD05/PVKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMTI1MDAwMDAwWhcNMjUwMzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWMxMTc5ZmM3YWRiMGQ5NzhkNzkwZWU0NmE2MmQzNzBm NWJkOThhODE0ZGZjYzJmNjBlMTVmYTJkODkwMjZkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNYUS0hIDqzQ12LayQPTEo8E6ofgKz+nAW+R2n4+jdzMOp kS6YrVRSauZ8Qgn8RR11reD0LNbN5SpELZdb444TnjYB6iAEw8UG5AdAOgrnwUXD y/6UkWG4heY1DchU8fAo3dlqbZSlbGFuZZ036ZnWfY1YiLhZOfwladXARBEwuN9/ 1Nt4aqh+KRCyIBUXgsgOpjvWAZumqphgslmdNfm9VQkv5ugLzpgjvRmX9cIk7saO 5KCBhNqJ4wwZhwl+3qZpTgBWFBOgFNT7DltJuRWW68Dj/HYWJitObGz9IA2pbkNU Q37qvPr3SYY6Nb9TnnLgrxTxydOIJ/zB/v41dyDBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUb4MfuAhasYHYak7H89v6yiUtj0kwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkMzRmNzk3LTZkMTYtNDk4YS1iNjZkLThjN2QwZmNhYzc3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++kwDQYJKoZIhvcNAQELBQADggEBAHnIwXIk32CWBo4cEIwcYthY+Baw 9UNpmb02Z8pTAqU8P3AakHc8dLsLxVwkuUv7Xw/US7RZlF3rC/7FppM7uPSpsehh Cude8efGRXmhJC71PUwFUs6bV3VMLkioAAYUHVrR8qCDKHV8qHwwW6qJRfTDJ06A uLRIcV0FeHDZJ3pXU6HFXf3QYoIdLeE2BkgpUmqAmZtFOwmiPzZYoBcYZVFnDym0 0h9tjLcbGAFICKtjw/QvEXdvpd8YC43kH4q/LLmphqbi3ajd6erjlJyLu0KGdnFc zWXEJGtVzxCcBcDjRpoFuecjOrQoGq94TuU5CIb2vbZuZKGqfFwm9LptM6c= -----END CERTIFICATE-----Generated at Sun Feb 16 15:29:00 2025 by rpki-client