$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa File: 8621c38c-da14-4436-8fad-6252da797f1a.roa (raw, json) Hash identifier: Lg+4VStLEmJ1uLh2ehU5YU1l3cmtzIFXOnmh2+yXwts= Subject key identifier: FB:4D:00:3F:D8:13:15:31:D1:94:49:20:D0:57:59:60:4C:0C:87:5D Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 226AD68BA466CF2D044321640521C6C2B51BF52B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa Signing time: Sat 25 Jan 2025 00:00:00 +0000 ROA not before: Sat 25 Jan 2025 00:00:00 +0000 ROA not after: Sat 01 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:6a:d6:8b:a4:66:cf:2d:04:43:21:64:05:21:c6:c2:b5:1b:f5:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jan 25 00:00:00 2025 GMT Not After : Mar 1 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:97:fe:ac:d4:ca:d1:f6:5a:bf:62:06:b0:b2: 1a:4b:42:8d:06:73:f9:bf:0d:31:e5:49:1e:f0:f2: b9:c1:16:8a:c7:6b:cd:89:0b:b8:b2:00:54:df:ac: 64:8d:7d:39:d4:7b:fc:17:96:93:8c:9b:a9:4b:f1: ec:3c:ed:d7:7e:45:91:f8:54:2e:8f:e7:e9:a0:85: 97:87:75:2d:ab:04:4f:54:ef:25:84:92:2a:0c:1c: 2b:70:59:7e:38:46:e8:9f:52:5e:63:77:f3:13:df: 55:7b:9c:23:07:7a:94:a4:55:80:05:ba:f1:32:c3: 95:6f:f9:a5:54:39:4d:c2:ce:95:bc:8e:f1:bf:3a: e1:9d:44:2d:f7:85:6e:c4:60:16:bd:69:fc:c0:71: b9:ea:68:9f:14:0d:db:03:3e:2d:97:1f:53:d2:9d: ae:62:b0:ef:07:bc:64:da:1f:7d:ef:05:e9:0c:5e: f9:8a:e3:ce:3c:94:57:33:0b:d6:94:c6:08:5d:c1: ae:19:72:76:8c:88:67:dc:7c:af:52:d4:4a:59:80: 74:23:47:73:08:39:f9:b9:e8:2c:07:de:5b:3f:7b: f6:22:68:31:54:8e:a5:d1:a4:5c:47:34:17:ea:21: e6:bd:6e:d5:b7:1b:c5:84:ea:a7:04:f0:ab:55:1d: 89:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4D:00:3F:D8:13:15:31:D1:94:49:20:D0:57:59:60:4C:0C:87:5D X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.222.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:6a:0e:8b:7a:97:14:db:d4:29:5c:2e:7a:5f:2d:8f:8f:c1: 12:24:53:ed:6c:45:83:a9:e6:68:a7:39:07:51:39:17:7c:c8: 9c:53:95:e3:70:64:3c:c0:04:8b:8c:14:cf:00:7a:29:7d:6a: fd:da:ee:88:ec:36:86:94:58:7e:08:b3:55:00:6a:38:83:7c: 89:be:3b:39:96:c2:83:90:6e:68:58:4d:cd:6a:eb:3d:8e:65: 55:16:3d:bb:92:8c:df:66:e0:7c:b4:86:3d:f8:e6:0e:43:c6: 49:02:f9:6d:9e:2f:0a:77:41:24:66:08:64:cd:7c:2a:95:cf: 8c:46:01:7f:2b:c1:ba:fa:aa:5a:b0:0d:37:f3:47:79:ab:ed: ec:e0:df:73:b7:37:68:92:4d:1a:c7:cb:9f:77:47:ae:f0:ba: c8:f0:18:8e:24:4c:73:2e:be:e5:43:28:99:50:c1:c6:c9:1a: 6b:07:b2:72:b7:1c:21:4e:b1:11:47:43:09:36:13:72:5e:44: 8d:96:e9:c2:95:d1:f6:e9:b8:31:44:b3:81:42:3d:ad:fc:31: b0:7a:f2:e6:b9:59:ff:64:bd:2e:fe:a3:b2:2d:62:c5:50:9f: 1a:e8:74:e2:9c:9f:ec:1d:e7:f4:ab:ed:95:2d:e6:e1:81:8e: da:94:69:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUImrWi6Rmzy0EQyFkBSHGwrUb9SswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMTI1MDAwMDAwWhcNMjUwMzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGE2ODA2NzIzZmE4NGJjYjE2OTc3ZjI0YWI4Mzk5MzUx YjIyNzFkM2Y2Y2UyZDg1MzllMGU3MDUyYzUyYTkxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMl/6s1MrR9lq/YgawshpLQo0Gc/m/DTHlSR7w8rnBForH a82JC7iyAFTfrGSNfTnUe/wXlpOMm6lL8ew87dd+RZH4VC6P5+mghZeHdS2rBE9U 7yWEkioMHCtwWX44RuifUl5jd/MT31V7nCMHepSkVYAFuvEyw5Vv+aVUOU3CzpW8 jvG/OuGdRC33hW7EYBa9afzAcbnqaJ8UDdsDPi2XH1PSna5isO8HvGTaH33vBekM XvmK4848lFczC9aUxghdwa4ZcnaMiGfcfK9S1EpZgHQjR3MIOfm56CwH3ls/e/Yi aDFUjqXRpFxHNBfqIea9btW3G8WE6qcE8KtVHYkDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+00AP9gTFTHRlEkg0FdZYEwMh10wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg2MjFjMzhjLWRhMTQtNDQzNi04ZmFkLTYyNTJkYTc5N2YxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d4wDQYJKoZIhvcNAQELBQADggEBAE9qDot6lxTb1ClcLnpfLY+PwRIk U+1sRYOp5minOQdRORd8yJxTleNwZDzABIuMFM8Aeil9av3a7ojsNoaUWH4Is1UA ajiDfIm+OzmWwoOQbmhYTc1q6z2OZVUWPbuSjN9m4Hy0hj345g5DxkkC+W2eLwp3 QSRmCGTNfCqVz4xGAX8rwbr6qlqwDTfzR3mr7ezg33O3N2iSTRrHy593R67wusjw GI4kTHMuvuVDKJlQwcbJGmsHsnK3HCFOsRFHQwk2E3JeRI2W6cKV0fbpuDFEs4FC Pa38MbB68ua5Wf9kvS7+o7ItYsVQnxrodOKcn+wd5/Sr7ZUt5uGBjtqUaac= -----END CERTIFICATE-----Generated at Sun Feb 16 15:25:29 2025 by rpki-client