$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/154534d5-da69-43fe-9f0c-aad88b97483b.roa File: 154534d5-da69-43fe-9f0c-aad88b97483b.roa (raw, json) Hash identifier: KNe2mb06emyTW/ScmWGZjncpdl9c0LT7wvZvobGcdbs= Subject key identifier: 40:FD:FE:56:6D:F6:A7:4D:58:0E:3F:D8:07:40:37:28:8C:8F:B9:70 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5D06D36A441DE82BF43F24D5FEF9C85D084C74D0 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/154534d5-da69-43fe-9f0c-aad88b97483b.roa Signing time: Wed 23 Apr 2025 00:10:23 +0000 ROA not before: Wed 23 Apr 2025 00:10:23 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:06:d3:6a:44:1d:e8:2b:f4:3f:24:d5:fe:f9:c8:5d:08:4c:74:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:10:23 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=4c13d481ce87d419126bec65f26901dbfaa36d06ac8dda90876bcf19369b8d2e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:72:1a:f8:fe:c4:2a:56:b2:ab:35:c7:dd:97: 2b:f3:27:b3:f6:72:9e:a1:46:b7:1b:37:98:2e:51: b2:36:d5:0a:1f:81:dd:7d:63:56:8b:82:28:53:d9: 16:9b:bd:f3:17:15:28:b1:07:30:d2:0f:3c:57:25: a1:06:b1:64:2a:d5:1d:f1:47:2a:d0:d6:84:50:af: 5a:bd:6b:22:dc:d5:20:4c:c2:48:af:4a:dc:d6:92: 11:e5:38:a0:e4:6f:22:d0:e3:09:d5:88:de:dd:6e: ae:70:1e:95:04:d2:d4:84:92:c7:93:c8:d7:b8:fc: a2:ab:ad:d8:7a:c5:90:67:3b:87:58:66:b2:9b:35: b3:32:a2:a4:90:06:99:8b:db:e3:1d:d5:81:91:2d: a4:09:d0:56:98:9d:06:56:1c:30:d1:bd:ce:b8:75: 78:cd:b7:e5:8d:0e:d7:e7:92:64:c9:aa:67:aa:b8: 83:bb:22:89:d3:42:b1:3c:86:55:42:f4:64:32:58: 4d:fe:82:89:23:a3:bc:36:95:d8:6e:ed:7d:e6:12: 4f:fc:e8:52:85:40:6c:19:24:e9:52:a4:c4:fa:53: 6d:ea:db:23:55:2f:5d:b7:1c:9f:93:f3:8d:9e:29: 19:a5:94:7e:80:28:c6:76:2c:d8:2b:f8:04:ad:ae: b4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:FD:FE:56:6D:F6:A7:4D:58:0E:3F:D8:07:40:37:28:8C:8F:B9:70 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/154534d5-da69-43fe-9f0c-aad88b97483b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.250.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:2f:05:fa:68:2c:c2:ea:02:1c:ff:1d:f8:2f:1b:d5:23:3b: b6:54:a6:30:bc:33:60:fa:45:62:51:a5:73:67:d1:e8:ef:e0: 89:89:44:70:af:e8:78:77:ea:02:17:fa:76:3b:11:f8:95:e6: cb:6a:37:f6:a6:74:40:1e:62:d3:b5:0e:63:23:3d:b1:3b:44: fe:36:7f:1e:54:86:4c:a2:89:32:aa:97:f1:28:52:cf:73:fc: 6e:e9:ef:77:24:3b:32:f8:68:e4:02:62:d9:d0:cc:b4:7b:86: f5:fc:f1:02:3b:58:0a:a9:d0:3c:83:52:68:e4:2c:c5:f9:15: 61:14:9b:cc:ad:fd:4f:39:00:05:98:57:50:03:e0:33:4e:5c: 3a:c0:db:21:0f:33:3e:75:3f:3a:6e:7a:a6:c9:bf:cc:7b:64: 2f:df:ae:7a:c8:3c:df:65:96:2b:bc:f4:ab:d8:dc:db:5c:66: f7:34:01:01:de:91:b9:bf:80:89:d0:4d:79:6f:35:91:dd:e2: 0e:42:14:1a:37:ce:b5:46:36:f7:86:10:c5:d1:e7:61:f2:fc: d3:13:43:78:40:26:35:5e:63:78:2b:c3:74:7c:6b:b2:3c:47: 91:76:8b:6f:ad:05:1b:50:31:33:9f:94:fe:24:14:4d:3e:52: 60:81:95:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXQbTakQd6Cv0PyTV/vnIXQhMdNAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDIzMDAxMDIzWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzEzZDQ4MWNlODdkNDE5MTI2YmVjNjVmMjY5MDFkYmZh YTM2ZDA2YWM4ZGRhOTA4NzZiY2YxOTM2OWI4ZDJlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWchr4/sQqVrKrNcfdlyvzJ7P2cp6hRrcbN5guUbI21Qof gd19Y1aLgihT2RabvfMXFSixBzDSDzxXJaEGsWQq1R3xRyrQ1oRQr1q9ayLc1SBM wkivStzWkhHlOKDkbyLQ4wnViN7dbq5wHpUE0tSEkseTyNe4/KKrrdh6xZBnO4dY ZrKbNbMyoqSQBpmL2+Md1YGRLaQJ0FaYnQZWHDDRvc64dXjNt+WNDtfnkmTJqmeq uIO7IonTQrE8hlVC9GQyWE3+gokjo7w2ldhu7X3mEk/86FKFQGwZJOlSpMT6U23q 2yNVL123HJ+T842eKRmllH6AKMZ2LNgr+AStrrQtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQP3+Vm32p01YDj/YB0A3KIyPuXAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzE1NDUzNGQ1LWRhNjktNDNmZS05ZjBjLWFhZDg4Yjk3NDgzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+/owDQYJKoZIhvcNAQELBQADggEBAD0vBfpoLMLqAhz/HfgvG9UjO7ZU pjC8M2D6RWJRpXNn0ejv4ImJRHCv6Hh36gIX+nY7EfiV5stqN/amdEAeYtO1DmMj PbE7RP42fx5UhkyiiTKql/EoUs9z/G7p73ckOzL4aOQCYtnQzLR7hvX88QI7WAqp 0DyDUmjkLMX5FWEUm8yt/U85AAWYV1AD4DNOXDrA2yEPMz51PzpueqbJv8x7ZC/f rnrIPN9lliu89KvY3NtcZvc0AQHekbm/gInQTXlvNZHd4g5CFBo3zrVGNveGEMXR 52Hy/NMTQ3hAJjVeY3grw3R8a7I8R5F2i2+tBRtQMTOflP4kFE0+UmCBlbw= -----END CERTIFICATE-----Generated at Sat Apr 26 14:47:22 2025 by rpki-client