$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa File: 498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa (raw, json) Hash identifier: cIVtOtcWQmMkovKgodX1eLiHjp2KrZYgCRSEkTZqAjU= Subject key identifier: 7C:7F:5F:8F:8E:0D:E6:57:F9:C4:7A:2F:23:83:32:A5:B6:78:83:C1 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 314FEE431D517CA97EB3219AF4EBA13E34902575 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa Signing time: Tue 06 May 2025 00:10:05 +0000 ROA not before: Tue 06 May 2025 00:10:05 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:4f:ee:43:1d:51:7c:a9:7e:b3:21:9a:f4:eb:a1:3e:34:90:25:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 6 00:10:05 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=f515ec05de9ef31725f82724efab756b61130419c0fce164aa0b67ae2d88e0f4, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:d0:05:17:51:47:f3:d3:ea:a3:1b:f5:b0:c3: c7:d6:f6:52:96:2a:84:c8:7f:d9:3b:d4:7f:a4:74: 67:11:72:7c:2b:2b:4f:d4:f8:e7:4a:1d:11:50:54: ae:4f:31:02:04:1b:25:52:10:b1:8f:be:43:93:87: 66:ad:04:47:70:c0:ca:5c:2a:af:18:5b:4a:f8:ee: b2:d6:6d:b0:76:f7:e2:8c:dc:6f:af:dc:d5:2a:5f: cf:2d:ee:3b:45:63:22:d1:c5:c7:53:73:df:ed:1b: 4e:18:fd:61:28:9a:9f:1b:51:d6:47:24:d4:23:bd: cf:24:e6:24:84:6c:7d:e5:22:60:a9:30:a8:fb:f6: e3:20:8d:82:05:63:4c:d3:78:5c:c7:e5:c1:da:71: b6:a9:35:cc:b1:65:d0:bb:c0:bc:3c:1f:91:cf:bf: 10:8e:b3:a4:31:a0:dc:39:ad:72:01:a6:b4:33:bd: 0b:94:25:94:ff:ff:f0:7b:4c:a3:94:bd:a9:f7:e1: 7a:bd:a8:66:17:66:35:15:c7:17:52:10:b9:e4:0f: bb:9f:e8:6c:f5:57:49:b6:b1:03:5c:f9:b4:11:72: 9d:13:fa:11:1b:f4:82:cd:b4:31:22:3d:48:d0:04: a1:97:fd:e4:44:43:84:04:d1:1c:33:8e:3c:f1:83: c7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:7F:5F:8F:8E:0D:E6:57:F9:C4:7A:2F:23:83:32:A5:B6:78:83:C1 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.186.0/24 Signature Algorithm: sha256WithRSAEncryption 94:cd:af:fa:68:cf:37:c7:89:f0:a8:fe:17:83:b4:a2:b0:7d: f5:fa:3b:d6:22:61:6e:99:65:f2:b9:62:b7:94:45:3a:ae:8d: fc:38:8f:9f:5e:05:19:be:0e:b1:44:d7:54:11:9e:05:b7:e6: 19:ac:f8:61:c8:33:86:09:33:2b:e9:fd:c8:70:6e:7f:30:a2: ca:88:81:2a:16:e5:5b:35:1c:b3:33:3d:78:a5:4f:e1:c0:b9: 92:83:75:04:a7:db:0f:57:a4:71:45:06:27:82:52:5a:83:aa: b7:68:e9:07:f3:7a:e1:23:ee:09:2f:a3:16:4b:4f:55:1d:35: bd:e5:0a:d5:e1:29:e2:c6:69:6f:1c:65:d0:25:e9:8b:26:68: 13:48:a3:84:34:5d:da:07:84:80:31:24:30:11:17:0c:f5:cc: f3:34:a0:8c:d7:d8:bb:33:d3:ec:f9:17:26:04:e1:15:88:b5: b3:0d:fc:2f:ca:9d:29:96:0e:9a:ec:8c:69:1c:ae:c2:a8:9a: 1a:7f:74:d1:3b:ab:87:9f:53:25:e6:67:86:0a:38:85:a5:91: ee:ae:ab:58:15:9c:57:36:41:4d:8f:17:4f:04:be:48:8c:92: bb:c7:a0:00:5b:0c:26:7a:46:08:3f:41:c8:74:97:d1:b1:3b: 79:bd:bf:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMU/uQx1RfKl+syGa9OuhPjSQJXUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA2MDAxMDA1WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTE1ZWMwNWRlOWVmMzE3MjVmODI3MjRlZmFiNzU2YjYx MTMwNDE5YzBmY2UxNjRhYTBiNjdhZTJkODhlMGY0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT0AUXUUfz0+qjG/Www8fW9lKWKoTIf9k71H+kdGcRcnwr K0/U+OdKHRFQVK5PMQIEGyVSELGPvkOTh2atBEdwwMpcKq8YW0r47rLWbbB29+KM 3G+v3NUqX88t7jtFYyLRxcdTc9/tG04Y/WEomp8bUdZHJNQjvc8k5iSEbH3lImCp MKj79uMgjYIFY0zTeFzH5cHacbapNcyxZdC7wLw8H5HPvxCOs6QxoNw5rXIBprQz vQuUJZT///B7TKOUvan34Xq9qGYXZjUVxxdSELnkD7uf6Gz1V0m2sQNc+bQRcp0T +hEb9ILNtDEiPUjQBKGX/eREQ4QE0Rwzjjzxg8czAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfH9fj44N5lf5xHovI4MypbZ4g8EwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzQ5OGYzMzRlLTRkYzgtNDExOC1iMWExLTRjOWExNWQxNGI5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37owDQYJKoZIhvcNAQELBQADggEBAJTNr/pozzfHifCo/heDtKKwffX6 O9YiYW6ZZfK5YreURTqujfw4j59eBRm+DrFE11QRngW35hms+GHIM4YJMyvp/chw bn8wosqIgSoW5Vs1HLMzPXilT+HAuZKDdQSn2w9XpHFFBieCUlqDqrdo6QfzeuEj 7gkvoxZLT1UdNb3lCtXhKeLGaW8cZdAl6YsmaBNIo4Q0XdoHhIAxJDARFwz1zPM0 oIzX2Lsz0+z5FyYE4RWItbMN/C/KnSmWDprsjGkcrsKomhp/dNE7q4efUyXmZ4YK OIWlke6uq1gVnFc2QU2PF08EvkiMkrvHoABbDCZ6Rgg/Qch0l9GxO3m9v6A= -----END CERTIFICATE-----Generated at Fri May 9 08:10:23 2025 by rpki-client