$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa File: 59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa (raw, json) Hash identifier: qg6yktKWGkAVqejUYonpdIxzAWtmlltlr6Rx6npF3C8= Subject key identifier: 1A:42:0B:CF:4F:87:70:67:73:AE:72:D9:32:E7:63:B3:5C:D5:21:3E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 60D63CA9B229632825BB4D0742B9E393BCAAA14B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa Signing time: Tue 06 May 2025 00:00:11 +0000 ROA not before: Tue 06 May 2025 00:00:11 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:d6:3c:a9:b2:29:63:28:25:bb:4d:07:42:b9:e3:93:bc:aa:a1:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 6 00:00:11 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=ecc94de9c70ce7e6b5fa188175cef52e7f04070762af536e2d70b854bbc424d8, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:76:b5:ba:a2:b3:98:29:a8:a0:a1:ef:3d:ae: 60:4d:46:7a:fa:4e:6a:ba:ab:bd:69:e0:e7:0b:31: 35:33:2d:15:c4:8a:74:0b:3f:fa:0b:5c:f2:0b:8a: dc:99:f4:e0:df:b0:f6:6e:eb:b1:4e:29:18:35:d8: f2:f8:72:e8:ab:16:ca:3f:8c:02:07:47:dd:6c:ee: 6a:bc:18:6d:ab:9e:5a:90:0f:31:64:9e:52:0b:15: 16:90:ca:54:eb:dc:d6:e5:89:ec:64:48:e8:bd:b3: 85:5c:87:72:8b:a5:24:28:cc:63:1a:c8:69:06:31: a8:a0:e6:ca:cf:97:96:2b:e2:68:f6:30:2a:62:f1: b7:1e:3b:0d:a3:d0:8e:d9:8d:63:29:d5:0f:fc:b6: ef:fa:3f:35:c0:af:2c:b6:8b:09:66:4d:5c:05:a1: 1a:69:e9:a7:43:ca:11:17:ba:02:57:62:a6:03:b5: 73:7b:d9:53:37:84:15:f1:c4:52:d3:46:2a:f4:d6: c3:a2:a8:b3:7b:99:9e:99:48:be:9c:e5:93:99:a5: ff:04:08:0d:ae:a1:7a:a0:dc:05:89:20:8a:09:2c: 95:0c:16:c4:e5:aa:5f:75:1f:0a:92:8f:ff:15:e9: 78:30:f7:01:ae:cf:4b:eb:1c:ac:72:23:9c:21:dc: ba:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:42:0B:CF:4F:87:70:67:73:AE:72:D9:32:E7:63:B3:5C:D5:21:3E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.220.0/24 Signature Algorithm: sha256WithRSAEncryption 14:65:72:8d:74:f1:0a:58:28:32:28:1d:4a:5e:fb:d0:18:26: 68:45:c3:f6:7c:4c:9b:33:f9:ee:c7:fc:cf:19:bd:fc:89:94: 5e:2d:57:2c:6d:f7:28:98:6a:68:43:53:90:3e:36:2f:9f:ff: 43:15:99:70:87:c3:f8:56:e5:42:37:72:d4:a3:0f:42:aa:01: e2:8b:b3:fd:21:b2:21:d2:f2:cb:3e:ef:56:0f:ee:ad:0f:d9: 28:18:ce:9f:3a:a4:36:32:ea:1e:d6:da:f2:ae:7f:fe:49:3c: 9e:98:4d:91:74:b8:41:de:64:51:d4:bf:2d:20:06:f0:b3:eb: 20:9c:f6:35:8a:e7:53:00:02:80:48:7c:76:a6:33:4f:a4:09: 9b:6f:46:4e:96:ee:62:36:e2:9a:33:4c:3c:76:1d:b2:d6:3c: 03:68:02:b4:c9:2e:d6:f2:c4:3c:3a:4e:dc:61:19:ee:3d:44: a8:e9:60:4c:d3:93:9e:98:52:bf:c9:a6:80:1d:19:79:10:f6: 84:f4:e5:d6:bb:0e:e4:9a:02:99:09:e9:75:36:2a:be:a1:ca: 17:d2:7b:85:f9:58:23:17:62:5a:96:e8:e5:a2:d7:be:c6:03: 63:a7:8a:cf:58:89:c3:d6:87:74:76:07:34:44:7d:50:4b:fe: 46:11:27:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYNY8qbIpYyglu00HQrnjk7yqoUswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA2MDAwMDExWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2M5NGRlOWM3MGNlN2U2YjVmYTE4ODE3NWNlZjUyZTdm MDQwNzA3NjJhZjUzNmUyZDcwYjg1NGJiYzQyNGQ4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDvdrW6orOYKaigoe89rmBNRnr6Tmq6q71p4OcLMTUzLRXE inQLP/oLXPILityZ9ODfsPZu67FOKRg12PL4cuirFso/jAIHR91s7mq8GG2rnlqQ DzFknlILFRaQylTr3NbliexkSOi9s4Vch3KLpSQozGMayGkGMaig5srPl5Yr4mj2 MCpi8bceOw2j0I7ZjWMp1Q/8tu/6PzXAryy2iwlmTVwFoRpp6adDyhEXugJXYqYD tXN72VM3hBXxxFLTRir01sOiqLN7mZ6ZSL6c5ZOZpf8ECA2uoXqg3AWJIIoJLJUM FsTlql91HwqSj/8V6Xgw9wGuz0vrHKxyI5wh3LpFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGkILz0+HcGdzrnLZMudjs1zVIT4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU5YWIyNjRlLTI4NGYtNGUzMC1iMmYwLWQ4NWZhNzNiNjJiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dwwDQYJKoZIhvcNAQELBQADggEBABRlco108QpYKDIoHUpe+9AYJmhF w/Z8TJsz+e7H/M8ZvfyJlF4tVyxt9yiYamhDU5A+Ni+f/0MVmXCHw/hW5UI3ctSj D0KqAeKLs/0hsiHS8ss+71YP7q0P2SgYzp86pDYy6h7W2vKuf/5JPJ6YTZF0uEHe ZFHUvy0gBvCz6yCc9jWK51MAAoBIfHamM0+kCZtvRk6W7mI24pozTDx2HbLWPANo ArTJLtbyxDw6TtxhGe49RKjpYEzTk56YUr/JpoAdGXkQ9oT05da7DuSaApkJ6XU2 Kr6hyhfSe4X5WCMXYlqW6OWi177GA2Onis9YicPWh3R2BzREfVBL/kYRJ+M= -----END CERTIFICATE-----Generated at Tue May 6 01:12:16 2025 by rpki-client