$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa File: b63fd343-5e29-48fc-84c9-2d11751d74e8.roa (raw, json) Hash identifier: YySxL/j8TDOeAH0drNbSzbwy/a2BF2Nq8v1l1KYwZJc= Subject key identifier: FF:E6:67:49:69:25:7E:88:80:45:BF:FC:34:CB:3C:FF:ED:C0:3B:32 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5EA2A92ED2BAD0F804A65D6222EEE0A27823CF47 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa Signing time: Sat 29 Mar 2025 00:10:28 +0000 ROA not before: Sat 29 Mar 2025 00:10:28 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:a2:a9:2e:d2:ba:d0:f8:04:a6:5d:62:22:ee:e0:a2:78:23:cf:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Mar 29 00:10:28 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9d:f4:d0:32:17:f2:7b:67:c0:12:97:53:4e: 33:e5:3e:aa:7a:74:35:cb:af:51:c6:9d:fa:85:67: 12:23:fe:b7:c9:ab:68:f1:1e:5d:31:90:5a:49:86: e9:ef:12:97:5a:b2:b5:50:7f:f5:4a:78:2f:8f:37: 0d:e1:c6:5e:a2:11:74:14:a3:33:55:6a:91:e6:a1: 84:78:91:5e:f0:9f:06:19:38:e6:26:d9:41:9b:e2: fd:7f:18:a9:9b:82:ba:73:64:64:18:ab:8d:3b:5d: af:36:d1:d5:29:71:ae:11:f1:b3:2e:27:47:12:4d: b3:bf:92:eb:4b:b3:04:32:78:66:3c:4c:da:0e:e8: cf:e1:6e:3c:97:33:53:81:1d:d5:53:03:f9:8a:f8: 7f:cc:f8:8c:9c:31:49:5d:53:25:f8:4c:14:57:ff: 92:12:0b:81:a3:4c:89:91:b3:ef:8b:bd:42:a3:30: 58:aa:79:a0:15:fa:08:7c:82:95:4e:a1:10:41:73: 40:47:3a:2e:36:76:dc:b8:91:41:97:4b:78:9d:d0: 94:88:0c:de:cb:98:f3:3c:a8:03:81:05:ea:6a:93: ab:28:9e:36:e2:4f:52:33:32:69:7a:92:bf:1d:62: f7:8f:df:d4:cb:c8:96:7b:9c:0e:ab:a1:ce:48:f6: 42:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:E6:67:49:69:25:7E:88:80:45:BF:FC:34:CB:3C:FF:ED:C0:3B:32 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.238.0/23 Signature Algorithm: sha256WithRSAEncryption 36:24:06:61:ae:b8:c0:91:19:00:89:b9:15:44:61:28:75:2e: a1:8d:48:86:10:86:3d:71:a1:d5:a3:52:3b:0f:61:b1:40:b4: b8:18:00:53:72:8c:6c:92:79:fd:ac:45:2c:8a:2f:82:96:91: 70:88:a6:d3:0b:66:54:b5:02:ee:4e:34:16:05:d5:e6:8d:ab: dd:70:c1:dd:26:e4:67:c3:53:60:bc:17:d3:85:64:b1:22:6c: 6c:6a:e3:46:a4:75:60:4e:dd:e4:52:38:3e:da:11:b6:31:ee: e5:37:b1:5e:f8:3d:4b:3f:b4:79:e3:c8:ae:4c:4f:73:d6:a8: 4d:21:db:75:ad:9f:10:cc:68:18:d2:f7:a4:48:56:25:71:73: 71:a5:ac:28:fa:f9:4c:d9:58:f8:13:47:68:78:69:7e:97:1c: 04:ba:90:7c:d0:52:ff:f1:8c:69:ba:2b:da:1e:09:60:31:ff: f8:dc:54:6d:6e:4e:5f:91:84:fc:57:04:e9:78:2a:e2:a2:49: 3b:29:c8:4c:1b:ea:8a:88:fa:02:c9:e5:b6:53:be:5b:ab:dc: b4:9e:3d:d0:a0:f8:28:2e:a4:12:ff:74:01:9b:ac:4d:8e:f5: 68:f6:19:8b:03:e2:fa:28:d3:07:cb:b7:65:56:ba:10:ac:12: 2d:5e:56:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXqKpLtK60PgEpl1iIu7gongjz0cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMzI5MDAxMDI4WhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDVhZGEzNjg1ZmU5ZThmNTIxMGUxMmM1Yzc5ZmVkYjQz M2I2OGQ5YjhiODY2ZDZlMWM5YTMyYzkzNDhiOTdhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqnfTQMhfye2fAEpdTTjPlPqp6dDXLr1HGnfqFZxIj/rfJ q2jxHl0xkFpJhunvEpdasrVQf/VKeC+PNw3hxl6iEXQUozNVapHmoYR4kV7wnwYZ OOYm2UGb4v1/GKmbgrpzZGQYq407Xa820dUpca4R8bMuJ0cSTbO/kutLswQyeGY8 TNoO6M/hbjyXM1OBHdVTA/mK+H/M+IycMUldUyX4TBRX/5ISC4GjTImRs++LvUKj MFiqeaAV+gh8gpVOoRBBc0BHOi42dty4kUGXS3id0JSIDN7LmPM8qAOBBepqk6so njbiT1IzMml6kr8dYveP39TLyJZ7nA6roc5I9kIrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/+ZnSWklfoiARb/8NMs8/+3AOzIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2M2ZkMzQzLTVlMjktNDhmYy04NGM5LTJkMTE3NTFkNzRlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFqe4wDQYJKoZIhvcNAQELBQADggEBADYkBmGuuMCRGQCJuRVEYSh1LqGN SIYQhj1xodWjUjsPYbFAtLgYAFNyjGySef2sRSyKL4KWkXCIptMLZlS1Au5ONBYF 1eaNq91wwd0m5GfDU2C8F9OFZLEibGxq40akdWBO3eRSOD7aEbYx7uU3sV74PUs/ tHnjyK5MT3PWqE0h23WtnxDMaBjS96RIViVxc3GlrCj6+UzZWPgTR2h4aX6XHAS6 kHzQUv/xjGm6K9oeCWAx//jcVG1uTl+RhPxXBOl4KuKiSTspyEwb6oqI+gLJ5bZT vlur3LSePdCg+CgupBL/dAGbrE2O9Wj2GYsD4voo0wfLt2VWuhCsEi1eVso= -----END CERTIFICATE-----Generated at Sat Apr 5 11:14:08 2025 by rpki-client