$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa File: a1532cad-101c-42fe-83e3-e4a74867afd7.roa (raw, json) Hash identifier: jDAZzya1+L8NzRVk4XaCjUeR3qpp1eyJ70ZNlT4S9uI= Subject key identifier: 5B:D9:43:2A:1A:F4:B6:58:6E:B0:C3:83:C0:B8:A0:2A:34:A7:58:A8 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6A58D6E295DB06B224FF61C5049FD9DC285D137F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa Signing time: Wed 23 Apr 2025 00:10:22 +0000 ROA not before: Wed 23 Apr 2025 00:10:22 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:58:d6:e2:95:db:06:b2:24:ff:61:c5:04:9f:d9:dc:28:5d:13:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:10:22 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=d59351078c2006ab7b13c8b0c6c2006b438fbe2b08f08be8fcbaa760aa5752d3, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6e:cb:50:94:db:77:01:de:2e:74:19:97:ba: e3:65:95:54:61:48:d2:d5:2b:f2:63:84:6c:95:99: fc:3a:97:e4:2b:36:c2:a7:bf:00:fd:4e:d2:34:8c: 59:1d:dd:68:cc:14:79:6c:cf:d3:4a:c8:f5:8a:1d: 2d:1d:17:7e:92:d0:e2:51:73:1e:07:89:0e:df:3a: 0d:f1:50:bb:dd:b7:69:53:eb:0e:7b:4d:d5:4a:9a: 54:45:de:c8:da:e2:5c:40:bc:78:88:81:1a:c3:6e: 02:50:1e:84:29:c3:68:cf:b7:0e:ec:4c:4b:1b:cc: 55:ec:8e:27:76:c6:90:45:be:6f:24:bb:e6:55:b5: be:ea:af:1d:c1:24:48:89:94:6c:af:42:c5:18:8c: b0:ba:37:e4:e7:ee:75:83:1e:0f:92:3f:5f:23:e4: 82:be:79:c9:90:e8:91:fb:1e:49:f1:ca:3b:31:84: 1b:c4:0c:d7:6d:96:bd:cb:9d:41:f9:d6:74:ba:d3: 14:3a:5e:4c:cc:25:7b:58:00:99:76:71:50:64:bc: 11:30:65:02:9b:e3:8f:b5:5c:81:47:9f:85:8e:5f: 1c:23:22:fb:f9:9d:4b:4e:a9:75:c3:70:77:1c:a1: 06:c9:62:cc:e7:8f:c7:06:c9:8f:24:9f:e8:12:1d: 85:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D9:43:2A:1A:F4:B6:58:6E:B0:C3:83:C0:B8:A0:2A:34:A7:58:A8 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.224.0/19 Signature Algorithm: sha256WithRSAEncryption 8b:0e:e9:28:73:9b:b9:77:3f:34:d2:53:22:59:37:bd:b5:dd: 93:6c:d2:9d:eb:8b:41:a8:9f:b3:6f:99:9c:48:a4:e2:42:cb: ba:6a:9b:dc:00:77:1c:c3:3f:58:38:9e:80:ea:5b:7b:a7:12: 74:4d:30:23:db:05:e6:75:8f:53:75:ff:4f:ca:89:ce:25:3b: 97:39:89:f9:b5:5a:f2:d0:b2:b8:ea:74:2f:d2:65:38:3c:7b: 32:5d:66:cf:c7:92:72:85:d3:8c:43:58:d7:51:89:dd:62:a1: 9d:9e:46:7c:59:b3:b1:d9:6a:0a:b3:aa:b4:fe:b3:3a:05:a9: e7:fd:8d:e5:eb:93:c6:95:c5:3a:ee:d3:d2:39:90:85:47:54: e6:a2:67:88:94:d7:b1:5c:83:ed:c4:81:7f:5a:bd:60:3f:25: d1:2a:c9:54:d0:dc:f2:b9:4a:4e:e0:c9:74:b8:30:77:b9:26: fb:ee:81:0c:42:b0:f6:17:83:6d:8c:34:d8:82:89:cc:48:94: 52:6e:90:f1:9d:c9:de:5f:9a:f1:cd:3e:86:0e:5b:8a:8b:1a: be:65:05:31:15:83:e9:a6:01:98:a0:4a:95:21:30:bc:c9:cb: 5c:13:b5:8d:aa:66:a0:fc:73:db:32:f0:20:b9:73:c3:69:25: 9a:fe:a4:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaljW4pXbBrIk/2HFBJ/Z3ChdE38wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDIzMDAxMDIyWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTkzNTEwNzhjMjAwNmFiN2IxM2M4YjBjNmMyMDA2YjQz OGZiZTJiMDhmMDhiZThmY2JhYTc2MGFhNTc1MmQzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6bstQlNt3Ad4udBmXuuNllVRhSNLVK/JjhGyVmfw6l+Qr NsKnvwD9TtI0jFkd3WjMFHlsz9NKyPWKHS0dF36S0OJRcx4HiQ7fOg3xULvdt2lT 6w57TdVKmlRF3sja4lxAvHiIgRrDbgJQHoQpw2jPtw7sTEsbzFXsjid2xpBFvm8k u+ZVtb7qrx3BJEiJlGyvQsUYjLC6N+Tn7nWDHg+SP18j5IK+ecmQ6JH7Hknxyjsx hBvEDNdtlr3LnUH51nS60xQ6XkzMJXtYAJl2cVBkvBEwZQKb44+1XIFHn4WOXxwj Ivv5nUtOqXXDcHccoQbJYsznj8cGyY8kn+gSHYUDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUW9lDKhr0tlhusMODwLigKjSnWKgwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ExNTMyY2FkLTEwMWMtNDJmZS04M2UzLWU0YTc0ODY3YWZkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUX++AwDQYJKoZIhvcNAQELBQADggEBAIsO6Shzm7l3PzTSUyJZN7213ZNs 0p3ri0Gon7NvmZxIpOJCy7pqm9wAdxzDP1g4noDqW3unEnRNMCPbBeZ1j1N1/0/K ic4lO5c5ifm1WvLQsrjqdC/SZTg8ezJdZs/HknKF04xDWNdRid1ioZ2eRnxZs7HZ agqzqrT+szoFqef9jeXrk8aVxTru09I5kIVHVOaiZ4iU17Fcg+3EgX9avWA/JdEq yVTQ3PK5Sk7gyXS4MHe5JvvugQxCsPYXg22MNNiCicxIlFJukPGdyd5fmvHNPoYO W4qLGr5lBTEVg+mmAZigSpUhMLzJy1wTtY2qZqD8c9sy8CC5c8NpJZr+pLE= -----END CERTIFICATE-----Generated at Sat Apr 26 17:43:00 2025 by rpki-client