$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa File: 5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa (raw, json) Hash identifier: Hpo/vqruXNIKORaJg70hAOXDhiLN080D5lQ7KbrvA0A= Subject key identifier: E9:5F:A9:35:9F:08:AE:14:E4:6E:37:1E:E3:FB:26:B2:6C:67:15:5D Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 52B4D4D20685C600237C2DBF0A4E095E36F3D74F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa Signing time: Sat 31 May 2025 00:01:11 +0000 ROA not before: Sat 31 May 2025 00:01:11 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b4:d4:d2:06:85:c6:00:23:7c:2d:bf:0a:4e:09:5e:36:f3:d7:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:01:11 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=d94c51b46db3c18530e8c023cf90d668c0c7fe9fca79d151ca5935c61735de27, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0d:e3:bb:97:90:68:fa:77:98:82:6b:99:15: 45:cd:e8:ae:63:f3:f8:5c:0e:e2:9f:2d:d8:f8:20: ed:04:df:87:79:2a:d5:d6:e5:29:fb:48:56:8c:b0: 60:a5:1a:11:e5:68:90:d7:5f:f0:d5:8b:bf:a1:23: 26:61:19:de:1b:e8:60:09:90:91:66:08:f7:ab:70: 3a:db:1c:56:ac:d2:d4:9c:d8:c3:e2:f8:5e:df:19: 8c:a8:78:dc:f9:e1:0c:99:ee:39:ab:b0:c3:a8:43: 77:5e:cf:32:a5:d8:08:f3:43:07:89:be:85:31:d2: 2f:9e:e2:a2:52:44:33:96:2b:0c:4d:54:47:68:c5: 83:9d:9c:11:06:81:e7:2d:33:96:17:09:4b:ee:35: ca:cd:05:4a:86:c9:e5:3c:69:1e:fe:27:2b:82:b4: c2:7f:21:c3:db:9c:be:95:ba:0b:b9:2c:7e:69:8d: 6b:5b:07:2c:f2:66:d9:c9:1c:22:39:e9:b2:12:9f: bd:0f:af:37:52:f9:92:f0:be:ee:9e:cf:9c:98:ea: 8c:da:02:19:47:ee:d8:ff:1a:8a:bf:9a:b3:07:ee: 13:b8:c1:36:a1:20:f6:29:c6:a8:67:e6:44:55:7d: 5f:26:8b:51:67:fa:28:9c:b8:e4:08:e0:7a:c8:d1: 03:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:5F:A9:35:9F:08:AE:14:E4:6E:37:1E:E3:FB:26:B2:6C:67:15:5D X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.214.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:0b:63:4c:f4:69:bf:e9:01:a7:6f:3d:80:9c:dc:26:ef:64: 3c:e5:cd:f7:f6:7d:79:64:fb:99:ed:b9:9d:70:de:1f:78:6a: 27:25:cc:4b:1c:5f:98:ef:f2:aa:dc:52:99:75:80:3d:51:45: cf:66:47:94:28:24:be:fc:68:c0:4b:09:1c:bb:ad:8f:dc:8e: f3:7b:07:13:ec:c8:f0:9b:dd:30:47:4d:33:34:38:4a:27:0f: 94:0f:10:be:86:0b:78:41:57:7a:01:13:eb:85:d9:6b:32:60: 5c:79:1c:f7:7c:41:11:8e:47:67:9d:f7:f6:4e:8b:d0:29:10: 4e:42:60:8d:f8:bf:51:53:2a:66:04:66:5f:31:77:a2:c4:4c: 96:35:b7:42:a2:c8:66:2b:ba:39:7c:b7:af:3e:1a:ad:27:73: ab:0a:44:d4:3d:81:87:ad:59:0a:26:52:f2:8f:68:ff:33:a8: 78:2f:b8:3e:56:83:e1:c2:88:69:33:6e:79:cb:e1:1a:b6:cf: fb:d6:01:57:6c:73:15:20:d7:d5:d5:58:b2:ac:0c:d8:d6:0a: a4:7f:f2:3c:74:f0:52:a3:fe:33:8d:f0:be:d5:9f:27:c6:7d: 2c:ff:56:27:ab:d4:92:12:70:ba:b9:db:38:8d:05:9a:84:77: 01:10:87:dd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUrTU0gaFxgAjfC2/Ck4JXjbz108wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMTExWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTRjNTFiNDZkYjNjMTg1MzBlOGMwMjNjZjkwZDY2OGMw YzdmZTlmY2E3OWQxNTFjYTU5MzVjNjE3MzVkZTI3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwDeO7l5Bo+neYgmuZFUXN6K5j8/hcDuKfLdj4IO0E34d5 KtXW5Sn7SFaMsGClGhHlaJDXX/DVi7+hIyZhGd4b6GAJkJFmCPercDrbHFas0tSc 2MPi+F7fGYyoeNz54QyZ7jmrsMOoQ3dezzKl2AjzQweJvoUx0i+e4qJSRDOWKwxN VEdoxYOdnBEGgectM5YXCUvuNcrNBUqGyeU8aR7+JyuCtMJ/IcPbnL6Vugu5LH5p jWtbByzyZtnJHCI56bISn70PrzdS+ZLwvu6ez5yY6ozaAhlH7tj/Goq/mrMH7hO4 wTahIPYpxqhn5kRVfV8mi1Fn+iicuOQI4HrI0QPJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6V+pNZ8IrhTkbjce4/smsmxnFV0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVmZjRiNDRhLTQxYzktNGJjMC1iNzdlLTUyMGZkMWQ3OTI3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dYwDQYJKoZIhvcNAQELBQADggEBAIoLY0z0ab/pAadvPYCc3CbvZDzl zff2fXlk+5ntuZ1w3h94aiclzEscX5jv8qrcUpl1gD1RRc9mR5QoJL78aMBLCRy7 rY/cjvN7BxPsyPCb3TBHTTM0OEonD5QPEL6GC3hBV3oBE+uF2WsyYFx5HPd8QRGO R2ed9/ZOi9ApEE5CYI34v1FTKmYEZl8xd6LETJY1t0KiyGYrujl8t68+Gq0nc6sK RNQ9gYetWQomUvKPaP8zqHgvuD5Wg+HCiGkzbnnL4Rq2z/vWAVdscxUg19XVWLKs DNjWCqR/8jx08FKj/jON8L7VnyfGfSz/Vier1JIScLq52ziNBZqEdwEQh90= -----END CERTIFICATE-----Generated at Sun Jun 15 05:08:08 2025 by rpki-client