$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa File: 3f672c72-4d5f-408a-8326-7e62adbed891.roa (raw, json) Hash identifier: djGIMNIGshhVl+JmPaq3bF3/5aYRGNxD8oa7pd1/xrk= Subject key identifier: 2B:5B:92:24:95:2F:DA:9B:33:03:09:13:CE:1C:46:ED:2F:FD:37:3E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3826962418EA236C676AEACCDD4A9CC8C34D209B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa Signing time: Fri 11 Apr 2025 00:00:11 +0000 ROA not before: Fri 11 Apr 2025 00:00:11 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:26:96:24:18:ea:23:6c:67:6a:ea:cc:dd:4a:9c:c8:c3:4d:20:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 11 00:00:11 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=02ee6e109ce8c6515250b879784caaa3876a67d379dda9f63f1a11ee416f98e7, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a7:74:0e:d6:55:dd:31:4d:61:9c:49:15:59: 3c:c9:1b:1d:36:5d:d1:18:d5:e4:18:ca:74:c8:bd: fe:a0:33:c0:14:98:68:64:b9:8d:91:28:ac:2d:7d: 57:a2:51:9a:d2:57:99:45:d5:39:60:d3:ee:b0:a9: e9:6d:e0:d0:36:90:67:a1:05:4c:37:54:f6:e2:aa: 22:d0:20:b2:5b:3b:51:6c:09:28:2e:0b:80:c8:d1: da:95:6f:3e:36:3f:b0:d4:7c:e9:ed:8d:65:f2:97: d1:dd:ce:b7:20:c7:54:20:2f:f5:6b:64:5b:d6:5c: 7c:bf:b0:a6:1e:bc:c8:8a:9b:41:ee:01:d0:25:e9: 56:f3:a0:ed:30:47:ec:35:44:69:29:7c:06:87:3e: fb:1d:d0:65:5e:75:48:84:83:f0:58:77:eb:0c:b1: d0:81:24:19:60:2d:af:61:b9:96:da:7b:3f:79:68: 1c:ae:17:05:f5:88:fe:01:c3:35:2b:6f:ec:37:a6: 69:ad:9e:dc:88:06:72:23:a4:83:8e:dd:11:04:0b: c3:5b:70:25:c4:c2:5d:3e:60:9b:c9:5c:93:a8:1c: e9:49:de:bd:fb:67:40:ac:5f:60:ff:1c:fa:3c:0f: 9e:c4:6c:ce:dd:d1:fc:66:d1:89:de:c3:63:ea:d6: 16:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:5B:92:24:95:2F:DA:9B:33:03:09:13:CE:1C:46:ED:2F:FD:37:3E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.221.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:24:93:e2:c1:6b:0a:e9:2e:27:f4:35:76:b4:cb:ea:9a:21: e9:eb:00:8c:8a:c4:cf:9f:6a:10:74:32:cf:cc:15:84:cb:f3: 10:96:3b:a5:24:55:e9:35:29:a6:61:36:f2:fa:18:b2:02:d2: e0:05:d3:17:95:89:be:7e:77:dc:8d:3a:4f:c6:b6:60:9d:1c: 1d:71:12:e6:bf:cc:9a:86:c7:71:c4:6f:2b:21:84:c7:52:a4: 2d:d1:cc:50:76:da:1c:75:02:ad:cb:74:47:cd:21:14:69:0f: 4e:0e:24:72:59:5f:bf:32:fd:77:3a:15:ec:3b:25:66:be:d6: 69:36:ea:60:f4:cc:b0:67:19:21:8c:18:91:7b:df:eb:6f:cb: 6f:5b:cb:04:01:fa:95:ed:a0:86:b6:e2:da:51:ee:6e:f0:8f: 97:15:70:9a:28:98:a7:dd:1e:27:f8:19:d4:a4:6e:1f:59:55: 37:65:44:94:b0:ab:f3:3b:0f:d2:11:c4:cd:b0:97:75:e8:c9: 5a:ec:80:d7:7e:ec:a9:04:ef:03:50:5f:ec:d2:89:2d:31:5f: 58:8b:cb:4e:b4:54:b9:05:13:b3:c7:a1:f6:7d:dc:40:36:14: 99:13:41:f1:7f:75:77:c6:d7:77:b8:d3:2b:23:d6:90:d1:89: af:50:98:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOCaWJBjqI2xnaurM3UqcyMNNIJswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDExMDAwMDExWhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMmVlNmUxMDljZThjNjUxNTI1MGI4Nzk3ODRjYWFhMzg3 NmE2N2QzNzlkZGE5ZjYzZjFhMTFlZTQxNmY5OGU3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCup3QO1lXdMU1hnEkVWTzJGx02XdEY1eQYynTIvf6gM8AU mGhkuY2RKKwtfVeiUZrSV5lF1Tlg0+6wqelt4NA2kGehBUw3VPbiqiLQILJbO1Fs CSguC4DI0dqVbz42P7DUfOntjWXyl9Hdzrcgx1QgL/VrZFvWXHy/sKYevMiKm0Hu AdAl6VbzoO0wR+w1RGkpfAaHPvsd0GVedUiEg/BYd+sMsdCBJBlgLa9huZbaez95 aByuFwX1iP4BwzUrb+w3pmmtntyIBnIjpIOO3REEC8NbcCXEwl0+YJvJXJOoHOlJ 3r37Z0CsX2D/HPo8D57EbM7d0fxm0Ynew2Pq1hapAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUK1uSJJUv2pszAwkTzhxG7S/9Nz4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNmNjcyYzcyLTRkNWYtNDA4YS04MzI2LTdlNjJhZGJlZDg5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d0wDQYJKoZIhvcNAQELBQADggEBAB8kk+LBawrpLif0NXa0y+qaIenr AIyKxM+fahB0Ms/MFYTL8xCWO6UkVek1KaZhNvL6GLIC0uAF0xeVib5+d9yNOk/G tmCdHB1xEua/zJqGx3HEbyshhMdSpC3RzFB22hx1Aq3LdEfNIRRpD04OJHJZX78y /Xc6Few7JWa+1mk26mD0zLBnGSGMGJF73+tvy29bywQB+pXtoIa24tpR7m7wj5cV cJoomKfdHif4GdSkbh9ZVTdlRJSwq/M7D9IRxM2wl3XoyVrsgNd+7KkE7wNQX+zS iS0xX1iLy060VLkFE7PHofZ93EA2FJkTQfF/dXfG13e40ysj1pDRia9QmFI= -----END CERTIFICATE-----Generated at Sat Apr 26 13:34:19 2025 by rpki-client