$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d99a456-6c99-48ae-bf3a-149585d61d61.roa File: 5d99a456-6c99-48ae-bf3a-149585d61d61.roa (raw, json) Hash identifier: WNDuBoMT5U6nGTHMDa+vWJ04ieBLp7+/aOFhIgBVS60= Subject key identifier: 7E:8F:9A:A8:3B:67:D1:6D:54:CF:BD:16:8F:14:8C:B9:79:EA:6F:D8 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 31F93F814B5809E6EAB11F10D1499F204924F0CA Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d99a456-6c99-48ae-bf3a-149585d61d61.roa Signing time: Wed 23 Apr 2025 00:10:31 +0000 ROA not before: Wed 23 Apr 2025 00:10:31 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:f9:3f:81:4b:58:09:e6:ea:b1:1f:10:d1:49:9f:20:49:24:f0:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:10:31 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=863132dd386e9675e451b148ea86ccf2f6d52849eb8859a3951cf76f14dc753f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f1:78:57:df:62:e6:d8:1d:d8:ad:61:90:9d: 77:bd:26:eb:3d:58:a7:96:4e:39:0d:db:a3:f7:5b: b0:9d:a5:9d:20:5d:65:b1:49:46:0f:66:a2:1a:2b: 35:6c:3c:e1:94:15:f9:32:91:08:05:ed:10:7d:6c: 60:0d:72:19:a0:5b:ac:d6:6a:e1:12:8c:0b:72:88: f6:1f:cc:bc:70:f3:4a:0d:75:4a:34:10:47:9d:5e: 6e:8b:8d:ee:54:60:e1:94:4b:4d:12:ce:7d:e5:d2: d0:35:f9:de:c4:21:f6:58:26:df:25:f7:54:0e:85: 82:15:91:d7:df:22:da:aa:09:80:a2:3d:2e:53:ec: 3e:f8:1e:d2:f5:fa:13:e9:50:a0:de:13:5d:f5:ad: 9e:9b:d1:88:e6:72:5a:46:42:e4:52:d5:4d:7e:59: f3:76:86:2c:98:d9:40:d5:70:e8:cd:5e:02:d8:84: 26:c6:1f:38:9d:00:00:68:a1:a7:74:61:78:05:3e: c0:fe:dd:07:ab:76:87:b0:6e:a0:5f:f1:d8:08:e2: e9:09:07:73:f7:79:45:44:9d:18:e6:82:e2:ff:cb: 4a:b8:2b:8d:5e:46:b5:0e:f6:5c:49:9c:e2:96:63: 70:c2:11:a4:28:ef:73:a9:86:08:ee:45:e8:f8:1e: bd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:8F:9A:A8:3B:67:D1:6D:54:CF:BD:16:8F:14:8C:B9:79:EA:6F:D8 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d99a456-6c99-48ae-bf3a-149585d61d61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.232.0/22 Signature Algorithm: sha256WithRSAEncryption 48:aa:f0:3b:3a:04:df:2b:1c:6d:77:fd:61:67:b5:cc:b6:f3: 8b:2f:0c:88:ee:0c:5f:d6:1f:34:47:95:4b:61:99:e7:b2:10: 5e:c9:a8:dc:48:81:1e:e9:d7:8e:82:1f:73:f2:09:ee:97:d8: 95:69:5a:0d:1f:5e:a2:1d:8a:98:d6:b1:66:76:8d:39:2d:1c: d0:62:c1:34:dd:05:92:d8:9c:41:b3:90:63:03:49:85:a3:3c: c8:f2:a9:53:2b:f1:ea:53:00:93:6e:cc:79:b3:44:54:f9:53: e1:96:0d:de:89:d4:00:97:5b:84:15:58:3c:94:dc:70:d2:70: 74:6b:87:4a:a5:21:ec:13:a4:67:38:98:24:4c:fe:e0:1b:2b: fe:1e:0c:9e:d3:9d:5f:0f:22:a5:55:24:79:0d:81:e0:7b:d5: e3:45:b4:95:bf:92:ea:51:e0:77:35:e7:a6:3e:de:bc:6d:27: 98:1b:81:1e:40:1b:78:5e:73:0f:5d:13:ca:1b:1f:e5:87:57: 2a:9b:bc:2f:ac:5b:02:bc:91:e3:87:93:c0:ee:f1:ef:bc:7b: 3a:da:bc:8f:c8:85:1c:27:77:bf:80:fd:93:49:44:db:c9:c9: dd:a4:af:8d:c2:e0:09:66:33:dc:e8:b3:cc:f9:69:91:6d:54: 3e:d6:2f:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMfk/gUtYCebqsR8Q0UmfIEkk8MowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDIzMDAxMDMxWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjMxMzJkZDM4NmU5Njc1ZTQ1MWIxNDhlYTg2Y2NmMmY2 ZDUyODQ5ZWI4ODU5YTM5NTFjZjc2ZjE0ZGM3NTNmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF8XhX32Lm2B3YrWGQnXe9Jus9WKeWTjkN26P3W7CdpZ0g XWWxSUYPZqIaKzVsPOGUFfkykQgF7RB9bGANchmgW6zWauESjAtyiPYfzLxw80oN dUo0EEedXm6Lje5UYOGUS00Szn3l0tA1+d7EIfZYJt8l91QOhYIVkdffItqqCYCi PS5T7D74HtL1+hPpUKDeE131rZ6b0YjmclpGQuRS1U1+WfN2hiyY2UDVcOjNXgLY hCbGHzidAABooad0YXgFPsD+3QerdoewbqBf8dgI4ukJB3P3eUVEnRjmguL/y0q4 K41eRrUO9lxJnOKWY3DCEaQo73OphgjuRej4Hr0fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfo+aqDtn0W1Uz70WjxSMuXnqb9gwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkOTlhNDU2LTZjOTktNDhhZS1iZjNhLTE0OTU4NWQ2MWQ2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJFqegwDQYJKoZIhvcNAQELBQADggEBAEiq8Ds6BN8rHG13/WFntcy284sv DIjuDF/WHzRHlUthmeeyEF7JqNxIgR7p146CH3PyCe6X2JVpWg0fXqIdipjWsWZ2 jTktHNBiwTTdBZLYnEGzkGMDSYWjPMjyqVMr8epTAJNuzHmzRFT5U+GWDd6J1ACX W4QVWDyU3HDScHRrh0qlIewTpGc4mCRM/uAbK/4eDJ7TnV8PIqVVJHkNgeB71eNF tJW/kupR4Hc156Y+3rxtJ5gbgR5AG3hecw9dE8obH+WHVyqbvC+sWwK8keOHk8Du 8e+8ezravI/IhRwnd7+A/ZNJRNvJyd2kr43C4AlmM9zos8z5aZFtVD7WL6c= -----END CERTIFICATE-----Generated at Sat Apr 26 14:51:09 2025 by rpki-client