$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa File: f99236be-03a7-4f91-be31-5366989c9d7b.roa (raw, json) Hash identifier: LSyNrMMjbWWvWHB4iqbJYvLaCaFcn8sU359XVTn+dmI= Subject key identifier: 0C:2D:FF:7C:A9:81:A5:95:01:25:E7:18:A8:20:8A:A0:AF:91:01:20 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 48524C70B29BE45742CE6C3DDA821327E6EDA681 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa Signing time: Fri 25 Apr 2025 00:10:07 +0000 ROA not before: Fri 25 Apr 2025 00:10:07 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.255.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:52:4c:70:b2:9b:e4:57:42:ce:6c:3d:da:82:13:27:e6:ed:a6:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 25 00:10:07 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=ca18ade0e2b80483df98f7b4efba8265de63832ba7d53e498dd8143e93c7296e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:71:64:22:6a:b4:50:c9:e6:19:4d:e6:22:40: 53:1b:03:f0:a0:46:d8:ca:da:19:58:94:6c:01:d2: ea:1b:83:4a:0d:12:e0:44:63:11:f9:0f:57:f8:b4: 74:a3:a0:c8:e9:5f:62:1f:95:8d:65:96:98:e4:8c: b5:a2:a2:ee:4e:0e:e8:e6:cb:13:81:db:bf:e4:21: 51:ce:88:f0:a2:a9:a7:68:af:b9:60:8c:0b:10:37: 0a:9a:25:ac:83:a1:bc:78:5d:13:18:64:d4:fe:cb: 1f:77:98:05:e1:09:d3:01:9d:c6:38:65:28:c2:5a: 77:9e:04:c9:71:36:f1:cc:85:36:33:09:00:c2:62: f2:97:10:ec:45:a2:86:a9:47:f6:93:d8:77:03:e1: 92:72:ce:6f:45:3d:44:a1:92:c1:95:b0:60:e1:42: a7:59:41:8f:7a:55:53:cc:00:fc:5a:eb:a8:76:cf: 63:8b:a0:d1:72:73:9d:24:66:54:2e:a5:42:53:d9: ac:84:5c:b7:62:62:83:e8:b6:6d:8e:20:18:ae:98: af:49:53:0b:dd:3d:a5:8e:ee:4e:68:d7:41:03:ff: ec:76:1a:af:d8:ff:b7:70:09:af:b0:ec:e6:8e:44: 7e:36:a4:fb:46:f9:66:0e:40:f3:ec:9b:96:8f:af: 5d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:2D:FF:7C:A9:81:A5:95:01:25:E7:18:A8:20:8A:A0:AF:91:01:20 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.255.192.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:af:cf:39:ee:7d:89:01:90:69:12:48:19:3a:b5:7c:e4:70: 0c:ce:75:ef:b0:99:b8:e0:38:91:69:47:87:ed:2d:c2:89:79: b7:69:98:90:11:16:77:e3:04:7f:ac:78:e0:c5:ca:cb:92:85: e7:de:84:7a:ab:6a:2c:4a:ff:96:66:5e:fb:09:5a:d0:70:64: c3:1e:24:dc:e5:78:b5:49:18:ff:6a:e5:60:74:49:52:ef:60: 32:60:86:06:27:6f:8c:70:50:95:5e:a8:68:ef:6a:21:c4:48: 16:ce:55:b1:a3:32:51:11:e0:9c:10:91:ad:1c:e8:ab:d8:c0: 7f:c5:1e:03:b9:39:ab:8e:38:3b:df:29:96:eb:69:1c:da:3e: 5c:62:36:6d:a5:b6:9e:a8:9f:5b:fb:ef:ad:b2:47:b2:c3:12: 8a:67:60:de:47:e5:d5:49:89:2b:19:fd:28:79:5b:75:19:5b: 78:f7:0d:1e:38:32:3e:d1:58:1b:f3:13:37:de:5f:99:86:cc: a7:c1:62:10:f9:fb:d2:d9:ba:62:ff:8c:4c:f9:8a:75:dc:83: b6:6a:63:8e:8c:e3:89:54:79:17:7a:b5:a5:f3:95:1e:bb:f4: 46:a5:7e:51:29:13:4b:e1:90:da:a4:1a:4c:29:95:2f:fa:90: 57:4e:f0:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSFJMcLKb5FdCzmw92oITJ+btpoEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDI1MDAxMDA3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTE4YWRlMGUyYjgwNDgzZGY5OGY3YjRlZmJhODI2NWRl NjM4MzJiYTdkNTNlNDk4ZGQ4MTQzZTkzYzcyOTZlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCucWQiarRQyeYZTeYiQFMbA/CgRtjK2hlYlGwB0uobg0oN EuBEYxH5D1f4tHSjoMjpX2IflY1llpjkjLWiou5ODujmyxOB27/kIVHOiPCiqado r7lgjAsQNwqaJayDobx4XRMYZNT+yx93mAXhCdMBncY4ZSjCWneeBMlxNvHMhTYz CQDCYvKXEOxFooapR/aT2HcD4ZJyzm9FPUShksGVsGDhQqdZQY96VVPMAPxa66h2 z2OLoNFyc50kZlQupUJT2ayEXLdiYoPotm2OIBiumK9JUwvdPaWO7k5o10ED/+x2 Gq/Y/7dwCa+w7OaORH42pPtG+WYOQPPsm5aPr10NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDC3/fKmBpZUBJecYqCCKoK+RASAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y5OTIzNmJlLTAzYTctNGY5MS1iZTMxLTUzNjY5ODljOWQ3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALH/8AwDQYJKoZIhvcNAQELBQADggEBAGqvzznufYkBkGkSSBk6tXzkcAzO de+wmbjgOJFpR4ftLcKJebdpmJARFnfjBH+seODFysuShefehHqraixK/5ZmXvsJ WtBwZMMeJNzleLVJGP9q5WB0SVLvYDJghgYnb4xwUJVeqGjvaiHESBbOVbGjMlER 4JwQka0c6KvYwH/FHgO5OauOODvfKZbraRzaPlxiNm2ltp6on1v7762yR7LDEopn YN5H5dVJiSsZ/Sh5W3UZW3j3DR44Mj7RWBvzEzfeX5mGzKfBYhD5+9LZumL/jEz5 inXcg7ZqY46M44lUeRd6taXzlR679EalflEpE0vhkNqkGkwplS/6kFdO8Lk= -----END CERTIFICATE-----Generated at Fri May 9 08:35:27 2025 by rpki-client