$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa File: 8621c38c-da14-4436-8fad-6252da797f1a.roa (raw, json) Hash identifier: prMjyZHAsJ86lf4PZcdqa3o/V48W/Qqh0lJhsJeN4Go= Subject key identifier: 2B:18:78:D5:69:D7:A0:C6:BC:A9:2F:53:DD:06:7D:5C:89:B3:B7:80 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 105F12AB87E912046C3002977A70EA7B09788C55 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa Signing time: Wed 19 Feb 2025 00:10:05 +0000 ROA not before: Wed 19 Feb 2025 00:10:05 +0000 ROA not after: Wed 26 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:5f:12:ab:87:e9:12:04:6c:30:02:97:7a:70:ea:7b:09:78:8c:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 19 00:10:05 2025 GMT Not After : Mar 26 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4a:11:76:b2:66:4c:95:a7:a9:d8:bb:9c:dd: 4c:63:65:c5:d7:d1:b3:28:37:84:b2:ae:88:cf:34: 68:34:9d:a4:81:08:6a:4f:c7:36:3c:12:61:ca:ea: fe:35:d6:f0:22:30:e8:74:40:98:29:4d:d9:1b:08: cf:62:ea:0f:3e:07:d6:69:9a:ec:61:9f:d1:ac:b2: 8e:fc:11:59:1f:2f:8d:70:75:b7:a8:c5:23:65:c4: 2e:51:db:09:06:46:11:0e:49:01:59:67:d0:a4:c4: 2b:60:94:60:fa:f5:56:c6:e9:7b:a9:27:ca:2f:56: 22:f3:95:ed:d2:57:0e:1f:51:69:07:ca:79:3a:12: 7b:af:09:42:9f:d3:e6:2c:87:e5:b8:11:02:65:14: 10:63:37:3e:86:f4:4f:30:85:95:38:cf:c4:8d:3c: 4f:ba:92:1c:19:6f:21:22:d4:24:91:2c:3f:52:52: 7b:0e:e2:77:a9:0b:11:32:17:8b:e3:48:a6:8a:23: 21:93:73:16:00:9d:f2:4a:ff:85:3f:99:11:a9:7a: 98:66:4a:4a:a7:ab:7c:42:6b:35:5d:12:3d:3d:ce: d4:0a:32:78:02:3f:d5:45:38:d2:cf:61:e6:95:d6: 60:c9:9f:0c:54:a6:2d:61:ab:4a:0f:31:3d:84:cc: 53:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:18:78:D5:69:D7:A0:C6:BC:A9:2F:53:DD:06:7D:5C:89:B3:B7:80 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.222.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:a6:ef:a9:43:eb:cd:14:b4:71:88:3f:76:3e:31:c3:04:79: c3:0d:f7:ff:a8:48:ed:5c:43:5b:c5:18:9b:49:6f:3b:da:67: d3:ba:61:e9:b8:fa:a8:7a:fb:a2:f8:20:4d:5e:68:01:0e:ae: be:cb:31:cc:d5:5c:53:0f:b7:59:2c:ea:12:3d:d0:28:a4:ab: b7:c5:d4:96:d3:bc:29:18:93:71:cd:50:a9:a7:8c:d9:7f:87: 55:dc:bd:0c:af:d5:3b:97:7c:c5:99:9a:2d:e1:62:09:71:79: ab:b3:d5:21:96:f8:12:e4:05:9c:f0:29:fc:e5:fd:e7:a9:f0: 60:79:da:2e:42:62:9e:ea:36:08:3b:8f:28:16:2f:22:dd:0e: 4e:3e:80:11:00:c6:d3:c8:84:ae:57:cd:cd:59:3d:4c:d7:02: 82:70:44:04:1f:da:ca:60:a9:34:98:e9:ee:4a:8e:91:eb:f4: 4f:64:81:a8:04:9f:a6:29:3d:d1:01:ed:ca:6f:f9:ee:0e:5e: 0c:6d:97:f3:1b:51:7a:25:50:6b:82:e4:e5:4b:36:9a:bd:2f: d1:ef:4c:0e:4c:a1:fa:b3:48:4d:8d:5c:b7:33:80:59:b2:a1: 45:5f:45:12:12:92:90:85:f5:a6:92:d9:c7:62:a8:db:4c:02: a4:50:0c:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEF8Sq4fpEgRsMAKXenDqewl4jFUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMjE5MDAxMDA1WhcNMjUwMzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjExMDQ1NTUzZjNkMTFmZmVhNmU2NjJmOGE4NDA3YThk ZWZiNGFlNTFmODNhMmZhYjY0ZTc3OGJkMzFkYWE4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0ShF2smZMlaep2Luc3UxjZcXX0bMoN4SyrojPNGg0naSB CGpPxzY8EmHK6v411vAiMOh0QJgpTdkbCM9i6g8+B9Zpmuxhn9Gsso78EVkfL41w dbeoxSNlxC5R2wkGRhEOSQFZZ9CkxCtglGD69VbG6XupJ8ovViLzle3SVw4fUWkH ynk6EnuvCUKf0+Ysh+W4EQJlFBBjNz6G9E8whZU4z8SNPE+6khwZbyEi1CSRLD9S UnsO4nepCxEyF4vjSKaKIyGTcxYAnfJK/4U/mRGpephmSkqnq3xCazVdEj09ztQK MngCP9VFONLPYeaV1mDJnwxUpi1hq0oPMT2EzFMTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKxh41WnXoMa8qS9T3QZ9XImzt4AwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg2MjFjMzhjLWRhMTQtNDQzNi04ZmFkLTYyNTJkYTc5N2YxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d4wDQYJKoZIhvcNAQELBQADggEBACum76lD680UtHGIP3Y+McMEecMN 9/+oSO1cQ1vFGJtJbzvaZ9O6Yem4+qh6+6L4IE1eaAEOrr7LMczVXFMPt1ks6hI9 0Cikq7fF1JbTvCkYk3HNUKmnjNl/h1XcvQyv1TuXfMWZmi3hYglxeauz1SGW+BLk BZzwKfzl/eep8GB52i5CYp7qNgg7jygWLyLdDk4+gBEAxtPIhK5Xzc1ZPUzXAoJw RAQf2spgqTSY6e5KjpHr9E9kgagEn6YpPdEB7cpv+e4OXgxtl/MbUXolUGuC5OVL Npq9L9HvTA5MofqzSE2NXLczgFmyoUVfRRISkpCF9aaS2cdiqNtMAqRQDCQ= -----END CERTIFICATE-----Generated at Thu Mar 13 23:52:48 2025 by rpki-client