$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32fde2e1-3674-4a8c-9968-42521c781b0a.roa File: 32fde2e1-3674-4a8c-9968-42521c781b0a.roa (raw, json) Hash identifier: dY/0KvvlsCd/Q/+r25hvYmaSw5f5GzyA7C5SgmNP6TA= Subject key identifier: EA:E9:D4:3B:65:85:DD:D0:D4:D8:82:38:7B:0F:85:5A:AC:CF:CE:C0 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3E868616C4C8681D1A4208B6A83964F6F2BB54DB Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32fde2e1-3674-4a8c-9968-42521c781b0a.roa Signing time: Tue 06 May 2025 00:00:53 +0000 ROA not before: Tue 06 May 2025 00:00:53 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:86:86:16:c4:c8:68:1d:1a:42:08:b6:a8:39:64:f6:f2:bb:54:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 6 00:00:53 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=0ac17fe5881381da94e11a3dab3b1fcc19ebdb4e41d58e24e765c77ceba56aab, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:be:9b:78:f4:56:c2:e6:d9:3d:4e:dd:7a:2c: 1b:2a:b5:f7:d3:9e:03:38:34:8a:35:40:c7:11:fa: 77:5a:d2:65:3a:09:37:ac:5b:17:5e:e6:02:6b:f0: 58:ee:5d:c2:4a:4e:22:04:30:74:62:33:58:5b:a6: e7:bf:9e:48:dc:ed:74:d8:01:91:65:bd:5b:7a:08: aa:06:27:20:fa:41:c4:ee:b2:5c:d6:66:7e:55:97: 2d:d0:46:be:19:5b:16:d4:78:b6:01:4a:2f:91:de: 6b:2f:70:de:7f:91:0a:e2:e9:51:9e:81:96:fc:38: 8c:cc:ae:de:83:6c:57:24:69:da:6f:55:a9:3a:b8: bb:ac:36:a2:e4:c6:b7:e3:95:51:4b:34:5e:49:3b: 51:27:23:43:c0:8b:4c:1f:3f:4d:4b:4b:48:3d:27: 6a:fe:fb:6b:52:a8:3c:84:c8:59:9f:b6:86:5f:13: 69:5b:c8:f4:ef:59:08:4c:13:1f:ef:65:d2:ea:2f: 23:d9:95:92:2e:03:f3:80:25:36:fb:39:49:bb:1a: ce:06:f2:45:f1:07:13:26:70:58:9e:eb:2f:86:2e: eb:d8:ad:cf:c2:bc:9e:81:b2:5d:7d:a3:9e:fe:f1: 18:02:82:54:dc:96:a0:cc:0d:00:5b:9c:4e:5c:44: be:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E9:D4:3B:65:85:DD:D0:D4:D8:82:38:7B:0F:85:5A:AC:CF:CE:C0 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32fde2e1-3674-4a8c-9968-42521c781b0a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.238.0/23 Signature Algorithm: sha256WithRSAEncryption 15:11:ae:6b:2f:fc:11:c2:df:15:a3:21:b6:fc:ab:8c:80:af: 2c:d2:c4:dc:50:4b:33:7d:91:e4:56:8d:34:dc:2c:e2:a4:15: cb:90:39:d2:d2:3c:38:c9:63:c6:ae:d4:80:7c:4d:fe:d3:65: 80:04:ad:f3:65:f0:35:7e:55:c5:af:8e:fc:d0:67:ee:be:44: 33:23:a7:dc:65:1b:ad:ce:4c:60:3f:df:60:01:32:35:df:94: 8e:e7:95:d9:04:0f:30:fe:78:9e:01:12:6b:6c:93:16:35:35: e0:17:91:6e:eb:be:b4:44:de:a3:ea:41:0c:ee:24:13:3a:32: fd:3f:8c:be:30:26:7a:51:9f:a6:26:3e:c3:13:7a:84:c4:72: db:c4:73:d5:98:e9:44:55:e7:5a:32:49:4e:a6:3b:8c:03:66: 57:b8:70:c9:cc:29:58:a5:4b:5c:f2:2a:fc:c1:7e:e4:4a:bb: 85:52:e7:9d:01:e2:a1:d3:dd:bb:43:5b:91:11:45:3f:b0:df: 11:0e:83:b8:12:26:89:d4:d6:e4:2a:02:6d:6e:79:ab:03:bb: 3b:64:23:43:e0:04:a6:64:a5:90:2d:1b:cd:38:e9:d2:d1:8e: cd:fa:51:a9:9f:57:9d:c9:31:35:1e:27:61:fc:08:ed:a4:f6: dc:45:95:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPoaGFsTIaB0aQgi2qDlk9vK7VNswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA2MDAwMDUzWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYWMxN2ZlNTg4MTM4MWRhOTRlMTFhM2RhYjNiMWZjYzE5 ZWJkYjRlNDFkNThlMjRlNzY1Yzc3Y2ViYTU2YWFiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4vpt49FbC5tk9Tt16LBsqtffTngM4NIo1QMcR+nda0mU6 CTesWxde5gJr8FjuXcJKTiIEMHRiM1hbpue/nkjc7XTYAZFlvVt6CKoGJyD6QcTu slzWZn5Vly3QRr4ZWxbUeLYBSi+R3msvcN5/kQri6VGegZb8OIzMrt6DbFckadpv Vak6uLusNqLkxrfjlVFLNF5JO1EnI0PAi0wfP01LS0g9J2r++2tSqDyEyFmftoZf E2lbyPTvWQhMEx/vZdLqLyPZlZIuA/OAJTb7OUm7Gs4G8kXxBxMmcFie6y+GLuvY rc/CvJ6Bsl19o57+8RgCglTclqDMDQBbnE5cRL7TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6unUO2WF3dDU2II4ew+FWqzPzsAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzMyZmRlMmUxLTM2NzQtNGE4Yy05OTY4LTQyNTIxYzc4MWIwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX++4wDQYJKoZIhvcNAQELBQADggEBABURrmsv/BHC3xWjIbb8q4yAryzS xNxQSzN9keRWjTTcLOKkFcuQOdLSPDjJY8au1IB8Tf7TZYAErfNl8DV+VcWvjvzQ Z+6+RDMjp9xlG63OTGA/32ABMjXflI7nldkEDzD+eJ4BEmtskxY1NeAXkW7rvrRE 3qPqQQzuJBM6Mv0/jL4wJnpRn6YmPsMTeoTEctvEc9WY6URV51oySU6mO4wDZle4 cMnMKVilS1zyKvzBfuRKu4VS550B4qHT3btDW5ERRT+w3xEOg7gSJonU1uQqAm1u easDuztkI0PgBKZkpZAtG8046dLRjs36UamfV53JMTUeJ2H8CO2k9txFlbc= -----END CERTIFICATE-----Generated at Tue May 6 02:58:04 2025 by rpki-client