$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa File: 5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa (raw, json) Hash identifier: c5sZ+Ap6FhbZWFwMJdX4IUFN0gfFmtfH5YOoLs7fk3Y= Subject key identifier: 43:1D:80:42:7D:CD:7A:8B:E1:54:B9:4F:B4:CA:8C:75:E6:F8:A5:13 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0DA06BADAF9C6FF1BCD1EDCE647BA107DEC0EB9F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa Signing time: Wed 19 Feb 2025 00:10:39 +0000 ROA not before: Wed 19 Feb 2025 00:10:39 +0000 ROA not after: Wed 26 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:a0:6b:ad:af:9c:6f:f1:bc:d1:ed:ce:64:7b:a1:07:de:c0:eb:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 19 00:10:39 2025 GMT Not After : Mar 26 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:db:c2:33:33:e9:9a:c3:a9:ec:85:4d:bf:94: 7e:35:92:b4:b0:e9:3b:67:24:ed:dc:30:8c:d8:58: 9e:ae:a7:1a:4f:0c:b2:25:2a:a1:8e:9e:ad:c2:2b: 1f:ae:d6:0f:27:b1:22:77:23:6c:9c:ca:16:91:32: 04:f3:51:37:44:71:4e:24:ff:66:df:08:83:14:dc: f5:6b:e4:50:7e:95:62:53:10:77:1e:7f:97:03:f8: c3:27:eb:d6:8a:2f:56:5c:36:78:b9:a1:53:f3:ed: 88:2d:72:c3:ef:a4:4c:c4:37:19:ce:50:4f:96:09: 4b:d3:dc:04:93:98:1c:b7:ad:67:c0:f0:c3:ba:e0: 21:50:7e:b6:bd:8f:63:e3:10:a6:2d:02:53:91:ab: 97:f6:09:be:2e:31:f0:0e:a0:c4:ca:5d:62:64:dc: 21:52:f7:19:d0:c0:f8:29:bf:ef:30:5b:33:e2:f3: 83:8c:81:cb:34:89:91:52:9a:a5:67:8d:91:30:4e: e0:c3:a4:bf:f2:37:0b:83:e2:77:0d:6b:78:b7:5b: b6:7d:ea:3e:da:c2:f0:d8:df:bb:4d:d4:d1:fc:54: 60:96:8b:1f:ba:7c:a9:e9:1b:b6:b3:71:04:f9:cc: 50:88:a5:26:d3:21:ee:69:54:5a:34:1e:bc:d7:4d: d4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:1D:80:42:7D:CD:7A:8B:E1:54:B9:4F:B4:CA:8C:75:E6:F8:A5:13 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.233.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:32:27:ba:46:7e:dd:87:47:0c:8b:6f:68:aa:1f:6c:b1:d5: 48:e8:ef:87:57:65:87:ea:5b:13:bb:2a:2b:18:a6:0d:4f:ad: 0a:65:43:f5:f8:c1:b3:1a:53:93:a5:46:ef:49:b7:d0:03:16: 71:cd:1c:80:70:f9:7a:2c:5c:ee:54:89:63:2e:55:64:cc:27: b7:f7:3b:92:a8:1b:30:85:cc:46:27:8e:b4:49:06:5b:0f:7c: 00:c5:01:fa:32:45:a0:83:61:e3:47:89:d4:10:69:e9:fa:14: cc:4e:8c:f1:63:44:a8:8e:58:b4:31:15:f1:7f:05:95:e5:b5: cf:6f:41:68:9a:e6:00:85:d5:f0:58:a6:6d:09:c1:3e:bd:87: c3:43:8d:11:fa:0f:99:54:97:9a:96:0a:14:4f:42:9c:a3:b3: b5:2d:9b:7f:45:f9:26:4f:11:c7:e3:69:74:70:a0:6b:a8:2c: a4:82:10:3a:ff:1d:59:9e:54:2d:3d:ab:d2:77:02:f9:77:19: 66:b2:c4:02:30:68:6b:1e:6e:6b:51:eb:4a:bf:7e:63:34:d1: 14:ef:50:4d:32:fc:cd:de:43:41:e7:b4:92:27:f1:a8:ca:4f: d7:19:78:cc:ff:51:a0:05:93:47:18:00:d6:ba:d3:c9:bc:3a: 5b:88:90:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDaBrra+cb/G80e3OZHuhB97A658wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMjE5MDAxMDM5WhcNMjUwMzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDlhZTg5ZjkxNzdmODMyNGY1MTBjM2Y2MmZhM2E3NjFi YTBmYjcyMjg0NTYwYjcyZmM2MzU4N2U1YzE4MTA2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDy28IzM+maw6nshU2/lH41krSw6TtnJO3cMIzYWJ6upxpP DLIlKqGOnq3CKx+u1g8nsSJ3I2ycyhaRMgTzUTdEcU4k/2bfCIMU3PVr5FB+lWJT EHcef5cD+MMn69aKL1ZcNni5oVPz7YgtcsPvpEzENxnOUE+WCUvT3ASTmBy3rWfA 8MO64CFQfra9j2PjEKYtAlORq5f2Cb4uMfAOoMTKXWJk3CFS9xnQwPgpv+8wWzPi 84OMgcs0iZFSmqVnjZEwTuDDpL/yNwuD4ncNa3i3W7Z96j7awvDY37tN1NH8VGCW ix+6fKnpG7azcQT5zFCIpSbTIe5pVFo0HrzXTdR9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQx2AQn3NeovhVLlPtMqMdeb4pRMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkMzRmNzk3LTZkMTYtNDk4YS1iNjZkLThjN2QwZmNhYzc3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++kwDQYJKoZIhvcNAQELBQADggEBAE8yJ7pGft2HRwyLb2iqH2yx1Ujo 74dXZYfqWxO7KisYpg1PrQplQ/X4wbMaU5OlRu9Jt9ADFnHNHIBw+XosXO5UiWMu VWTMJ7f3O5KoGzCFzEYnjrRJBlsPfADFAfoyRaCDYeNHidQQaen6FMxOjPFjRKiO WLQxFfF/BZXltc9vQWia5gCF1fBYpm0JwT69h8NDjRH6D5lUl5qWChRPQpyjs7Ut m39F+SZPEcfjaXRwoGuoLKSCEDr/HVmeVC09q9J3Avl3GWayxAIwaGsebmtR60q/ fmM00RTvUE0y/M3eQ0HntJIn8ajKT9cZeMz/UaAFk0cYANa608m8OluIkPg= -----END CERTIFICATE-----Generated at Thu Mar 13 23:34:48 2025 by rpki-client