$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa File: 946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa (raw, json) Hash identifier: 51RuAeRFS7wVxptnX6ljKZKpa1MChnV6lQ73GwZNNzM= Subject key identifier: 74:2D:78:C4:08:95:55:78:2C:43:BA:21:29:16:F1:6F:C2:4F:A9:58 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 48EF5476EF38B11460A7110B994A8A196106F310 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa Signing time: Tue 06 May 2025 00:00:52 +0000 ROA not before: Tue 06 May 2025 00:00:52 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:ef:54:76:ef:38:b1:14:60:a7:11:0b:99:4a:8a:19:61:06:f3:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 6 00:00:52 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=48ca486edb8ecfeadc16f4c34818c417b29c1d3c9a64f890f78961aa3fe5afe2, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:28:76:9b:f9:40:94:da:72:43:30:27:f6:e4: 55:d6:86:30:43:23:27:23:ca:cb:98:bc:38:6e:ea: 6f:9d:35:4e:25:9d:78:41:64:2b:5a:26:14:a0:55: ff:3e:4d:82:13:48:2b:72:dc:6b:2c:03:87:b1:1c: f7:6e:2b:b0:b5:ad:28:47:11:8f:9c:39:71:90:b9: 03:59:3d:fb:07:e9:cf:d9:76:cb:82:16:84:aa:b3: 9e:3a:6c:41:6a:fb:69:aa:85:22:4b:be:2b:54:e2: 84:ba:66:22:dc:d8:7e:ef:db:44:ce:5b:2b:d0:7e: b5:91:32:e3:f9:0c:9e:34:23:db:60:61:1c:b2:bd: 1d:7c:1e:fb:a6:ef:e9:13:a9:d5:98:d3:38:37:43: 78:56:b3:01:f4:67:3d:37:e1:01:11:f2:61:cb:6e: ba:7d:1e:54:fe:0e:09:3d:9e:15:5e:c4:05:65:7c: 32:51:10:77:fd:e5:85:9b:ee:f1:51:55:dd:1e:41: 39:84:90:3a:fe:de:6a:3e:1a:5f:c4:c4:c4:28:d9: 49:8f:09:9a:1d:7b:7b:e1:ac:6c:6f:7a:96:dc:2d: 6c:e3:94:98:73:ee:3b:3e:0f:9a:19:be:ae:73:b3: 99:32:2b:f8:c9:5d:b1:2f:d7:c3:78:64:ce:68:a2: ab:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:2D:78:C4:08:95:55:78:2C:43:BA:21:29:16:F1:6F:C2:4F:A9:58 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.225.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:fc:6c:a2:2b:6c:f8:89:eb:5b:c0:c7:81:56:10:99:4d:77: 79:0c:88:73:c1:38:16:58:fa:06:d9:77:2b:12:6e:87:0e:1f: 24:f0:5e:2b:c6:b7:67:cf:07:e3:52:77:84:b2:13:51:6a:7d: bb:69:28:4e:01:fc:79:b0:f6:8c:ff:df:93:db:1e:67:05:44: 13:db:47:c2:f6:b3:0c:20:81:d7:b8:5d:75:f4:47:0f:27:09: b5:6e:11:c5:53:df:ca:75:ce:c4:d7:2f:99:90:73:0b:20:14: 44:1d:42:b2:8d:41:34:0b:c1:88:1f:2f:fd:85:a2:12:b8:01: 8b:41:61:84:bf:64:f1:67:f6:80:41:b2:fe:86:a7:da:c7:85: d9:ba:5a:10:7e:fa:9c:6d:a2:0e:db:ad:35:da:0e:e6:00:a6: b6:e7:2d:a8:16:e9:68:65:68:91:3f:cc:26:c5:fd:9f:69:68: cd:2d:8d:53:dc:cf:b4:48:6e:41:58:b3:fb:42:95:98:a8:ed: 75:f6:6e:78:c3:1a:1f:f8:f2:e2:0b:6e:99:90:aa:dc:3c:71: b0:55:28:c5:3a:19:3e:b5:e2:67:22:70:1e:26:89:c6:66:5f: 98:1a:56:8a:ef:ec:7a:3e:ab:3e:1b:c7:d0:e1:23:c6:6c:74: 42:18:bf:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSO9Udu84sRRgpxELmUqKGWEG8xAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA2MDAwMDUyWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGNhNDg2ZWRiOGVjZmVhZGMxNmY0YzM0ODE4YzQxN2Iy OWMxZDNjOWE2NGY4OTBmNzg5NjFhYTNmZTVhZmUyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwKHab+UCU2nJDMCf25FXWhjBDIycjysuYvDhu6m+dNU4l nXhBZCtaJhSgVf8+TYITSCty3GssA4exHPduK7C1rShHEY+cOXGQuQNZPfsH6c/Z dsuCFoSqs546bEFq+2mqhSJLvitU4oS6ZiLc2H7v20TOWyvQfrWRMuP5DJ40I9tg YRyyvR18Hvum7+kTqdWY0zg3Q3hWswH0Zz034QER8mHLbrp9HlT+Dgk9nhVexAVl fDJREHf95YWb7vFRVd0eQTmEkDr+3mo+Gl/ExMQo2UmPCZode3vhrGxvepbcLWzj lJhz7js+D5oZvq5zs5kyK/jJXbEv18N4ZM5ooqsPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdC14xAiVVXgsQ7ohKRbxb8JPqVgwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk0NmFlYzBhLWRkZGYtNDlhYi1iNWJmLWVjNzI4MWViMWU3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++EwDQYJKoZIhvcNAQELBQADggEBAIz8bKIrbPiJ61vAx4FWEJlNd3kM iHPBOBZY+gbZdysSbocOHyTwXivGt2fPB+NSd4SyE1FqfbtpKE4B/Hmw9oz/35Pb HmcFRBPbR8L2swwggde4XXX0Rw8nCbVuEcVT38p1zsTXL5mQcwsgFEQdQrKNQTQL wYgfL/2FohK4AYtBYYS/ZPFn9oBBsv6Gp9rHhdm6WhB++pxtog7brTXaDuYAprbn LagW6WhlaJE/zCbF/Z9paM0tjVPcz7RIbkFYs/tClZio7XX2bnjDGh/48uILbpmQ qtw8cbBVKMU6GT614mcicB4micZmX5gaVorv7Ho+qz4bx9DhI8ZsdEIYvwE= -----END CERTIFICATE-----Generated at Fri May 9 02:07:57 2025 by rpki-client