$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa File: cc9456b4-9220-4344-96a0-04b9d83c30f6.roa (raw, json) Hash identifier: oK9ifGGpSa1giCCdpA72AS+EhjRapslbLz+s5LGB+Bk= Subject key identifier: C0:6B:3A:BD:B8:61:52:DB:D8:99:3C:42:D5:50:A1:20:92:96:C5:22 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 72F871577F4CDC192E707D36AC011C177DA0246E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa Signing time: Wed 23 Apr 2025 00:10:23 +0000 ROA not before: Wed 23 Apr 2025 00:10:23 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f8:71:57:7f:4c:dc:19:2e:70:7d:36:ac:01:1c:17:7d:a0:24:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:10:23 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=f022a2b6f5aa1d9e402df21ab29306c9dc427345a7493788ec9f8f95d21c9d01, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:17:4c:85:35:34:ba:29:1c:90:23:53:52:90: be:59:30:ed:34:e7:2d:33:0d:7b:fc:f3:be:2c:b2: a1:e4:09:56:2f:62:fd:ca:99:13:1c:2b:23:39:70: 55:94:c5:fe:11:1e:b4:33:c8:88:83:f1:40:73:8d: 56:c9:f3:d7:c6:6a:2d:c4:ff:77:af:ec:44:8a:3e: 5d:55:85:bb:62:9e:bb:a2:93:63:fd:0f:14:8b:bb: 01:3e:79:05:d2:f3:31:39:3f:3d:3f:7e:26:43:5d: ee:fe:56:5c:69:b1:23:48:f1:18:a1:c6:34:ba:cf: 43:f0:ab:a5:77:9a:10:35:18:3a:c5:49:ff:97:67: 58:98:f0:10:7c:86:fe:82:23:22:4b:ad:1e:5b:26: 04:ba:b1:4f:79:96:04:04:96:f5:9e:e3:1b:3c:2c: 2f:7f:58:30:bd:44:27:a9:b5:da:73:62:03:83:07: 11:14:b0:83:f8:ca:1a:40:3e:fa:f3:0b:77:04:3e: f2:7c:ca:80:8e:e6:60:61:c2:db:f3:70:33:3c:b0: 4b:e9:55:bb:73:c5:61:59:93:da:4a:58:db:3b:28: fe:e0:03:36:2e:18:ae:01:53:1c:40:1f:c0:0c:97: 77:46:cd:97:ac:95:0e:fe:75:98:ff:a4:7f:fc:c9: ec:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:6B:3A:BD:B8:61:52:DB:D8:99:3C:42:D5:50:A1:20:92:96:C5:22 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.248.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:cc:6c:0e:76:b7:d1:70:b7:bc:ea:0b:ea:6b:b8:c4:c0:df: 82:45:d8:80:af:b7:77:07:da:53:0b:6a:e5:b7:59:dd:24:c8: 14:aa:7a:dd:31:8c:b2:4b:38:e7:8d:a3:ac:b1:db:38:e9:2b: 3d:aa:34:8b:83:8c:78:dd:c1:d5:db:eb:f0:d2:2d:0b:9a:dd: a7:fe:e8:6e:d4:f5:e7:22:51:b3:43:72:e6:9d:f0:b7:32:47: 32:d3:8c:a5:92:34:b2:1f:b6:51:60:f8:e5:7d:26:0e:f7:e8: 4c:22:f8:8e:42:23:64:74:90:a5:47:aa:9f:08:23:75:47:f2: b4:23:da:c4:b7:c1:a9:b8:25:72:2c:74:50:6e:91:cf:ae:55: c4:b0:04:20:54:d8:98:a0:5a:16:28:e2:d2:e1:df:29:62:ef: d0:b3:13:80:6a:f7:9f:35:36:d2:12:49:94:87:ca:cc:bd:95: 5e:28:b8:ee:64:8d:32:3b:16:7d:bd:53:5f:89:49:d9:5d:3d: 39:5a:e0:91:23:d7:8d:5a:b2:5e:36:53:70:b5:37:3c:b0:05: 09:d2:00:cb:d6:b0:f4:f7:96:98:9e:4f:74:63:a8:33:dd:b9: 4e:f7:01:74:df:9b:46:9d:88:43:7f:6e:65:34:17:6b:de:71: 18:d5:8f:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcvhxV39M3BkucH02rAEcF32gJG4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDIzMDAxMDIzWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDIyYTJiNmY1YWExZDllNDAyZGYyMWFiMjkzMDZjOWRj NDI3MzQ1YTc0OTM3ODhlYzlmOGY5NWQyMWM5ZDAxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzF0yFNTS6KRyQI1NSkL5ZMO005y0zDXv8874ssqHkCVYv Yv3KmRMcKyM5cFWUxf4RHrQzyIiD8UBzjVbJ89fGai3E/3ev7ESKPl1Vhbtinrui k2P9DxSLuwE+eQXS8zE5Pz0/fiZDXe7+VlxpsSNI8RihxjS6z0Pwq6V3mhA1GDrF Sf+XZ1iY8BB8hv6CIyJLrR5bJgS6sU95lgQElvWe4xs8LC9/WDC9RCeptdpzYgOD BxEUsIP4yhpAPvrzC3cEPvJ8yoCO5mBhwtvzcDM8sEvpVbtzxWFZk9pKWNs7KP7g AzYuGK4BUxxAH8AMl3dGzZeslQ7+dZj/pH/8yewRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwGs6vbhhUtvYmTxC1VChIJKWxSIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NjOTQ1NmI0LTkyMjAtNDM0NC05NmEwLTA0YjlkODNjMzBmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+/gwDQYJKoZIhvcNAQELBQADggEBAAzMbA52t9Fwt7zqC+pruMTA34JF 2ICvt3cH2lMLauW3Wd0kyBSqet0xjLJLOOeNo6yx2zjpKz2qNIuDjHjdwdXb6/DS LQua3af+6G7U9eciUbNDcuad8LcyRzLTjKWSNLIftlFg+OV9Jg736Ewi+I5CI2R0 kKVHqp8II3VH8rQj2sS3wam4JXIsdFBukc+uVcSwBCBU2JigWhYo4tLh3yli79Cz E4Bq9581NtISSZSHysy9lV4ouO5kjTI7Fn29U1+JSdldPTla4JEj141asl42U3C1 NzywBQnSAMvWsPT3lpieT3RjqDPduU73AXTfm0adiEN/bmU0F2vecRjVj5Y= -----END CERTIFICATE-----Generated at Sat Apr 26 14:51:11 2025 by rpki-client