$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa File: 5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa (raw, json) Hash identifier: rWzWpq32NYEJrK4gmqPjnD2+SZcZDggaRXIDMyeOhvI= Subject key identifier: E6:B7:6D:64:FD:17:5A:A4:7A:6E:86:A6:04:7F:D1:EB:69:84:5C:0C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7745E63CA9BE8CA2131C09F86BD07DD90154E01C Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa Signing time: Wed 23 Apr 2025 00:10:31 +0000 ROA not before: Wed 23 Apr 2025 00:10:31 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:45:e6:3c:a9:be:8c:a2:13:1c:09:f8:6b:d0:7d:d9:01:54:e0:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:10:31 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=76f44049d793e56c5042c60073bfef8887bb6de3e8883905666aa2d554414a7f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:09:20:c0:0e:65:04:ca:3b:81:12:15:1a:3f: 3a:1a:2f:75:d9:57:ce:aa:2a:ab:63:c2:13:19:bc: 7c:c8:29:55:de:a1:ee:c9:8b:6b:3d:c1:df:41:2f: 45:2d:56:9a:2b:20:51:56:70:40:0a:44:64:21:ca: a3:32:c7:93:79:96:92:9b:e4:32:5b:f5:60:88:50: 0a:ac:8e:ab:95:ba:76:ca:33:ef:40:de:d1:d6:81: 27:55:74:ab:70:53:f6:44:78:7b:b7:f2:c9:7f:26: 4a:b0:55:82:44:3c:2d:94:87:9c:6e:3a:26:7c:be: 22:d1:24:d6:06:b3:00:ed:d5:4f:38:db:34:4a:91: 8a:b4:b4:bf:09:0f:bd:b5:44:43:55:87:9d:5e:2b: d5:24:b8:1f:c6:88:58:59:a7:0b:b0:bb:d2:23:40: da:c7:41:4a:8f:a5:07:5c:d0:1c:39:69:2d:b5:f0: 04:5e:db:4f:c2:cf:e4:7f:79:96:2c:d3:03:59:45: 19:ad:76:29:a7:b7:35:c0:14:50:2c:a8:3d:68:13: b6:68:a7:38:14:27:6e:65:2a:ea:62:ca:84:d7:e3: c0:e8:d3:20:98:bd:2d:6f:7c:dd:52:5c:d8:68:a6: 34:28:aa:88:e5:f1:49:41:b8:c7:4d:23:5f:e7:92: 32:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B7:6D:64:FD:17:5A:A4:7A:6E:86:A6:04:7F:D1:EB:69:84:5C:0C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.235.0/24 Signature Algorithm: sha256WithRSAEncryption 15:54:d2:b6:1f:7c:83:28:13:0a:a3:ff:3a:0f:8f:1f:7d:80: 4e:2f:67:cc:0a:71:89:5f:c3:57:61:b9:a9:0b:26:77:60:eb: 1f:f2:6b:7a:56:0e:80:bd:68:74:35:d7:48:47:b5:49:e7:a0: 1e:c1:73:ce:d0:93:31:19:09:c5:a1:15:51:ce:5b:cc:45:cd: 5f:4c:4b:67:52:93:0a:c3:29:bd:7e:da:94:7b:d0:29:60:14: 41:b9:aa:49:b4:e6:96:29:5e:67:10:02:d4:51:95:14:74:e5: cb:51:cf:67:c1:b9:07:9e:d9:d9:b4:5d:ae:78:25:01:29:92: 1d:79:41:07:f7:10:70:2a:bc:8b:02:1f:ac:a1:87:2b:ff:9f: c4:3d:69:d0:ac:de:26:c5:48:89:f5:3c:4e:30:c0:74:ec:91: 0a:29:b4:04:6b:01:f8:0c:e8:bb:3d:87:db:ee:ce:50:68:d0: 58:90:56:c4:92:86:d4:47:d6:b9:51:cd:6e:30:9e:2c:a8:65: 97:8f:fb:6a:0c:45:e8:b6:e4:21:85:26:55:6e:83:3d:9c:64: b3:0d:db:35:c5:b7:ea:ed:bc:6c:14:d3:96:a3:ab:35:5b:86: c0:81:df:e5:76:d6:c6:2f:15:13:05:4f:61:20:e2:12:98:68: 24:76:49:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd0XmPKm+jKITHAn4a9B92QFU4BwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDIzMDAxMDMxWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmY0NDA0OWQ3OTNlNTZjNTA0MmM2MDA3M2JmZWY4ODg3 YmI2ZGUzZTg4ODM5MDU2NjZhYTJkNTU0NDE0YTdmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDACSDADmUEyjuBEhUaPzoaL3XZV86qKqtjwhMZvHzIKVXe oe7Ji2s9wd9BL0UtVporIFFWcEAKRGQhyqMyx5N5lpKb5DJb9WCIUAqsjquVunbK M+9A3tHWgSdVdKtwU/ZEeHu38sl/JkqwVYJEPC2Uh5xuOiZ8viLRJNYGswDt1U84 2zRKkYq0tL8JD721RENVh51eK9UkuB/GiFhZpwuwu9IjQNrHQUqPpQdc0Bw5aS21 8ARe20/Cz+R/eZYs0wNZRRmtdimntzXAFFAsqD1oE7ZopzgUJ25lKupiyoTX48Do 0yCYvS1vfN1SXNhopjQoqojl8UlBuMdNI1/nkjLxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5rdtZP0XWqR6boamBH/R62mEXAwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkM2U4NjUyLWY0MTAtNGM5Mi1iNWEyLTcxNzNjOWFiNGVhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeswDQYJKoZIhvcNAQELBQADggEBABVU0rYffIMoEwqj/zoPjx99gE4v Z8wKcYlfw1dhuakLJndg6x/ya3pWDoC9aHQ110hHtUnnoB7Bc87QkzEZCcWhFVHO W8xFzV9MS2dSkwrDKb1+2pR70ClgFEG5qkm05pYpXmcQAtRRlRR05ctRz2fBuQee 2dm0Xa54JQEpkh15QQf3EHAqvIsCH6yhhyv/n8Q9adCs3ibFSIn1PE4wwHTskQop tARrAfgM6Ls9h9vuzlBo0FiQVsSShtRH1rlRzW4wniyoZZeP+2oMRei25CGFJlVu gz2cZLMN2zXFt+rtvGwU05ajqzVbhsCB3+V21sYvFRMFT2Eg4hKYaCR2SXs= -----END CERTIFICATE-----Generated at Sat Apr 26 16:07:06 2025 by rpki-client