$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa File: f174f360-a3ca-4335-8414-4727cef110a8.roa (raw, json) Hash identifier: O3dIlXifsx9E8tvU4GFHHbwbvVFDzOa1cDXzOxwUEMY= Subject key identifier: 50:23:94:DA:0F:CE:38:37:38:09:16:2A:A1:21:29:71:E0:F0:2F:B2 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6DD1C79721E7CA7D27ADFDFDBF1B5ED182251DE5 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa Signing time: Fri 11 Apr 2025 00:00:15 +0000 ROA not before: Fri 11 Apr 2025 00:00:15 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:d1:c7:97:21:e7:ca:7d:27:ad:fd:fd:bf:1b:5e:d1:82:25:1d:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 11 00:00:15 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=50c67de72c2bc79a21662324d8c6ba07033319dbdd7d2c10d07111d30a7e530e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:92:8c:be:f3:b8:10:8e:50:e2:78:5b:ed:fc: 36:82:b3:79:bc:c1:20:91:9c:93:eb:9d:87:ca:50: 5c:1f:51:c3:fd:d1:d7:d5:2f:42:c0:4f:08:e9:13: c1:3e:75:6b:dc:e2:04:be:00:aa:ce:e4:3d:a4:60: dc:e6:36:ad:7c:f9:36:0e:ca:d1:2e:e2:32:8f:a6: 29:49:ac:74:e3:51:86:e0:7e:dd:d6:95:d1:87:33: 35:ae:93:0d:e5:8b:68:dd:c0:97:29:3d:3e:aa:99: f3:61:9a:93:5d:b0:6a:3e:24:23:1d:ed:3c:a4:84: 76:52:a2:f9:49:32:d4:50:5a:98:1c:df:d3:71:53: c6:d1:a3:ed:ae:de:6e:2e:63:4d:9d:29:ad:51:97: 29:77:20:30:b4:4e:32:ad:ae:04:ed:4a:8f:01:5e: 9b:5f:66:af:85:67:9c:96:92:6c:df:0b:4b:5a:a8: 73:c6:f0:4c:35:fc:49:7a:33:cd:f6:8c:07:24:8d: f3:2d:dd:2b:92:78:19:28:0b:36:16:6a:d3:be:67: a4:3e:83:a0:53:b3:88:1e:12:b8:2c:75:a5:57:c7: 61:82:b3:fc:52:0c:10:7c:7a:6d:f4:24:35:d6:7f: 2b:f2:c3:90:d2:85:ba:ce:fd:77:a1:5a:0c:86:0d: a6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:23:94:DA:0F:CE:38:37:38:09:16:2A:A1:21:29:71:E0:F0:2F:B2 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 17:9d:04:5b:66:50:5a:13:24:62:b5:2e:58:dd:d3:46:e7:24: 66:9c:36:e8:3c:77:19:27:15:74:0f:97:26:bf:8a:08:5f:c2: 11:bd:9d:a5:a3:5c:b3:46:92:cb:71:82:ed:aa:f1:33:86:91: 87:d2:31:08:c8:b8:0c:70:6e:f9:12:f2:af:d6:dc:ad:e3:6b: 20:47:ae:61:b9:08:a5:4d:ab:3e:65:bc:72:35:c5:d3:a0:5a: 8e:84:87:cf:81:00:ea:63:13:6d:8f:88:a7:6a:de:46:03:61: 32:35:9b:e0:5c:78:9a:61:94:87:9a:1f:9f:f6:a7:fb:43:d1: d7:30:de:63:b5:af:d5:6c:f3:1c:f8:0d:0c:32:b0:22:1f:a5: b5:89:d5:d8:67:f1:49:81:d4:62:2f:52:26:1f:ca:d3:f4:fc: 94:a3:80:bd:05:7a:39:5c:7f:7e:ef:44:40:05:a8:98:71:eb: ca:6e:28:2e:41:ff:dd:f6:3e:cc:49:65:c1:76:8d:e0:ca:8d: 2f:21:58:ca:9e:32:3b:93:3a:74:79:b8:38:89:ea:5f:8b:50: 51:18:07:08:50:4e:e7:e1:f3:c3:cf:50:a7:a6:47:04:24:2e: cc:0f:64:74:b9:80:21:3a:50:66:60:a7:ec:5c:3d:44:b5:a6: ec:b1:48:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbdHHlyHnyn0nrf39vxte0YIlHeUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDExMDAwMDE1WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MGM2N2RlNzJjMmJjNzlhMjE2NjIzMjRkOGM2YmEwNzAz MzMxOWRiZGQ3ZDJjMTBkMDcxMTFkMzBhN2U1MzBlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIkoy+87gQjlDieFvt/DaCs3m8wSCRnJPrnYfKUFwfUcP9 0dfVL0LATwjpE8E+dWvc4gS+AKrO5D2kYNzmNq18+TYOytEu4jKPpilJrHTjUYbg ft3WldGHMzWukw3li2jdwJcpPT6qmfNhmpNdsGo+JCMd7TykhHZSovlJMtRQWpgc 39NxU8bRo+2u3m4uY02dKa1Rlyl3IDC0TjKtrgTtSo8BXptfZq+FZ5yWkmzfC0ta qHPG8Ew1/El6M832jAckjfMt3SuSeBkoCzYWatO+Z6Q+g6BTs4geErgsdaVXx2GC s/xSDBB8em30JDXWfyvyw5DShbrO/XehWgyGDabnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUCOU2g/OODc4CRYqoSEpceDwL7IwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2YxNzRmMzYwLWEzY2EtNDMzNS04NDE0LTQ3MjdjZWYxMTBhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBABedBFtmUFoTJGK1Lljd00bnJGac Nug8dxknFXQPlya/ighfwhG9naWjXLNGkstxgu2q8TOGkYfSMQjIuAxwbvkS8q/W 3K3jayBHrmG5CKVNqz5lvHI1xdOgWo6Eh8+BAOpjE22PiKdq3kYDYTI1m+BceJph lIeaH5/2p/tD0dcw3mO1r9Vs8xz4DQwysCIfpbWJ1dhn8UmB1GIvUiYfytP0/JSj gL0Fejlcf37vREAFqJhx68puKC5B/932PsxJZcF2jeDKjS8hWMqeMjuTOnR5uDiJ 6l+LUFEYBwhQTufh88PPUKemRwQkLswPZHS5gCE6UGZgp+xcPUS1puyxSHs= -----END CERTIFICATE-----Generated at Sat Apr 26 16:41:04 2025 by rpki-client