$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa File: 93d7471b-56b1-4f53-982e-a84765e52ef3.roa (raw, json) Hash identifier: KPS+3PxjfOktvkVoN0seTwLG3Cu9cNYj//0AE1IFgcQ= Subject key identifier: 16:62:C6:78:44:68:7F:56:97:4F:FD:59:B4:8C:3E:CB:58:83:0C:91 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7CC67CB5316F7D5C13D4164AEF12516084757538 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa Signing time: Sat 25 Jan 2025 00:00:00 +0000 ROA not before: Sat 25 Jan 2025 00:00:00 +0000 ROA not after: Sat 01 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:c6:7c:b5:31:6f:7d:5c:13:d4:16:4a:ef:12:51:60:84:75:75:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jan 25 00:00:00 2025 GMT Not After : Mar 1 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7c:53:ef:2f:b7:ee:dc:74:b7:54:91:43:49: 58:ff:f3:34:5d:88:2c:b8:85:ec:c2:46:84:04:e7: 14:2b:95:a3:d8:61:6b:53:5a:58:3b:bf:2b:8d:e8: 36:12:9d:45:b8:46:73:42:a6:3e:86:e0:f3:ea:4d: 9f:aa:7a:a2:21:af:c8:f5:39:ed:ee:07:12:f5:ae: ab:b7:86:35:6d:41:5c:6e:d2:ee:93:0c:33:8b:ac: e4:fb:ba:35:fc:99:37:fd:3d:b2:b2:bd:c8:d9:68: 92:ee:d0:0f:1c:b3:24:72:f5:95:20:95:f4:94:d1: 3f:72:db:3e:93:92:fb:4a:cb:8d:84:b1:be:23:16: 23:aa:95:4d:68:63:d8:7a:46:b5:4f:bc:d6:df:ea: 35:f3:46:ea:3c:98:60:2f:3b:8e:66:ac:d7:fc:d3: a0:12:0c:3d:5d:40:85:9c:14:5a:4c:c4:a1:e8:2e: 22:d0:0f:08:54:f2:f4:7e:7d:fd:de:64:ac:9d:48: 24:35:12:20:91:c3:4e:ae:e0:1d:05:6d:27:cb:f8: 57:2f:43:ee:f9:48:95:d3:28:2a:a9:fc:53:d2:d4: d6:70:4b:67:ab:68:2f:9f:a3:89:04:fa:21:b5:08: ff:0b:7c:28:cc:92:a3:75:0d:ba:92:58:0c:46:fc: cd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:62:C6:78:44:68:7F:56:97:4F:FD:59:B4:8C:3E:CB:58:83:0C:91 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.188.0/24 Signature Algorithm: sha256WithRSAEncryption 91:d0:d7:05:2b:5f:ce:e9:f2:a2:1f:bb:f0:21:7e:6b:4b:21: 9d:08:17:fe:2b:c6:73:be:e7:a5:0a:ba:1c:61:fc:46:7c:d7: 57:a6:a9:8e:96:1e:a2:cb:95:8c:5e:23:f6:13:91:b4:42:eb: e1:9b:be:aa:d9:b5:0f:47:21:a5:d0:a3:ad:5a:c3:1d:bd:1d: 60:3f:f0:8d:6c:fd:21:04:6a:09:57:29:fe:be:1b:83:cb:f7: dc:ac:19:ff:03:09:c7:a0:ca:6c:19:bc:5a:2a:a8:f0:dd:aa: b0:bb:e4:6f:05:6c:b1:f8:17:2b:a1:e4:23:07:6e:41:ca:54: b4:58:72:ed:ae:b0:4c:ab:45:15:cc:b7:ab:39:2f:ac:1a:51: 98:3d:aa:e6:73:82:6a:aa:31:3e:8e:fb:83:0e:3e:34:50:89: 09:d2:ae:1e:75:b2:a1:11:a0:c9:01:eb:28:73:68:a0:4b:54: 82:9e:ab:dc:17:f5:3e:a5:ba:31:95:3c:c3:a6:5f:c6:17:f4: f9:55:b9:ba:48:c9:22:bd:32:56:eb:e8:d9:a4:4e:e6:f9:a0: 19:a2:a7:ed:f4:74:5d:ee:9b:d1:b9:90:e2:52:98:5a:f7:83: 70:8a:ed:57:81:2a:f7:b3:91:52:24:be:9f:31:9a:85:24:bd: 74:f2:84:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfMZ8tTFvfVwT1BZK7xJRYIR1dTgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMTI1MDAwMDAwWhcNMjUwMzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGQ1NDU4MTBjNzMxMzRkMjI3MmQwOGRlNjFhOGY2MzFi ZGU4NmQ4ZGI2ZDIxYzllY2ExYjgzY2JmOGY0ZDY4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPfFPvL7fu3HS3VJFDSVj/8zRdiCy4hezCRoQE5xQrlaPY YWtTWlg7vyuN6DYSnUW4RnNCpj6G4PPqTZ+qeqIhr8j1Oe3uBxL1rqu3hjVtQVxu 0u6TDDOLrOT7ujX8mTf9PbKyvcjZaJLu0A8csyRy9ZUglfSU0T9y2z6TkvtKy42E sb4jFiOqlU1oY9h6RrVPvNbf6jXzRuo8mGAvO45mrNf806ASDD1dQIWcFFpMxKHo LiLQDwhU8vR+ff3eZKydSCQ1EiCRw06u4B0FbSfL+FcvQ+75SJXTKCqp/FPS1NZw S2eraC+fo4kE+iG1CP8LfCjMkqN1DbqSWAxG/M2TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFmLGeERof1aXT/1ZtIw+y1iDDJEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzkzZDc0NzFiLTU2YjEtNGY1My05ODJlLWE4NDc2NWU1MmVmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37wwDQYJKoZIhvcNAQELBQADggEBAJHQ1wUrX87p8qIfu/AhfmtLIZ0I F/4rxnO+56UKuhxh/EZ811emqY6WHqLLlYxeI/YTkbRC6+GbvqrZtQ9HIaXQo61a wx29HWA/8I1s/SEEaglXKf6+G4PL99ysGf8DCcegymwZvFoqqPDdqrC75G8FbLH4 Fyuh5CMHbkHKVLRYcu2usEyrRRXMt6s5L6waUZg9quZzgmqqMT6O+4MOPjRQiQnS rh51sqERoMkB6yhzaKBLVIKeq9wX9T6lujGVPMOmX8YX9PlVubpIySK9Mlbr6Nmk Tub5oBmip+30dF3um9G5kOJSmFr3g3CK7VeBKvezkVIkvp8xmoUkvXTyhGY= -----END CERTIFICATE-----Generated at Sun Feb 16 15:13:11 2025 by rpki-client