$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: 7wLHK08XL2kaQmskwCEYM/KpRabgbPUVmHOAgm9UC40= Subject key identifier: 49:43:E0:A5:E6:1E:47:6F:A3:AF:EA:33:06:D5:99:8F:EE:CC:E5:DA Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7AFB45FEF3E9B8759E6F223D3977E9F2062FA3D6 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Sat 15 Mar 2025 00:00:08 +0000 ROA not before: Sat 15 Mar 2025 00:00:08 +0000 ROA not after: Sat 19 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:fb:45:fe:f3:e9:b8:75:9e:6f:22:3d:39:77:e9:f2:06:2f:a3:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Mar 15 00:00:08 2025 GMT Not After : Apr 19 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a4:97:3b:03:81:f6:0f:48:00:18:56:c9:47: 70:78:ef:e4:01:e1:eb:d4:2a:a9:05:2c:0a:04:ee: a5:0d:bd:ff:24:52:75:e8:c7:49:8c:11:9d:f1:5a: b8:76:f5:ee:c2:22:f0:00:b8:f3:b8:65:61:07:70: 5d:26:33:ca:c7:30:fa:ce:37:dd:bd:84:78:99:d6: c0:3e:0d:39:90:71:27:27:fe:ca:89:ce:1d:84:a9: 7c:0f:98:76:3d:fe:2f:34:c1:3a:e5:db:7b:5f:d2: 1c:ff:a8:88:0f:01:05:07:19:f7:fa:03:90:ca:da: d2:1c:0f:62:ee:3f:3e:7a:dd:54:7b:b9:24:97:08: d5:73:4c:5d:10:da:7a:aa:98:8e:fb:03:5a:e0:e4: d1:1e:b0:54:fb:49:6b:01:09:d6:c2:bb:1d:15:9a: 56:5d:35:b2:fc:be:ad:2d:a0:36:c8:96:48:db:2f: c9:51:16:34:57:a1:26:d0:6a:2e:7a:2f:e6:5f:d4: 62:7e:66:e0:4e:90:35:4d:90:52:ac:8d:c2:35:4e: 40:5c:c7:46:dc:82:be:5b:1a:65:42:ab:f8:cf:c9: c3:25:92:97:2a:6e:c0:cb:b4:3e:d7:24:d1:25:b2: f1:6f:fe:16:de:76:75:5d:16:52:45:e9:de:92:b3: 57:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:43:E0:A5:E6:1E:47:6F:A3:AF:EA:33:06:D5:99:8F:EE:CC:E5:DA X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:d4:0d:c4:12:5f:86:a6:37:b3:e7:3d:68:df:4e:c5:65:94: 5c:8a:43:0f:09:3d:af:6c:f2:9b:3e:f2:f0:68:ea:7a:08:3c: 09:c9:1e:bb:54:c2:d6:85:d4:b8:38:53:4d:de:e4:e3:22:c2: 27:a8:f7:8e:0e:ef:0d:dd:d8:d1:b0:65:cb:80:7a:43:6a:01: f4:c7:a6:b9:4d:33:f8:ed:c7:4a:e7:5b:25:2e:91:2f:85:8b: fe:92:51:56:19:36:50:1d:56:64:9d:ff:33:01:9a:c1:5c:f5: 22:82:69:01:fa:58:37:0f:f5:be:09:36:95:af:e2:d8:d0:8e: 92:dc:5a:ea:31:51:79:2e:4b:a0:f8:75:4b:89:f7:d5:2e:d8: a9:b6:87:b1:56:79:dd:24:35:a4:26:26:d0:ec:55:d7:50:f3: ec:d5:c1:a2:37:b4:23:35:55:80:d7:d7:e2:f6:c9:2b:5e:c9: 58:95:20:9b:38:f8:71:4c:dc:96:48:d9:24:ef:30:46:5b:b6: ff:61:e1:7b:0f:3c:35:7d:46:f9:c2:fb:b7:cc:de:aa:2f:59: 30:26:c0:64:fa:a9:2c:1b:5e:fc:37:47:44:bc:13:a3:71:b2: f9:43:77:2f:5f:09:62:e2:67:8f:f1:27:98:88:5b:22:0a:4e: 5e:88:79:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUevtF/vPpuHWebyI9OXfp8gYvo9YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMzE1MDAwMDA4WhcNMjUwNDE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjk1MWRjMGI1NThjMTc1MTA0YzdhODljY2NhNjUzMzUw ZDg3ZDZiZTU1Yjk0NmJkN2U4ZTFkYTExNDE2YjRkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcpJc7A4H2D0gAGFbJR3B47+QB4evUKqkFLAoE7qUNvf8k UnXox0mMEZ3xWrh29e7CIvAAuPO4ZWEHcF0mM8rHMPrON929hHiZ1sA+DTmQcScn /sqJzh2EqXwPmHY9/i80wTrl23tf0hz/qIgPAQUHGff6A5DK2tIcD2LuPz563VR7 uSSXCNVzTF0Q2nqqmI77A1rg5NEesFT7SWsBCdbCux0VmlZdNbL8vq0toDbIlkjb L8lRFjRXoSbQai56L+Zf1GJ+ZuBOkDVNkFKsjcI1TkBcx0bcgr5bGmVCq/jPycMl kpcqbsDLtD7XJNElsvFv/hbednVdFlJF6d6Ss1cBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSUPgpeYeR2+jr+ozBtWZj+7M5dowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAG7UDcQSX4amN7PnPWjfTsVllFyK Qw8JPa9s8ps+8vBo6noIPAnJHrtUwtaF1Lg4U03e5OMiwieo944O7w3d2NGwZcuA ekNqAfTHprlNM/jtx0rnWyUukS+Fi/6SUVYZNlAdVmSd/zMBmsFc9SKCaQH6WDcP 9b4JNpWv4tjQjpLcWuoxUXkuS6D4dUuJ99Uu2Km2h7FWed0kNaQmJtDsVddQ8+zV waI3tCM1VYDX1+L2ySteyViVIJs4+HFM3JZI2STvMEZbtv9h4XsPPDV9RvnC+7fM 3qovWTAmwGT6qSwbXvw3R0S8E6NxsvlDdy9fCWLiZ4/xJ5iIWyIKTl6Ieas= -----END CERTIFICATE-----Generated at Sat Apr 5 11:18:04 2025 by rpki-client