$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f558359a-2a02-4c8e-9a72-7159b2569d66.roa File: f558359a-2a02-4c8e-9a72-7159b2569d66.roa (raw, json) Hash identifier: 3xrGusfiaN4BzUDINWZm9NCA4hdu6j7KjMWp3gaDa98= Subject key identifier: 7C:FB:AF:84:BF:40:A6:8F:46:A7:73:AD:10:E7:EC:7B:ED:97:B5:28 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 180C4A00833A2AC90CB039CA6A14C88729F7E9B3 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f558359a-2a02-4c8e-9a72-7159b2569d66.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:0c:4a:00:83:3a:2a:c9:0c:b0:39:ca:6a:14:c8:87:29:f7:e9:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:29:9e:74:ed:b2:94:e0:b4:cc:bd:6d:c4:d3: 7a:aa:a6:f6:ea:8e:02:7f:40:01:29:0d:c3:22:db: 55:cb:09:4b:37:da:22:e7:d6:fe:f1:5f:c6:f9:69: 6c:e7:bd:e6:84:c0:5a:7f:ee:4b:46:da:94:bc:9e: 0f:22:bb:80:df:0a:6d:43:4f:d3:61:5a:97:0c:dd: 8b:b6:95:f3:24:33:ad:87:62:b0:61:a5:b4:72:73: 2f:5c:7c:2d:ef:50:14:e2:b8:75:f1:2f:db:7a:1b: 6c:f4:ac:0a:0e:cd:87:46:57:e8:79:c3:3b:7b:91: 17:8d:b8:1e:ef:4b:53:b4:6d:33:17:a7:a8:32:f6: 48:46:03:f3:94:81:42:d1:14:e2:96:5c:0d:92:b3: bd:f0:f4:5a:13:97:7d:01:ea:a7:e7:1e:2a:a1:42: 91:fc:4e:4d:c9:01:bc:e6:c9:02:c0:58:da:3e:67: 64:37:a0:d1:b9:aa:c8:7d:da:5f:45:8d:86:be:a9: fb:4a:6c:db:1b:cf:c5:f1:a7:16:2b:0f:07:0f:a2: 9b:0d:28:65:96:49:ef:d2:70:c6:8f:f1:a0:10:80: 3a:62:6a:2d:c5:d1:7e:76:a9:4f:62:9a:0e:74:f2: b6:65:84:c5:59:1d:69:5e:43:c7:e0:fb:7a:2e:ed: f3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:FB:AF:84:BF:40:A6:8F:46:A7:73:AD:10:E7:EC:7B:ED:97:B5:28 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f558359a-2a02-4c8e-9a72-7159b2569d66.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.210.0/23 Signature Algorithm: sha256WithRSAEncryption 86:27:bc:83:4f:29:70:89:fd:6d:bb:1f:49:4d:5f:4f:62:6d: 5b:5d:4e:84:62:5a:2e:ee:e7:d7:d0:89:63:da:e7:62:5a:b3: fc:fa:77:6b:b4:b3:07:14:30:33:cc:f0:7f:d0:4f:02:40:be: a9:9e:01:b5:dc:93:0a:ad:68:95:14:38:1a:4a:69:94:01:d2: 92:0f:3f:77:43:99:fa:78:7d:d6:b6:f6:72:36:b0:11:c2:8e: b6:23:58:61:e2:04:64:34:ad:f7:85:91:23:25:10:6b:bd:9a: 7e:34:28:32:47:49:a9:94:e2:75:07:7f:69:90:02:3b:ef:54: 37:bd:0a:5a:cc:f2:1b:a8:e8:6b:94:45:6e:46:d9:1e:92:77: 54:ff:c2:ec:02:ac:56:ef:3d:70:40:93:32:26:7e:35:24:75: 7e:65:11:cb:fb:6f:a8:f6:7a:02:74:21:b3:5e:61:1b:53:94: 77:3e:d4:4f:94:ec:8e:57:2c:70:86:e2:54:ac:54:41:84:e4: 25:12:8b:0d:13:04:db:5f:e1:94:c8:13:b9:9d:b2:0a:68:28: 22:60:b8:63:26:fb:f5:f7:76:79:23:cb:08:64:4c:41:f6:f3: 49:ec:38:0c:02:1f:e2:a0:f7:84:4d:1d:de:ca:2c:9b:e9:20: 39:75:2b:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGAxKAIM6KskMsDnKahTIhyn36bMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzI3YzM2ODNkZmI5YjdlMGU0NDYzYmQ5MzdkMjlmZmQ5 MDNlNTcwNDU5ZTNhOWNkOWRiMzY2ZTM4NmJiZGIxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHKZ507bKU4LTMvW3E03qqpvbqjgJ/QAEpDcMi21XLCUs3 2iLn1v7xX8b5aWznveaEwFp/7ktG2pS8ng8iu4DfCm1DT9NhWpcM3Yu2lfMkM62H YrBhpbRycy9cfC3vUBTiuHXxL9t6G2z0rAoOzYdGV+h5wzt7kReNuB7vS1O0bTMX p6gy9khGA/OUgULRFOKWXA2Ss73w9FoTl30B6qfnHiqhQpH8Tk3JAbzmyQLAWNo+ Z2Q3oNG5qsh92l9FjYa+qftKbNsbz8XxpxYrDwcPopsNKGWWSe/ScMaP8aAQgDpi ai3F0X52qU9img508rZlhMVZHWleQ8fg+3ou7fNVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfPuvhL9Apo9Gp3OtEOfse+2XtSgwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y1NTgzNTlhLTJhMDItNGM4ZS05YTcyLTcxNTliMjU2OWQ2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+dIwDQYJKoZIhvcNAQELBQADggEBAIYnvINPKXCJ/W27H0lNX09ibVtd ToRiWi7u59fQiWPa52Jas/z6d2u0swcUMDPM8H/QTwJAvqmeAbXckwqtaJUUOBpK aZQB0pIPP3dDmfp4fda29nI2sBHCjrYjWGHiBGQ0rfeFkSMlEGu9mn40KDJHSamU 4nUHf2mQAjvvVDe9ClrM8huo6GuURW5G2R6Sd1T/wuwCrFbvPXBAkzImfjUkdX5l Ecv7b6j2egJ0IbNeYRtTlHc+1E+U7I5XLHCG4lSsVEGE5CUSiw0TBNtf4ZTIE7md sgpoKCJguGMm+/X3dnkjywhkTEH280nsOAwCH+Kg94RNHd7KLJvpIDl1K/g= -----END CERTIFICATE-----Generated at Wed Feb 5 15:50:46 2025 by rpki-client