$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa File: 3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa (raw, json) Hash identifier: BtstNko4ufyqMAlkTobdTyb6GRlKCZZmlKweffrRto4= Subject key identifier: CF:AC:5F:C5:84:BF:F6:0B:29:BF:5B:C3:73:DE:8D:E3:AB:6B:0E:90 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7C3A8B603565D04005840BECEBF127C7FF650D40 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa Signing time: Mon 05 May 2025 15:00:12 +0000 ROA not before: Mon 05 May 2025 15:00:12 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:3a:8b:60:35:65:d0:40:05:84:0b:ec:eb:f1:27:c7:ff:65:0d:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 5 15:00:12 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=c0eae622dee52128d1f32e266c75ff046a479fdabea39678064544810e9c01d2, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cf:4d:95:7d:56:c1:0e:f7:79:a6:37:e7:4a: 6f:25:70:40:cd:fa:54:de:02:57:86:33:f7:2c:35: 09:58:1b:55:e6:9c:2c:a3:89:b8:15:44:83:e6:10: b4:86:fc:aa:0e:9c:b5:98:2d:80:25:a8:e4:d8:51: 4c:3a:ef:d9:eb:1a:b4:9a:97:e9:9f:c4:f4:55:07: 4e:bd:92:39:d3:ba:93:4c:f0:7a:35:31:e4:55:3c: 8f:ac:cf:45:4c:ef:02:7a:08:f5:c6:ea:64:ea:fc: 8b:2a:07:58:0f:c1:0b:a8:ae:eb:ef:20:3d:6a:28: e3:af:41:e8:41:bb:6e:08:be:78:6d:9a:eb:54:dc: 65:b3:28:fa:af:8a:17:24:6c:27:e3:ac:08:f8:9e: c4:3f:78:58:12:df:eb:bd:5f:4f:74:55:6d:58:d1: 43:d9:aa:aa:b7:d6:74:24:f3:6b:97:95:16:ca:9b: 11:01:b3:da:f0:9a:44:8f:e3:88:6a:4e:8f:38:33: df:dc:61:cc:e0:8e:91:d4:98:68:d4:86:19:e5:35: ec:05:0f:7e:a1:71:0b:05:1c:58:12:5a:89:b8:03: 61:8b:63:67:9d:0d:23:f6:31:a5:b1:15:52:f2:96: 2b:4c:f3:09:e3:92:88:51:74:9c:42:4c:cf:67:2c: d6:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:AC:5F:C5:84:BF:F6:0B:29:BF:5B:C3:73:DE:8D:E3:AB:6B:0E:90 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 88:bd:50:22:cc:d2:85:bd:4d:02:fd:b3:6f:21:26:dc:89:ed: 8d:cf:cf:63:0b:e5:32:14:22:4a:ff:36:95:ec:e3:48:fc:35: ba:8c:51:91:8c:8b:8c:b8:86:61:a2:4b:3e:0f:2b:68:5f:0c: 4a:8a:b8:64:84:1f:ef:9f:77:6a:9b:27:77:d2:18:af:c0:a4: 0a:12:da:88:b6:31:af:42:c0:94:8a:53:9b:38:bf:c3:db:5b: 5f:43:a5:f2:e5:76:07:e3:fb:16:47:d5:90:32:77:75:e1:07: 17:fb:c9:cd:de:bc:b8:c3:80:5b:9b:6d:54:96:e5:9f:10:42: 80:eb:bf:0d:43:8b:44:c5:9e:5b:5a:bc:4b:5c:16:3b:34:df: 2c:51:61:82:60:fc:c0:fb:ac:8a:41:03:e9:a2:5e:3f:ca:7b: 24:19:c1:25:de:7b:f8:59:c5:39:16:2d:fd:b6:a2:23:b0:01: ed:2a:1d:98:27:f6:d6:06:2c:bd:ce:41:f1:0a:2c:cf:82:78: 9b:ca:84:80:0a:20:c5:25:bd:d6:e1:2b:07:cc:2b:20:47:a6: 95:a8:67:2e:f3:a5:f9:66:3a:28:32:7d:d9:aa:a3:a2:33:ad: 78:bc:51:6f:fc:2d:66:f2:a6:20:1f:b7:e4:cd:85:0a:a1:1e: 75:2a:ab:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfDqLYDVl0EAFhAvs6/Enx/9lDUAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA1MTUwMDEyWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMGVhZTYyMmRlZTUyMTI4ZDFmMzJlMjY2Yzc1ZmYwNDZh NDc5ZmRhYmVhMzk2NzgwNjQ1NDQ4MTBlOWMwMWQyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzz02VfVbBDvd5pjfnSm8lcEDN+lTeAleGM/csNQlYG1Xm nCyjibgVRIPmELSG/KoOnLWYLYAlqOTYUUw679nrGrSal+mfxPRVB069kjnTupNM 8Ho1MeRVPI+sz0VM7wJ6CPXG6mTq/IsqB1gPwQuoruvvID1qKOOvQehBu24Ivnht mutU3GWzKPqvihckbCfjrAj4nsQ/eFgS3+u9X090VW1Y0UPZqqq31nQk82uXlRbK mxEBs9rwmkSP44hqTo84M9/cYczgjpHUmGjUhhnlNewFD36hcQsFHFgSWom4A2GL Y2edDSP2MaWxFVLylitM8wnjkohRdJxCTM9nLNbzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUz6xfxYS/9gspv1vDc96N46trDpAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNlMGRhY2UzLTBlMmEtNDI1Mi04YzkyLTRjN2VlYzRjMzU4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBAIi9UCLM0oW9TQL9s28hJtyJ7Y3P z2ML5TIUIkr/NpXs40j8NbqMUZGMi4y4hmGiSz4PK2hfDEqKuGSEH++fd2qbJ3fS GK/ApAoS2oi2Ma9CwJSKU5s4v8PbW19DpfLldgfj+xZH1ZAyd3XhBxf7yc3evLjD gFubbVSW5Z8QQoDrvw1Di0TFnltavEtcFjs03yxRYYJg/MD7rIpBA+miXj/KeyQZ wSXee/hZxTkWLf22oiOwAe0qHZgn9tYGLL3OQfEKLM+CeJvKhIAKIMUlvdbhKwfM KyBHppWoZy7zpflmOigyfdmqo6IzrXi8UW/8LWbypiAft+TNhQqhHnUqq4g= -----END CERTIFICATE-----Generated at Sat May 10 19:28:43 2025 by rpki-client