$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa File: b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa (raw, json) Hash identifier: H8NP2aLl0M7W/+K7Ys7vpUm5spojhTclwji7TYwe9yI= Subject key identifier: C9:3D:5B:06:F1:D7:81:FF:6F:69:E2:89:AE:75:D0:D2:DB:E6:47:10 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2B39BE886777735898BBBF8BD90DE28434C33B0E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa Signing time: Tue 06 May 2025 00:00:55 +0000 ROA not before: Tue 06 May 2025 00:00:55 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.251.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 09 May 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:39:be:88:67:77:73:58:98:bb:bf:8b:d9:0d:e2:84:34:c3:3b:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 6 00:00:55 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=c99633e69269b8903081fdc7afca897ee1554c51ec5dc8cc720abad0fac20b11, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:27:b7:2a:f3:de:7b:00:aa:1e:cb:ee:f5:cd: 5d:25:db:7e:42:37:18:75:9d:b4:9d:39:1a:f6:8a: 02:c5:79:10:bd:8e:d2:cd:4b:0e:fd:72:d4:97:86: 12:38:a6:7d:64:f8:74:a6:eb:90:27:b8:6f:ce:3e: 8e:09:e3:5f:a5:a4:87:98:ee:5b:b2:5c:df:be:e4: 55:84:39:7d:ac:3e:60:43:75:7c:69:b1:98:30:53: b2:39:d8:14:fb:ba:55:96:3c:4a:ca:f3:12:e6:2b: 9d:6f:f2:51:3f:7f:39:95:c1:89:06:57:c8:e7:66: 23:3d:33:01:a9:37:06:db:6c:fe:99:d8:eb:ac:1e: fc:6a:2a:69:af:a5:1a:4f:a4:07:9f:a0:d2:58:ee: b8:99:c9:b4:dc:e1:78:51:b8:4b:ed:9b:3b:c3:1d: f1:b6:bf:00:45:80:8f:00:da:e7:1d:3b:bb:e8:66: e2:3c:c5:2e:46:62:65:5e:a3:c2:9d:dc:d0:69:61: 93:f6:58:42:03:e6:d9:67:50:ba:14:1b:85:9b:47: 85:dc:f9:91:93:88:24:e9:00:49:a2:e8:a8:de:98: 2d:b0:4a:6a:ca:3f:6c:8f:d2:65:69:50:0c:c4:28: ca:5a:3d:42:de:92:b4:88:6c:1f:5e:ef:64:65:46: 11:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:3D:5B:06:F1:D7:81:FF:6F:69:E2:89:AE:75:D0:D2:DB:E6:47:10 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.228.0/22 Signature Algorithm: sha256WithRSAEncryption 52:15:0e:3d:61:a1:16:29:18:e3:34:07:70:26:e5:0d:48:f8: 91:c3:ac:19:07:a9:41:cc:d0:d2:c9:30:2c:c1:7f:49:0c:23: a0:07:47:72:5b:ea:18:09:b7:08:63:a9:bc:de:5c:27:67:f8: 5c:f3:31:0a:3b:2f:ed:f8:e2:21:20:b9:cf:40:3f:a1:b7:0d: b0:4e:b0:ed:80:fc:1c:37:b9:57:c5:b7:84:a3:90:78:87:7d: db:dd:bf:2e:5a:2c:37:fb:3b:0d:8d:8a:15:37:c0:1a:f5:88: ee:8c:b3:e6:a0:f1:29:c3:e8:e8:28:90:1f:12:de:72:6a:64: 57:ed:9b:3e:d4:0d:0f:fe:2d:9e:7b:59:58:d3:87:5e:67:83: 31:b1:32:7d:0f:ed:2f:94:a7:c1:af:65:c4:2f:bd:99:a2:9d: e6:35:eb:a9:d8:a5:15:26:be:e2:ca:cd:ef:65:97:1c:bb:07: 60:2c:40:e3:22:bc:b8:68:c8:68:d8:a1:79:9d:eb:cd:da:32: 4e:42:d7:37:06:92:60:c7:f7:74:45:aa:0a:cb:36:67:84:2f: cd:e7:4e:aa:b9:6e:8d:1c:8a:3f:f9:5e:5b:95:d3:51:3c:d1: e9:6a:0e:09:65:2a:41:14:17:0b:b9:ed:b1:88:9c:a4:c0:03: cf:02:b8:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKzm+iGd3c1iYu7+L2Q3ihDTDOw4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA2MDAwMDU1WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTk2MzNlNjkyNjliODkwMzA4MWZkYzdhZmNhODk3ZWUx NTU0YzUxZWM1ZGM4Y2M3MjBhYmFkMGZhYzIwYjExMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkJ7cq8957AKoey+71zV0l235CNxh1nbSdORr2igLFeRC9 jtLNSw79ctSXhhI4pn1k+HSm65AnuG/OPo4J41+lpIeY7luyXN++5FWEOX2sPmBD dXxpsZgwU7I52BT7ulWWPErK8xLmK51v8lE/fzmVwYkGV8jnZiM9MwGpNwbbbP6Z 2OusHvxqKmmvpRpPpAefoNJY7riZybTc4XhRuEvtmzvDHfG2vwBFgI8A2ucdO7vo ZuI8xS5GYmVeo8Kd3NBpYZP2WEID5tlnULoUG4WbR4Xc+ZGTiCTpAEmi6KjemC2w SmrKP2yP0mVpUAzEKMpaPULekrSIbB9e72RlRhGHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyT1bBvHXgf9vaeKJrnXQ0tvmRxAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2ZWU5M2Q4LWQ3YTctNDFhZC04ZGUxLTkwYTA1NWJjMTk3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX++QwDQYJKoZIhvcNAQELBQADggEBAFIVDj1hoRYpGOM0B3Am5Q1I+JHD rBkHqUHM0NLJMCzBf0kMI6AHR3Jb6hgJtwhjqbzeXCdn+FzzMQo7L+344iEguc9A P6G3DbBOsO2A/Bw3uVfFt4SjkHiHfdvdvy5aLDf7Ow2NihU3wBr1iO6Ms+ag8SnD 6OgokB8S3nJqZFftmz7UDQ/+LZ57WVjTh15ngzGxMn0P7S+Up8GvZcQvvZmineY1 66nYpRUmvuLKze9llxy7B2AsQOMivLhoyGjYoXmd683aMk5C1zcGkmDH93RFqgrL NmeEL83nTqq5bo0cij/5XluV01E80elqDgllKkEUFwu57bGInKTAA88CuHI= -----END CERTIFICATE-----Generated at Wed May 7 15:59:03 2025 by rpki-client