$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa File: 5569e911-3188-427d-83a0-0e8a45b335d3.roa (raw, json) Hash identifier: bk8HiWTGbeW5aqo714+ctTTOaXoqTdyAvYpxusy+76U= Subject key identifier: 9A:2B:78:8A:82:96:02:02:26:45:CE:87:C0:FC:FB:9E:87:0D:B8:07 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 25E893480696FC0BE5E9B0FB1DF6CC002FF37929 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa Signing time: Sat 31 May 2025 00:10:19 +0000 ROA not before: Sat 31 May 2025 00:10:19 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:e8:93:48:06:96:fc:0b:e5:e9:b0:fb:1d:f6:cc:00:2f:f3:79:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:10:19 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=7c9ec1f4451bd7ba9dbdaacec8f543ae0d7af5dd4c0052f2cc4ba9a25bae01e1, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:69:4d:fe:d5:93:9f:52:cd:68:1a:a5:2d:ca: 0e:36:08:5c:34:b4:4f:29:f3:11:8e:a9:82:de:0b: e0:99:c3:85:4e:0b:39:b4:37:ad:d5:f4:5a:19:2d: f7:9a:ef:74:c7:60:cb:04:5b:d7:4d:74:f6:a8:4c: 54:76:1a:16:d5:75:ba:c6:e7:42:05:b1:10:98:5e: ce:d6:e7:a5:97:35:ee:6a:c6:39:e9:7a:17:79:18: 40:40:96:f3:e6:86:06:90:a4:a3:bb:42:b0:17:60: 55:c0:c8:d3:ff:46:60:59:86:ac:af:95:17:66:39: 12:8a:ca:6a:bf:7d:70:ee:53:b0:8e:bb:a4:50:de: 02:ad:32:44:eb:d0:bb:25:1e:db:fe:fe:05:5a:8e: 26:0c:d0:68:81:93:c4:f8:a5:a8:77:0b:6e:85:6f: 62:b9:ef:ab:9e:ff:2b:30:04:1b:c8:f7:48:69:ac: 2f:ae:89:07:b1:4e:e8:2b:af:ba:d3:ae:eb:aa:78: e7:50:97:85:ad:f5:8c:ba:ea:dc:90:df:8a:46:de: 47:f4:88:ad:1b:d3:92:00:95:6f:d8:de:32:f0:28: bf:35:b1:c3:f3:19:fa:e9:8a:3c:10:dd:5e:a6:2f: 2e:31:7c:1b:73:4a:83:04:dc:10:96:77:4f:0e:6b: 86:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:2B:78:8A:82:96:02:02:26:45:CE:87:C0:FC:FB:9E:87:0D:B8:07 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.183.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:d2:0a:1c:94:63:97:6e:ca:35:78:af:39:27:a6:fd:76:04: 08:14:65:6a:61:22:8c:fc:29:f7:15:9e:99:2f:48:c9:d5:76: 5c:fe:45:d8:03:2c:e9:41:bc:13:96:1f:95:cc:13:c5:97:c9: 4c:cb:c8:f0:8a:f6:23:67:c3:16:78:00:bb:78:b2:09:1b:5e: 52:8f:40:7a:b3:ae:4f:b1:25:5e:6a:e7:03:2a:97:a7:0e:d3: 06:a7:1b:b4:31:f6:28:84:48:af:56:83:0e:ce:a6:ed:88:2b: 12:85:e5:1c:5a:43:cc:03:87:02:a7:40:e1:36:a9:4a:c0:ef: da:f3:81:a4:0e:63:46:61:9f:35:ef:d0:08:7b:f0:17:62:dc: 14:ac:f3:13:45:eb:9f:69:54:2d:cb:49:c8:7c:2a:95:fe:cf: ab:cd:4c:34:ad:8c:56:93:27:0d:91:f4:a8:ff:60:c2:29:76: 0c:af:4c:2e:b8:16:85:87:2c:6f:7d:69:e1:76:de:79:44:65: e5:ca:e6:4d:5c:0a:af:e0:9b:01:9b:f0:d4:79:85:57:ef:8e: 10:27:69:30:46:69:c4:42:3a:df:b6:34:d9:01:e8:12:1b:35: de:c9:77:f8:4e:e8:18:a1:ef:bd:7e:37:d8:b2:24:b4:83:72: 42:b0:5d:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJeiTSAaW/Avl6bD7HfbMAC/zeSkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAxMDE5WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzllYzFmNDQ1MWJkN2JhOWRiZGFhY2VjOGY1NDNhZTBk N2FmNWRkNGMwMDUyZjJjYzRiYTlhMjViYWUwMWUxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVaU3+1ZOfUs1oGqUtyg42CFw0tE8p8xGOqYLeC+CZw4VO Czm0N63V9FoZLfea73THYMsEW9dNdPaoTFR2GhbVdbrG50IFsRCYXs7W56WXNe5q xjnpehd5GEBAlvPmhgaQpKO7QrAXYFXAyNP/RmBZhqyvlRdmORKKymq/fXDuU7CO u6RQ3gKtMkTr0LslHtv+/gVajiYM0GiBk8T4pah3C26Fb2K576ue/yswBBvI90hp rC+uiQexTugrr7rTruuqeOdQl4Wt9Yy66tyQ34pG3kf0iK0b05IAlW/Y3jLwKL81 scPzGfrpijwQ3V6mLy4xfBtzSoME3BCWd08Oa4aLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmit4ioKWAgImRc6HwPz7nocNuAcwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU1NjllOTExLTMxODgtNDI3ZC04M2EwLTBlOGE0NWIzMzVkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37cwDQYJKoZIhvcNAQELBQADggEBAIvSChyUY5duyjV4rzknpv12BAgU ZWphIoz8KfcVnpkvSMnVdlz+RdgDLOlBvBOWH5XME8WXyUzLyPCK9iNnwxZ4ALt4 sgkbXlKPQHqzrk+xJV5q5wMql6cO0wanG7Qx9iiESK9Wgw7Opu2IKxKF5RxaQ8wD hwKnQOE2qUrA79rzgaQOY0ZhnzXv0Ah78Bdi3BSs8xNF659pVC3LSch8KpX+z6vN TDStjFaTJw2R9Kj/YMIpdgyvTC64FoWHLG99aeF23nlEZeXK5k1cCq/gmwGb8NR5 hVfvjhAnaTBGacRCOt+2NNkB6BIbNd7Jd/hO6Bih771+N9iyJLSDckKwXSk= -----END CERTIFICATE-----Generated at Sat Jun 7 12:31:44 2025 by rpki-client