$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa File: 16b57026-c673-4ef1-bc38-7596daa2e043.roa (raw, json) Hash identifier: OXBYXuMHuxhMWTyCfBUgV7xBz4odS71KKytfju1k2OA= Subject key identifier: 48:C8:AC:57:C9:B5:68:4C:B6:C3:A4:96:B5:F0:05:29:5B:F7:88:FD Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0F1B0C04157FE638590D263179482232DE087B97 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa Signing time: Tue 06 May 2025 00:01:04 +0000 ROA not before: Tue 06 May 2025 00:01:04 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:1b:0c:04:15:7f:e6:38:59:0d:26:31:79:48:22:32:de:08:7b:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 6 00:01:04 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=526fe67bb4f94c81063d249014c119ce87339467e4cc7e9e9b4420af705f44da, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b6:64:e0:77:ca:63:12:65:62:52:58:af:6f: e3:be:04:ec:c4:5a:48:da:99:df:e0:51:0f:f1:35: 47:96:a2:4a:06:17:b7:6d:bb:82:e2:59:3d:0a:cd: ca:bb:bb:1e:99:8c:6f:18:e1:6d:79:95:0d:91:6d: 8c:09:0d:b8:55:22:d2:63:32:ad:8b:6e:a5:67:0e: c0:09:9a:ca:74:01:7a:51:7b:5f:1f:20:ba:66:fb: ef:9e:c9:aa:13:76:f2:4c:4d:06:c6:2a:1c:21:cb: dd:5d:40:d7:68:04:b9:a3:5d:bc:81:47:3c:a2:9d: 85:7e:75:12:10:1d:d8:d4:28:59:bd:96:cd:ca:65: c5:4f:2e:78:1e:76:b0:31:1c:0a:a1:48:af:2a:d1: 4a:33:b9:3f:e8:24:74:89:05:23:dd:97:b1:a4:61: 8e:8c:7a:31:45:55:cb:8a:d3:40:cf:a3:a9:1c:bb: 75:d2:c8:99:7d:26:3a:76:02:73:e2:8d:60:c2:11: ef:49:04:a8:73:ea:b9:5c:1d:66:98:e7:5f:30:7e: e2:ef:94:c8:21:2f:ec:16:b4:01:e1:9d:a3:9d:d1: b1:11:13:9d:46:52:57:7b:8a:c7:ce:17:3d:99:35: 58:74:9e:02:d2:6f:40:2c:53:db:dc:67:f0:90:6a: cd:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C8:AC:57:C9:B5:68:4C:B6:C3:A4:96:B5:F0:05:29:5B:F7:88:FD X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.226.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:8d:1a:fc:91:2a:0a:19:60:7b:ce:ee:3c:3b:d4:73:83:1d: b2:68:c3:59:bd:3b:10:3f:09:1d:c8:e5:18:7d:c7:de:2d:8e: 93:cf:51:ef:8c:4f:1e:cc:7e:df:9e:50:8b:6e:b5:43:e4:b5: 7f:18:2e:ae:d8:c2:d6:11:ea:96:28:6d:51:8c:8e:21:bb:16: a6:04:d0:3a:1a:51:27:f6:a8:f2:69:de:0b:0c:2c:cf:fc:15: c3:b8:cb:a4:4e:a5:69:de:ab:44:1f:2e:37:43:60:25:50:8d: ea:2e:1f:be:04:62:db:af:0f:11:5c:c7:ba:9c:ba:37:55:a8: 01:a2:70:7e:f9:8d:6b:e9:34:57:6f:11:ac:60:44:ee:d6:f4: 4d:2e:d5:01:0f:a7:84:ee:24:40:a0:6a:a1:5b:48:d6:d8:26: f9:fb:91:cf:cd:0e:17:4f:b5:7c:89:ad:17:3f:cb:39:7c:3d: 31:19:3f:f0:c1:16:2b:be:85:78:4a:4f:f5:a2:39:77:f0:33: a8:09:16:07:de:5a:24:7c:84:0b:e0:e2:86:d3:41:ac:30:14: c4:3e:f9:a7:76:46:ea:a8:1b:46:02:be:3e:4c:48:fa:ef:1c: 08:22:9f:da:1f:d7:e5:e7:a5:3b:89:4f:12:0c:9c:f1:77:1f: 10:db:6a:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDxsMBBV/5jhZDSYxeUgiMt4Ie5cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA2MDAwMTA0WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjZmZTY3YmI0Zjk0YzgxMDYzZDI0OTAxNGMxMTljZTg3 MzM5NDY3ZTRjYzdlOWU5YjQ0MjBhZjcwNWY0NGRhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJtmTgd8pjEmViUlivb+O+BOzEWkjamd/gUQ/xNUeWokoG F7dtu4LiWT0Kzcq7ux6ZjG8Y4W15lQ2RbYwJDbhVItJjMq2LbqVnDsAJmsp0AXpR e18fILpm+++eyaoTdvJMTQbGKhwhy91dQNdoBLmjXbyBRzyinYV+dRIQHdjUKFm9 ls3KZcVPLngedrAxHAqhSK8q0UozuT/oJHSJBSPdl7GkYY6MejFFVcuK00DPo6kc u3XSyJl9Jjp2AnPijWDCEe9JBKhz6rlcHWaY518wfuLvlMghL+wWtAHhnaOd0bER E51GUld7isfOFz2ZNVh0ngLSb0AsU9vcZ/CQas3BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSMisV8m1aEy2w6SWtfAFKVv3iP0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzE2YjU3MDI2LWM2NzMtNGVmMS1iYzM4LTc1OTZkYWEyZTA0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeIwDQYJKoZIhvcNAQELBQADggEBAE6NGvyRKgoZYHvO7jw71HODHbJo w1m9OxA/CR3I5Rh9x94tjpPPUe+MTx7Mft+eUItutUPktX8YLq7YwtYR6pYobVGM jiG7FqYE0DoaUSf2qPJp3gsMLM/8FcO4y6ROpWneq0QfLjdDYCVQjeouH74EYtuv DxFcx7qcujdVqAGicH75jWvpNFdvEaxgRO7W9E0u1QEPp4TuJECgaqFbSNbYJvn7 kc/NDhdPtXyJrRc/yzl8PTEZP/DBFiu+hXhKT/WiOXfwM6gJFgfeWiR8hAvg4obT QawwFMQ++ad2RuqoG0YCvj5MSPrvHAgin9of1+XnpTuJTxIMnPF3HxDbai8= -----END CERTIFICATE-----Generated at Fri May 9 12:53:39 2025 by rpki-client