$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/639621c0-050e-4e66-b3a2-1dd129de2c24.roa File: 639621c0-050e-4e66-b3a2-1dd129de2c24.roa (raw, json) Hash identifier: rzGd8oXZOmme16OVVO9QZDBu/mCIEcpdTZOMhBEnvIU= Subject key identifier: C1:9B:EF:0C:55:9B:6C:D5:3A:BE:63:D9:34:83:85:C0:BD:F5:6C:D0 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4EEB9AEA63F9F53E9D510ADED40F1A25D27C9738 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/639621c0-050e-4e66-b3a2-1dd129de2c24.roa Signing time: Wed 19 Feb 2025 00:20:35 +0000 ROA not before: Wed 19 Feb 2025 00:20:35 +0000 ROA not after: Wed 26 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:eb:9a:ea:63:f9:f5:3e:9d:51:0a:de:d4:0f:1a:25:d2:7c:97:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 19 00:20:35 2025 GMT Not After : Mar 26 23:59:59 2025 GMT Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:da:33:07:bf:c9:17:c1:d2:a3:3a:3b:b0:b9: cf:b0:4a:e9:2f:d1:ea:88:46:ec:e7:ee:e8:2a:e9: b6:0d:9a:bc:c3:40:52:06:34:75:a1:91:c4:5e:af: d3:0d:e2:34:ab:ab:bf:6b:3a:55:d3:3e:bc:96:84: 90:d2:f4:5a:30:71:33:59:54:18:c3:dd:31:d8:79: a2:7f:91:15:c8:45:79:0d:62:7d:1a:7f:17:2d:c8: 50:b0:5d:58:f6:38:dd:e5:36:cc:7d:10:c6:26:26: 91:32:22:05:22:bc:84:25:13:07:06:9e:11:aa:34: 17:06:da:8b:d5:bb:ad:08:fe:5d:2a:2f:ad:b0:19: 76:c4:5d:75:b0:36:98:f5:02:cc:83:f1:e5:b5:1b: 66:7a:68:b7:65:c8:21:59:e3:77:4e:e8:3c:ef:a0: 2b:42:17:dd:0d:24:65:e7:e1:aa:6b:38:82:a0:0a: 04:b4:60:f3:8f:06:44:77:f9:c4:93:84:26:2f:41: da:8d:e8:5b:23:d1:19:6c:8e:cb:a0:fd:a6:28:55: db:d8:11:c0:2b:74:ac:df:59:24:b8:06:5e:de:86: 29:3c:e1:2f:6f:34:e4:be:3a:33:dc:4f:f2:b1:0a: 8f:ed:86:a8:69:ae:63:93:80:93:2d:3a:d1:63:f4: ae:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:9B:EF:0C:55:9B:6C:D5:3A:BE:63:D9:34:83:85:C0:BD:F5:6C:D0 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/639621c0-050e-4e66-b3a2-1dd129de2c24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.182.0/24 Signature Algorithm: sha256WithRSAEncryption 79:21:87:15:02:a8:a7:d2:cb:6e:c1:ca:d9:a5:f0:01:37:ab: 42:ab:e0:52:9c:0c:b5:eb:f3:9c:4e:75:1e:f6:ac:62:40:e6: 31:12:44:a5:a2:bf:f8:db:cb:bd:ea:ac:d0:fa:77:64:0b:86: 85:25:59:43:64:f5:0d:8f:30:c2:2d:70:1a:01:1e:c1:e7:91: 7c:d5:1b:45:bd:45:ba:9a:c6:cf:72:3c:13:62:ce:3d:0c:8f: bd:0d:7a:4d:fb:3b:d4:43:c2:9a:02:9d:61:c5:88:45:62:24: 1f:37:31:29:91:ff:4c:17:c6:a4:40:bb:ef:b3:c4:79:eb:b2: d0:e0:75:88:92:05:cc:f4:7a:e2:c5:fe:20:b5:92:63:61:af: 82:b7:cf:24:e6:a6:43:24:fb:a3:e7:01:2b:65:95:5f:0d:c2: 3f:92:86:37:42:3e:80:80:c1:68:59:85:b6:58:22:6d:10:de: 30:1e:56:94:b0:da:d4:b2:89:ec:20:c8:48:f3:e0:3d:ce:80: 1c:cc:67:e8:bd:e0:cf:9d:8e:8a:3f:78:47:2f:b8:22:ea:ae: 83:35:76:a2:06:68:7b:6f:49:54:64:78:39:92:de:53:6d:a6: 9d:46:a4:e4:50:f0:24:0e:a0:0d:2a:15:77:03:a7:c9:96:64: a2:35:f2:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTuua6mP59T6dUQre1A8aJdJ8lzgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwMjE5MDAyMDM1WhcNMjUwMzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzhjNjRjNjhkZTg5NjA5MmY3ZDMwMjBlYmY5OTM1ZGRk YTgzNjFkYzljNmUyN2E4ODQ3MmIwOTg5YjJiMmZmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm2jMHv8kXwdKjOjuwuc+wSukv0eqIRuzn7ugq6bYNmrzD QFIGNHWhkcRer9MN4jSrq79rOlXTPryWhJDS9FowcTNZVBjD3THYeaJ/kRXIRXkN Yn0afxctyFCwXVj2ON3lNsx9EMYmJpEyIgUivIQlEwcGnhGqNBcG2ovVu60I/l0q L62wGXbEXXWwNpj1AsyD8eW1G2Z6aLdlyCFZ43dO6DzvoCtCF90NJGXn4aprOIKg CgS0YPOPBkR3+cSThCYvQdqN6Fsj0Rlsjsug/aYoVdvYEcArdKzfWSS4Bl7ehik8 4S9vNOS+OjPcT/KxCo/thqhprmOTgJMtOtFj9K6LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwZvvDFWbbNU6vmPZNIOFwL31bNAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzYzOTYyMWMwLTA1MGUtNGU2Ni1iM2EyLTFkZDEyOWRlMmMyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37YwDQYJKoZIhvcNAQELBQADggEBAHkhhxUCqKfSy27Bytml8AE3q0Kr 4FKcDLXr85xOdR72rGJA5jESRKWiv/jby73qrND6d2QLhoUlWUNk9Q2PMMItcBoB HsHnkXzVG0W9Rbqaxs9yPBNizj0Mj70Nek37O9RDwpoCnWHFiEViJB83MSmR/0wX xqRAu++zxHnrstDgdYiSBcz0euLF/iC1kmNhr4K3zyTmpkMk+6PnAStllV8Nwj+S hjdCPoCAwWhZhbZYIm0Q3jAeVpSw2tSyiewgyEjz4D3OgBzMZ+i94M+djoo/eEcv uCLqroM1dqIGaHtvSVRkeDmS3lNtpp1GpORQ8CQOoA0qFXcDp8mWZKI18no= -----END CERTIFICATE-----Generated at Thu Mar 13 23:45:40 2025 by rpki-client