$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa File: df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa (raw, json) Hash identifier: S0F9pnOVrJXOFvKo4ce/L93GWkqgtyqAmeifMkKbQIc= Subject key identifier: F5:81:4F:D1:37:44:91:6A:68:D4:18:A7:32:70:BF:77:F4:D8:2D:A9 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0F80299E2209D5D7465D6AEA02EF96621C1F14EF Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa Signing time: Sat 25 Jan 2025 00:00:00 +0000 ROA not before: Sat 25 Jan 2025 00:00:00 +0000 ROA not after: Sat 01 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:80:29:9e:22:09:d5:d7:46:5d:6a:ea:02:ef:96:62:1c:1f:14:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jan 25 00:00:00 2025 GMT Not After : Mar 1 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:32:7e:ef:83:9f:17:fe:34:16:3f:01:c9:c7: f6:c0:23:c3:a4:45:66:5f:3d:76:8d:13:1a:d2:38: 9a:d3:80:f5:f1:6d:f3:7e:5a:0c:fe:77:fc:f0:b1: 5c:33:1a:68:57:62:2a:13:ba:08:d0:66:79:1d:c9: e2:3f:51:5d:48:d0:a9:9c:14:d5:d7:cf:bc:01:62: 3c:14:ac:a1:87:ba:0e:f7:b8:91:ec:37:3b:ad:d8: 6c:aa:52:71:0d:10:00:a0:75:65:3c:ae:0f:21:29: 07:88:b5:08:85:31:6f:ce:c3:b3:60:2e:a3:35:bf: f4:b3:f5:04:19:4d:fa:20:02:68:c7:db:02:e9:11: ff:0c:6c:37:21:51:d4:52:3a:1e:ac:0c:20:05:2f: f1:45:b7:8a:15:f5:18:0c:11:05:10:63:99:72:59: 36:c5:e7:d7:06:55:05:26:ed:0d:fa:34:ab:13:14: 4f:95:2d:30:1e:bf:1c:97:87:ef:58:de:93:5f:ea: 8b:64:6e:7f:b0:a7:02:9b:cd:53:25:71:da:53:45: 5d:27:2a:84:1a:9f:2c:2f:c3:af:ec:74:d2:56:58: 57:c7:eb:fc:6b:50:1c:fe:c0:5d:31:60:61:7f:ef: 30:73:70:91:5d:a4:97:d7:f1:0f:27:78:08:45:bb: 39:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:81:4F:D1:37:44:91:6A:68:D4:18:A7:32:70:BF:77:F4:D8:2D:A9 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.232.0/24 Signature Algorithm: sha256WithRSAEncryption 75:eb:e0:72:e9:0b:c8:01:14:80:55:e1:44:b6:75:97:0e:ea: 40:8e:85:60:f1:47:c8:89:1f:ab:d9:cc:8d:a2:b4:46:a9:1d: a8:ce:1d:02:b2:46:2b:cd:96:11:55:64:8e:a2:89:b0:f9:e0: ec:9e:84:d1:04:f2:1e:4a:ae:7b:b9:67:be:36:7f:76:d0:a2: 6d:af:8a:a4:24:85:f5:25:fa:80:43:98:f5:c1:35:e0:cd:62: b2:c4:b6:8e:9b:c8:cb:b3:01:5b:fa:1a:99:f1:65:f6:77:72: 37:6c:96:ff:19:db:dd:3b:a7:d6:dd:e0:2b:61:b3:4d:d1:68: d8:07:66:75:71:9c:35:9d:5e:ee:3d:26:de:3b:5c:1c:51:a8: a7:ab:5c:4f:2c:4b:a3:4e:ae:d6:41:9c:12:77:62:a3:93:23: 5a:15:40:d5:db:56:17:27:14:f1:b0:17:66:d5:32:42:dc:b0: 80:1a:02:9e:fb:3e:f8:e9:bd:80:22:e7:0b:f5:b3:5c:50:c3: eb:3e:42:71:2e:ea:29:c2:8d:df:b8:ab:6a:94:79:2d:7a:ce: 07:91:36:4d:fb:6f:45:3a:39:64:af:6f:01:c2:0c:41:2e:5f: c5:b3:04:8d:f2:a2:da:6b:22:1f:6e:0c:89:9a:df:6e:c9:35: 34:c1:d2:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD4ApniIJ1ddGXWrqAu+WYhwfFO8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMTI1MDAwMDAwWhcNMjUwMzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDQzNjk4ZjVhOTEzMzVmMDU0MGJlYWZmNGU0M2RiMTdl MDVkM2MxM2RjYjBiYzM5NTEwYzY2ODlkYTkwYTg5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaMn7vg58X/jQWPwHJx/bAI8OkRWZfPXaNExrSOJrTgPXx bfN+Wgz+d/zwsVwzGmhXYioTugjQZnkdyeI/UV1I0KmcFNXXz7wBYjwUrKGHug73 uJHsNzut2GyqUnENEACgdWU8rg8hKQeItQiFMW/Ow7NgLqM1v/Sz9QQZTfogAmjH 2wLpEf8MbDchUdRSOh6sDCAFL/FFt4oV9RgMEQUQY5lyWTbF59cGVQUm7Q36NKsT FE+VLTAevxyXh+9Y3pNf6otkbn+wpwKbzVMlcdpTRV0nKoQanywvw6/sdNJWWFfH 6/xrUBz+wF0xYGF/7zBzcJFdpJfX8Q8neAhFuzlZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9YFP0TdEkWpo1BinMnC/d/TYLakwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2RmMTk3ZWNmLWJiOWEtNDJhZS1hMTlhLWE0MTY4ZmU2YTNhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++gwDQYJKoZIhvcNAQELBQADggEBAHXr4HLpC8gBFIBV4US2dZcO6kCO hWDxR8iJH6vZzI2itEapHajOHQKyRivNlhFVZI6iibD54OyehNEE8h5Krnu5Z742 f3bQom2viqQkhfUl+oBDmPXBNeDNYrLEto6byMuzAVv6GpnxZfZ3cjdslv8Z2907 p9bd4Cths03RaNgHZnVxnDWdXu49Jt47XBxRqKerXE8sS6NOrtZBnBJ3YqOTI1oV QNXbVhcnFPGwF2bVMkLcsIAaAp77PvjpvYAi5wv1s1xQw+s+QnEu6inCjd+4q2qU eS16zgeRNk37b0U6OWSvbwHCDEEuX8WzBI3yotprIh9uDIma327JNTTB0v4= -----END CERTIFICATE-----Generated at Sun Feb 16 15:20:52 2025 by rpki-client