$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa File: 78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa (raw, json) Hash identifier: MXaMFK5FPfKFBJi0OI+RIG95SyAZlY0lHzXCo5Ep7DU= Subject key identifier: C8:55:A9:B9:9F:31:CC:25:7C:B1:F4:10:D1:66:6F:BA:FC:5B:3B:29 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6E78C345B9F12157C5199EA97FB70029AB622E8C Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa Signing time: Tue 06 May 2025 00:10:12 +0000 ROA not before: Tue 06 May 2025 00:10:12 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:78:c3:45:b9:f1:21:57:c5:19:9e:a9:7f:b7:00:29:ab:62:2e:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 6 00:10:12 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=800c673c8dcd7cf75e8e678a30b8d56df0aef02e52e8500732be3dbaded266ec, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1a:a9:f0:fc:34:bd:d4:e1:17:f5:18:91:bc: 0a:b1:2a:24:03:a4:14:4f:a7:98:04:03:a0:55:ad: 4b:04:f9:30:65:8a:0f:5f:fd:08:72:d2:0d:41:66: b0:1d:c6:72:78:0c:f9:84:70:3a:76:98:86:e3:e9: 64:ce:74:1f:51:41:20:15:00:ee:b4:87:3d:dc:a4: ae:9c:b8:26:38:1c:65:4c:71:35:9f:37:6d:69:cf: a0:1b:6e:fd:47:d5:5b:9c:1c:ec:bb:0e:e4:9b:12: 27:bd:0b:1e:4e:1a:65:c7:d6:be:3b:fd:83:4f:05: a4:7a:07:7a:8e:63:d1:06:13:c7:ef:60:26:4e:9e: bb:ef:18:da:b9:d1:73:d7:f4:5a:d0:db:31:f2:fc: 41:a9:26:e9:b9:35:43:f8:88:66:f0:ed:d8:72:4d: 0f:7d:dd:f1:9a:d3:1c:73:0c:4c:63:1e:5d:65:15: f9:55:8e:09:4c:72:52:fc:75:39:cc:a8:72:80:67: 22:ed:5f:e0:ad:8e:af:aa:80:94:56:a1:53:e0:55: 38:48:d3:50:54:07:e4:c1:54:a7:10:38:49:4f:02: 51:71:0e:b3:58:84:8d:d7:d5:87:36:49:8a:92:60: e6:1f:7d:95:fd:5f:39:16:ea:23:57:85:5b:8f:d0: 54:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:55:A9:B9:9F:31:CC:25:7C:B1:F4:10:D1:66:6F:BA:FC:5B:3B:29 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.185.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:d6:5c:bc:10:76:de:1d:e5:cb:c8:1e:0d:07:dd:cc:4f:78: 08:ae:df:22:7f:83:7b:b4:e8:dd:9f:16:d2:46:f1:00:24:59: bc:d7:5d:15:e4:e9:cd:bd:d4:1c:0d:a1:de:0f:4d:2c:af:e4: fb:db:b9:0d:c8:44:25:38:00:f3:e0:ef:b2:d9:e8:13:b4:44: 8d:8b:5d:57:a1:d1:0c:e9:0a:a9:ff:72:c8:7f:9a:d9:d4:9a: b0:f4:5d:ed:f3:59:45:3d:65:0d:f1:82:db:4e:fe:b9:69:5d: 88:43:2a:07:c1:d6:d0:76:51:80:b8:be:f5:4c:4b:e0:27:0f: c8:e1:d5:c7:bb:e1:dc:4f:39:d2:4b:93:43:b7:a9:da:e4:b8: 37:17:82:e3:2c:93:a4:0d:b8:4e:2b:4f:52:19:48:82:61:1a: 9a:af:bb:70:05:25:72:04:a0:a8:74:90:4e:cb:a5:7a:f9:cb: e6:ff:7f:48:f2:16:1b:a7:5d:ab:c5:79:61:a8:50:01:36:36: 46:46:3e:0d:d9:bd:c2:71:47:fd:f4:ff:7f:cb:f6:32:21:77: 66:ef:ed:22:22:f2:a3:df:91:e7:5b:04:81:e3:1f:c7:45:0b: 6d:94:a2:24:a8:ea:43:f8:1e:85:60:a2:c5:fe:88:6f:89:ac: cd:d7:c6:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbnjDRbnxIVfFGZ6pf7cAKatiLowwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA2MDAxMDEyWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDBjNjczYzhkY2Q3Y2Y3NWU4ZTY3OGEzMGI4ZDU2ZGYw YWVmMDJlNTJlODUwMDczMmJlM2RiYWRlZDI2NmVjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9Gqnw/DS91OEX9RiRvAqxKiQDpBRPp5gEA6BVrUsE+TBl ig9f/Qhy0g1BZrAdxnJ4DPmEcDp2mIbj6WTOdB9RQSAVAO60hz3cpK6cuCY4HGVM cTWfN21pz6Abbv1H1VucHOy7DuSbEie9Cx5OGmXH1r47/YNPBaR6B3qOY9EGE8fv YCZOnrvvGNq50XPX9FrQ2zHy/EGpJum5NUP4iGbw7dhyTQ993fGa0xxzDExjHl1l FflVjglMclL8dTnMqHKAZyLtX+Ctjq+qgJRWoVPgVThI01BUB+TBVKcQOElPAlFx DrNYhI3X1Yc2SYqSYOYffZX9XzkW6iNXhVuP0FSBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyFWpuZ8xzCV8sfQQ0WZvuvxbOykwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzc4YTBjZGMyLWVhMjAtNDY2Yi1iZTg3LWU5Y2Q2OWUxN2IzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37kwDQYJKoZIhvcNAQELBQADggEBAHvWXLwQdt4d5cvIHg0H3cxPeAiu 3yJ/g3u06N2fFtJG8QAkWbzXXRXk6c291BwNod4PTSyv5PvbuQ3IRCU4APPg77LZ 6BO0RI2LXVeh0QzpCqn/csh/mtnUmrD0Xe3zWUU9ZQ3xgttO/rlpXYhDKgfB1tB2 UYC4vvVMS+AnD8jh1ce74dxPOdJLk0O3qdrkuDcXguMsk6QNuE4rT1IZSIJhGpqv u3AFJXIEoKh0kE7LpXr5y+b/f0jyFhunXavFeWGoUAE2NkZGPg3ZvcJxR/30/3/L 9jIhd2bv7SIi8qPfkedbBIHjH8dFC22UoiSo6kP4HoVgosX+iG+JrM3Xxo0= -----END CERTIFICATE-----Generated at Fri May 9 08:37:53 2025 by rpki-client