$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa File: 32c53391-9c3f-4b16-925f-978e804a33ba.roa (raw, json) Hash identifier: 06pindXgruasU5MhBpWixIHrPUnroHRvWR0KYMzWvz0= Subject key identifier: 4F:9F:36:2E:55:F9:B2:6F:1E:2F:8B:28:7C:E2:A6:3A:CF:5C:4F:4B Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 561B746EDAA750E451045127724FC83577E1E7A6 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa Signing time: Thu 08 May 2025 16:22:02 +0000 ROA not before: Thu 08 May 2025 16:22:02 +0000 ROA not after: Thu 12 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 24.110.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 16 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:1b:74:6e:da:a7:50:e4:51:04:51:27:72:4f:c8:35:77:e1:e7:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 8 16:22:02 2025 GMT Not After : Jun 12 23:59:59 2025 GMT Subject: serialNumber=8759ee685fe0c8ebf85c35b4bdb6472cb77217dfd4ff3711f43bcd3c759c0913, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7d:e8:9a:7b:b5:a2:1f:70:21:d3:80:b4:4c: 9f:a1:e1:c0:de:e4:68:62:44:e6:51:6c:11:b4:34: c5:08:8b:2c:1b:17:cd:76:ff:69:24:66:33:61:10: d8:53:9a:26:9c:cf:fd:7b:64:b2:a6:d5:41:a0:fd: f5:ee:53:7b:34:3c:32:1b:7a:d6:24:96:16:6c:88: a1:f1:c5:16:0b:10:eb:23:45:51:9c:ac:ce:f9:81: 58:db:11:ec:3a:a1:1c:94:97:3a:6b:3d:39:81:85: 47:1c:bb:b9:2e:4a:58:69:93:78:53:0c:52:29:9a: 9a:bf:eb:13:e8:4f:94:00:19:50:5c:3e:a2:1e:31: 74:ff:1c:6d:c6:c8:80:b5:d8:c6:08:c4:82:39:db: 0f:57:d9:f2:fa:54:50:f6:60:78:36:e4:8f:d6:82: 63:ed:2d:dc:61:41:dd:23:92:16:f4:ce:e0:cb:78: af:33:a8:d6:6f:d0:d4:8a:62:b7:6f:af:79:40:fb: 91:aa:58:67:1e:e6:30:d9:db:12:83:34:ce:45:b0: d2:4c:d1:e1:7c:0d:48:7c:b5:cd:8e:65:e0:f6:2c: 85:f3:04:f5:d0:03:41:f6:ef:05:6f:98:91:a2:25: 15:94:d6:05:30:9e:c7:c9:bd:7e:9b:fc:a5:23:84: 0e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:9F:36:2E:55:F9:B2:6F:1E:2F:8B:28:7C:E2:A6:3A:CF:5C:4F:4B X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.64.0/18 Signature Algorithm: sha256WithRSAEncryption 28:f9:d7:2b:92:36:01:ef:3d:cd:57:e6:11:08:0a:58:3f:35: 36:75:67:1d:b6:92:65:38:63:e6:ca:23:25:bb:be:ae:5b:64: 29:53:d8:f8:f9:31:12:3a:65:34:11:88:ee:8b:6c:0c:32:4d: 35:c4:20:5f:ec:9d:0f:7f:7f:0a:93:2b:9c:f6:0e:c9:c3:ed: 6b:b6:a2:85:c9:0f:ac:7d:91:fa:21:cb:3f:37:52:14:f6:b7: 3e:be:ff:cf:32:44:53:60:a3:84:16:31:13:e0:0a:2c:c0:e8: d5:ab:ae:78:40:2d:23:69:d8:27:76:8e:3d:a7:ac:a0:ae:80: 5a:3c:3a:21:66:6e:b0:62:94:c3:3f:51:dc:d4:fd:c5:20:af: af:00:b2:de:9c:c4:45:9f:38:68:41:8f:33:d9:8e:bb:59:f9: e8:7e:12:4b:53:6e:2b:45:39:4d:57:55:c7:ae:2c:fa:5a:94: 3c:e6:fc:f8:7d:48:7f:0e:af:dc:73:d4:d5:6e:dd:8c:8a:4b: 89:56:4e:13:5a:ce:4c:bb:6c:0d:ba:1f:51:55:ed:68:5a:13: b8:aa:0d:38:93:3e:92:b2:98:c5:1b:f1:03:52:39:59:b7:47: 52:12:60:46:20:79:62:3e:83:a2:50:b2:09:75:28:48:7b:9e: 36:54:7a:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVht0btqnUORRBFEnck/INXfh56YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA4MTYyMjAyWhcNMjUwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzU5ZWU2ODVmZTBjOGViZjg1YzM1YjRiZGI2NDcyY2I3 NzIxN2RmZDRmZjM3MTFmNDNiY2QzYzc1OWMwOTEzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvfeiae7WiH3Ah04C0TJ+h4cDe5GhiROZRbBG0NMUIiywb F812/2kkZjNhENhTmiacz/17ZLKm1UGg/fXuU3s0PDIbetYklhZsiKHxxRYLEOsj RVGcrM75gVjbEew6oRyUlzprPTmBhUccu7kuSlhpk3hTDFIpmpq/6xPoT5QAGVBc PqIeMXT/HG3GyIC12MYIxII52w9X2fL6VFD2YHg25I/WgmPtLdxhQd0jkhb0zuDL eK8zqNZv0NSKYrdvr3lA+5GqWGce5jDZ2xKDNM5FsNJM0eF8DUh8tc2OZeD2LIXz BPXQA0H27wVvmJGiJRWU1gUwnsfJvX6b/KUjhA4fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUT582LlX5sm8eL4sofOKmOs9cT0swHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzMyYzUzMzkxLTljM2YtNGIxNi05MjVmLTk3OGU4MDRhMzNiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYYbkAwDQYJKoZIhvcNAQELBQADggEBACj51yuSNgHvPc1X5hEIClg/NTZ1 Zx22kmU4Y+bKIyW7vq5bZClT2Pj5MRI6ZTQRiO6LbAwyTTXEIF/snQ9/fwqTK5z2 DsnD7Wu2ooXJD6x9kfohyz83UhT2tz6+/88yRFNgo4QWMRPgCizA6NWrrnhALSNp 2Cd2jj2nrKCugFo8OiFmbrBilMM/UdzU/cUgr68Ast6cxEWfOGhBjzPZjrtZ+eh+ EktTbitFOU1XVceuLPpalDzm/Ph9SH8Or9xz1NVu3YyKS4lWThNazky7bA26H1FV 7WhaE7iqDTiTPpKymMUb8QNSOVm3R1ISYEYgeWI+g6JQsgl1KEh7njZUerk= -----END CERTIFICATE-----Generated at Thu May 15 10:31:56 2025 by rpki-client