$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa File: b5e0d86e-0f74-41d8-a413-497ad79e414d.roa (raw, json) Hash identifier: 8nJrShkfy9TU+FhpMTbk/mzDHcQpnLeSk9+QUFQbASs= Subject key identifier: 98:D1:CC:D2:37:9A:DD:6C:10:95:24:6F:3C:27:C0:7D:F5:04:C5:85 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2B646F5D587E2E9DB32889FBE9ADE1B97EFD7F99 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa Signing time: Fri 24 Jan 2025 00:00:00 +0000 ROA not before: Fri 24 Jan 2025 00:00:00 +0000 ROA not after: Fri 28 Feb 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:64:6f:5d:58:7e:2e:9d:b3:28:89:fb:e9:ad:e1:b9:7e:fd:7f:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jan 24 00:00:00 2025 GMT Not After : Feb 28 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:3a:d6:a3:c0:25:c1:2a:ab:d8:6c:0b:3f:8b: 78:43:39:a2:b9:c2:f7:8e:51:af:71:40:1b:ee:86: b1:c5:91:00:9d:f3:36:02:4b:cf:31:6b:7f:f7:01: e8:61:de:8a:53:81:16:03:f4:4d:2f:0b:34:cc:91: 4f:d1:ea:8f:17:b6:21:0d:22:24:4e:56:c8:31:85: ea:23:5d:23:85:d9:52:ee:2c:f9:a4:d7:71:b3:da: 7d:f3:ab:65:17:6b:f2:f6:c6:fc:e0:8a:37:54:af: ab:35:4b:a3:73:1a:06:ac:85:6c:2e:b6:0c:bb:7b: 77:4a:b2:92:43:89:c7:f1:e4:cc:d4:28:88:42:d7: f0:30:3a:6e:83:0f:3e:08:c1:a0:eb:fe:a2:d5:19: f8:b9:ae:34:25:8f:3b:71:a0:1c:af:f0:62:f9:8d: 4b:ec:c9:6b:9e:23:2b:e4:05:09:8c:46:8c:4d:d7: 14:a7:de:1b:b2:d2:05:c7:e4:59:ef:51:9b:85:c5: e1:b4:97:3d:ac:46:1c:bb:f2:bb:77:ef:87:a2:1b: 02:39:51:8d:72:95:8d:3a:7e:03:82:ae:5c:13:58: 56:69:c7:fb:e0:14:45:df:67:7d:2e:4d:b8:85:0c: a1:49:7c:fb:34:3f:18:27:c5:87:c1:29:a5:93:05: 08:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D1:CC:D2:37:9A:DD:6C:10:95:24:6F:3C:27:C0:7D:F5:04:C5:85 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.160.0/19 Signature Algorithm: sha256WithRSAEncryption 3b:65:58:f3:8f:2c:71:61:f5:f4:5d:4d:3a:c3:f7:71:4f:35: fc:24:09:49:56:5f:24:86:e5:e5:d1:57:19:20:e0:1e:3c:b0: 5d:b2:99:b5:9a:e8:63:be:b5:c5:98:e0:57:55:80:62:34:fc: c8:01:b7:67:3b:08:25:dd:c9:be:f9:09:42:a5:d5:8c:60:fc: d0:93:f5:b9:dd:cf:08:bc:4a:0c:cc:e9:04:e7:1e:cb:bb:dc: 72:34:70:76:3f:3c:16:dd:ec:ac:20:47:d9:15:f5:2b:71:36: c2:ec:78:99:ef:7d:cb:7d:b3:ea:7a:46:20:16:17:cf:62:3f: 75:83:00:e2:e1:16:c4:aa:cb:e2:80:49:b8:c8:a1:4e:43:f0: a9:c6:a5:0b:c4:20:d2:b0:77:b5:34:65:ce:79:84:3e:3d:bb: f0:59:77:b7:50:61:50:53:94:5a:46:48:1d:42:09:73:fb:b7: b9:4e:32:b7:56:d8:c0:96:a7:3e:01:91:53:f8:e7:0f:4e:82: df:d1:02:81:3d:a4:7e:9a:37:4d:73:bf:df:74:2c:5e:5e:a9: 9a:5e:55:fe:12:53:3d:ca:b6:4d:a1:4c:f8:97:e1:0a:d9:fe: 24:47:8d:98:85:91:f2:8d:88:c1:33:ca:3a:57:f2:a4:ad:fd: f1:40:42:a2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK2RvXVh+Lp2zKIn76a3huX79f5kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMTI0MDAwMDAwWhcNMjUwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTIxZjk5ZDg2MzUxMWU4M2Q0ZTUzN2I1YmU4M2I0MWY1 MTgxNTFhOTY3ZWEyMzAyMTY4ZTdmN2ExN2EyYmE0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCBOtajwCXBKqvYbAs/i3hDOaK5wveOUa9xQBvuhrHFkQCd 8zYCS88xa3/3Aehh3opTgRYD9E0vCzTMkU/R6o8XtiENIiROVsgxheojXSOF2VLu LPmk13Gz2n3zq2UXa/L2xvzgijdUr6s1S6NzGgashWwutgy7e3dKspJDicfx5MzU KIhC1/AwOm6DDz4IwaDr/qLVGfi5rjQljztxoByv8GL5jUvsyWueIyvkBQmMRoxN 1xSn3huy0gXH5FnvUZuFxeG0lz2sRhy78rt374eiGwI5UY1ylY06fgOCrlwTWFZp x/vgFEXfZ30uTbiFDKFJfPs0PxgnxYfBKaWTBQhZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmNHM0jea3WwQlSRvPCfAffUExYUwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1ZTBkODZlLTBmNzQtNDFkOC1hNDEzLTQ5N2FkNzllNDE0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXY3aAwDQYJKoZIhvcNAQELBQADggEBADtlWPOPLHFh9fRdTTrD93FPNfwk CUlWXySG5eXRVxkg4B48sF2ymbWa6GO+tcWY4FdVgGI0/MgBt2c7CCXdyb75CUKl 1Yxg/NCT9bndzwi8SgzM6QTnHsu73HI0cHY/PBbd7KwgR9kV9StxNsLseJnvfct9 s+p6RiAWF89iP3WDAOLhFsSqy+KASbjIoU5D8KnGpQvEINKwd7U0Zc55hD49u/BZ d7dQYVBTlFpGSB1CCXP7t7lOMrdW2MCWpz4BkVP45w9Ogt/RAoE9pH6aN01zv990 LF5eqZpeVf4SUz3Ktk2hTPiX4QrZ/iRHjZiFkfKNiMEzyjpX8qSt/fFAQqI= -----END CERTIFICATE-----Generated at Sun Feb 16 15:26:02 2025 by rpki-client