$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c09e0f25-1200-46ec-b6a7-aa4a9764d8c9.roa File: c09e0f25-1200-46ec-b6a7-aa4a9764d8c9.roa (raw, json) Hash identifier: m5mW89aiCi4XzAvpBf+XIBoHRKbcytmY/Lp21IChcCY= Subject key identifier: BB:25:AE:E7:50:0F:39:B1:A0:B0:DB:0B:55:DD:B4:22:61:F6:13:59 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7DDF76CDE38DBF06FAA2DE38B5FFEA2974A92881 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c09e0f25-1200-46ec-b6a7-aa4a9764d8c9.roa Signing time: Fri 11 Apr 2025 00:00:20 +0000 ROA not before: Fri 11 Apr 2025 00:00:20 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:df:76:cd:e3:8d:bf:06:fa:a2:de:38:b5:ff:ea:29:74:a9:28:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 11 00:00:20 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=69acaa9a1d56fbb22378c10eba9f0cd3d671dd869cafb5657b7651bbcf4cf808, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7a:70:b2:1e:7c:8b:e4:c6:d5:ab:bf:8d:63: 1d:b6:3b:e8:55:a3:89:6c:0e:94:82:49:bd:5f:d7: 8a:74:a0:b8:b6:10:81:2e:d4:e0:6a:fb:b2:17:2b: c2:32:f7:6a:28:9a:bc:8b:ab:be:4c:92:22:c2:53: b7:a2:8a:f0:b5:3c:b8:68:2a:d2:dd:61:e3:89:8f: 5d:5c:f5:80:b4:75:56:59:5c:fd:0c:5a:f2:39:d2: 09:69:b4:f3:85:37:67:8c:da:15:f0:9a:8c:a0:54: f1:f1:ce:72:a9:ab:d1:4f:2a:ba:ae:ba:ae:2c:1a: 8e:fb:f6:f6:ba:d2:96:a9:31:08:85:8d:78:33:fa: e8:b0:7c:f0:36:42:c3:78:fa:f4:18:0b:76:60:35: 0d:85:b6:90:ab:bd:7b:71:91:e6:9d:7f:83:48:90: 9d:07:e1:e0:59:ac:04:8f:83:63:e6:d5:f0:8f:f6: 2a:e8:3a:8f:e0:a6:33:1e:7e:3c:c9:53:35:bf:38: cd:c4:4f:2e:4e:ba:a3:43:7e:6a:25:29:fd:39:38: b7:ae:10:d4:26:7b:58:ee:af:0b:a8:21:cc:b1:3a: 95:fd:3e:ee:28:d9:75:c9:9e:f9:22:d6:29:a4:2e: 22:7f:82:10:19:3b:34:62:43:e8:66:bc:fa:0c:47: 80:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:25:AE:E7:50:0F:39:B1:A0:B0:DB:0B:55:DD:B4:22:61:F6:13:59 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c09e0f25-1200-46ec-b6a7-aa4a9764d8c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.215.0/24 Signature Algorithm: sha256WithRSAEncryption 69:6e:ce:9d:b5:91:c6:74:43:67:68:e1:f6:18:e0:74:19:81: eb:72:70:e1:64:46:9a:ba:9a:b6:da:4f:cc:cd:26:b6:0d:8d: 38:2c:95:99:26:75:c2:19:d4:63:e8:3a:b7:ee:9c:5d:45:27: f7:42:82:02:45:13:9e:14:91:7d:6c:7d:1c:c9:97:0f:8c:98: f5:b6:96:b7:c6:dd:f9:bc:4c:4b:99:cb:01:cd:07:b0:bf:8a: 28:f8:20:1b:f5:72:5c:eb:61:bc:5d:ca:7b:95:42:d2:a8:2e: 2a:6e:aa:2f:a2:6d:6c:ce:d4:fe:15:72:bf:2e:bd:1b:e4:3d: 65:9d:68:66:54:7a:d4:f2:25:4f:60:c3:66:36:97:3b:dc:05: 7c:90:cf:7a:e3:23:bc:65:0f:27:69:4b:ae:7b:3c:b6:ca:6e: 7c:ea:12:86:d9:8e:71:20:9f:7c:4d:66:ef:42:75:7c:9b:c5: cd:d4:65:91:64:96:79:ee:c5:dd:c9:28:7b:c4:7a:7f:83:c4: 68:7f:e3:f3:c1:a7:6f:54:06:14:10:1b:36:0e:fb:5a:c4:8a: cf:51:b7:b7:48:20:78:e9:63:5e:67:ad:25:a6:0e:bc:a3:15: ad:86:3e:b5:aa:25:65:74:1f:42:36:8c:86:41:96:0f:bc:6e: 20:40:4f:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfd92zeONvwb6ot44tf/qKXSpKIEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDExMDAwMDIwWhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OWFjYWE5YTFkNTZmYmIyMjM3OGMxMGViYTlmMGNkM2Q2 NzFkZDg2OWNhZmI1NjU3Yjc2NTFiYmNmNGNmODA4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqenCyHnyL5MbVq7+NYx22O+hVo4lsDpSCSb1f14p0oLi2 EIEu1OBq+7IXK8Iy92oomryLq75MkiLCU7eiivC1PLhoKtLdYeOJj11c9YC0dVZZ XP0MWvI50glptPOFN2eM2hXwmoygVPHxznKpq9FPKrquuq4sGo779va60papMQiF jXgz+uiwfPA2QsN4+vQYC3ZgNQ2FtpCrvXtxkeadf4NIkJ0H4eBZrASPg2Pm1fCP 9iroOo/gpjMefjzJUzW/OM3ETy5OuqNDfmolKf05OLeuENQme1jurwuoIcyxOpX9 Pu4o2XXJnvki1imkLiJ/ghAZOzRiQ+hmvPoMR4ArAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuyWu51APObGgsNsLVd20ImH2E1kwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2MwOWUwZjI1LTEyMDAtNDZlYy1iNmE3LWFhNGE5NzY0ZDhjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dcwDQYJKoZIhvcNAQELBQADggEBAGluzp21kcZ0Q2do4fYY4HQZgety cOFkRpq6mrbaT8zNJrYNjTgslZkmdcIZ1GPoOrfunF1FJ/dCggJFE54UkX1sfRzJ lw+MmPW2lrfG3fm8TEuZywHNB7C/iij4IBv1clzrYbxdynuVQtKoLipuqi+ibWzO 1P4Vcr8uvRvkPWWdaGZUetTyJU9gw2Y2lzvcBXyQz3rjI7xlDydpS657PLbKbnzq EobZjnEgn3xNZu9CdXybxc3UZZFklnnuxd3JKHvEen+DxGh/4/PBp29UBhQQGzYO +1rEis9Rt7dIIHjpY15nrSWmDryjFa2GPrWqJWV0H0I2jIZBlg+8biBAT0k= -----END CERTIFICATE-----Generated at Sat Apr 26 14:57:40 2025 by rpki-client