$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa File: cb088b4a-420f-4b13-84d1-b160e021b919.roa (raw, json) Hash identifier: u3TTjAd04A6XURt+GK7WCCo9HQthlJRnqfq1uqLKPr8= Subject key identifier: 21:0B:60:2D:67:BF:B5:8C:75:DE:B5:94:9A:B0:B7:93:D1:B2:0F:D0 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 24498516CB4E1EC379E10A0E1DF584785A528848 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa Signing time: Wed 19 Feb 2025 00:20:07 +0000 ROA not before: Wed 19 Feb 2025 00:20:07 +0000 ROA not after: Wed 26 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:49:85:16:cb:4e:1e:c3:79:e1:0a:0e:1d:f5:84:78:5a:52:88:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 19 00:20:07 2025 GMT Not After : Mar 26 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d7:4f:7c:23:ed:36:5c:d1:0c:71:d2:13:26: c6:13:d5:da:45:a7:72:14:ca:cb:98:cc:96:17:74: cd:d0:4a:9b:1c:33:6e:bb:c0:85:e6:fc:22:d1:24: 1c:b4:00:be:42:9f:e2:99:ed:ba:79:17:2e:4e:c9: a2:2b:ef:27:4e:4a:f2:cf:03:e3:72:ba:a3:61:3a: 41:2a:61:4c:58:f6:35:1a:a3:ab:c7:27:15:75:58: 1c:4e:af:fa:90:2c:32:e2:f6:3d:28:80:fd:49:a6: b4:d5:35:13:71:d5:fd:e9:b5:96:ce:39:88:e1:d2: 57:72:0c:b1:61:44:9c:fc:f0:08:7b:74:02:c2:33: e5:d2:1a:8e:65:1e:4a:f2:91:ce:df:20:e8:21:0e: 72:3c:9e:96:f6:6e:f5:05:7f:18:54:5a:64:6c:a3: 2a:9a:a7:e5:9a:13:43:03:c8:e1:a3:6f:49:f3:f5: cd:72:c3:7f:89:02:af:e5:c7:19:02:b6:fc:ee:0b: 35:cd:50:ea:db:f4:5b:b9:a9:ec:b6:be:59:32:8d: 63:7c:0b:08:0f:14:5b:32:01:00:fe:79:7a:67:35: c1:a5:78:d2:3e:4d:65:f0:69:1d:1d:cf:db:19:06: 24:8e:bf:88:f3:93:ef:51:91:cf:48:1f:51:fe:c4: 36:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0B:60:2D:67:BF:B5:8C:75:DE:B5:94:9A:B0:B7:93:D1:B2:0F:D0 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.227.0/24 Signature Algorithm: sha256WithRSAEncryption 51:ac:48:6d:c6:9b:43:f6:88:f3:a5:a8:cb:8d:70:a6:cc:62: e0:46:57:ed:8b:3f:a1:2c:23:54:21:d8:9a:c7:c4:68:5e:8c: 23:ab:0b:ec:b1:ef:c4:f1:4c:27:7a:d2:9f:6d:e2:da:26:db: 71:a1:7c:6e:19:5b:78:b7:8d:b1:6f:00:54:ad:7d:90:f9:02: 6f:49:1d:84:8b:11:bb:b3:ba:07:68:d1:7b:45:e0:59:5f:81: 73:3a:fc:14:d0:04:3a:73:ec:0d:ca:81:42:c6:3d:0f:b6:34: 83:5b:2c:2d:98:ae:60:78:56:39:44:8f:01:b4:10:53:65:22: c4:d3:b1:da:6e:f8:f0:61:33:5f:0b:88:be:5a:fb:6b:93:7e: ea:1d:91:c2:d0:83:ed:47:7e:41:f5:f1:e5:94:8c:b4:12:48: 9f:a2:e5:d9:4f:67:1b:23:74:63:b9:58:fc:56:bc:d2:44:52: 85:84:c7:f4:64:41:14:54:55:6e:24:7a:6f:aa:75:67:c3:23: a5:f6:b2:94:12:d8:a3:c1:77:6e:fb:30:98:5c:3b:41:fe:5a: 4c:0c:58:08:97:fa:48:23:c1:fa:0c:14:56:55:b5:aa:c9:a0: 87:1d:1c:9c:68:98:e7:fa:9b:86:34:b3:0b:df:22:e8:c5:19: 0d:a8:8a:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJEmFFstOHsN54QoOHfWEeFpSiEgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMjE5MDAyMDA3WhcNMjUwMzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMTJlNDM1MDUzYmVkOTdiZmZjZGVkNDBiMjJiMWJjNjI2 MGE5ZTIzYTc5NmRiYmU0NGY2YWIyOTQ2ZDRjZDhmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ1098I+02XNEMcdITJsYT1dpFp3IUysuYzJYXdM3QSpsc M267wIXm/CLRJBy0AL5Cn+KZ7bp5Fy5OyaIr7ydOSvLPA+NyuqNhOkEqYUxY9jUa o6vHJxV1WBxOr/qQLDLi9j0ogP1JprTVNRNx1f3ptZbOOYjh0ldyDLFhRJz88Ah7 dALCM+XSGo5lHkrykc7fIOghDnI8npb2bvUFfxhUWmRsoyqap+WaE0MDyOGjb0nz 9c1yw3+JAq/lxxkCtvzuCzXNUOrb9Fu5qey2vlkyjWN8CwgPFFsyAQD+eXpnNcGl eNI+TWXwaR0dz9sZBiSOv4jzk+9Rkc9IH1H+xDYTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIQtgLWe/tYx13rWUmrC3k9GyD9AwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NiMDg4YjRhLTQyMGYtNGIxMy04NGQxLWIxNjBlMDIxYjkxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeMwDQYJKoZIhvcNAQELBQADggEBAFGsSG3Gm0P2iPOlqMuNcKbMYuBG V+2LP6EsI1Qh2JrHxGhejCOrC+yx78TxTCd60p9t4tom23GhfG4ZW3i3jbFvAFSt fZD5Am9JHYSLEbuzugdo0XtF4FlfgXM6/BTQBDpz7A3KgULGPQ+2NINbLC2YrmB4 VjlEjwG0EFNlIsTTsdpu+PBhM18LiL5a+2uTfuodkcLQg+1HfkH18eWUjLQSSJ+i 5dlPZxsjdGO5WPxWvNJEUoWEx/RkQRRUVW4kem+qdWfDI6X2spQS2KPBd277MJhc O0H+WkwMWAiX+kgjwfoMFFZVtarJoIcdHJxomOf6m4Y0swvfIujFGQ2oing= -----END CERTIFICATE-----Generated at Thu Mar 13 23:39:17 2025 by rpki-client