$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa File: 58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa (raw, json) Hash identifier: tcMzvxgmzrleXQCHA1AN+Z7EqkINk4eAeUdSqkFPrB4= Subject key identifier: 60:9B:B9:3B:56:E5:1A:02:B0:7D:B3:2D:AF:4E:9A:3A:D9:35:40:1E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4EE1A8A34A41D0B8FA2A2EC2D1ACCC8A818ECF9A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa Signing time: Wed 23 Apr 2025 00:10:34 +0000 ROA not before: Wed 23 Apr 2025 00:10:34 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:e1:a8:a3:4a:41:d0:b8:fa:2a:2e:c2:d1:ac:cc:8a:81:8e:cf:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:10:34 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=3ea36d6419b63006a33cfed013127ba0e65239847c0d85e08ff9421da7d89db6, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2a:63:02:03:da:54:4e:c9:1a:48:e3:6f:71: 4c:fc:6b:26:c6:63:53:75:49:cf:53:c7:aa:b9:8f: 65:61:5e:45:c4:af:64:f4:61:92:b6:02:67:b3:f3: 1c:af:8b:05:a3:7a:81:bf:e6:8d:79:bb:4d:db:4d: ca:e5:3e:81:c4:86:b4:f0:2b:38:82:f8:87:50:79: 98:21:c1:f0:39:8b:22:4d:cc:bd:3f:c1:fa:fa:e3: 23:10:17:3e:14:d7:b9:60:ae:ed:eb:e6:3f:1b:bf: 1e:b4:24:06:a0:8d:77:47:c3:00:8c:2f:6f:5b:60: 3b:88:2a:bd:9a:88:87:fa:0f:a3:13:ed:e1:97:d7: 9a:ab:09:e4:b5:06:ac:a3:b9:2f:33:1e:db:50:60: 83:37:31:08:be:df:af:4f:8d:c0:b2:6d:8e:a9:46: b1:4b:78:92:ff:e1:00:f9:ea:9d:7c:5c:7b:49:b4: e7:fb:fd:1f:37:37:9f:f1:d5:72:dd:2d:5d:bf:c3: 40:9d:f8:18:2a:56:a7:17:03:27:bf:41:61:91:50: 6a:cf:a9:05:06:5a:f8:ca:76:39:11:f3:bd:35:6a: d7:73:82:8c:49:99:ae:dd:4e:d6:35:c1:e7:89:6c: ec:c8:82:67:43:6d:cf:ff:25:bd:a4:38:59:99:50: df:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:9B:B9:3B:56:E5:1A:02:B0:7D:B3:2D:AF:4E:9A:3A:D9:35:40:1E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.232.0/23 Signature Algorithm: sha256WithRSAEncryption 22:c4:47:66:26:52:a5:cb:9f:26:d4:da:dd:83:be:8e:91:86: 02:2d:c4:35:19:75:15:ac:3e:aa:7f:8c:d6:a0:2b:07:c4:03: ec:48:98:58:4e:0b:d0:9f:50:8b:67:d0:34:42:82:39:d3:77: d1:bd:d9:de:82:bd:a7:32:24:c3:9a:78:d1:14:5b:7f:ce:7d: e4:64:ed:f2:36:53:50:f8:25:46:5e:b2:d1:15:94:f4:4e:08: e4:66:aa:59:1c:ac:cf:09:f5:14:9c:e9:5f:05:8b:2f:b8:7f: 8e:29:ac:c4:3a:bb:2e:f5:5b:d6:99:22:4a:56:47:0e:cd:cd: 7c:37:d9:95:e9:0e:d6:24:74:92:17:c8:a2:da:7e:0b:ac:4e: d1:71:47:7e:94:6b:6c:93:e5:3d:47:d1:90:46:66:20:ba:36: 5c:55:53:8b:47:4f:d1:8e:f8:ca:95:23:80:95:ed:3c:eb:06: aa:6e:22:59:b0:fa:68:f8:48:e4:e4:41:00:8e:2f:5e:f6:c5: 30:6c:01:a3:74:b6:70:ba:e8:01:e5:dc:9b:ab:c5:20:30:44: 9a:c2:22:c7:6a:4b:d1:a6:ff:a3:31:4f:75:16:e8:f5:90:c8: 34:f8:69:d6:cc:8f:80:9b:c4:b4:76:f3:2e:05:43:89:22:be: a6:c6:4c:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTuGoo0pB0Lj6Ki7C0azMioGOz5owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDIzMDAxMDM0WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZWEzNmQ2NDE5YjYzMDA2YTMzY2ZlZDAxMzEyN2JhMGU2 NTIzOTg0N2MwZDg1ZTA4ZmY5NDIxZGE3ZDg5ZGI2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKKmMCA9pUTskaSONvcUz8aybGY1N1Sc9Tx6q5j2VhXkXE r2T0YZK2Amez8xyviwWjeoG/5o15u03bTcrlPoHEhrTwKziC+IdQeZghwfA5iyJN zL0/wfr64yMQFz4U17lgru3r5j8bvx60JAagjXdHwwCML29bYDuIKr2aiIf6D6MT 7eGX15qrCeS1BqyjuS8zHttQYIM3MQi+369PjcCybY6pRrFLeJL/4QD56p18XHtJ tOf7/R83N5/x1XLdLV2/w0Cd+BgqVqcXAye/QWGRUGrPqQUGWvjKdjkR8701atdz goxJma7dTtY1weeJbOzIgmdDbc//Jb2kOFmZUN8JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYJu5O1blGgKwfbMtr06aOtk1QB4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU4ZjlmZmU1LTA5ZmQtNDBhYy04ZWE0LWZlMWY4ZDAxZDg3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFqegwDQYJKoZIhvcNAQELBQADggEBACLER2YmUqXLnybU2t2Dvo6RhgIt xDUZdRWsPqp/jNagKwfEA+xImFhOC9CfUItn0DRCgjnTd9G92d6CvacyJMOaeNEU W3/OfeRk7fI2U1D4JUZestEVlPROCORmqlkcrM8J9RSc6V8Fiy+4f44prMQ6uy71 W9aZIkpWRw7NzXw32ZXpDtYkdJIXyKLafgusTtFxR36Ua2yT5T1H0ZBGZiC6NlxV U4tHT9GO+MqVI4CV7TzrBqpuIlmw+mj4SOTkQQCOL172xTBsAaN0tnC66AHl3Jur xSAwRJrCIsdqS9Gm/6MxT3UW6PWQyDT4adbMj4CbxLR28y4FQ4kivqbGTGs= -----END CERTIFICATE-----Generated at Sat Apr 26 18:10:34 2025 by rpki-client