$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/fa37fece-cb6b-47c4-9fdb-04a4117bc583.roa File: fa37fece-cb6b-47c4-9fdb-04a4117bc583.roa (raw, json) Hash identifier: dej+t/FUxLZQhCsbsUhmcIAQARtYctu/+Fd1LDQ/x2Y= Subject key identifier: D0:04:AE:8B:CD:1E:C9:B3:43:4A:21:2A:74:D0:2F:13:4F:01:66:FA Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 12168EEB2926F11CA1AFC8A0158D2221CC9B8E32 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/fa37fece-cb6b-47c4-9fdb-04a4117bc583.roa Signing time: Mon 17 Mar 2025 15:10:14 +0000 ROA not before: Mon 17 Mar 2025 15:10:14 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:16:8e:eb:29:26:f1:1c:a1:af:c8:a0:15:8d:22:21:cc:9b:8e:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Mar 17 15:10:14 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5c:ac:b8:dc:6c:96:55:ed:7e:14:8f:ec:08: f0:8e:f5:4b:ca:75:28:a8:52:18:98:0f:4d:80:8a: 1c:8e:40:7d:35:dc:72:29:60:3a:f8:5d:6d:2e:a1: 31:c2:a9:9e:ad:54:18:df:ba:54:52:52:5f:26:72: ae:f8:d6:3d:fc:99:56:ae:d1:f0:54:e9:cd:aa:d3: d7:9e:9e:c0:f2:36:63:f4:e1:b8:f0:67:68:51:5f: 1e:57:ce:be:70:94:5d:17:f9:b7:bd:4d:d0:de:b5: 4a:2c:33:09:6d:ef:f2:b9:18:e2:73:e2:54:81:ce: 28:f6:e5:db:e9:c5:ac:c7:f3:cc:00:d6:f7:35:8c: d2:ed:f4:81:e5:77:c1:4f:94:a8:82:75:cc:50:5a: fa:cd:9d:f9:07:fe:fa:df:25:54:7c:94:f8:35:a3: 57:4c:a6:95:e5:59:3a:d8:59:ca:79:35:df:6d:95: 6b:dc:99:b3:48:a9:91:4f:ac:03:6c:8b:86:c5:80: cd:1e:1e:c8:c9:4b:58:0e:64:99:00:7d:56:f9:55: df:b8:df:69:4e:81:b9:5b:59:d4:bf:20:48:2a:e5: 9e:93:29:d7:32:fc:61:a5:f5:19:64:98:cf:9f:dd: e7:bb:1c:26:cc:1c:8b:90:0d:03:f6:b7:15:4e:92: 2e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:04:AE:8B:CD:1E:C9:B3:43:4A:21:2A:74:D0:2F:13:4F:01:66:FA X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/fa37fece-cb6b-47c4-9fdb-04a4117bc583.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.191.0/24 Signature Algorithm: sha256WithRSAEncryption 54:41:76:47:13:da:fe:82:16:ad:0f:33:42:c8:36:0c:98:0e: 91:10:f7:1c:e6:69:de:ec:ba:2d:9c:71:40:18:cb:69:13:49: d8:46:45:2f:29:86:6a:fb:42:48:54:27:28:e3:ec:a6:ac:3e: c9:72:dd:ac:6c:1d:dd:0f:6d:9c:02:e7:d4:ac:9b:c2:84:71: ae:d4:4c:19:db:f0:2c:63:3f:28:b3:d8:86:36:86:df:8c:8d: 30:32:d7:e0:84:9e:a5:de:e8:12:14:98:75:d4:ed:6b:27:e5: a5:28:86:ed:38:c3:72:86:a9:ae:a3:0c:4d:f4:ff:37:d5:38: 01:59:0e:a8:c9:6c:27:f6:23:88:12:ce:99:b0:ae:fc:80:70: ac:35:ea:b1:a7:66:2b:0c:3d:e3:69:4d:41:ac:88:24:f5:03: bc:06:4c:0c:60:d1:63:f8:1c:91:9a:5f:9f:c8:24:b5:5e:32: 63:a1:a8:3b:ac:75:18:b4:06:a7:0e:03:a6:62:ce:a0:73:49: 09:32:47:df:a1:56:b6:e7:c1:47:84:1e:34:6a:db:56:7c:a4: 4b:b1:ff:9a:39:5b:51:ad:cd:9d:be:b9:97:71:1c:a5:8d:52: de:80:e9:ec:b5:ac:ca:9d:cf:7c:31:e1:78:f3:a3:66:da:29: 67:1b:d7:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEhaO6ykm8Ryhr8igFY0iIcybjjIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMzE3MTUxMDE0WhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzQwNjhkMjNkYjRmZmI0N2VhYzhkYzg1MzBiYTJjZTcx YzM1NmExYzkwMWQ4MzJiOTE1OWIxODUzZmYxYjgyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxXKy43GyWVe1+FI/sCPCO9UvKdSioUhiYD02AihyOQH01 3HIpYDr4XW0uoTHCqZ6tVBjfulRSUl8mcq741j38mVau0fBU6c2q09eensDyNmP0 4bjwZ2hRXx5Xzr5wlF0X+be9TdDetUosMwlt7/K5GOJz4lSBzij25dvpxazH88wA 1vc1jNLt9IHld8FPlKiCdcxQWvrNnfkH/vrfJVR8lPg1o1dMppXlWTrYWcp5Nd9t lWvcmbNIqZFPrANsi4bFgM0eHsjJS1gOZJkAfVb5Vd+432lOgblbWdS/IEgq5Z6T Kdcy/GGl9RlkmM+f3ee7HCbMHIuQDQP2txVOki7jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0ASui80eybNDSiEqdNAvE08BZvowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ZhMzdmZWNlLWNiNmItNDdjNC05ZmRiLTA0YTQxMTdiYzU4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM378wDQYJKoZIhvcNAQELBQADggEBAFRBdkcT2v6CFq0PM0LINgyYDpEQ 9xzmad7sui2ccUAYy2kTSdhGRS8phmr7QkhUJyjj7KasPsly3axsHd0PbZwC59Ss m8KEca7UTBnb8CxjPyiz2IY2ht+MjTAy1+CEnqXe6BIUmHXU7Wsn5aUohu04w3KG qa6jDE30/zfVOAFZDqjJbCf2I4gSzpmwrvyAcKw16rGnZisMPeNpTUGsiCT1A7wG TAxg0WP4HJGaX5/IJLVeMmOhqDusdRi0BqcOA6ZizqBzSQkyR9+hVrbnwUeEHjRq 21Z8pEux/5o5W1GtzZ2+uZdxHKWNUt6A6ey1rMqdz3wx4Xjzo2baKWcb15E= -----END CERTIFICATE-----Generated at Sat Apr 5 12:25:13 2025 by rpki-client