$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa File: b63fd343-5e29-48fc-84c9-2d11751d74e8.roa (raw, json) Hash identifier: b9Qh7SKj3WQDSA3JEWDl4veqBMGm+NIdQ3CtDOSKtr0= Subject key identifier: 7B:B1:F9:1B:FE:57:8E:2A:F5:B3:76:B3:0A:E2:CD:F4:BC:B2:42:39 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 19F9B2F6952B23C98ECB31C436025DAF448422A8 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa Signing time: Wed 23 Apr 2025 00:10:32 +0000 ROA not before: Wed 23 Apr 2025 00:10:32 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f9:b2:f6:95:2b:23:c9:8e:cb:31:c4:36:02:5d:af:44:84:22:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:10:32 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=dcbad88c31016e5903b0a560ab64b18ccbc1af8d2d77291e2b73baffe209de94, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a3:1a:1e:96:87:6c:fe:73:a7:3c:fc:1e:29: 7a:45:95:ff:49:1e:29:d5:9b:8b:d1:51:2f:2f:c8: a8:0a:f9:c6:af:fe:1c:c8:2f:7d:ea:7f:a8:1c:24: 81:ac:ee:e8:cc:87:ab:9f:26:06:b8:bd:28:5b:42: e0:0e:00:a6:c4:6c:2c:48:b0:93:f8:0a:ca:82:eb: bb:90:e3:da:bd:72:b3:2f:57:73:94:18:f2:4d:9a: a9:b7:9d:ed:6b:85:37:3c:77:e4:6e:a0:f2:e7:21: c9:37:61:80:f5:6f:08:45:1e:8b:95:e1:a0:9a:80: 4d:18:ca:b8:02:12:96:a7:38:fa:25:df:f6:c9:8e: bc:ce:06:cf:51:83:e1:5b:62:ab:6f:81:2d:3f:8b: 6e:33:94:c8:81:5d:ef:84:20:e3:39:24:e6:04:e8: c6:e7:fd:e0:e6:6a:da:32:be:9c:85:16:f7:55:a6: e8:83:fc:c3:99:e8:a6:d9:8d:ee:7f:46:4f:db:c3: fc:20:29:56:d2:bb:23:77:ad:ec:0d:ff:7d:8a:fc: ec:e2:0f:df:85:38:a5:3c:d3:80:1f:3c:85:bf:c7: 1e:0d:35:90:89:5e:ea:2a:81:ea:ff:95:80:da:d8: 98:3f:73:12:f9:d8:40:81:7a:35:eb:0f:c4:d3:13: 7c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:B1:F9:1B:FE:57:8E:2A:F5:B3:76:B3:0A:E2:CD:F4:BC:B2:42:39 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.238.0/23 Signature Algorithm: sha256WithRSAEncryption 67:ee:6a:09:f7:cd:b5:b5:94:ee:49:c2:13:f8:10:2f:da:9d: 6d:b9:e5:67:1b:fa:e6:d7:0e:67:c3:fb:12:98:a0:39:e4:81: 61:06:a9:4d:ad:c4:a0:14:cd:85:e3:8c:b7:1a:4e:b6:46:cf: 44:aa:42:af:ed:8e:47:85:27:12:8e:ef:9f:6a:14:80:5c:b6: 88:c2:ae:a7:2e:30:d9:22:3e:a7:af:b8:03:30:49:91:72:be: 9f:52:c1:fd:c5:0c:14:af:ba:c0:6f:45:4f:b5:a9:97:e0:2d: 83:14:05:35:f4:f3:22:d9:0d:d5:b6:64:d8:e7:71:db:f9:a9: 9b:48:b1:c3:64:00:a2:66:05:56:02:88:20:3b:13:0c:c0:f8: 8b:c8:7e:d9:d2:7a:f2:3b:11:c5:df:1b:a1:70:89:1b:07:79: 54:2e:8a:1a:d3:fa:e6:69:cd:a8:55:a3:13:87:66:14:ac:97: 7e:b3:0b:a3:7f:6c:26:21:7a:a7:69:35:96:9b:fc:fd:5d:d9: 51:02:8b:24:d3:c8:e0:44:af:ea:03:e0:cc:16:55:0c:98:e8: a3:e3:85:19:6d:f6:4f:a9:dc:dc:63:45:8f:55:27:6b:1c:92: c8:8f:35:d8:b5:4d:4c:f7:57:1d:4a:73:4f:1b:4e:5f:96:04: 47:7b:1f:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGfmy9pUrI8mOyzHENgJdr0SEIqgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDIzMDAxMDMyWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2JhZDg4YzMxMDE2ZTU5MDNiMGE1NjBhYjY0YjE4Y2Ni YzFhZjhkMmQ3NzI5MWUyYjczYmFmZmUyMDlkZTk0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2oxoelods/nOnPPweKXpFlf9JHinVm4vRUS8vyKgK+cav /hzIL33qf6gcJIGs7ujMh6ufJga4vShbQuAOAKbEbCxIsJP4CsqC67uQ49q9crMv V3OUGPJNmqm3ne1rhTc8d+RuoPLnIck3YYD1bwhFHouV4aCagE0YyrgCEpanOPol 3/bJjrzOBs9Rg+FbYqtvgS0/i24zlMiBXe+EIOM5JOYE6Mbn/eDmatoyvpyFFvdV puiD/MOZ6KbZje5/Rk/bw/wgKVbSuyN3rewN/32K/OziD9+FOKU804AfPIW/xx4N NZCJXuoqger/lYDa2Jg/cxL52ECBejXrD8TTE3zvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUe7H5G/5Xjir1s3azCuLN9LyyQjkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2M2ZkMzQzLTVlMjktNDhmYy04NGM5LTJkMTE3NTFkNzRlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFqe4wDQYJKoZIhvcNAQELBQADggEBAGfuagn3zbW1lO5JwhP4EC/anW25 5Wcb+ubXDmfD+xKYoDnkgWEGqU2txKAUzYXjjLcaTrZGz0SqQq/tjkeFJxKO759q FIBctojCrqcuMNkiPqevuAMwSZFyvp9Swf3FDBSvusBvRU+1qZfgLYMUBTX08yLZ DdW2ZNjncdv5qZtIscNkAKJmBVYCiCA7EwzA+IvIftnSevI7EcXfG6FwiRsHeVQu ihrT+uZpzahVoxOHZhSsl36zC6N/bCYheqdpNZab/P1d2VECiyTTyOBEr+oD4MwW VQyY6KPjhRlt9k+p3NxjRY9VJ2scksiPNdi1TUz3Vx1Kc08bTl+WBEd7H1o= -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:42 2025 by rpki-client