$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa File: b59643bf-eb80-414a-aca0-653646d46e07.roa (raw, json) Hash identifier: dZPJDzuH4YqDpgIQMMEdBSd8tEFYR7UjULrhoNwQ7WM= Subject key identifier: 30:8A:72:47:06:F9:30:D0:85:38:07:2D:69:D3:10:D9:56:18:22:53 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 30A917261F6D43943616B5C9428905A085F71705 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa Signing time: Fri 25 Apr 2025 00:10:05 +0000 ROA not before: Fri 25 Apr 2025 00:10:05 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.127.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:a9:17:26:1f:6d:43:94:36:16:b5:c9:42:89:05:a0:85:f7:17:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 25 00:10:05 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=0cc19e9a52cafc732c710cf0944e0e528daa5f654ec61925724f1ba0af2f6665, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:dc:74:71:21:77:39:65:7f:41:78:aa:87:e4: 64:56:77:ae:3d:97:52:2f:7f:3b:66:d7:ba:79:7f: d9:4e:9d:5e:b0:4e:48:74:13:ca:ab:2e:2d:7c:c9: 77:08:77:cc:ee:ef:22:b0:38:de:33:5d:94:92:61: 4d:02:5f:3d:e1:89:2a:48:ed:9c:a9:83:c6:d6:9b: 33:01:bb:a2:8a:85:44:04:b5:7e:a9:d2:63:6c:ea: ed:6e:53:7e:56:c2:26:b9:a6:22:e0:f4:28:5f:27: b6:33:46:23:37:bd:9a:32:84:00:8e:d3:33:b7:90: 57:6b:9a:a9:ab:4f:99:7e:51:be:89:15:48:82:28: 37:64:1a:d1:22:74:9c:e3:09:58:78:a8:6d:e6:22: 68:f8:ee:e5:ba:5c:e2:3b:f8:1c:4c:22:5c:c0:02: fc:4b:e3:4f:d6:09:0c:d9:db:5f:41:0f:31:89:69: 30:70:70:91:5d:f3:c7:e1:7f:0e:9e:51:9e:f0:15: ec:d0:90:14:a2:f9:b2:0a:6f:8a:be:5d:df:a8:ec: c8:64:f9:18:c0:44:b7:30:b2:03:8e:f3:f7:f5:c9: 33:c1:8f:11:bd:9c:55:ae:bf:4d:29:cc:ae:10:d8: 83:b7:6a:dd:ea:01:af:8d:93:4c:13:8b:c8:3e:ba: 8b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:8A:72:47:06:F9:30:D0:85:38:07:2D:69:D3:10:D9:56:18:22:53 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.127.232.0/22 Signature Algorithm: sha256WithRSAEncryption 24:73:90:99:3f:3c:45:62:33:c9:83:ce:a1:f1:43:db:db:9e: bc:65:60:45:d2:d8:cb:35:32:a7:ea:31:37:ae:ef:92:17:8c: ea:60:7d:57:07:08:c2:5d:bd:86:fd:57:50:e2:20:90:5b:e1: 03:39:48:d5:c1:b1:a2:b6:bc:47:6b:29:be:4d:71:2d:b8:74: ed:eb:72:e6:b6:df:38:f8:68:46:72:3a:e7:e9:12:3f:af:5d: 6c:15:5a:50:df:af:a9:95:89:83:65:d4:4a:6a:df:0f:b8:6f: fa:2e:ba:57:7d:7c:01:81:86:c7:6d:33:f5:a1:65:4f:00:1a: 8b:a2:2d:2b:cd:34:14:4e:98:e2:42:0f:eb:3e:f1:cb:cc:12: aa:44:3b:7f:43:e1:39:fe:63:da:7e:a9:55:1b:20:be:11:a3: bc:da:ab:51:d9:50:a7:c7:ec:00:da:55:e3:36:f1:c0:53:c1: 78:8e:6a:e9:67:6b:f6:da:71:ee:73:b3:28:fc:9b:73:4c:e1: a4:e2:d1:9c:14:e8:e0:45:98:ec:00:69:8e:fc:e9:0d:3e:72: c3:a7:51:1b:de:1b:da:b7:1f:9a:c7:ec:b1:12:53:2d:53:d1: 95:6b:9c:d5:81:3a:a9:17:f9:0c:91:8b:7f:36:17:5a:1f:b0: f7:63:99:6a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMKkXJh9tQ5Q2FrXJQokFoIX3FwUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDI1MDAxMDA1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2MxOWU5YTUyY2FmYzczMmM3MTBjZjA5NDRlMGU1Mjhk YWE1ZjY1NGVjNjE5MjU3MjRmMWJhMGFmMmY2NjY1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCH3HRxIXc5ZX9BeKqH5GRWd649l1Ivfztm17p5f9lOnV6w Tkh0E8qrLi18yXcId8zu7yKwON4zXZSSYU0CXz3hiSpI7Zypg8bWmzMBu6KKhUQE tX6p0mNs6u1uU35Wwia5piLg9ChfJ7YzRiM3vZoyhACO0zO3kFdrmqmrT5l+Ub6J FUiCKDdkGtEidJzjCVh4qG3mImj47uW6XOI7+BxMIlzAAvxL40/WCQzZ219BDzGJ aTBwcJFd88fhfw6eUZ7wFezQkBSi+bIKb4q+Xd+o7Mhk+RjARLcwsgOO8/f1yTPB jxG9nFWuv00pzK4Q2IO3at3qAa+Nk0wTi8g+uovTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMIpyRwb5MNCFOActadMQ2VYYIlMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1OTY0M2JmLWViODAtNDE0YS1hY2EwLTY1MzY0NmQ0NmUwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALHf+gwDQYJKoZIhvcNAQELBQADggEBACRzkJk/PEViM8mDzqHxQ9vbnrxl YEXS2Ms1MqfqMTeu75IXjOpgfVcHCMJdvYb9V1DiIJBb4QM5SNXBsaK2vEdrKb5N cS24dO3rcua23zj4aEZyOufpEj+vXWwVWlDfr6mViYNl1Epq3w+4b/ouuld9fAGB hsdtM/WhZU8AGouiLSvNNBROmOJCD+s+8cvMEqpEO39D4Tn+Y9p+qVUbIL4Ro7za q1HZUKfH7ADaVeM28cBTwXiOaulna/bace5zsyj8m3NM4aTi0ZwU6OBFmOwAaY78 6Q0+csOnURveG9q3H5rH7LESUy1T0ZVrnNWBOqkX+QyRi382F1ofsPdjmWo= -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:50 2025 by rpki-client