$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa File: f174f360-a3ca-4335-8414-4727cef110a8.roa (raw, json) Hash identifier: gA0TKM0BzZ2Y5+XwwRFFOmkSb467AqAcLHqSU29knFI= Subject key identifier: A1:F5:39:BC:A4:C4:3A:7C:22:F0:BC:8A:CD:04:E1:21:94:1A:3C:4A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 51CBB8B27C4648F8295534058FD8A400C5311FBA Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa Signing time: Mon 17 Mar 2025 15:00:11 +0000 ROA not before: Mon 17 Mar 2025 15:00:11 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:cb:b8:b2:7c:46:48:f8:29:55:34:05:8f:d8:a4:00:c5:31:1f:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Mar 17 15:00:11 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:80:20:04:95:81:1d:8c:82:7d:97:cb:22:6c: 98:0b:dd:a9:20:50:f8:02:80:28:10:ca:64:b7:d5: 5e:8d:75:e1:87:fe:cb:b3:e8:28:ff:28:b5:e6:99: 4d:49:3a:a9:be:51:41:f3:80:bf:94:58:7b:80:42: 76:45:3d:2e:c8:26:46:11:f7:79:69:00:fb:24:53: 17:f7:13:01:6b:65:a8:28:ef:1d:db:5e:6d:e1:f3: 2f:50:16:cc:02:f7:ef:16:19:ee:8c:36:b4:d6:61: d3:ac:bc:04:32:59:6e:88:85:7b:0c:d9:26:e3:7c: 5d:08:4f:93:e9:b2:67:d8:16:47:ef:30:51:e7:5e: ab:cb:6f:ae:34:77:54:6f:b1:28:28:71:d4:70:46: e5:82:2b:26:90:48:3a:8f:b1:9f:75:ba:a5:0c:63: e2:e8:de:e2:88:11:f6:03:bc:15:69:74:7c:7c:6a: 89:f5:c1:d2:82:32:f1:63:42:bc:73:9e:c8:bb:cf: 01:91:17:74:f7:06:97:8f:ab:18:a9:1d:69:a5:7c: 81:45:3e:f7:46:4c:df:89:58:a8:85:a2:6f:1e:00: 5c:ff:85:04:a7:0f:25:e8:33:ca:c0:0a:c6:03:92: d5:4a:5c:3d:6f:65:2f:77:38:61:7a:fb:b7:f9:51: f6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F5:39:BC:A4:C4:3A:7C:22:F0:BC:8A:CD:04:E1:21:94:1A:3C:4A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 94:40:c4:fb:1a:c3:e9:8d:42:31:38:25:45:ad:93:93:ee:90: 5a:ad:ad:c2:86:bc:09:85:ff:33:ba:9c:dd:ee:94:f1:20:9d: 20:29:9b:26:f1:cb:2a:b7:0c:9b:cf:ad:ce:bf:33:8a:9f:2f: 3e:60:54:04:a7:7d:83:e6:df:5f:ca:34:e2:31:34:d7:58:61: f1:43:63:ea:5b:27:ec:8b:e7:45:fa:a4:92:16:b5:af:35:0d: 7c:c2:ea:31:45:1b:b3:2f:ea:64:72:99:b4:fc:6c:7b:1d:2b: b7:c8:54:d6:93:f8:de:c1:0c:68:27:d3:19:19:b7:d1:18:9e: 61:80:50:68:ef:02:ee:25:6b:ec:bb:37:b9:b0:43:b5:ba:51: 90:01:58:41:08:90:61:98:4e:8a:07:f3:ef:7a:9c:3e:66:79: 72:12:bd:0d:a5:40:38:11:5b:af:7b:56:d3:6b:9d:f3:36:15: 11:f0:ab:69:40:dc:f3:1d:3e:85:0c:a4:b3:c4:7b:a3:90:cd: 90:64:99:1f:b4:79:53:36:e1:a2:65:c8:3c:b4:d9:60:2d:50: b4:c8:e9:89:b8:94:78:42:67:d8:16:e1:51:45:c5:c1:bf:3e: 52:c2:8a:4a:fd:fa:92:04:58:86:ec:8c:7d:4e:52:6f:3b:eb: 89:0b:f4:3d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUcu4snxGSPgpVTQFj9ikAMUxH7owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMzE3MTUwMDExWhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDQ0MDdkYjVlYzNjN2YwYTUyZTA5MzEyM2Y4YTEwMDY3 MzczOGNmNWE4YzNjZWI1ZWU3MmZiYTc2OGRiM2ZiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBgCAElYEdjIJ9l8sibJgL3akgUPgCgCgQymS31V6NdeGH /suz6Cj/KLXmmU1JOqm+UUHzgL+UWHuAQnZFPS7IJkYR93lpAPskUxf3EwFrZago 7x3bXm3h8y9QFswC9+8WGe6MNrTWYdOsvAQyWW6IhXsM2SbjfF0IT5PpsmfYFkfv MFHnXqvLb640d1RvsSgocdRwRuWCKyaQSDqPsZ91uqUMY+Lo3uKIEfYDvBVpdHx8 aon1wdKCMvFjQrxznsi7zwGRF3T3BpePqxipHWmlfIFFPvdGTN+JWKiFom8eAFz/ hQSnDyXoM8rACsYDktVKXD1vZS93OGF6+7f5Ufa1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUofU5vKTEOnwi8LyKzQThIZQaPEowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2YxNzRmMzYwLWEzY2EtNDMzNS04NDE0LTQ3MjdjZWYxMTBhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBAJRAxPsaw+mNQjE4JUWtk5PukFqt rcKGvAmF/zO6nN3ulPEgnSApmybxyyq3DJvPrc6/M4qfLz5gVASnfYPm31/KNOIx NNdYYfFDY+pbJ+yL50X6pJIWta81DXzC6jFFG7Mv6mRymbT8bHsdK7fIVNaT+N7B DGgn0xkZt9EYnmGAUGjvAu4la+y7N7mwQ7W6UZABWEEIkGGYTooH8+96nD5meXIS vQ2lQDgRW697VtNrnfM2FRHwq2lA3PMdPoUMpLPEe6OQzZBkmR+0eVM24aJlyDy0 2WAtULTI6Ym4lHhCZ9gW4VFFxcG/PlLCikr9+pIEWIbsjH1OUm8764kL9D0= -----END CERTIFICATE-----Generated at Sat Apr 5 11:22:07 2025 by rpki-client