$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/efff1c41-4813-4726-a794-2bd64d641531.roa File: efff1c41-4813-4726-a794-2bd64d641531.roa (raw, json) Hash identifier: 4fBJflrBcbZgYI3mLjqC9Y9eliWI9O30JzfGIoCs834= Subject key identifier: 55:F0:E9:FC:DF:F2:06:81:EC:76:93:EA:85:83:D8:7C:D8:DC:0A:C2 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 665BE5D6C4F6A4C40424BE131463C4B4342B3ED4 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/efff1c41-4813-4726-a794-2bd64d641531.roa Signing time: Fri 11 Apr 2025 00:00:52 +0000 ROA not before: Fri 11 Apr 2025 00:00:52 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:5b:e5:d6:c4:f6:a4:c4:04:24:be:13:14:63:c4:b4:34:2b:3e:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 11 00:00:52 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=23f6ddd85018ba3f420123361e3563fd1f6586311b05cbf4ff4a9b07af9e8948, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1b:c5:ef:17:b0:12:b0:8e:15:40:a4:b7:5c: cb:a9:99:23:ec:db:db:82:a4:de:dd:10:aa:4f:88: 44:9a:a8:66:11:2d:7e:3e:9c:c2:02:28:1b:93:54: b3:35:96:b1:63:9a:38:ea:a6:7d:bb:a7:ea:80:9f: 55:a5:82:c0:af:64:31:06:33:d7:32:ee:01:52:c7: f4:93:c3:78:16:1a:19:a4:70:39:98:15:eb:37:3e: 17:6c:97:6b:ce:ea:e9:f8:36:d3:b6:d8:74:29:7f: 04:3d:d7:1a:22:c4:8a:1a:51:41:e2:9a:92:73:5f: f1:cf:6b:5c:88:43:01:d7:2f:64:50:33:4b:ed:40: 46:03:44:4b:92:d5:ef:25:3b:b7:32:21:03:cc:36: 22:d2:35:95:11:61:ed:58:92:dc:01:6d:07:70:f0: 4c:36:91:d9:5d:40:cd:89:3b:5d:ca:00:32:42:65: 39:c8:47:14:c4:a5:8f:03:fb:a2:b8:db:04:31:91: b3:e4:df:04:d2:8b:14:2e:0f:98:1a:93:84:1a:3a: 40:46:53:33:54:48:1b:f9:0f:f2:d9:b9:3d:e1:a6: 4a:c7:b0:6e:8c:35:92:45:02:d2:b7:eb:b5:92:25: 78:60:0f:8d:68:bd:dd:e1:6b:a3:f9:45:ff:41:38: e4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F0:E9:FC:DF:F2:06:81:EC:76:93:EA:85:83:D8:7C:D8:DC:0A:C2 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/efff1c41-4813-4726-a794-2bd64d641531.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.235.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:72:a7:4c:cf:b9:57:52:5e:64:7f:d4:ac:e3:93:23:ac:29: 36:1e:c4:d4:c8:43:10:ee:dd:fd:fd:cf:a1:0e:fe:80:17:2d: 8c:1d:59:c4:46:b5:a1:a5:56:58:bb:2c:06:18:7e:26:91:a9: 6a:39:82:fb:e8:32:ba:fe:d4:1c:02:d1:21:25:72:76:62:16: ec:cf:44:1e:80:94:fd:ed:cc:da:e6:62:6e:22:c6:24:34:da: dd:ff:c0:b1:61:22:32:29:8f:9d:eb:d2:43:0d:c3:bc:7d:5b: 41:45:37:ab:d9:e9:01:f4:56:ab:d1:3b:55:13:83:c1:a2:8a: a3:b2:18:df:11:93:a8:e0:36:2c:ec:55:e7:5f:38:f1:3b:7d: ef:56:64:0c:bf:a3:cc:f9:77:f0:b6:cc:28:d7:9a:ca:94:96: 61:ad:30:52:d1:8f:01:4f:0e:fc:0f:4c:6c:92:e6:92:d5:ca: 01:81:9f:0f:b0:03:2b:6a:c0:bf:dc:02:fe:ab:3b:da:5d:bc: 7a:db:64:d8:7f:58:2d:cc:95:06:ed:0f:00:31:a6:2d:e3:94: 51:f3:a5:3c:29:7f:00:9b:63:03:ac:6f:50:93:a4:66:91:97: 33:0c:22:b4:db:f6:37:f4:9d:af:4a:20:bd:ec:ae:d5:d2:6a: 22:43:05:6a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZlvl1sT2pMQEJL4TFGPEtDQrPtQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDExMDAwMDUyWhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2Y2ZGRkODUwMThiYTNmNDIwMTIzMzYxZTM1NjNmZDFm NjU4NjMxMWIwNWNiZjRmZjRhOWIwN2FmOWU4OTQ4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1G8XvF7ASsI4VQKS3XMupmSPs29uCpN7dEKpPiESaqGYR LX4+nMICKBuTVLM1lrFjmjjqpn27p+qAn1WlgsCvZDEGM9cy7gFSx/STw3gWGhmk cDmYFes3Phdsl2vO6un4NtO22HQpfwQ91xoixIoaUUHimpJzX/HPa1yIQwHXL2RQ M0vtQEYDREuS1e8lO7cyIQPMNiLSNZURYe1YktwBbQdw8Ew2kdldQM2JO13KADJC ZTnIRxTEpY8D+6K42wQxkbPk3wTSixQuD5gak4QaOkBGUzNUSBv5D/LZuT3hpkrH sG6MNZJFAtK367WSJXhgD41ovd3ha6P5Rf9BOOTlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVfDp/N/yBoHsdpPqhYPYfNjcCsIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2VmZmYxYzQxLTQ4MTMtNDcyNi1hNzk0LTJiZDY0ZDY0MTUzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++swDQYJKoZIhvcNAQELBQADggEBAFtyp0zPuVdSXmR/1KzjkyOsKTYe xNTIQxDu3f39z6EO/oAXLYwdWcRGtaGlVli7LAYYfiaRqWo5gvvoMrr+1BwC0SEl cnZiFuzPRB6AlP3tzNrmYm4ixiQ02t3/wLFhIjIpj53r0kMNw7x9W0FFN6vZ6QH0 VqvRO1UTg8GiiqOyGN8Rk6jgNizsVedfOPE7fe9WZAy/o8z5d/C2zCjXmsqUlmGt MFLRjwFPDvwPTGyS5pLVygGBnw+wAytqwL/cAv6rO9pdvHrbZNh/WC3MlQbtDwAx pi3jlFHzpTwpfwCbYwOsb1CTpGaRlzMMIrTb9jf0na9KIL3srtXSaiJDBWo= -----END CERTIFICATE-----Generated at Sat Apr 26 19:19:30 2025 by rpki-client