$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa File: 78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa (raw, json) Hash identifier: 1yydtfp49cjNH8z8awANxM8gOMJ/vtQiFvaqi7JPsV4= Subject key identifier: B8:3A:AC:12:B3:F2:6B:E1:C9:36:5F:69:92:E3:88:9E:C8:4B:79:7E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 45F586E19710B3FD98C2FC0CEDADCEEC4CC11173 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa Signing time: Sat 25 Jan 2025 00:00:00 +0000 ROA not before: Sat 25 Jan 2025 00:00:00 +0000 ROA not after: Sat 01 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:f5:86:e1:97:10:b3:fd:98:c2:fc:0c:ed:ad:ce:ec:4c:c1:11:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jan 25 00:00:00 2025 GMT Not After : Mar 1 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a0:64:33:2f:19:b4:a2:1f:25:dd:95:c8:45: 00:29:53:20:35:f5:f2:92:fb:67:ef:a5:e4:b3:51: 38:07:52:74:9e:45:a2:a8:fc:3e:c0:df:44:b0:7d: 52:ab:0d:5f:35:f1:9b:e5:25:81:ed:8b:42:b3:4c: 0f:1d:13:00:5b:ad:df:93:05:60:6c:06:54:18:a7: 22:45:86:b1:38:ac:0f:48:7d:b5:21:51:88:27:34: b6:d3:a7:00:9d:8e:a7:10:92:33:a3:ff:13:0a:be: 57:49:4d:80:38:40:55:9e:34:d8:3e:e8:b8:cc:00: 4c:21:dd:2b:9c:49:30:28:f6:35:fb:23:79:cb:41: 9f:39:69:54:16:88:9a:a9:16:0a:20:f9:45:92:91: ee:ee:d2:62:96:22:5d:85:27:e3:0a:2b:51:8e:65: 43:2a:47:f4:24:54:8c:d5:bd:15:54:90:af:fb:c9: e4:dd:e0:ac:94:e1:97:99:6d:bd:8d:fa:bf:87:f6: 05:77:cc:2d:ab:67:3c:89:39:37:d3:22:11:b2:8f: 33:0a:7e:df:77:6f:d6:95:0e:21:05:25:ad:fd:b6: 7a:6b:60:03:c2:42:77:1b:0f:4c:6e:d3:53:c0:ca: 86:f2:a4:d0:6b:a8:7f:b4:ef:78:8e:76:e5:35:61: 22:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:3A:AC:12:B3:F2:6B:E1:C9:36:5F:69:92:E3:88:9E:C8:4B:79:7E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.185.0/24 Signature Algorithm: sha256WithRSAEncryption 82:97:85:5b:b6:6d:90:27:1b:00:fe:a0:7c:14:f8:df:86:80: ca:45:56:d6:b2:9e:24:89:3f:0c:3a:91:d1:ff:e1:b6:2a:2e: 24:d0:99:7f:5f:53:2b:68:e2:19:40:a6:09:42:05:8c:de:e8: 9a:20:f7:57:ff:07:58:93:61:de:88:00:6a:d3:57:9c:2a:50: c8:c1:10:41:bb:a0:a1:4a:69:99:56:f8:e8:2f:fb:ac:26:a4: c9:14:12:1d:77:61:3c:82:6a:ad:24:7d:e2:c3:3b:e7:71:3d: 77:59:9c:2f:9a:ce:b9:7e:55:b9:89:d0:4b:be:a3:bf:7e:18: 86:b6:61:a5:a9:63:21:44:e1:b6:fc:aa:ad:3b:49:a2:f3:3f: b4:a6:ad:d3:b6:1f:c3:93:df:f8:77:01:4c:06:19:e7:e4:6c: c3:fa:34:99:bf:a5:81:0d:15:47:54:b2:87:e8:29:d2:41:66: 44:36:be:b4:86:61:a6:9c:ea:30:98:0c:b0:1b:a2:14:b6:dd: 19:59:0f:53:40:e7:92:27:87:cb:dd:c3:c5:0b:37:f9:0f:20: f4:e9:ef:7c:4d:4a:1d:2b:63:68:1a:c0:30:b9:40:21:fe:d6: c1:8a:07:8d:b9:8b:a8:c8:91:c3:fe:84:45:f0:b6:6a:d7:1f: 21:52:19:23 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURfWG4ZcQs/2YwvwM7a3O7EzBEXMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMTI1MDAwMDAwWhcNMjUwMzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTY0MzIxZWQ2NzhmZThiYzdkYzY2MTc1OGRiMmJmOWEz ZTViZjI5ZGQ2NTg3MzE4MjZlNGQ1ZTgzYzI4Y2Q3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2oGQzLxm0oh8l3ZXIRQApUyA19fKS+2fvpeSzUTgHUnSe RaKo/D7A30SwfVKrDV818ZvlJYHti0KzTA8dEwBbrd+TBWBsBlQYpyJFhrE4rA9I fbUhUYgnNLbTpwCdjqcQkjOj/xMKvldJTYA4QFWeNNg+6LjMAEwh3SucSTAo9jX7 I3nLQZ85aVQWiJqpFgog+UWSke7u0mKWIl2FJ+MKK1GOZUMqR/QkVIzVvRVUkK/7 yeTd4KyU4ZeZbb2N+r+H9gV3zC2rZzyJOTfTIhGyjzMKft93b9aVDiEFJa39tnpr YAPCQncbD0xu01PAyobypNBrqH+073iOduU1YSL9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuDqsErPya+HJNl9pkuOInshLeX4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzc4YTBjZGMyLWVhMjAtNDY2Yi1iZTg3LWU5Y2Q2OWUxN2IzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37kwDQYJKoZIhvcNAQELBQADggEBAIKXhVu2bZAnGwD+oHwU+N+GgMpF VtayniSJPww6kdH/4bYqLiTQmX9fUyto4hlApglCBYze6Jog91f/B1iTYd6IAGrT V5wqUMjBEEG7oKFKaZlW+Ogv+6wmpMkUEh13YTyCaq0kfeLDO+dxPXdZnC+azrl+ VbmJ0Eu+o79+GIa2YaWpYyFE4bb8qq07SaLzP7SmrdO2H8OT3/h3AUwGGefkbMP6 NJm/pYENFUdUsofoKdJBZkQ2vrSGYaac6jCYDLAbohS23RlZD1NA55Inh8vdw8UL N/kPIPTp73xNSh0rY2gawDC5QCH+1sGKB425i6jIkcP+hEXwtmrXHyFSGSM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:55:06 2025 by rpki-client