$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/be6d27bc-a56d-4dce-b2c2-5a756eca4157.roa File: be6d27bc-a56d-4dce-b2c2-5a756eca4157.roa (raw, json) Hash identifier: ca8T8URi/PoXTvFmJhzIWNFarKzZotq0ZhTHBZTWyv8= Subject key identifier: A3:F8:98:BC:43:68:E4:31:58:DB:C0:71:B1:00:F3:AE:94:1F:E3:45 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 52884F7E4F1BA5B13B5711F2284AE54E7DB0E8DB Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/be6d27bc-a56d-4dce-b2c2-5a756eca4157.roa Signing time: Wed 23 Apr 2025 00:10:19 +0000 ROA not before: Wed 23 Apr 2025 00:10:19 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:88:4f:7e:4f:1b:a5:b1:3b:57:11:f2:28:4a:e5:4e:7d:b0:e8:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:10:19 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=042854e91a5fbaa7381a64d06c18edc615e25288cc4095b29c416e6b6df69319, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:93:47:4c:99:b4:dd:cc:90:b9:07:f3:68:97: b0:51:b9:4d:3d:20:22:c4:27:2f:4d:58:a6:ab:86: 51:80:c4:1c:60:03:38:4a:91:85:21:1e:ab:59:86: 0b:b5:3e:5b:b3:31:f8:a9:d2:d9:32:1b:33:87:93: df:ed:06:4a:aa:be:25:67:f8:f8:31:ba:2b:6e:29: bd:81:d2:23:23:20:e3:33:7d:b1:ec:d3:e5:e9:fd: 55:6f:d6:e8:13:f0:8d:01:80:99:ef:f2:5e:92:f8: cf:71:3f:9f:b9:1d:f5:fe:37:91:31:f3:32:6b:15: 8d:bb:64:b1:93:b4:97:08:c8:ee:ac:0a:62:fb:d0: ae:79:1c:5d:18:14:61:e7:03:f8:8b:c0:0d:c9:0c: cb:17:dc:ae:41:b6:51:5e:b9:98:62:1d:06:14:5c: 89:a4:cd:94:ae:a6:55:61:7d:e4:d5:6e:f7:c9:23: b0:0f:42:5e:55:f9:9b:ea:a6:9d:da:03:2b:69:3c: ee:64:60:ba:35:a1:b7:3b:7f:c0:4a:1e:42:8f:1c: 8e:09:4c:85:16:3d:a1:b0:5e:62:64:1d:a2:13:70: 69:61:db:70:fe:de:7c:82:66:a3:ac:07:29:bb:08: 55:92:e5:fb:49:40:2d:06:78:19:63:6b:08:12:43: 92:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F8:98:BC:43:68:E4:31:58:DB:C0:71:B1:00:F3:AE:94:1F:E3:45 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/be6d27bc-a56d-4dce-b2c2-5a756eca4157.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.210.0/23 Signature Algorithm: sha256WithRSAEncryption 96:a1:c5:2e:67:f5:f6:2a:c9:81:15:02:2f:82:f8:11:35:6d: f0:0c:96:8b:da:ca:a1:f3:27:45:d9:92:3b:0f:c2:2d:8a:42: aa:e2:ab:13:4e:9c:b8:74:83:23:cf:03:5a:6e:ca:3e:2e:64: 45:d6:89:a6:39:86:00:44:11:54:03:3f:5d:80:28:8c:65:3f: 62:2e:96:8e:6b:e9:80:04:af:d1:19:f3:5c:cf:02:f8:5a:bf: 80:0f:5e:60:e7:88:b5:6c:22:52:30:91:a8:1c:b1:74:ad:c5: ea:0b:e2:87:d2:29:73:d7:76:f2:ec:24:7a:b4:e1:4f:50:59: 4e:d0:f1:a4:8d:e2:45:c0:4f:b3:b4:b5:f6:e7:5c:d6:25:60: d2:92:8f:2b:c2:a9:7e:80:a3:cd:67:9e:3d:ab:7a:76:c2:79: 37:f2:0d:d2:9b:02:44:47:f0:e9:74:03:5a:0e:58:86:f9:54: 99:55:f8:1b:3e:a3:a1:a0:b5:53:67:89:6b:ea:05:22:44:da: 75:a7:6a:87:a7:36:0c:89:9d:c4:9f:dd:2e:89:09:75:72:69: ae:ca:66:56:a1:f4:85:51:a8:31:bf:a9:8b:67:67:20:70:fb: 2b:57:8f:5d:4e:1a:61:a1:8d:44:39:e3:e8:ff:4d:b3:00:94: 79:cd:0d:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUohPfk8bpbE7VxHyKErlTn2w6NswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDIzMDAxMDE5WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDI4NTRlOTFhNWZiYWE3MzgxYTY0ZDA2YzE4ZWRjNjE1 ZTI1Mjg4Y2M0MDk1YjI5YzQxNmU2YjZkZjY5MzE5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbk0dMmbTdzJC5B/Nol7BRuU09ICLEJy9NWKarhlGAxBxg AzhKkYUhHqtZhgu1PluzMfip0tkyGzOHk9/tBkqqviVn+PgxuituKb2B0iMjIOMz fbHs0+Xp/VVv1ugT8I0BgJnv8l6S+M9xP5+5HfX+N5Ex8zJrFY27ZLGTtJcIyO6s CmL70K55HF0YFGHnA/iLwA3JDMsX3K5BtlFeuZhiHQYUXImkzZSuplVhfeTVbvfJ I7APQl5V+Zvqpp3aAytpPO5kYLo1obc7f8BKHkKPHI4JTIUWPaGwXmJkHaITcGlh 23D+3nyCZqOsBym7CFWS5ftJQC0GeBljawgSQ5KVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUo/iYvENo5DFY28BxsQDzrpQf40UwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2JlNmQyN2JjLWE1NmQtNGRjZS1iMmMyLTVhNzU2ZWNhNDE1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+dIwDQYJKoZIhvcNAQELBQADggEBAJahxS5n9fYqyYEVAi+C+BE1bfAM lovayqHzJ0XZkjsPwi2KQqriqxNOnLh0gyPPA1puyj4uZEXWiaY5hgBEEVQDP12A KIxlP2Iulo5r6YAEr9EZ81zPAvhav4APXmDniLVsIlIwkagcsXStxeoL4ofSKXPX dvLsJHq04U9QWU7Q8aSN4kXAT7O0tfbnXNYlYNKSjyvCqX6Ao81nnj2renbCeTfy DdKbAkRH8Ol0A1oOWIb5VJlV+Bs+o6GgtVNniWvqBSJE2nWnaoenNgyJncSf3S6J CXVyaa7KZlah9IVRqDG/qYtnZyBw+ytXj11OGmGhjUQ54+j/TbMAlHnNDZI= -----END CERTIFICATE-----Generated at Sat Apr 26 16:38:23 2025 by rpki-client