$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa File: 3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa (raw, json) Hash identifier: eBrC7BoZRgotIN88d3Ub5U4S8bvt+ttWywbWbfAN3gA= Subject key identifier: 1A:52:D7:39:2A:55:8E:DB:ED:65:06:30:58:98:15:CA:1C:77:F9:1F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6A480BD1E30EAFBF52866323B6BD0D06A73953D4 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa Signing time: Fri 30 May 2025 00:00:09 +0000 ROA not before: Fri 30 May 2025 00:00:09 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:48:0b:d1:e3:0e:af:bf:52:86:63:23:b6:bd:0d:06:a7:39:53:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 30 00:00:09 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=21a8abea19ab4a6dfefeb593e3f51528d00058bf46de6732722135dfca3fa4bc, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:04:8c:b5:70:06:e2:1d:27:91:5e:87:cd:9f: df:95:7a:c6:5b:89:ef:4d:78:d9:4f:be:c9:11:00: 96:ed:e6:4e:1e:22:93:49:22:0a:48:d5:25:7d:c1: f5:66:39:ff:8f:95:56:a9:9f:11:03:0b:26:14:72: 33:18:7c:c1:19:5e:48:e2:a0:9e:2a:be:96:ec:d6: f9:2c:1d:46:48:0a:90:65:2e:b0:ee:55:08:2a:00: a1:94:49:9f:b7:14:b2:1d:f9:34:b3:df:47:e5:09: 7a:34:21:12:5b:91:fb:e2:c7:39:94:68:1b:24:10: 57:1e:36:69:09:4e:12:92:04:57:e5:66:ac:df:40: 06:29:f1:d5:11:db:94:57:59:95:25:ab:15:cb:35: 14:f0:ca:21:2f:56:71:a2:6f:d5:8d:e9:88:5b:0b: 00:06:1a:f4:70:5f:fb:4b:05:65:68:55:6d:eb:3a: 9c:93:69:7c:95:4b:53:f7:5e:29:d1:e1:b2:ab:58: bc:01:ce:70:23:3d:24:a4:5c:23:f8:5a:a6:a0:87: f2:16:d7:5e:f5:de:6d:95:4c:5c:1d:b9:3b:99:2c: c2:5f:59:dc:f1:50:8f:51:a8:fc:75:77:24:ff:74: ea:3f:0f:ae:34:27:05:d5:e0:e9:0e:e6:99:f0:4c: 73:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:52:D7:39:2A:55:8E:DB:ED:65:06:30:58:98:15:CA:1C:77:F9:1F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 28:01:4c:c1:cc:10:0d:62:6d:03:ce:0e:10:0b:1e:15:c2:1f: 63:d1:3f:19:9e:8f:90:44:e6:79:99:45:45:60:80:2f:31:3f: 96:85:ea:5c:f0:2f:4c:8e:b2:6a:01:0f:fc:b5:54:45:db:89: 54:e6:0d:bd:ba:59:ed:97:04:c1:52:35:f6:f7:30:21:47:fe: bb:9f:22:0b:13:35:08:37:51:76:d6:b5:80:98:92:46:40:2b: 26:3f:4b:a5:9d:fc:71:b8:5b:4f:25:13:57:b1:2b:60:92:6c: 64:8b:5a:8a:60:a7:09:d0:b8:f8:61:2b:e0:a5:2c:e7:6d:a3: f2:ca:95:ce:7e:30:94:bd:e8:4e:17:39:d4:68:8c:75:72:59: ce:d5:00:69:c3:e1:28:29:78:ec:99:2b:a8:cb:70:8b:b0:fe: 7c:9c:63:60:6e:c3:a6:1c:56:ed:90:d5:18:df:f1:70:8c:d5: ce:92:32:27:a6:82:77:e1:0c:bd:29:c6:32:9b:db:28:d0:b2: 82:a3:ea:64:f7:ea:7d:64:8c:60:ed:02:4e:61:d7:2a:eb:76: 23:46:08:50:f9:4c:94:59:c8:b6:cb:6c:78:6a:e3:e5:b5:76: 5b:8a:e4:43:20:e4:8a:64:e7:ae:21:8f:e5:16:a7:b9:bb:6a: 9f:26:65:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUakgL0eMOr79ShmMjtr0NBqc5U9QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMwMDAwMDA5WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMWE4YWJlYTE5YWI0YTZkZmVmZWI1OTNlM2Y1MTUyOGQw MDA1OGJmNDZkZTY3MzI3MjIxMzVkZmNhM2ZhNGJjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIBIy1cAbiHSeRXofNn9+VesZbie9NeNlPvskRAJbt5k4e IpNJIgpI1SV9wfVmOf+PlVapnxEDCyYUcjMYfMEZXkjioJ4qvpbs1vksHUZICpBl LrDuVQgqAKGUSZ+3FLId+TSz30flCXo0IRJbkfvixzmUaBskEFceNmkJThKSBFfl ZqzfQAYp8dUR25RXWZUlqxXLNRTwyiEvVnGib9WN6YhbCwAGGvRwX/tLBWVoVW3r OpyTaXyVS1P3XinR4bKrWLwBznAjPSSkXCP4Wqagh/IW11713m2VTFwduTuZLMJf WdzxUI9RqPx1dyT/dOo/D640JwXV4OkO5pnwTHNfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGlLXOSpVjtvtZQYwWJgVyhx3+R8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNlMGRhY2UzLTBlMmEtNDI1Mi04YzkyLTRjN2VlYzRjMzU4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBACgBTMHMEA1ibQPODhALHhXCH2PR Pxmej5BE5nmZRUVggC8xP5aF6lzwL0yOsmoBD/y1VEXbiVTmDb26We2XBMFSNfb3 MCFH/rufIgsTNQg3UXbWtYCYkkZAKyY/S6Wd/HG4W08lE1exK2CSbGSLWopgpwnQ uPhhK+ClLOdto/LKlc5+MJS96E4XOdRojHVyWc7VAGnD4SgpeOyZK6jLcIuw/nyc Y2Buw6YcVu2Q1Rjf8XCM1c6SMiemgnfhDL0pxjKb2yjQsoKj6mT36n1kjGDtAk5h 1yrrdiNGCFD5TJRZyLbLbHhq4+W1dluK5EMg5Ipk564hj+UWp7m7ap8mZYw= -----END CERTIFICATE-----Generated at Sat Jun 7 05:02:09 2025 by rpki-client