$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa File: f67538ee-cd29-4883-9251-086023a50dc3.roa (raw, json) Hash identifier: 1GCloCtESw6yiCiJNkFZmMiW9X6HPU/WFwVVW+hwLQA= Subject key identifier: 2B:80:F9:1F:8C:B6:44:BC:FE:F3:E7:0C:FF:F3:F5:12:44:78:F2:6A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 37E554F66A4F90DD035FD2FD58EFD29E9464A35A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa Signing time: Fri 11 Apr 2025 00:00:45 +0000 ROA not before: Fri 11 Apr 2025 00:00:45 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e5:54:f6:6a:4f:90:dd:03:5f:d2:fd:58:ef:d2:9e:94:64:a3:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 11 00:00:45 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=1de5b2a3e16b07fc1afc7241a0837da6a57e8f27aa922b6f5197e6fb4f43f44c, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:20:68:33:26:e9:39:e6:aa:43:d6:1c:e3:0b: b3:98:76:f0:f8:3d:48:f8:e6:16:8d:0f:a6:4d:3c: 75:e9:d7:c2:7a:da:b9:77:0c:88:84:1f:89:20:b4: 9f:f6:f0:90:9b:c3:88:40:86:6a:cc:b5:9e:1b:c3: f4:31:e4:ad:4a:74:e3:d5:b0:d8:42:ff:34:e0:4f: 52:c1:ea:25:da:8f:40:9d:65:24:b2:68:c1:a9:78: 6f:c8:65:d2:d2:cd:6b:9a:37:7e:7c:27:f0:d0:05: 6f:d9:b2:e1:82:e9:0a:e9:d3:df:90:a6:8e:53:55: ed:ec:2c:37:46:b5:59:f1:91:03:90:29:eb:4d:4d: ca:06:fb:f0:98:9b:44:a2:73:47:62:44:bf:78:e3: 23:be:20:5a:b2:6b:b1:9c:9c:e6:93:0f:a1:7c:52: 56:85:06:d5:1a:9b:1e:18:14:db:dd:4d:f3:b3:6d: 65:05:5a:a2:e5:74:60:d2:5d:9e:30:12:e2:0f:78: 09:63:a8:64:90:18:a3:38:3e:f9:a4:33:ea:0f:ab: 64:51:0b:3d:7d:e6:c1:66:80:83:aa:fc:41:7e:c4: 2a:24:d7:01:cb:ce:68:35:4e:e2:a2:de:b1:fb:58: 4b:c9:0a:0e:6d:fb:07:6b:fd:cd:86:ff:65:28:76: 9f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:80:F9:1F:8C:B6:44:BC:FE:F3:E7:0C:FF:F3:F5:12:44:78:F2:6A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.227.0/24 Signature Algorithm: sha256WithRSAEncryption 74:89:9e:66:1e:5b:60:9e:a4:c1:2f:b5:e2:e0:d2:24:02:65: 05:5a:c9:14:25:2c:00:b3:cb:3f:18:c5:f1:df:2a:f4:13:93: e7:6f:56:9b:e8:9b:e2:c5:2b:a2:82:3c:92:4b:7b:ff:1b:f3: 20:44:e4:61:40:27:db:2b:89:22:ee:11:3c:92:e5:4d:55:40: 66:d5:68:fd:46:60:0a:53:86:da:56:3b:33:08:3a:b6:16:65: ef:3b:fa:05:60:be:66:a5:d6:f8:8c:6f:1f:2f:d6:02:7f:fa: 83:f9:37:c8:73:99:03:df:11:17:86:82:b7:a1:9a:1c:83:44: 4d:56:f1:a9:af:ed:00:56:9d:23:8d:0f:80:30:54:f5:28:9e: 8b:4c:b0:72:9b:b0:38:fb:4e:c6:9f:97:35:3c:bb:de:a7:a5: 03:98:4c:7b:da:fa:13:7a:f2:a5:05:07:e0:c8:60:2a:3a:6b: 9c:2f:99:d4:97:57:82:15:01:fa:a8:6b:b8:f2:cc:b2:53:4a: 2f:f2:28:8a:1c:2d:8d:f9:4e:27:68:de:cc:1a:dc:c9:83:3d: 35:dc:71:17:10:fd:47:32:8a:59:99:1c:a8:6c:ba:cd:27:6e: 0c:d2:0b:19:7f:1d:fb:36:ab:09:82:3e:d6:8b:fa:1f:87:21: 19:c5:87:98 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN+VU9mpPkN0DX9L9WO/SnpRko1owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDExMDAwMDQ1WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZGU1YjJhM2UxNmIwN2ZjMWFmYzcyNDFhMDgzN2RhNmE1 N2U4ZjI3YWE5MjJiNmY1MTk3ZTZmYjRmNDNmNDRjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlIGgzJuk55qpD1hzjC7OYdvD4PUj45haND6ZNPHXp18J6 2rl3DIiEH4kgtJ/28JCbw4hAhmrMtZ4bw/Qx5K1KdOPVsNhC/zTgT1LB6iXaj0Cd ZSSyaMGpeG/IZdLSzWuaN358J/DQBW/ZsuGC6Qrp09+Qpo5TVe3sLDdGtVnxkQOQ KetNTcoG+/CYm0Sic0diRL944yO+IFqya7GcnOaTD6F8UlaFBtUamx4YFNvdTfOz bWUFWqLldGDSXZ4wEuIPeAljqGSQGKM4PvmkM+oPq2RRCz195sFmgIOq/EF+xCok 1wHLzmg1TuKi3rH7WEvJCg5t+wdr/c2G/2Uodp8ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUK4D5H4y2RLz+8+cM//P1EkR48mowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y2NzUzOGVlLWNkMjktNDg4My05MjUxLTA4NjAyM2E1MGRjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++MwDQYJKoZIhvcNAQELBQADggEBAHSJnmYeW2CepMEvteLg0iQCZQVa yRQlLACzyz8YxfHfKvQTk+dvVpvom+LFK6KCPJJLe/8b8yBE5GFAJ9sriSLuETyS 5U1VQGbVaP1GYApThtpWOzMIOrYWZe87+gVgvmal1viMbx8v1gJ/+oP5N8hzmQPf EReGgrehmhyDRE1W8amv7QBWnSOND4AwVPUonotMsHKbsDj7TsaflzU8u96npQOY THva+hN68qUFB+DIYCo6a5wvmdSXV4IVAfqoa7jyzLJTSi/yKIocLY35Tido3swa 3MmDPTXccRcQ/UcyilmZHKhsus0nbgzSCxl/Hfs2qwmCPtaL+h+HIRnFh5g= -----END CERTIFICATE-----Generated at Sat Apr 26 16:43:33 2025 by rpki-client