$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa File: e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa (raw, json) Hash identifier: tYl6tatK+mzcWy/IdEh3iczBW3507+cZ5edUNb5yMEY= Subject key identifier: 01:D6:C5:AC:CF:E9:06:6F:2B:82:DB:70:C5:24:02:18:EB:6D:FD:D1 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0B9B8F2D032FB9C316A461D37502C2C1EB4385E1 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa Signing time: Mon 17 Mar 2025 15:10:10 +0000 ROA not before: Mon 17 Mar 2025 15:10:10 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:9b:8f:2d:03:2f:b9:c3:16:a4:61:d3:75:02:c2:c1:eb:43:85:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Mar 17 15:10:10 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:ee:10:8c:bd:1e:e1:ab:42:7c:5a:44:5d:3e: 9d:33:21:de:1d:28:93:ec:55:d2:41:27:ca:21:6b: b7:d7:2d:cc:8a:1a:aa:a0:89:29:29:62:c3:d8:4d: 9e:0d:07:ec:d7:bf:f5:2e:f0:21:d6:8d:fc:a3:42: 9d:b7:27:9b:d9:73:b9:24:b7:0f:75:90:50:46:37: a2:37:0e:3c:7f:25:ff:1a:69:6a:87:57:e8:e6:1d: c9:a1:ec:e2:40:4e:6b:3d:da:a6:35:c6:7e:8e:fa: 19:a7:b1:1c:8a:cd:69:08:1f:2b:c4:85:16:3d:c4: 80:78:34:a4:ff:a1:bb:93:54:c3:4a:6e:9d:83:53: fe:13:76:c6:a8:7d:77:01:86:92:ce:3a:f3:a6:ac: 82:41:a4:50:0e:6e:3d:54:0a:0e:de:76:23:fc:57: c3:cf:82:62:31:35:66:5e:d4:bb:0a:a9:11:c2:c9: 06:de:4e:8f:f2:33:2f:00:4a:a5:31:8f:b9:83:5e: 90:2d:d8:dd:a5:1e:42:9c:97:61:a0:a5:e9:c9:28: d5:d2:ba:1c:49:4c:e1:f3:d1:5d:50:fd:a5:94:18: 73:fd:92:db:3a:e9:73:3d:bd:9b:99:d6:6c:fb:06: 52:28:b1:b6:79:8e:c2:67:35:ed:b4:8f:0a:03:2c: 48:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:D6:C5:AC:CF:E9:06:6F:2B:82:DB:70:C5:24:02:18:EB:6D:FD:D1 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.190.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:76:89:e0:59:d4:7b:cd:e4:2f:33:75:f2:50:9a:f2:73:05: 88:10:57:53:a9:6d:d6:7c:56:24:a7:5a:bc:54:01:d8:11:1e: 08:0d:c7:60:b5:82:29:b1:43:19:3c:d3:9d:10:df:7d:53:4e: fa:cc:73:97:86:dc:f3:e2:6c:de:1a:ef:c6:69:52:49:27:d8: 06:c7:6f:59:5a:e7:62:d5:5e:43:ed:04:be:d4:e5:ca:c3:cd: 24:e6:ce:dc:75:48:e6:d5:7d:fe:21:c6:40:f4:d4:d2:54:02: de:44:22:3d:fc:29:29:69:66:cb:97:3f:f7:7c:d2:54:e1:bf: 5f:c9:f9:3d:fb:38:f5:73:c5:37:03:10:90:2f:ac:5a:c1:26: 51:05:1f:18:2f:fe:b6:08:cf:2d:6a:a0:1d:7d:3b:bf:30:a9: ac:60:de:1b:82:fa:c3:40:19:25:1d:23:22:20:81:3a:2f:18: 2d:20:a4:6b:93:85:ae:33:4b:0b:62:b9:52:b3:fd:75:8d:72: dc:b4:ca:ee:ad:0b:04:d7:0c:94:df:3d:78:97:09:e1:5c:f2: cf:11:58:a5:51:28:69:4d:e7:d4:46:24:52:93:c2:20:22:1f: be:2c:94:17:32:55:fb:72:15:db:8c:f4:ee:de:79:45:33:5f: 68:40:2a:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC5uPLQMvucMWpGHTdQLCwetDheEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMzE3MTUxMDEwWhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4Mjk2Mzk5ZjdkNzUwMDc2ZGQyNWIwNDgzYTk0NzQ4NDI1 ZTM0ODhhZWY4NjRlM2YyY2Y0MDllODgyN2Y4MmE4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD17hCMvR7hq0J8WkRdPp0zId4dKJPsVdJBJ8oha7fXLcyK GqqgiSkpYsPYTZ4NB+zXv/Uu8CHWjfyjQp23J5vZc7kktw91kFBGN6I3Djx/Jf8a aWqHV+jmHcmh7OJATms92qY1xn6O+hmnsRyKzWkIHyvEhRY9xIB4NKT/obuTVMNK bp2DU/4TdsaofXcBhpLOOvOmrIJBpFAObj1UCg7ediP8V8PPgmIxNWZe1LsKqRHC yQbeTo/yMy8ASqUxj7mDXpAt2N2lHkKcl2GgpenJKNXSuhxJTOHz0V1Q/aWUGHP9 kts66XM9vZuZ1mz7BlIosbZ5jsJnNe20jwoDLEh1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAdbFrM/pBm8rgttwxSQCGOtt/dEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2UzYjg2OTg0LTRlYmYtNGZkZS1iNjhjLWNhMmUzZmJmNzgyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM374wDQYJKoZIhvcNAQELBQADggEBACx2ieBZ1HvN5C8zdfJQmvJzBYgQ V1OpbdZ8ViSnWrxUAdgRHggNx2C1gimxQxk8050Q331TTvrMc5eG3PPibN4a78Zp Ukkn2AbHb1la52LVXkPtBL7U5crDzSTmztx1SObVff4hxkD01NJUAt5EIj38KSlp ZsuXP/d80lThv1/J+T37OPVzxTcDEJAvrFrBJlEFHxgv/rYIzy1qoB19O78wqaxg 3huC+sNAGSUdIyIggTovGC0gpGuTha4zSwtiuVKz/XWNcty0yu6tCwTXDJTfPXiX CeFc8s8RWKVRKGlN59RGJFKTwiAiH74slBcyVftyFduM9O7eeUUzX2hAKtI= -----END CERTIFICATE-----Generated at Sat Apr 5 11:03:23 2025 by rpki-client