$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa File: f99236be-03a7-4f91-be31-5366989c9d7b.roa (raw, json) Hash identifier: ohi2SbSfk4SVgCDtPCJoPGfeoB+ss+hCss9kT1yJios= Subject key identifier: 3D:4E:57:D8:34:15:7C:D6:D5:74:74:C9:C1:32:11:FF:DB:90:6E:1A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 260E1D036B8123CB845E22BBFFDEF2EEDE76B6C6 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa Signing time: Sat 08 Feb 2025 00:00:00 +0000 ROA not before: Sat 08 Feb 2025 00:00:00 +0000 ROA not after: Sat 15 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.255.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:0e:1d:03:6b:81:23:cb:84:5e:22:bb:ff:de:f2:ee:de:76:b6:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 8 00:00:00 2025 GMT Not After : Mar 15 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:26:af:50:dc:f1:25:bf:3a:4d:13:dc:20:a6: 59:dd:06:f4:58:fe:77:96:7f:ac:90:c1:b1:2b:06: bb:5d:6f:c5:68:a6:f3:58:3f:61:2a:46:0e:d4:28: c3:92:24:d1:3d:b8:74:2f:d2:b6:38:38:28:e7:43: d2:3e:89:bc:a5:27:53:eb:4c:3f:0d:82:ac:26:20: 2a:ba:45:b3:3d:b6:f8:4b:2e:99:9f:0b:7b:0f:90: 39:04:a3:b0:0e:a6:4e:39:5a:f9:bd:49:90:ff:06: 12:c9:a6:54:30:23:56:75:1e:d5:4b:a3:4a:f8:b7: 77:c7:5e:47:cf:6c:53:07:c2:66:2e:41:93:fe:df: 29:68:65:cb:1c:f4:5a:de:f5:58:13:9e:2c:c0:50: e3:cb:c6:f4:31:6f:f5:c4:ee:eb:d0:f0:af:f7:58: a5:a1:a3:c6:b8:77:b9:bf:be:f6:d2:56:04:f7:81: 0d:31:e1:70:82:99:b8:92:6f:b6:c7:88:82:65:15: 77:54:7e:7c:73:f6:bf:ec:7b:4a:16:ee:d6:66:58: e2:d2:e8:e8:c4:c1:92:8c:38:7b:74:ae:5c:e2:d3: 2d:e0:9d:a8:47:81:b0:00:5c:87:3c:c0:88:71:4f: 9a:7e:3d:59:37:30:fe:c3:1a:83:e6:9d:dc:43:06: 56:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:4E:57:D8:34:15:7C:D6:D5:74:74:C9:C1:32:11:FF:DB:90:6E:1A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.255.192.0/22 Signature Algorithm: sha256WithRSAEncryption 73:01:77:12:e0:f6:65:4c:58:b0:67:85:bb:ba:36:c8:d8:59: db:3c:31:33:4f:42:ee:eb:dd:0a:8c:12:90:e6:73:99:51:a8: 7d:01:7d:52:3b:30:79:5e:80:c6:f3:e9:50:b8:6a:83:26:d1: 39:f3:5e:ba:f0:24:45:2d:ab:18:26:af:b2:60:35:ac:d1:f6: 21:32:4c:3f:82:07:d8:90:7f:4f:bd:ab:6d:4d:5b:08:61:b4: a9:d8:52:d9:d6:77:0d:c4:38:35:c6:19:a4:54:0b:78:50:32: ee:2d:d1:c0:eb:41:e4:fa:5f:61:d1:ae:4b:a7:e0:6a:11:f4: b3:06:68:dd:b3:31:44:ed:88:b9:f6:67:c3:09:62:89:02:03: 06:fa:4e:18:08:f2:95:1b:34:56:e1:4e:5d:23:24:70:89:8c: f6:d8:c6:e9:de:37:cd:81:b6:cb:fe:db:04:f6:6c:63:af:3e: a2:12:07:78:08:14:73:06:fc:45:63:22:e8:a4:36:d5:b3:b5: 6c:49:41:eb:5c:51:73:8a:8f:e9:f4:9f:13:b7:a9:0e:41:dc: bb:31:2c:df:52:e7:b6:01:94:32:d0:63:79:48:8c:17:d3:03: 87:44:76:85:24:d0:6a:a8:59:35:ff:a7:18:19:a6:87:59:2a: 35:68:f2:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJg4dA2uBI8uEXiK7/97y7t52tsYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMjA4MDAwMDAwWhcNMjUwMzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmY1Y2E0YTE4NzY5MzdkOTg2ZDU2YmYyNTQ4YjgzNDE0 ZjUxY2YxOThmNTcyMTg2ZTc1OTNjNmUzNjc4ZDdmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxJq9Q3PElvzpNE9wgplndBvRY/neWf6yQwbErBrtdb8Vo pvNYP2EqRg7UKMOSJNE9uHQv0rY4OCjnQ9I+ibylJ1PrTD8NgqwmICq6RbM9tvhL LpmfC3sPkDkEo7AOpk45Wvm9SZD/BhLJplQwI1Z1HtVLo0r4t3fHXkfPbFMHwmYu QZP+3yloZcsc9Fre9VgTnizAUOPLxvQxb/XE7uvQ8K/3WKWho8a4d7m/vvbSVgT3 gQ0x4XCCmbiSb7bHiIJlFXdUfnxz9r/se0oW7tZmWOLS6OjEwZKMOHt0rlzi0y3g nahHgbAAXIc8wIhxT5p+PVk3MP7DGoPmndxDBlY1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPU5X2DQVfNbVdHTJwTIR/9uQbhowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y5OTIzNmJlLTAzYTctNGY5MS1iZTMxLTUzNjY5ODljOWQ3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALH/8AwDQYJKoZIhvcNAQELBQADggEBAHMBdxLg9mVMWLBnhbu6NsjYWds8 MTNPQu7r3QqMEpDmc5lRqH0BfVI7MHlegMbz6VC4aoMm0TnzXrrwJEUtqxgmr7Jg NazR9iEyTD+CB9iQf0+9q21NWwhhtKnYUtnWdw3EODXGGaRUC3hQMu4t0cDrQeT6 X2HRrkun4GoR9LMGaN2zMUTtiLn2Z8MJYokCAwb6ThgI8pUbNFbhTl0jJHCJjPbY xuneN82Btsv+2wT2bGOvPqISB3gIFHMG/EVjIuikNtWztWxJQetcUXOKj+n0nxO3 qQ5B3LsxLN9S57YBlDLQY3lIjBfTA4dEdoUk0GqoWTX/pxgZpodZKjVo8pM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:14:23 2025 by rpki-client