$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a11f9364-e88a-440b-a95f-a94c5ecdc863.roa File: a11f9364-e88a-440b-a95f-a94c5ecdc863.roa (raw, json) Hash identifier: 2D6e7VoNIe3azJ4tTgzkxTRy+cdFbBlqiA4gll1Ah7Q= Subject key identifier: ED:8C:DC:0F:3E:71:5C:90:4F:86:B0:6F:24:4C:75:7A:F3:71:4B:3F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3AFA4B40C41CBCE70261E7C98E6AE4BADEB937CA Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a11f9364-e88a-440b-a95f-a94c5ecdc863.roa Signing time: Sat 25 Jan 2025 00:00:00 +0000 ROA not before: Sat 25 Jan 2025 00:00:00 +0000 ROA not after: Sat 01 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:fa:4b:40:c4:1c:bc:e7:02:61:e7:c9:8e:6a:e4:ba:de:b9:37:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jan 25 00:00:00 2025 GMT Not After : Mar 1 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2d:04:09:cb:0f:d7:55:40:37:13:9b:97:37: aa:81:f5:0d:bf:ff:ac:7e:73:aa:80:41:0f:53:e7: 3d:87:d9:84:7e:75:96:75:86:60:92:a6:7a:f1:fe: 1a:bc:e4:1c:63:af:ac:fa:37:ac:b2:bc:ee:5b:6b: a9:3b:08:fb:37:fb:7f:fa:19:ac:c6:ee:a4:de:64: 7c:1f:d1:27:dc:15:58:a9:46:ef:d0:c8:63:47:f0: 33:2a:53:24:73:68:52:7a:6d:ac:07:1f:9c:bc:c1: aa:4b:fe:28:ca:29:39:52:7e:b8:95:1c:7c:bf:a7: 1b:5b:00:0d:39:ad:2b:3c:46:9d:0a:dd:eb:a9:ea: 28:42:9d:e4:27:a4:e6:a6:87:d1:74:b8:63:f8:06: b8:95:1f:bd:ee:69:b6:e2:72:61:22:dd:af:79:69: 7d:17:d2:0e:cb:d6:1d:d3:ed:de:bc:01:e9:29:97: 12:5c:d6:71:67:b4:59:40:57:e7:c1:5e:db:92:6b: a8:db:6b:13:1a:cb:57:cf:07:0a:4f:14:0a:52:b7: 8e:f2:c1:c5:d8:8b:85:98:33:5c:56:b1:f8:2b:fe: 5e:26:96:aa:b9:8e:73:ae:33:d9:cc:e9:60:c1:13: 91:d0:85:3d:ee:90:40:12:c9:fa:d9:2b:cb:a4:41: 4a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:8C:DC:0F:3E:71:5C:90:4F:86:B0:6F:24:4C:75:7A:F3:71:4B:3F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a11f9364-e88a-440b-a95f-a94c5ecdc863.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.237.0/24 Signature Algorithm: sha256WithRSAEncryption 78:79:0e:54:49:e2:5f:7f:bd:af:cb:26:2b:74:af:58:dd:6a: 5b:83:d1:4a:4d:b9:e7:2e:21:6c:d1:5a:35:8e:c1:ce:39:22: e7:ad:3f:8f:0d:bf:5d:fd:d7:9b:2c:a3:0a:51:15:e4:f9:72: 46:af:6d:a4:61:44:68:b6:69:0d:67:86:15:c8:7d:f8:0e:e9: d3:76:81:f2:d8:3e:35:c4:39:bb:85:88:0f:00:14:05:c3:a2: b9:94:59:f2:93:d7:46:67:35:04:89:78:c1:05:2c:c4:5d:39: 32:28:c8:83:d9:e4:2f:cb:c3:80:17:1e:58:6a:79:77:24:9e: d5:9d:b8:9d:7b:53:25:ac:86:db:8f:0c:8a:62:74:6d:81:ae: b9:74:21:08:47:1d:d8:bd:6c:c7:bc:41:5d:90:99:7e:3d:5c: 24:90:de:3a:1a:8d:09:1b:18:9b:78:f5:4c:99:c1:75:a4:cb: 66:5c:6d:0b:b1:d9:f7:e7:47:dc:98:b2:69:37:ef:8d:18:16: bf:7b:1b:7a:f2:f1:79:db:a3:97:06:54:04:f4:3a:37:d0:9e: 39:48:29:a9:99:44:2d:20:46:90:9d:55:fd:59:dd:d1:75:98: f1:b4:2f:85:52:78:ed:20:9b:11:22:19:a8:ba:58:4d:93:19: 25:1d:d1:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOvpLQMQcvOcCYefJjmrkut65N8owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMTI1MDAwMDAwWhcNMjUwMzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZmY4MDdmOTJhYTkxNDFiMTIwMGUyNzBhNjQ5YmVjZWM3 Y2ZjZDZjODM0ZDA3YzliZDIyYWRlOGQ2OGM5OTkzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSLQQJyw/XVUA3E5uXN6qB9Q2//6x+c6qAQQ9T5z2H2YR+ dZZ1hmCSpnrx/hq85Bxjr6z6N6yyvO5ba6k7CPs3+3/6GazG7qTeZHwf0SfcFVip Ru/QyGNH8DMqUyRzaFJ6bawHH5y8wapL/ijKKTlSfriVHHy/pxtbAA05rSs8Rp0K 3eup6ihCneQnpOamh9F0uGP4BriVH73uabbicmEi3a95aX0X0g7L1h3T7d68Aekp lxJc1nFntFlAV+fBXtuSa6jbaxMay1fPBwpPFApSt47ywcXYi4WYM1xWsfgr/l4m lqq5jnOuM9nM6WDBE5HQhT3ukEASyfrZK8ukQUofAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7YzcDz5xXJBPhrBvJEx1evNxSz8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ExMWY5MzY0LWU4OGEtNDQwYi1hOTVmLWE5NGM1ZWNkYzg2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqe0wDQYJKoZIhvcNAQELBQADggEBAHh5DlRJ4l9/va/LJit0r1jdaluD 0UpNuecuIWzRWjWOwc45IuetP48Nv13915ssowpRFeT5ckavbaRhRGi2aQ1nhhXI ffgO6dN2gfLYPjXEObuFiA8AFAXDormUWfKT10ZnNQSJeMEFLMRdOTIoyIPZ5C/L w4AXHlhqeXckntWduJ17UyWshtuPDIpidG2Brrl0IQhHHdi9bMe8QV2QmX49XCSQ 3joajQkbGJt49UyZwXWky2ZcbQux2ffnR9yYsmk3740YFr97G3ry8Xnbo5cGVAT0 OjfQnjlIKamZRC0gRpCdVf1Z3dF1mPG0L4VSeO0gmxEiGai6WE2TGSUd0UQ= -----END CERTIFICATE-----Generated at Sun Feb 16 15:06:29 2025 by rpki-client