$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa File: 271f0380-5b52-472a-bc37-cdbbdcd650e9.roa (raw, json) Hash identifier: R5wStgxuwbamF+nPgduP4jptJ1kJgsdw+g++YLMSRbA= Subject key identifier: BD:A4:92:4B:17:2A:C0:77:C7:B6:4E:94:6B:84:F0:3F:15:63:CA:99 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 42E2AB3E5B083DC2991485B5884CBE4B7A542A87 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa Signing time: Tue 06 May 2025 00:00:09 +0000 ROA not before: Tue 06 May 2025 00:00:09 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e2:ab:3e:5b:08:3d:c2:99:14:85:b5:88:4c:be:4b:7a:54:2a:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 6 00:00:09 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=016be19db7df517ac86414a44613ebea617de599c91b86dd5b95b9a29f426e1f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:01:d8:16:c7:f6:5c:e4:52:93:ad:ff:e4:2b: b2:48:69:63:81:9e:f7:d4:2a:fd:1f:5d:d7:93:b5: b1:39:91:94:c8:84:1a:17:a0:4b:47:64:ca:0c:62: bd:71:66:68:b9:4b:65:5c:43:50:9c:cb:65:7b:67: 9a:71:43:e1:ff:80:6b:62:8c:e6:56:36:d8:88:79: 9a:54:0d:ab:06:79:8b:b3:7a:bb:f3:a2:26:b2:9e: 0b:99:1f:54:69:3a:90:0a:d2:09:31:0f:2a:f7:64: 1a:94:0b:78:28:6a:c6:8d:83:bf:9e:8d:61:c7:c4: 87:b4:1e:22:5a:ec:3f:51:82:7b:04:0a:ca:f2:b8: fb:a7:27:1b:4c:10:50:3b:bf:50:5a:1b:24:df:15: de:7f:99:ea:fe:9d:40:ee:97:51:f1:6b:4d:99:72: d4:5c:c6:97:d3:4a:5f:6f:4b:a9:79:6c:cd:fe:25: 6d:b3:44:cf:22:98:67:b9:66:6a:7f:cb:f9:de:eb: 26:85:0b:88:88:16:c8:4d:cf:ad:27:d0:1a:97:dd: f1:c2:9c:f6:a4:d0:b5:93:fb:60:60:85:b9:5a:eb: af:fa:20:c7:43:9a:d6:f1:ac:d4:1e:ec:c5:52:e1: e3:31:f7:af:5e:8b:e2:3c:3a:d0:36:6e:09:55:c0: 81:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A4:92:4B:17:2A:C0:77:C7:B6:4E:94:6B:84:F0:3F:15:63:CA:99 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.217.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:99:a6:00:93:46:98:00:eb:bf:54:40:16:a7:8d:92:44:cc: 0b:2d:cb:69:00:10:64:db:a1:51:9a:73:d6:85:3c:f7:98:b4: 02:a5:12:34:c5:98:04:a8:2b:d6:a4:2f:cf:de:2b:20:db:40: 88:37:a6:51:9b:3c:42:a0:c1:5d:ff:05:9c:4b:02:7d:9c:be: 86:bc:e6:38:11:d5:93:42:82:bd:a4:c7:bc:12:b8:1e:66:ec: 5c:2d:d5:b4:be:0b:d9:92:1b:1e:ba:3b:eb:a1:f8:4a:c5:36: 96:1a:24:ee:e8:88:4f:3a:f0:82:5f:b6:f8:25:50:58:d2:7e: ec:14:d7:17:1f:15:04:eb:7d:ea:5f:41:73:b8:cf:4a:2e:ca: d6:68:2c:ab:61:c3:04:fb:84:82:aa:34:d5:40:12:80:98:8e: 22:87:30:eb:9f:eb:86:3b:e2:da:6e:f4:ab:34:4b:ea:eb:64: 0d:56:b8:0b:f4:4b:0f:ce:28:4b:6d:15:fd:63:fa:6d:de:e6: 99:0b:06:a4:d7:53:cf:4f:e5:31:ac:b9:ae:41:56:6d:d6:23: 55:00:b2:c6:8c:4e:13:2f:1c:8d:4d:69:a7:26:81:bb:54:91: c7:b9:00:dd:ea:db:9e:11:5e:43:21:84:32:1c:c8:94:78:52: 80:9d:df:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQuKrPlsIPcKZFIW1iEy+S3pUKocwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA2MDAwMDA5WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTZiZTE5ZGI3ZGY1MTdhYzg2NDE0YTQ0NjEzZWJlYTYx N2RlNTk5YzkxYjg2ZGQ1Yjk1YjlhMjlmNDI2ZTFmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClAdgWx/Zc5FKTrf/kK7JIaWOBnvfUKv0fXdeTtbE5kZTI hBoXoEtHZMoMYr1xZmi5S2VcQ1Ccy2V7Z5pxQ+H/gGtijOZWNtiIeZpUDasGeYuz ervzoiaynguZH1RpOpAK0gkxDyr3ZBqUC3goasaNg7+ejWHHxIe0HiJa7D9RgnsE CsryuPunJxtMEFA7v1BaGyTfFd5/mer+nUDul1Hxa02ZctRcxpfTSl9vS6l5bM3+ JW2zRM8imGe5Zmp/y/ne6yaFC4iIFshNz60n0BqX3fHCnPak0LWT+2Bghbla66/6 IMdDmtbxrNQe7MVS4eMx969ei+I8OtA2bglVwIFbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvaSSSxcqwHfHtk6Ua4TwPxVjypkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzI3MWYwMzgwLTViNTItNDcyYS1iYzM3LWNkYmJkY2Q2NTBlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dkwDQYJKoZIhvcNAQELBQADggEBAD+ZpgCTRpgA679UQBanjZJEzAst y2kAEGTboVGac9aFPPeYtAKlEjTFmASoK9akL8/eKyDbQIg3plGbPEKgwV3/BZxL An2cvoa85jgR1ZNCgr2kx7wSuB5m7Fwt1bS+C9mSGx66O+uh+ErFNpYaJO7oiE86 8IJftvglUFjSfuwU1xcfFQTrfepfQXO4z0ouytZoLKthwwT7hIKqNNVAEoCYjiKH MOuf64Y74tpu9Ks0S+rrZA1WuAv0Sw/OKEttFf1j+m3e5pkLBqTXU89P5TGsua5B Vm3WI1UAssaMThMvHI1NaacmgbtUkce5AN3q254RXkMhhDIcyJR4UoCd3+0= -----END CERTIFICATE-----Generated at Sat May 10 22:23:29 2025 by rpki-client