$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa File: 60789a29-f516-47ec-9154-b2b610f7282e.roa (raw, json) Hash identifier: oi4zSG0dsebf/YGQar3KSIYfxJ4tn12PPDGT9GQnb8w= Subject key identifier: 75:C3:10:16:68:E1:97:34:B7:CA:86:C9:8C:0F:9A:EE:22:BB:72:13 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 143C622702ABEAFA82BA104B9920A8C6F3FB641E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa Signing time: Fri 30 May 2025 00:00:09 +0000 ROA not before: Fri 30 May 2025 00:00:09 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:3c:62:27:02:ab:ea:fa:82:ba:10:4b:99:20:a8:c6:f3:fb:64:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 30 00:00:09 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=021ef59fe9bb464cb4bc22e5419d8cf12d1108a488752798487950ea86016d5d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:a9:63:aa:c6:04:5f:54:c7:ce:0e:85:5d:8c: c4:4e:0b:73:3e:06:40:ef:6e:49:6b:1c:a1:28:8a: b5:0b:9f:a9:10:a7:93:09:4b:45:58:af:c4:18:ca: 52:3a:61:4f:73:11:58:fd:77:d1:2f:30:8c:76:19: d7:54:21:1a:23:41:ce:20:d2:b6:ca:d5:62:78:84: 0e:5c:ff:a0:e5:60:50:7a:20:55:3f:ab:37:ae:f8: 06:ec:b5:1c:17:ca:d3:89:c3:49:a7:0f:41:2c:bf: ac:9a:05:8f:00:46:1d:b6:ce:06:9e:d5:ba:d1:41: 71:53:f9:9b:7e:c9:1c:88:7c:c0:e6:c5:7f:48:99: 6b:89:f7:0f:d0:4e:c1:50:4d:b9:30:17:a6:9e:31: da:69:0a:cd:c8:d2:0f:41:13:9e:e3:28:23:45:79: 82:a8:6f:bd:aa:a1:11:54:69:a5:c0:a4:ed:d8:64: 6b:8c:c6:b8:e7:6d:2a:06:d1:17:dc:b2:2f:ee:a7: 9a:ca:c9:fd:8c:17:a5:8b:fe:d1:62:64:70:48:ba: 40:b8:e4:50:21:17:c5:2c:1b:3b:4f:be:09:61:84: c8:30:cc:46:19:4c:33:1a:c9:69:d8:22:1e:dc:31: 53:4d:d3:25:a8:4a:93:45:5b:af:c9:ef:16:93:89: 3c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:C3:10:16:68:E1:97:34:B7:CA:86:C9:8C:0F:9A:EE:22:BB:72:13 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 01:17:0f:79:1f:d8:ca:10:c7:54:5e:d0:7a:6f:21:01:96:88: d0:93:9e:c9:ce:ed:46:ba:b0:5a:45:99:70:98:84:d2:8a:e7: 01:27:b1:18:a0:29:c6:fc:51:72:cb:a9:e6:ec:00:ac:a0:27: f0:43:1a:e3:a5:ce:a2:88:99:6f:be:3b:d7:44:c5:fb:50:31: 72:c6:b9:d8:58:7a:b5:38:c9:b6:ab:92:f2:ac:f3:17:2c:1c: 87:df:32:24:95:d3:8d:37:2e:c6:56:ba:aa:3e:09:ef:84:33: f3:dd:6b:71:aa:fd:fa:74:b3:21:7a:d7:f4:0e:4e:5b:11:1a: 70:1e:6d:0c:99:ae:8f:be:ee:20:12:38:eb:eb:90:4e:91:19: 0f:ad:98:69:96:0d:bd:03:1e:be:12:1f:86:2a:05:38:71:38: ab:94:db:60:12:10:78:0d:4b:e9:a4:f9:17:64:22:7f:b4:e4: 3b:2e:13:df:ac:16:ea:27:ce:ee:92:bd:5c:ef:1b:9e:71:0d: 37:eb:a4:ea:88:25:57:a0:ef:12:bc:00:ec:58:54:a1:c4:98: fe:d1:9a:08:19:ce:0d:b4:15:84:51:9c:17:17:3e:46:4e:71: fa:71:11:16:f4:9b:6a:8d:fe:c4:13:58:99:a6:a8:95:58:ae: d8:06:87:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFDxiJwKr6vqCuhBLmSCoxvP7ZB4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMwMDAwMDA5WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjFlZjU5ZmU5YmI0NjRjYjRiYzIyZTU0MTlkOGNmMTJk MTEwOGE0ODg3NTI3OTg0ODc5NTBlYTg2MDE2ZDVkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwqWOqxgRfVMfODoVdjMROC3M+BkDvbklrHKEoirULn6kQ p5MJS0VYr8QYylI6YU9zEVj9d9EvMIx2GddUIRojQc4g0rbK1WJ4hA5c/6DlYFB6 IFU/qzeu+AbstRwXytOJw0mnD0Esv6yaBY8ARh22zgae1brRQXFT+Zt+yRyIfMDm xX9ImWuJ9w/QTsFQTbkwF6aeMdppCs3I0g9BE57jKCNFeYKob72qoRFUaaXApO3Y ZGuMxrjnbSoG0Rfcsi/up5rKyf2MF6WL/tFiZHBIukC45FAhF8UsGztPvglhhMgw zEYZTDMayWnYIh7cMVNN0yWoSpNFW6/J7xaTiTxxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdcMQFmjhlzS3yobJjA+a7iK7chMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzYwNzg5YTI5LWY1MTYtNDdlYy05MTU0LWIyYjYxMGY3MjgyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBAAEXD3kf2MoQx1Re0HpvIQGWiNCT nsnO7Ua6sFpFmXCYhNKK5wEnsRigKcb8UXLLqebsAKygJ/BDGuOlzqKImW++O9dE xftQMXLGudhYerU4ybarkvKs8xcsHIffMiSV0403LsZWuqo+Ce+EM/Pda3Gq/fp0 syF61/QOTlsRGnAebQyZro++7iASOOvrkE6RGQ+tmGmWDb0DHr4SH4YqBThxOKuU 22ASEHgNS+mk+RdkIn+05DsuE9+sFuonzu6SvVzvG55xDTfrpOqIJVeg7xK8AOxY VKHEmP7RmggZzg20FYRRnBcXPkZOcfpxERb0m2qN/sQTWJmmqJVYrtgGh6A= -----END CERTIFICATE-----Generated at Wed Jun 4 11:25:08 2025 by rpki-client