$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: 7gN2LeFbOzfZZxVa9i9sg8exx2zvwBiRVLkWpMtdwvM= Subject key identifier: 57:2C:FB:C3:62:39:89:80:FE:B9:43:6E:F3:42:64:E1:B0:26:DE:15 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 710C364379391C39E871E6301EC3C23B6C7F65BD Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Tue 18 Feb 2025 00:00:04 +0000 ROA not before: Tue 18 Feb 2025 00:00:04 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:0c:36:43:79:39:1c:39:e8:71:e6:30:1e:c3:c2:3b:6c:7f:65:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 18 00:00:04 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:48:4e:ce:a9:d0:51:2f:10:dd:17:ea:26:d7: 3d:88:aa:cd:3b:88:e8:44:50:b5:c3:58:e6:fd:9c: 04:51:63:8f:4b:41:71:6b:0b:ad:7a:9b:6d:7f:b2: c4:f8:12:2c:e0:e4:a1:e3:62:89:eb:b8:e6:33:af: 10:2c:a5:41:64:14:39:2b:3b:6c:29:ad:76:33:07: 5a:53:18:4a:86:aa:ad:b2:54:c7:25:12:27:a6:49: 02:d1:68:e9:26:83:38:ea:ec:e6:8a:55:a9:30:5f: 4b:6a:9a:ed:b8:4d:7f:5c:b7:a9:2e:a7:12:bd:16: a4:32:b2:63:a0:34:4c:85:90:ed:41:d2:84:00:63: 21:19:cb:37:b9:e2:a7:e5:ce:fe:54:e5:6d:7b:f9: 57:9c:8e:fa:d1:e7:2e:fe:35:f6:0a:68:56:d8:f3: 77:78:3b:c2:5d:e3:22:e4:35:e9:5b:67:61:89:77: 83:d2:a4:af:5e:7f:cb:00:bc:d7:c5:a4:a5:9c:3c: bb:60:52:25:47:4a:e9:0d:6b:c2:ec:10:dd:75:00: d9:89:bc:ad:36:9d:32:39:e2:b2:17:14:5d:e3:4d: 7c:53:c2:18:7f:c6:9c:cd:3b:a5:5b:d1:fe:68:3f: 52:59:7c:48:dc:ae:8f:38:e0:3e:1d:c5:70:3b:d4: a9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:2C:FB:C3:62:39:89:80:FE:B9:43:6E:F3:42:64:E1:B0:26:DE:15 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 82:a6:86:a6:a3:c9:83:a6:6c:1f:e7:e8:79:c4:95:62:96:07: 14:07:30:86:db:0e:8c:b1:47:56:d4:db:b9:75:09:2a:f9:4c: bd:6b:26:2b:15:1c:11:55:d9:c2:55:4b:61:5d:72:44:a7:07: 13:e1:75:ec:b5:6b:f6:67:f4:6c:3a:99:d5:ad:3e:8f:83:64: 11:31:41:29:2b:32:0a:22:0b:1b:ec:4e:ad:c8:66:a0:0d:de: 13:29:33:8b:73:43:5e:81:1e:31:ae:4f:4e:fa:7c:f0:73:5f: c5:55:19:e5:00:46:05:39:fe:4e:45:6c:5b:70:46:eb:7c:75: 46:2f:84:9b:c7:a0:bf:be:c0:3b:9d:13:6a:3d:57:1f:de:25: 12:85:68:2f:08:5f:03:4e:b6:da:03:04:b0:d0:ea:6e:31:2d: 7b:2d:d5:af:57:ac:eb:7c:26:aa:c4:4f:22:7c:aa:c1:78:63: 86:c2:e7:e5:af:d6:ea:f8:ad:89:ac:d3:43:08:0f:be:c1:2e: 6a:6d:ac:2b:82:13:ae:33:e2:58:98:2a:eb:98:76:1a:9e:a6: fb:a0:f3:76:ab:98:67:d6:b2:ed:42:ae:29:59:6c:7d:a8:2f: 6a:4c:13:f1:0d:3b:20:b1:82:d9:88:69:c5:98:90:fe:5f:3d: 67:8b:1c:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcQw2Q3k5HDnoceYwHsPCO2x/Zb0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMjE4MDAwMDA0WhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDVjNTBhNGQ1MTcyYmNiM2YwODk1ODE1NmY2MGQ3M2Ey OTMwYjZmZGYwNWQ5Y2IyMjEwNzNkMzYxYjIwMTM4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChSE7OqdBRLxDdF+om1z2Iqs07iOhEULXDWOb9nARRY49L QXFrC616m21/ssT4Eizg5KHjYonruOYzrxAspUFkFDkrO2wprXYzB1pTGEqGqq2y VMclEiemSQLRaOkmgzjq7OaKVakwX0tqmu24TX9ct6kupxK9FqQysmOgNEyFkO1B 0oQAYyEZyze54qflzv5U5W17+VecjvrR5y7+NfYKaFbY83d4O8Jd4yLkNelbZ2GJ d4PSpK9ef8sAvNfFpKWcPLtgUiVHSukNa8LsEN11ANmJvK02nTI54rIXFF3jTXxT whh/xpzNO6Vb0f5oP1JZfEjcro844D4dxXA71KkDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVyz7w2I5iYD+uUNu80Jk4bAm3hUwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAIKmhqajyYOmbB/n6HnElWKWBxQH MIbbDoyxR1bU27l1CSr5TL1rJisVHBFV2cJVS2FdckSnBxPhdey1a/Zn9Gw6mdWt Po+DZBExQSkrMgoiCxvsTq3IZqAN3hMpM4tzQ16BHjGuT076fPBzX8VVGeUARgU5 /k5FbFtwRut8dUYvhJvHoL++wDudE2o9Vx/eJRKFaC8IXwNOttoDBLDQ6m4xLXst 1a9XrOt8JqrETyJ8qsF4Y4bC5+Wv1ur4rYms00MID77BLmptrCuCE64z4liYKuuY dhqepvug83armGfWsu1CrilZbH2oL2pME/ENOyCxgtmIacWYkP5fPWeLHMw= -----END CERTIFICATE-----Generated at Thu Mar 13 23:32:19 2025 by rpki-client