$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa File: cb088b4a-420f-4b13-84d1-b160e021b919.roa (raw, json) Hash identifier: 7OvtT3mCp2I4wrkQ+XYk8M+IhkYE+tpCRnqG7B+GhNo= Subject key identifier: 10:24:B1:BA:A1:F9:22:6C:D6:20:42:2E:D6:A0:82:8D:6A:C3:D2:87 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4002BCEA7220A2B25910176E46EE7D67BE804D44 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa Signing time: Sat 25 Jan 2025 00:00:00 +0000 ROA not before: Sat 25 Jan 2025 00:00:00 +0000 ROA not after: Sat 01 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:02:bc:ea:72:20:a2:b2:59:10:17:6e:46:ee:7d:67:be:80:4d:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jan 25 00:00:00 2025 GMT Not After : Mar 1 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3f:7b:ac:0f:dc:58:c6:60:0c:1e:33:38:bd: bd:bc:a0:97:9a:c6:6f:ce:61:78:d1:d9:5b:d8:ac: 6a:8c:31:93:02:b2:d8:74:f9:15:a4:38:d5:b5:86: 35:38:d3:66:7b:5f:f3:db:21:d5:c1:95:4e:f9:8b: 53:bd:32:f8:39:1f:b3:fc:56:ce:83:bb:af:3b:d0: ba:e1:98:38:fb:e2:d1:8a:30:dd:27:14:19:72:bf: 13:76:b7:d9:e6:01:f9:5e:e1:39:08:96:92:5c:14: 2d:49:de:56:c2:a8:8d:4b:37:57:a9:87:a3:b3:e5: 93:11:8b:26:db:40:6b:2f:8e:a4:db:b5:4c:af:f0: 28:e8:65:d2:b5:72:e2:d9:be:76:96:f8:5f:40:74: 2d:5c:d8:65:7d:5c:2b:1d:bf:56:fb:40:38:76:80: 76:fa:b5:94:77:b2:d4:e1:63:6e:25:d9:e5:b5:1d: 4e:ea:99:6c:e8:c3:c4:33:0e:a1:a8:6a:bc:72:50: 8b:45:78:3e:3a:fb:8a:07:33:cb:a9:5a:7d:48:97: f8:6a:2d:60:30:0e:53:ff:db:ba:f2:58:b7:66:f8: 7a:56:01:61:8d:dc:70:a8:8d:99:ee:db:28:cd:58: 9a:a9:22:59:5b:6a:5a:a8:41:78:73:74:9d:12:e3: 23:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:24:B1:BA:A1:F9:22:6C:D6:20:42:2E:D6:A0:82:8D:6A:C3:D2:87 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.227.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:e5:c9:d6:54:1b:51:7f:c6:65:f0:8f:53:9d:d9:a1:b6:98: c3:5a:62:f4:72:81:c6:34:c5:fd:a1:87:b7:23:81:57:30:fa: f9:83:8e:20:da:87:07:8c:cb:ac:1a:c7:a5:09:de:c1:8b:c9: 53:8a:1f:74:03:68:b0:b6:86:4c:43:e6:e3:7b:53:c8:fa:24: c1:d7:16:4f:9b:4f:ae:cb:b5:0a:8a:4b:c5:86:7e:d8:89:7e: 41:d4:fc:3e:31:8a:b2:07:87:d9:80:4b:37:fb:88:e8:cb:e6: 09:43:ec:30:77:7b:88:a2:b1:8f:2e:42:9f:75:fb:b9:22:64: ee:02:1a:d8:4a:f8:a4:41:7a:08:1a:6f:f6:1c:4f:7b:15:96: c7:c6:8c:2b:85:65:60:49:95:ea:dc:ab:ee:06:9f:3a:9e:49: a0:4c:92:6b:eb:12:c4:56:83:b8:59:fe:a9:7d:89:f8:c3:61: 67:51:7a:41:04:ff:c2:df:33:fd:c8:8e:03:61:ed:1c:06:50: 30:6e:95:4a:b5:38:fd:c9:02:7b:a7:4a:92:c8:2f:de:2b:49: ec:0c:c7:84:f6:9a:bb:34:05:3d:35:a5:f7:9d:30:3d:5d:f3: c0:0c:65:23:08:df:ab:f1:b3:28:7e:bb:59:11:e1:9c:38:cc: bf:e7:70:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQAK86nIgorJZEBduRu59Z76ATUQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMTI1MDAwMDAwWhcNMjUwMzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNmEwNmMzMzk2MGY1OTliMzE2OTJjYTA2MzljNTIzNDlh MWUyODI2ZWVmZWIzODk0N2ZmN2NiN2E4OGMzMDVhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrP3usD9xYxmAMHjM4vb28oJeaxm/OYXjR2VvYrGqMMZMC sth0+RWkONW1hjU402Z7X/PbIdXBlU75i1O9Mvg5H7P8Vs6Du6870LrhmDj74tGK MN0nFBlyvxN2t9nmAfle4TkIlpJcFC1J3lbCqI1LN1eph6Oz5ZMRiybbQGsvjqTb tUyv8CjoZdK1cuLZvnaW+F9AdC1c2GV9XCsdv1b7QDh2gHb6tZR3stThY24l2eW1 HU7qmWzow8QzDqGoarxyUItFeD46+4oHM8upWn1Il/hqLWAwDlP/27ryWLdm+HpW AWGN3HCojZnu2yjNWJqpIllbalqoQXhzdJ0S4yPDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUECSxuqH5ImzWIEIu1qCCjWrD0ocwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NiMDg4YjRhLTQyMGYtNGIxMy04NGQxLWIxNjBlMDIxYjkxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeMwDQYJKoZIhvcNAQELBQADggEBAHrlydZUG1F/xmXwj1Od2aG2mMNa YvRygcY0xf2hh7cjgVcw+vmDjiDahweMy6wax6UJ3sGLyVOKH3QDaLC2hkxD5uN7 U8j6JMHXFk+bT67LtQqKS8WGftiJfkHU/D4xirIHh9mASzf7iOjL5glD7DB3e4ii sY8uQp91+7kiZO4CGthK+KRBeggab/YcT3sVlsfGjCuFZWBJlercq+4GnzqeSaBM kmvrEsRWg7hZ/ql9ifjDYWdRekEE/8LfM/3IjgNh7RwGUDBulUq1OP3JAnunSpLI L94rSewMx4T2mrs0BT01pfedMD1d88AMZSMI36vxsyh+u1kR4Zw4zL/ncJU= -----END CERTIFICATE-----Generated at Sun Feb 16 15:12:02 2025 by rpki-client