$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa File: f174f360-a3ca-4335-8414-4727cef110a8.roa (raw, json) Hash identifier: cwy7UbZJC5YIktsd5Hw/1/FtHBFqhnRMrRPYMCrzfEY= Subject key identifier: 0B:07:6E:0D:06:BB:6E:B7:CF:97:92:2B:63:44:B8:F8:54:AA:79:EC Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3890E8AE9F4A447AA33808374436080E984CC564 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa Signing time: Tue 06 May 2025 00:00:05 +0000 ROA not before: Tue 06 May 2025 00:00:05 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:90:e8:ae:9f:4a:44:7a:a3:38:08:37:44:36:08:0e:98:4c:c5:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 6 00:00:05 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=928c70155c6460b3dec39b5ba1719dcc21a2f793a35f71bf24f857f40e445e36, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:74:eb:e5:fd:4c:2c:9d:04:e4:09:11:f1:f4: 18:4e:39:98:5d:90:89:1d:51:1e:e1:df:8a:ab:be: 4a:b4:3a:a4:f3:66:cd:98:e5:d0:99:2a:33:bf:e5: 1a:7f:eb:77:12:47:d9:0e:dd:af:cb:27:ef:4c:fe: 5e:c0:df:cc:df:ed:d7:55:7a:48:7f:e0:31:59:d9: e0:5a:d1:0f:ed:85:62:c4:aa:bc:df:34:b0:bd:a7: 18:83:75:31:7b:e6:f1:2f:5a:3e:d8:1b:1f:2d:46: cc:a8:05:01:c9:1d:d4:ac:21:37:7e:67:18:bd:37: 5e:5b:16:04:51:60:55:d6:82:25:76:ff:72:1c:93: a3:4a:81:42:68:89:f5:36:3a:11:aa:ad:f1:d7:24: 1b:d1:b4:f0:5e:36:98:f8:ed:36:6f:7f:00:a3:f6: 93:63:cb:14:02:e5:05:46:db:11:79:46:96:8d:58: 33:03:78:28:26:4c:d6:aa:48:c6:ca:8a:65:bd:9e: cd:91:36:b1:1b:1d:75:3a:be:b4:a4:3a:4a:e8:31: 9b:f8:99:06:c3:d2:41:92:da:84:f8:2d:f0:85:a0: 4b:de:3e:2f:86:85:4a:80:6c:fa:36:45:73:c8:94: ca:20:81:4c:a2:4b:f1:ea:76:43:3c:73:d8:6b:71: a5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:07:6E:0D:06:BB:6E:B7:CF:97:92:2B:63:44:B8:F8:54:AA:79:EC X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 11:58:07:69:8d:f8:64:79:74:f9:54:68:cf:20:41:3b:7a:9b: b6:c5:d5:bb:a9:dc:0f:6c:dd:6c:36:b5:29:13:10:07:69:d3: 06:09:cf:1e:5c:34:ab:9f:6e:b0:2a:1a:45:28:aa:f2:82:7e: 61:b6:19:cf:84:88:fa:a9:21:0e:06:89:4b:04:91:27:07:53: 49:d7:d3:10:63:35:5f:47:2e:5a:d8:b9:5f:85:b8:24:50:02: 29:d8:eb:65:e0:b4:03:18:e9:9e:87:c3:07:b8:1a:dc:03:bb: 74:b4:0c:7a:bb:66:09:7e:e5:42:ff:48:87:82:1e:5b:0a:55: 04:2b:73:9c:df:eb:17:4c:57:a0:42:45:f2:eb:5a:24:6a:ae: 76:48:0b:8b:d2:6c:a6:e2:ca:be:f7:63:2c:d0:a7:ad:e5:e5: a7:8a:3a:fb:0e:ce:7a:56:d6:db:6f:b0:10:a9:e2:37:cc:75: 19:19:ec:17:a1:5f:a3:57:25:56:31:0d:8b:65:3d:97:46:08: 1c:c3:a6:5e:9e:2e:fa:cb:f7:11:97:11:8d:18:e6:f5:7c:ed: 03:a3:b0:c6:82:ec:50:c5:b8:92:97:5a:35:ba:79:5f:ab:c5: 73:87:0c:2b:e8:8f:5c:76:ce:67:e9:30:84:a0:2a:67:65:aa: a4:33:7d:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOJDorp9KRHqjOAg3RDYIDphMxWQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA2MDAwMDA1WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjhjNzAxNTVjNjQ2MGIzZGVjMzliNWJhMTcxOWRjYzIx YTJmNzkzYTM1ZjcxYmYyNGY4NTdmNDBlNDQ1ZTM2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCadOvl/UwsnQTkCRHx9BhOOZhdkIkdUR7h34qrvkq0OqTz Zs2Y5dCZKjO/5Rp/63cSR9kO3a/LJ+9M/l7A38zf7ddVekh/4DFZ2eBa0Q/thWLE qrzfNLC9pxiDdTF75vEvWj7YGx8tRsyoBQHJHdSsITd+Zxi9N15bFgRRYFXWgiV2 /3Ick6NKgUJoifU2OhGqrfHXJBvRtPBeNpj47TZvfwCj9pNjyxQC5QVG2xF5RpaN WDMDeCgmTNaqSMbKimW9ns2RNrEbHXU6vrSkOkroMZv4mQbD0kGS2oT4LfCFoEve Pi+GhUqAbPo2RXPIlMoggUyiS/HqdkM8c9hrcaUFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCwduDQa7brfPl5IrY0S4+FSqeewwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2YxNzRmMzYwLWEzY2EtNDMzNS04NDE0LTQ3MjdjZWYxMTBhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBABFYB2mN+GR5dPlUaM8gQTt6m7bF 1bup3A9s3Ww2tSkTEAdp0wYJzx5cNKufbrAqGkUoqvKCfmG2Gc+EiPqpIQ4GiUsE kScHU0nX0xBjNV9HLlrYuV+FuCRQAinY62XgtAMY6Z6Hwwe4GtwDu3S0DHq7Zgl+ 5UL/SIeCHlsKVQQrc5zf6xdMV6BCRfLrWiRqrnZIC4vSbKbiyr73YyzQp63l5aeK OvsOznpW1ttvsBCp4jfMdRkZ7BehX6NXJVYxDYtlPZdGCBzDpl6eLvrL9xGXEY0Y 5vV87QOjsMaC7FDFuJKXWjW6eV+rxXOHDCvoj1x2zmfpMISgKmdlqqQzfVw= -----END CERTIFICATE-----Generated at Mon May 12 10:03:30 2025 by rpki-client