$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa File: c9752aac-8490-485f-92b7-6a6ba02b76d5.roa (raw, json) Hash identifier: ruwTAvYZ9TkxBLOZyD3K/6aLFjzdgtAFtCa+l7nHQd4= Subject key identifier: 25:1F:60:18:DB:AD:F4:C3:66:57:C1:59:F7:7F:C1:55:D3:DA:59:D1 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 12F8ED3EBD6139A08AA498BA0F1A9A3DD36C1490 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa Signing time: Fri 25 Apr 2025 00:10:04 +0000 ROA not before: Fri 25 Apr 2025 00:10:04 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 199.127.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:f8:ed:3e:bd:61:39:a0:8a:a4:98:ba:0f:1a:9a:3d:d3:6c:14:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 25 00:10:04 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=906626c7036694e35f21653f284cb8778815b99ca1fbce85c35ca449fc036ade, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e9:7f:47:a4:7d:e6:81:4e:32:5d:9d:96:23: b4:d1:b3:20:42:12:11:67:f7:ab:ce:1f:87:86:bd: d0:e3:f2:0d:37:80:73:5d:a5:97:33:96:7e:43:b4: 7f:21:e6:e0:ef:48:49:bd:28:b0:70:59:a7:1b:10: 02:52:74:14:19:a5:0e:17:a6:bc:2e:3b:cc:91:a3: 5a:3d:59:b9:2c:ea:ac:0d:6e:59:5a:0b:19:5a:e0: ac:f2:70:a3:e0:2a:4e:83:30:29:40:42:61:44:4d: 9c:57:12:42:1c:33:a8:fb:3f:98:08:e1:c7:e1:a2: 0b:36:49:8e:4c:72:98:f4:24:b5:d4:41:f9:fe:f2: b2:57:84:ed:69:f7:13:4e:94:4e:91:fa:f0:76:21: f8:ca:ae:c2:28:76:e4:3c:c1:2d:ee:e3:30:9c:05: 09:86:a1:6a:b7:dc:08:ff:1a:f9:fd:c4:0a:dc:4e: df:26:4a:bb:fc:d4:73:28:bd:9e:ed:94:9c:6d:48: 12:18:ea:32:da:08:b7:0f:3d:e7:22:92:d3:1b:90: 9a:98:17:d4:1f:4f:c2:94:0c:4f:fd:ef:1e:54:21: 0e:56:1e:12:75:f4:94:d1:41:8c:2b:26:7f:05:cf: 21:38:1e:3e:25:16:bb:5d:9c:25:3e:21:e2:44:04: 25:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1F:60:18:DB:AD:F4:C3:66:57:C1:59:F7:7F:C1:55:D3:DA:59:D1 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.127.232.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:2e:9b:c5:c5:d0:4b:13:af:01:07:3d:53:74:3f:c2:2a:a2: 39:60:43:04:51:74:af:b2:2d:24:3d:80:11:d3:99:b7:19:66: e1:3e:37:8b:23:d8:ea:20:57:a1:bf:c5:36:56:78:16:dc:9a: e2:d1:84:84:e3:2c:de:70:53:93:c7:9b:6a:50:41:87:b8:9a: 4e:38:d6:37:92:81:82:38:aa:d4:53:d8:a7:b4:34:16:80:01: 55:b2:26:c4:3f:8f:6d:8a:5a:5c:78:7d:68:74:4b:55:bf:14: 80:8e:c2:4b:bf:38:d3:a2:86:9e:14:76:e9:67:3f:ba:3e:0e: c6:1e:a6:d0:aa:8c:a8:eb:cf:35:a4:d5:12:f5:98:e8:7d:5f: aa:10:eb:b9:ab:01:51:aa:92:04:e5:0b:81:da:c1:88:cf:33: 1c:7a:3d:9a:2c:82:74:55:84:dd:29:fe:32:1f:89:96:8b:9c: af:50:8c:fa:28:37:75:9e:78:21:29:ee:a1:05:a6:80:1e:e6: 93:68:4f:99:e0:50:44:80:80:d0:ef:61:07:c3:df:b6:f3:1c: e1:07:bf:7f:81:a2:08:1f:18:17:66:f9:68:c9:cd:ad:18:91: 60:c7:da:c7:6d:55:ce:7b:68:b5:6e:6b:ac:0f:1f:02:39:4b: 00:dc:9d:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEvjtPr1hOaCKpJi6DxqaPdNsFJAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDI1MDAxMDA0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDY2MjZjNzAzNjY5NGUzNWYyMTY1M2YyODRjYjg3Nzg4 MTViOTljYTFmYmNlODVjMzVjYTQ0OWZjMDM2YWRlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv6X9HpH3mgU4yXZ2WI7TRsyBCEhFn96vOH4eGvdDj8g03 gHNdpZczln5DtH8h5uDvSEm9KLBwWacbEAJSdBQZpQ4XprwuO8yRo1o9Wbks6qwN bllaCxla4KzycKPgKk6DMClAQmFETZxXEkIcM6j7P5gI4cfhogs2SY5Mcpj0JLXU Qfn+8rJXhO1p9xNOlE6R+vB2IfjKrsIoduQ8wS3u4zCcBQmGoWq33Aj/Gvn9xArc Tt8mSrv81HMovZ7tlJxtSBIY6jLaCLcPPeciktMbkJqYF9QfT8KUDE/97x5UIQ5W HhJ19JTRQYwrJn8FzyE4Hj4lFrtdnCU+IeJEBCV5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJR9gGNut9MNmV8FZ93/BVdPaWdEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2M5NzUyYWFjLTg0OTAtNDg1Zi05MmI3LTZhNmJhMDJiNzZkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALHf+gwDQYJKoZIhvcNAQELBQADggEBACwum8XF0EsTrwEHPVN0P8Iqojlg QwRRdK+yLSQ9gBHTmbcZZuE+N4sj2OogV6G/xTZWeBbcmuLRhITjLN5wU5PHm2pQ QYe4mk441jeSgYI4qtRT2Ke0NBaAAVWyJsQ/j22KWlx4fWh0S1W/FICOwku/ONOi hp4UdulnP7o+DsYeptCqjKjrzzWk1RL1mOh9X6oQ67mrAVGqkgTlC4HawYjPMxx6 PZosgnRVhN0p/jIfiZaLnK9QjPooN3WeeCEp7qEFpoAe5pNoT5ngUESAgNDvYQfD 37bzHOEHv3+BoggfGBdm+WjJza0YkWDH2sdtVc57aLVua6wPHwI5SwDcnTQ= -----END CERTIFICATE-----Generated at Sat Apr 26 13:21:07 2025 by rpki-client