$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa File: 5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa (raw, json) Hash identifier: VPPYL1LfQQyCnZ5zcHe6oufuMg/rGHpnWUTx3egZrJM= Subject key identifier: 1A:60:17:0F:1E:29:CB:87:2A:B5:09:98:8D:3A:53:21:C1:52:A6:03 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3717173DDED0C3012EBE471D7562406A76DD8006 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa Signing time: Fri 11 Apr 2025 00:00:49 +0000 ROA not before: Fri 11 Apr 2025 00:00:49 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:17:17:3d:de:d0:c3:01:2e:be:47:1d:75:62:40:6a:76:dd:80:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 11 00:00:49 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=f62cb38084a75332b098a058fe3c1258762809b09818fa191203a805178cc16b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:27:84:4f:58:be:a8:fd:75:fd:6d:ac:23:5c: d9:da:e2:ee:86:74:e6:ae:15:92:15:a8:60:8e:24: 97:28:06:43:60:b4:0e:52:9a:34:e6:7d:13:06:12: c4:84:e9:42:2e:4e:67:5e:38:c3:38:5e:64:97:99: ae:ad:99:b7:75:bd:04:6b:73:ad:bf:d9:25:9b:60: fc:01:45:7b:ab:55:c3:63:a7:47:e3:79:90:59:55: c5:d1:c0:7c:89:a1:08:0b:79:2e:e2:45:ad:b4:58: 23:3b:13:37:15:86:3c:6f:4d:64:8b:af:41:df:b4: c5:ef:22:70:3c:a8:d4:5f:07:cf:d7:5c:04:66:78: 88:2e:41:ae:e8:11:01:a6:df:85:63:6e:d6:a8:fb: 2b:ac:45:2b:cc:52:b9:e5:95:9e:c9:83:5d:0f:f0: 3a:5d:cb:4c:a0:ba:f6:1f:9e:ba:64:a6:e5:d0:53: 5b:88:cb:40:70:37:5f:37:d6:eb:25:ab:aa:03:f4: d0:ec:5e:ef:d0:28:70:17:13:b5:91:74:24:39:26: a3:73:c2:41:a5:bd:87:f6:aa:14:4a:ba:27:64:5b: 1e:41:dc:88:fa:69:82:4d:51:33:b3:9f:fb:38:84: e1:90:af:6b:fc:f5:7a:cf:0d:74:b9:0f:2d:b6:fc: 30:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:60:17:0F:1E:29:CB:87:2A:B5:09:98:8D:3A:53:21:C1:52:A6:03 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.233.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:8f:61:09:dc:2e:e1:19:20:19:f8:fb:14:a4:20:68:55:d1: 54:00:d3:3f:3c:81:00:dd:4d:37:d2:c2:a6:65:20:c5:cd:d9: 20:17:f3:6d:41:96:ce:11:de:0f:83:e7:5a:72:9b:cf:f6:1e: 5f:78:8d:3f:ad:58:68:10:e3:fd:9c:2b:4a:17:e6:8e:97:42: 60:fb:03:21:49:66:d5:7a:75:f8:11:1e:e1:c0:de:ad:57:c0: 7b:bc:85:f2:3e:44:69:95:42:d9:49:5c:77:67:7b:db:12:96: 8a:12:41:db:9e:ef:1a:35:94:a1:45:bc:38:0f:4b:43:38:e7: a1:8b:9f:1d:f9:e6:28:b8:47:c7:98:cb:ae:5c:54:e9:42:a0: 4e:60:f3:bb:01:d6:90:40:66:5b:f4:83:74:51:32:49:2c:0a: 69:6d:b7:3b:19:a4:55:ee:bd:f4:16:d5:ba:8a:8d:f0:3c:ce: 4b:19:98:b6:77:76:71:e3:55:2d:b8:6f:0a:08:01:95:81:9e: c5:6a:68:75:aa:dd:ea:c9:7f:c1:81:29:d8:a2:14:03:41:df: b9:91:86:31:19:88:a1:d8:f1:9d:a7:4e:e6:64:81:a7:8b:84: b3:08:a9:4b:09:55:b5:85:75:ce:66:1c:49:75:db:4e:ce:bb: 02:11:62:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNxcXPd7QwwEuvkcddWJAanbdgAYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDExMDAwMDQ5WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjJjYjM4MDg0YTc1MzMyYjA5OGEwNThmZTNjMTI1ODc2 MjgwOWIwOTgxOGZhMTkxMjAzYTgwNTE3OGNjMTZiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyJ4RPWL6o/XX9bawjXNna4u6GdOauFZIVqGCOJJcoBkNg tA5SmjTmfRMGEsSE6UIuTmdeOMM4XmSXma6tmbd1vQRrc62/2SWbYPwBRXurVcNj p0fjeZBZVcXRwHyJoQgLeS7iRa20WCM7EzcVhjxvTWSLr0HftMXvInA8qNRfB8/X XARmeIguQa7oEQGm34Vjbtao+yusRSvMUrnllZ7Jg10P8Dpdy0yguvYfnrpkpuXQ U1uIy0BwN1831uslq6oD9NDsXu/QKHAXE7WRdCQ5JqNzwkGlvYf2qhRKuidkWx5B 3Ij6aYJNUTOzn/s4hOGQr2v89XrPDXS5Dy22/DDhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGmAXDx4py4cqtQmYjTpTIcFSpgMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkMzRmNzk3LTZkMTYtNDk4YS1iNjZkLThjN2QwZmNhYzc3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++kwDQYJKoZIhvcNAQELBQADggEBAE+PYQncLuEZIBn4+xSkIGhV0VQA 0z88gQDdTTfSwqZlIMXN2SAX821Bls4R3g+D51pym8/2Hl94jT+tWGgQ4/2cK0oX 5o6XQmD7AyFJZtV6dfgRHuHA3q1XwHu8hfI+RGmVQtlJXHdne9sSlooSQdue7xo1 lKFFvDgPS0M456GLnx355ii4R8eYy65cVOlCoE5g87sB1pBAZlv0g3RRMkksCmlt tzsZpFXuvfQW1bqKjfA8zksZmLZ3dnHjVS24bwoIAZWBnsVqaHWq3erJf8GBKdii FANB37mRhjEZiKHY8Z2nTuZkgaeLhLMIqUsJVbWFdc5mHEl1207OuwIRYrg= -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:21 2025 by rpki-client