$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa File: c9752aac-8490-485f-92b7-6a6ba02b76d5.roa (raw, json) Hash identifier: FyZWAdsmrTjmleQ1BeQy17Ktj+1iKymHEyLiBZxuL7I= Subject key identifier: 6F:52:6E:2E:78:23:E8:7D:2A:4D:DD:7F:7C:A8:BD:93:C2:47:C7:96 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4CAA070543E72AF5596589081B462C5F98FF4E1F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa Signing time: Sat 08 Feb 2025 00:00:00 +0000 ROA not before: Sat 08 Feb 2025 00:00:00 +0000 ROA not after: Sat 15 Mar 2025 23:59:59 +0000 asID: 14618 IP address blocks: 199.127.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:aa:07:05:43:e7:2a:f5:59:65:89:08:1b:46:2c:5f:98:ff:4e:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 8 00:00:00 2025 GMT Not After : Mar 15 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2e:04:f2:fe:73:6d:83:53:1a:8b:7d:b4:7d: 6d:eb:89:8c:40:4a:77:da:f5:b9:76:ce:e8:e7:75: ea:22:5a:c9:78:8b:45:c8:50:84:d7:5c:5c:46:96: 2b:47:f8:45:10:45:e7:4c:2f:d5:55:4a:90:00:06: 26:aa:26:da:bc:61:08:60:1d:aa:40:61:c2:3a:13: a1:7a:e7:15:c6:6f:9f:66:72:52:25:f4:b0:cf:2e: d1:d6:a5:26:96:63:97:f0:19:38:c1:4b:11:16:e0: 79:26:42:c8:9e:40:05:7c:e0:50:8a:4b:41:c8:db: 53:f9:b0:ac:36:b7:42:a9:70:3a:0b:4f:10:2b:3c: f8:2f:79:4a:f2:50:6f:db:06:cc:e6:b2:83:7a:5a: d6:a5:f1:60:89:45:e3:41:99:fd:b5:ac:d5:a0:b2: 42:f4:5c:68:bd:ee:e4:4b:0e:78:77:4d:69:d0:9b: fb:96:1a:7e:28:6c:0e:18:85:e6:e7:e1:11:09:0a: 03:18:0f:24:31:33:9f:7a:b1:a7:44:50:37:d1:7f: e0:49:eb:2a:24:7c:b6:14:81:a0:59:83:c6:a7:27: 96:e3:5c:3b:13:13:e1:10:d7:5d:b3:1f:0d:c3:c3: 9c:7d:40:6e:5e:ab:c7:57:00:a2:b6:e6:86:0e:9f: 7a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:52:6E:2E:78:23:E8:7D:2A:4D:DD:7F:7C:A8:BD:93:C2:47:C7:96 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.127.232.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:08:16:93:56:7c:f1:3f:38:49:95:2d:04:3d:be:4f:dc:5f: e5:94:3f:dd:cd:58:26:ec:22:dc:7c:f0:c1:e1:c0:c4:10:e7: b7:ea:a4:6c:07:2b:05:d4:ac:8c:32:c1:a0:9c:a8:e4:c2:d5: 50:ab:36:d2:e3:a1:0a:27:c6:96:9c:ec:c3:0c:35:c0:e9:a3: 66:3c:a3:a9:9d:f6:c4:65:90:12:af:a0:49:69:73:a5:9b:9d: b8:8d:f8:4b:55:6b:8a:24:16:54:f9:08:25:e6:df:bd:b3:20: 65:31:f0:76:bd:ae:df:16:f6:cf:01:84:c6:95:c9:d2:78:42: fd:29:fe:cf:f1:bb:48:ec:03:cc:2a:22:e2:47:55:d2:71:0e: 89:1c:c8:af:45:74:f2:a4:3c:1e:48:34:00:ea:de:ea:e4:c1: 25:32:94:06:0f:54:4c:aa:69:e3:ca:29:85:98:56:15:72:5f: c2:ef:30:a9:06:22:a0:4a:ea:07:8d:a5:73:42:b3:87:55:20: db:4d:8a:66:9f:b1:6d:70:24:81:32:29:61:54:a2:d9:75:69: 4c:83:06:f5:d3:f6:87:9f:87:b4:31:ad:92:bf:18:69:99:4c: 29:e3:05:94:da:5e:76:be:90:83:12:bb:a8:b6:0d:50:c6:79: 3b:68:b4:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTKoHBUPnKvVZZYkIG0YsX5j/Th8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMjA4MDAwMDAwWhcNMjUwMzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjViMjU3YzlmYzE3NDMzMzAxNDViZWI0ZmNlYzg4MjY5 ZWNlNzI5ZTIzNzRjN2QwNjljMDNlYjI0ODM0MGRkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFLgTy/nNtg1Mai320fW3riYxASnfa9bl2zujndeoiWsl4 i0XIUITXXFxGlitH+EUQRedML9VVSpAABiaqJtq8YQhgHapAYcI6E6F65xXGb59m clIl9LDPLtHWpSaWY5fwGTjBSxEW4HkmQsieQAV84FCKS0HI21P5sKw2t0KpcDoL TxArPPgveUryUG/bBszmsoN6Wtal8WCJReNBmf21rNWgskL0XGi97uRLDnh3TWnQ m/uWGn4obA4Yhebn4REJCgMYDyQxM596sadEUDfRf+BJ6yokfLYUgaBZg8anJ5bj XDsTE+EQ112zHw3Dw5x9QG5eq8dXAKK25oYOn3rRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUb1JuLngj6H0qTd1/fKi9k8JHx5YwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2M5NzUyYWFjLTg0OTAtNDg1Zi05MmI3LTZhNmJhMDJiNzZkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALHf+gwDQYJKoZIhvcNAQELBQADggEBAHwIFpNWfPE/OEmVLQQ9vk/cX+WU P93NWCbsItx88MHhwMQQ57fqpGwHKwXUrIwywaCcqOTC1VCrNtLjoQonxpac7MMM NcDpo2Y8o6md9sRlkBKvoElpc6WbnbiN+EtVa4okFlT5CCXm372zIGUx8Ha9rt8W 9s8BhMaVydJ4Qv0p/s/xu0jsA8wqIuJHVdJxDokcyK9FdPKkPB5INADq3urkwSUy lAYPVEyqaePKKYWYVhVyX8LvMKkGIqBK6geNpXNCs4dVINtNimafsW1wJIEyKWFU otl1aUyDBvXT9oefh7QxrZK/GGmZTCnjBZTaXna+kIMSu6i2DVDGeTtotEk= -----END CERTIFICATE-----Generated at Sun Feb 16 15:49:38 2025 by rpki-client