$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa File: 16b57026-c673-4ef1-bc38-7596daa2e043.roa (raw, json) Hash identifier: xMHfVNmEbRcdtspaXjHAA+TYF6SZQXvp6RHOQUqWeEE= Subject key identifier: 21:C3:D9:9C:0A:B2:47:29:EF:A3:46:C9:A8:5F:50:BF:F0:6E:28:38 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0FBFE50CDA2FB0452E7220E2B0C8AF108DBF7CA8 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa Signing time: Fri 11 Apr 2025 00:01:07 +0000 ROA not before: Fri 11 Apr 2025 00:01:07 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:bf:e5:0c:da:2f:b0:45:2e:72:20:e2:b0:c8:af:10:8d:bf:7c:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 11 00:01:07 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=c20c15a2075e3838a375529f92bfa52364a01ce7f0f9effb5a15f19c0655b8bb, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3f:d4:4f:99:8a:5c:81:7c:79:f6:93:c2:2c: ef:8b:7e:bc:9a:60:da:05:4b:25:54:ca:8c:c3:26: f2:4d:79:24:fa:5e:ae:23:6c:54:07:ce:72:ad:b1: 30:51:8e:99:85:d3:3a:51:50:d2:b3:58:00:5d:34: 8c:e0:a6:59:1f:69:af:1f:b8:46:8c:58:c9:5f:ec: 41:9a:96:ee:c4:5f:fe:8e:52:13:68:3a:6a:8c:47: c2:43:32:92:2a:77:dd:a2:20:50:c1:0b:1e:8c:fc: 3c:ac:06:de:1b:a5:be:bf:a6:bd:9a:8d:3c:91:b0: 95:1c:08:b6:72:59:16:bf:c3:a4:55:40:a6:33:64: b1:dd:df:f1:9b:89:ce:9e:6e:6d:31:60:a4:7b:d4: 38:01:15:8c:d5:a3:71:2d:8f:bd:fe:f9:e4:04:97: 37:fd:87:f0:c9:52:50:9a:b6:8c:16:42:90:c8:60: 33:f2:26:fa:ba:19:93:0a:cb:b1:66:53:37:03:3b: 34:3f:8f:2a:bc:42:39:bc:ee:84:41:6a:d8:c5:a9: c9:f1:80:55:23:d7:cf:b1:37:9b:fa:bb:1c:e7:70: 51:0a:95:86:96:f2:c8:d4:3d:d0:a2:36:e5:9e:a8: 8c:c6:6e:b4:91:ba:fc:f8:1e:65:5a:e9:64:5b:8e: 20:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C3:D9:9C:0A:B2:47:29:EF:A3:46:C9:A8:5F:50:BF:F0:6E:28:38 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.226.0/24 Signature Algorithm: sha256WithRSAEncryption 05:54:9a:38:92:b3:ab:94:41:c9:58:c2:a7:52:a7:51:83:5b: 86:ee:3d:08:fa:fa:c6:cd:5c:00:43:a9:83:2b:94:a6:3a:07: fb:9f:55:67:b4:22:46:37:e0:e8:df:57:65:a0:ff:3a:dc:03: cb:0b:91:65:d6:e1:78:2b:36:86:c2:69:b0:5c:42:e1:fb:d4: ac:bd:85:e1:bd:3d:8b:36:9d:52:73:1d:ef:b6:66:68:5b:b2: 6e:dc:c3:a9:7f:3b:e9:a7:61:e2:3a:ac:9f:0b:0a:cb:c4:f3: 1a:a5:9c:f8:00:b6:c5:be:29:28:64:69:28:4b:91:43:01:cc: 10:79:d5:0a:b3:be:af:82:7a:84:c6:9d:b3:e3:bb:e0:8d:d9: 72:dc:be:b1:e1:5d:92:e8:59:ee:3d:bf:c4:2f:92:67:1a:d6: 5d:64:66:27:ae:b9:01:27:5f:62:20:d6:35:16:59:4a:ca:df: 52:a1:6b:83:cd:f7:cb:2d:ae:e8:88:1b:f2:8d:7c:a2:d8:ef: 94:98:3f:17:6f:d2:e4:c7:d2:94:03:ea:f1:57:89:67:88:8e: f7:ef:d6:b5:ae:37:9e:53:6c:ad:d4:62:2e:d4:eb:b3:ff:6d: ac:d3:8c:f9:72:cf:de:ef:1c:59:dd:b6:20:96:59:d7:e2:10: c6:b7:77:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD7/lDNovsEUuciDisMivEI2/fKgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDExMDAwMTA3WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjBjMTVhMjA3NWUzODM4YTM3NTUyOWY5MmJmYTUyMzY0 YTAxY2U3ZjBmOWVmZmI1YTE1ZjE5YzA2NTViOGJiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClP9RPmYpcgXx59pPCLO+LfryaYNoFSyVUyozDJvJNeST6 Xq4jbFQHznKtsTBRjpmF0zpRUNKzWABdNIzgplkfaa8fuEaMWMlf7EGalu7EX/6O UhNoOmqMR8JDMpIqd92iIFDBCx6M/DysBt4bpb6/pr2ajTyRsJUcCLZyWRa/w6RV QKYzZLHd3/Gbic6ebm0xYKR71DgBFYzVo3Etj73++eQElzf9h/DJUlCatowWQpDI YDPyJvq6GZMKy7FmUzcDOzQ/jyq8Qjm87oRBatjFqcnxgFUj18+xN5v6uxzncFEK lYaW8sjUPdCiNuWeqIzGbrSRuvz4HmVa6WRbjiCXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIcPZnAqyRynvo0bJqF9Qv/BuKDgwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzE2YjU3MDI2LWM2NzMtNGVmMS1iYzM4LTc1OTZkYWEyZTA0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeIwDQYJKoZIhvcNAQELBQADggEBAAVUmjiSs6uUQclYwqdSp1GDW4bu PQj6+sbNXABDqYMrlKY6B/ufVWe0IkY34OjfV2Wg/zrcA8sLkWXW4XgrNobCabBc QuH71Ky9heG9PYs2nVJzHe+2Zmhbsm7cw6l/O+mnYeI6rJ8LCsvE8xqlnPgAtsW+ KShkaShLkUMBzBB51Qqzvq+CeoTGnbPju+CN2XLcvrHhXZLoWe49v8Qvkmca1l1k ZieuuQEnX2Ig1jUWWUrK31Kha4PN98struiIG/KNfKLY75SYPxdv0uTH0pQD6vFX iWeIjvfv1rWuN55TbK3UYi7U67P/bazTjPlyz97vHFndtiCWWdfiEMa3d7M= -----END CERTIFICATE-----Generated at Sat Apr 26 20:22:49 2025 by rpki-client