$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/dce2db93-8fb7-42b9-be56-23f46b5bf4e0.roa File: dce2db93-8fb7-42b9-be56-23f46b5bf4e0.roa (raw, json) Hash identifier: fYpTCFNTa0N/K9jtgEIsj69aF1c+9t//KMlB7wpyfKw= Subject key identifier: 1D:21:83:79:D0:DF:91:D1:C2:46:9C:2C:A1:F1:3A:18:F8:38:9C:EB Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4459F27D5A05AAE377FD6B713DD1765124269E7F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/dce2db93-8fb7-42b9-be56-23f46b5bf4e0.roa Signing time: Sat 31 May 2025 00:10:09 +0000 ROA not before: Sat 31 May 2025 00:10:09 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:59:f2:7d:5a:05:aa:e3:77:fd:6b:71:3d:d1:76:51:24:26:9e:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:10:09 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=3f4ece1a449162e38e67204d5231da138dafc5e1765ce0b13ac5a50990a76de4, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:97:09:ed:fd:ae:09:ac:2d:21:ec:b5:e0:3c: b8:a7:68:de:dd:74:c0:7d:56:db:c3:17:df:94:72: f1:29:0b:7e:79:3f:08:14:ee:1e:84:c5:ab:6c:c1: a2:31:c2:1a:e3:b4:c1:d5:1a:8a:79:27:c8:00:4b: ae:be:05:8f:9c:9c:79:0a:99:c5:10:04:39:37:41: cc:24:d6:b8:39:1d:a1:68:6e:fe:c8:73:6f:68:e3: 5c:95:d4:22:42:da:e2:be:ef:c0:e2:ad:19:6d:c0: 7c:fa:9c:1b:d1:54:ad:89:5f:10:ca:4f:a3:2d:4e: 99:d0:ae:30:d8:6d:bf:6a:85:46:2b:32:f5:18:68: 58:21:ed:06:f2:90:9c:e8:c9:48:74:28:40:21:16: da:6e:51:16:a1:1f:91:89:37:38:88:86:a3:f9:05: 2c:90:08:a3:f9:fa:e6:fb:25:ac:61:be:80:cb:fc: bf:37:3b:7c:60:3c:55:19:03:e6:94:2e:9e:e0:63: d5:e7:24:f4:10:e0:6c:6c:3e:72:82:da:12:85:b7: c5:e7:ef:c9:2b:a1:45:df:46:70:6c:af:cc:f6:cb: c3:47:1a:21:16:1a:f4:7c:4c:4f:de:c9:b5:dc:37: a6:2f:c7:2b:61:38:70:b1:c5:38:aa:58:a1:96:18: 70:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:21:83:79:D0:DF:91:D1:C2:46:9C:2C:A1:F1:3A:18:F8:38:9C:EB X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/dce2db93-8fb7-42b9-be56-23f46b5bf4e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.189.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:b1:37:52:e9:f5:42:1a:41:86:fc:48:75:92:c8:f4:77:ab: 85:ba:75:d9:cc:42:f2:8b:f1:01:64:ee:41:e2:44:c5:58:64: 16:51:b7:60:2c:0a:43:72:e4:c8:f4:f0:80:26:0f:40:16:2a: 96:71:91:b4:b7:5b:94:db:34:48:45:8b:fb:4b:8c:f1:a0:47: dc:49:1e:0a:4d:6c:92:19:7b:67:bc:36:77:07:7e:f6:10:74: 67:c7:43:1b:72:f4:1d:ca:87:7d:1f:5f:a1:04:bb:af:77:83: 59:4b:57:e9:be:b9:5f:18:1c:4a:1a:4b:16:b1:39:9c:67:f3: 7b:58:42:3f:30:5b:3d:33:4a:7b:9a:af:bd:49:45:9e:73:32: 9f:d8:b0:76:9d:ba:7f:6c:96:49:dc:5b:0d:7b:e3:63:22:7b: fd:1d:22:7e:73:85:72:18:3c:c2:93:fe:7b:c3:61:ca:63:9a: d5:d5:fb:0f:03:01:36:b2:93:45:c8:12:fe:3b:f4:8b:8a:0e: b2:ca:bb:95:81:2a:81:c4:e9:66:26:7f:2d:73:68:49:5f:e7: 2d:a9:bf:02:4a:ff:2f:6c:60:a8:e6:84:13:30:06:f0:e8:f9: 04:c5:e9:d8:f1:3b:be:5f:58:15:77:5e:e2:bf:5d:2a:98:46: 55:29:82:35 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURFnyfVoFquN3/WtxPdF2USQmnn8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAxMDA5WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjRlY2UxYTQ0OTE2MmUzOGU2NzIwNGQ1MjMxZGExMzhk YWZjNWUxNzY1Y2UwYjEzYWM1YTUwOTkwYTc2ZGU0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCslwnt/a4JrC0h7LXgPLinaN7ddMB9VtvDF9+UcvEpC355 PwgU7h6ExatswaIxwhrjtMHVGop5J8gAS66+BY+cnHkKmcUQBDk3Qcwk1rg5HaFo bv7Ic29o41yV1CJC2uK+78DirRltwHz6nBvRVK2JXxDKT6MtTpnQrjDYbb9qhUYr MvUYaFgh7QbykJzoyUh0KEAhFtpuURahH5GJNziIhqP5BSyQCKP5+ub7JaxhvoDL /L83O3xgPFUZA+aULp7gY9XnJPQQ4GxsPnKC2hKFt8Xn78kroUXfRnBsr8z2y8NH GiEWGvR8TE/eybXcN6YvxythOHCxxTiqWKGWGHDnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHSGDedDfkdHCRpwsofE6GPg4nOswHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2RjZTJkYjkzLThmYjctNDJiOS1iZTU2LTIzZjQ2YjViZjRlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM370wDQYJKoZIhvcNAQELBQADggEBAC6xN1Lp9UIaQYb8SHWSyPR3q4W6 ddnMQvKL8QFk7kHiRMVYZBZRt2AsCkNy5Mj08IAmD0AWKpZxkbS3W5TbNEhFi/tL jPGgR9xJHgpNbJIZe2e8NncHfvYQdGfHQxty9B3Kh30fX6EEu693g1lLV+m+uV8Y HEoaSxaxOZxn83tYQj8wWz0zSnuar71JRZ5zMp/YsHadun9slkncWw1742Mie/0d In5zhXIYPMKT/nvDYcpjmtXV+w8DATayk0XIEv479IuKDrLKu5WBKoHE6WYmfy1z aElf5y2pvwJK/y9sYKjmhBMwBvDo+QTF6djxO75fWBV3XuK/XSqYRlUpgjU= -----END CERTIFICATE-----Generated at Fri Jun 6 03:53:37 2025 by rpki-client