$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4b847893-4aea-442a-b81c-619bfedf3ca5.roa File: 4b847893-4aea-442a-b81c-619bfedf3ca5.roa (raw, json) Hash identifier: 3ooCDY2F/cRU1ysEMIxjeXkAo8OyqNhqm5p93zPM5KE= Subject key identifier: 28:BC:40:40:23:F8:92:0A:E7:60:98:7D:FE:45:59:25:2B:9A:AB:27 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6E6B67D5BDDEB66D682CB3846E3AEC646301AC23 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4b847893-4aea-442a-b81c-619bfedf3ca5.roa Signing time: Wed 09 Apr 2025 00:00:03 +0000 ROA not before: Wed 09 Apr 2025 00:00:03 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 206.55.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:6b:67:d5:bd:de:b6:6d:68:2c:b3:84:6e:3a:ec:64:63:01:ac:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 9 00:00:03 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=f77fdc8bb2dc9a56033d312b3266d3715b2d71aa10a2642baabe788fc41f4b3d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2a:ce:cd:e8:ea:48:68:96:67:8c:0b:20:98: 94:10:24:4d:7f:36:9b:ee:64:4b:72:f2:31:28:78: c3:45:2d:ff:5d:6f:6e:09:89:ff:74:18:60:bb:58: f1:2e:23:da:72:ae:1a:82:ed:4c:46:55:72:b4:47: 1b:c8:dc:b3:b5:bc:3c:86:02:9c:3c:da:85:22:a1: ec:32:33:c4:5c:02:f3:2f:29:de:78:67:cd:87:7c: 37:b9:0d:29:9f:fb:4d:2b:ca:48:70:02:89:a1:9f: 08:94:60:86:8b:d1:31:03:ee:01:23:1c:21:40:cf: a8:b2:c0:fd:2f:16:65:7f:c4:23:17:86:6a:6e:e4: 3a:c1:be:6d:11:af:27:63:d1:a2:e1:d2:e1:b7:b0: d1:e6:97:d6:48:3f:bf:33:23:3f:1e:47:10:a8:6e: 9d:23:6e:71:2f:59:33:ac:c7:8d:a4:8f:34:a2:93: f2:d9:5a:44:43:25:48:43:21:b6:cb:76:14:5b:1f: 5f:f2:2d:0a:0e:2e:93:c3:7f:de:1a:ff:01:0b:09: 7b:85:69:08:78:d7:ab:2a:cc:3e:fb:05:de:b3:bf: fc:2a:20:6f:4a:e3:60:ab:4a:df:13:b2:2a:d2:f0: 77:d6:99:dd:f8:a5:4a:1c:1e:78:b4:1d:4d:c8:8d: 97:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:BC:40:40:23:F8:92:0A:E7:60:98:7D:FE:45:59:25:2B:9A:AB:27 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4b847893-4aea-442a-b81c-619bfedf3ca5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.55.129.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:3a:12:4a:64:56:18:32:4a:21:57:5b:ed:a4:06:5d:a1:6a: d7:d6:05:3e:cc:59:06:ce:5a:50:b9:bd:8d:c0:6d:ec:71:f5: 90:6d:bb:61:68:9a:40:37:cf:2b:5b:5c:2f:f9:fc:82:02:60: 4a:4e:fe:c9:70:ec:03:37:57:4e:02:63:6a:42:b7:fd:07:f9: 7d:cc:62:75:d3:ba:3b:ae:69:08:4a:d5:25:7e:7d:ae:f4:f7: 6b:55:22:76:b6:ea:85:e7:a7:ab:e5:1d:2b:c0:90:e3:2e:70: 93:7f:be:8c:da:d6:25:0a:35:bc:14:34:b8:af:69:2e:6c:90: 61:ba:34:fa:48:28:80:45:05:5c:fb:ef:d2:27:95:a5:90:10: e7:d7:97:ec:53:8d:a2:8a:44:bd:45:b2:a1:65:a3:cb:bd:65: cb:ce:82:a7:1e:66:da:b5:92:4b:bb:84:f0:8f:6e:2f:76:e7: dc:58:ad:e9:5e:10:44:ec:98:35:0b:a4:a4:4d:69:8c:3b:87: f5:e8:6d:76:47:62:a3:1b:60:4a:14:67:5e:e5:9e:6c:bc:f8: f4:80:47:45:2b:14:e8:ac:7d:8b:f2:54:d6:85:38:0c:51:30: a6:42:a6:d9:e7:58:64:7e:91:1f:30:62:c8:b1:29:4f:5d:fe: c2:cd:e6:3d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbmtn1b3etm1oLLOEbjrsZGMBrCMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDA5MDAwMDAzWhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzdmZGM4YmIyZGM5YTU2MDMzZDMxMmIzMjY2ZDM3MTVi MmQ3MWFhMTBhMjY0MmJhYWJlNzg4ZmM0MWY0YjNkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuKs7N6OpIaJZnjAsgmJQQJE1/NpvuZEty8jEoeMNFLf9d b24Jif90GGC7WPEuI9pyrhqC7UxGVXK0RxvI3LO1vDyGApw82oUioewyM8RcAvMv Kd54Z82HfDe5DSmf+00rykhwAomhnwiUYIaL0TED7gEjHCFAz6iywP0vFmV/xCMX hmpu5DrBvm0Rrydj0aLh0uG3sNHml9ZIP78zIz8eRxCobp0jbnEvWTOsx42kjzSi k/LZWkRDJUhDIbbLdhRbH1/yLQoOLpPDf94a/wELCXuFaQh416sqzD77Bd6zv/wq IG9K42CrSt8TsirS8HfWmd34pUocHni0HU3IjZdvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKLxAQCP4kgrnYJh9/kVZJSuaqycwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzRiODQ3ODkzLTRhZWEtNDQyYS1iODFjLTYxOWJmZWRmM2NhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADON4EwDQYJKoZIhvcNAQELBQADggEBAH86EkpkVhgySiFXW+2kBl2hatfW BT7MWQbOWlC5vY3Abexx9ZBtu2FomkA3zytbXC/5/IICYEpO/slw7AM3V04CY2pC t/0H+X3MYnXTujuuaQhK1SV+fa7092tVIna26oXnp6vlHSvAkOMucJN/voza1iUK NbwUNLivaS5skGG6NPpIKIBFBVz779InlaWQEOfXl+xTjaKKRL1FsqFlo8u9ZcvO gqceZtq1kku7hPCPbi9259xYreleEETsmDULpKRNaYw7h/XobXZHYqMbYEoUZ17l nmy8+PSAR0UrFOisfYvyVNaFOAxRMKZCptnnWGR+kR8wYsixKU9d/sLN5j0= -----END CERTIFICATE-----Generated at Sat Apr 26 13:20:52 2025 by rpki-client