$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa File: e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa (raw, json) Hash identifier: 55SAxnFZp5VCdR5VItLiFzmGcuY8tEzMhvdDixIy108= Subject key identifier: 8E:99:01:EF:6E:24:BD:E6:50:4E:50:13:66:EB:6D:DF:88:6D:F6:44 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2DC2B99D4EDB5C01A7CF7C4F5D54735147AA76BB Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa Signing time: Sat 31 May 2025 00:10:05 +0000 ROA not before: Sat 31 May 2025 00:10:05 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:c2:b9:9d:4e:db:5c:01:a7:cf:7c:4f:5d:54:73:51:47:aa:76:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:10:05 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=17f3b705d5b65708e3fe5325fb01e9c04689367ac5ab69d3d0e2a16d249941ff, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4c:86:a1:cf:ca:1e:34:99:0d:1c:a4:07:8a: 23:c7:00:90:02:86:fa:c6:7b:25:8e:05:cb:af:0a: 67:a3:80:19:c7:67:e0:6a:c8:f0:b4:13:c1:e7:29: 52:64:e7:3a:df:88:98:5e:95:af:d2:96:0d:4e:b8: ad:ba:9f:b5:b0:6c:45:03:00:4b:49:2e:1e:d2:d5: d1:14:bf:80:8f:b8:20:e1:c1:39:29:01:8b:6d:d7: fb:e9:98:41:06:1c:1c:85:b0:1b:14:cb:2a:65:03: e2:21:33:60:23:fe:08:72:ae:e6:1a:91:e1:12:8d: ac:22:cb:2f:d4:f4:71:9b:f7:be:7a:15:dc:c4:57: 7e:c3:ca:f2:06:1e:a4:75:fb:ef:b1:43:2a:b9:de: 96:f1:a2:1a:21:75:f2:a1:c6:c6:c3:6a:c3:6e:d4: 59:22:c5:98:8e:12:f5:d5:d0:d2:df:4a:1d:c6:92: 8e:0d:08:31:60:89:bc:cf:b5:5b:b3:0d:35:b3:c2: 4e:ad:80:ce:36:d7:51:43:13:b0:57:27:dc:15:6b: 5e:6b:74:2d:e6:de:33:be:4c:04:20:c7:a4:ee:2a: c1:57:45:9d:f4:eb:3b:e8:fb:72:73:53:02:ae:4b: 8d:21:a7:8d:5d:fb:c6:e0:ac:cc:fa:a9:fd:7e:a2: d0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:99:01:EF:6E:24:BD:E6:50:4E:50:13:66:EB:6D:DF:88:6D:F6:44 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.190.0/24 Signature Algorithm: sha256WithRSAEncryption 41:40:a8:e4:65:9e:f0:3b:31:0a:10:1d:0c:e0:d2:90:34:a8: 1f:f6:83:39:d4:4d:a0:28:ea:e9:82:18:1f:b9:93:5c:f8:d3: 66:3e:03:e4:28:04:8f:f6:94:79:89:c2:f2:c6:78:d0:2f:8c: 69:73:27:de:69:d0:04:e9:06:9a:d7:89:5e:95:fb:f5:d3:c1: fc:4c:ea:f7:8f:d8:59:53:c1:6f:6a:23:a3:88:b8:93:bd:ef: e3:fa:1a:61:dd:07:50:29:80:92:0b:a3:78:c8:6e:8c:42:13: 38:2e:11:c8:ec:b2:8d:0e:e3:1e:3c:80:b7:29:31:90:80:21: 00:2f:05:95:58:f1:cb:c9:fa:3d:9a:52:a8:7a:97:82:62:37: 87:d2:e7:fc:71:9a:89:f7:f1:6a:48:75:dc:56:92:85:07:ea: 69:65:96:93:23:52:39:89:fe:92:a3:4a:b9:43:24:36:b8:f0: b4:ce:84:0f:34:69:50:13:d0:2f:94:77:d3:e6:3f:a3:48:61: 77:22:fa:cc:86:52:e9:e7:87:a9:2d:f4:e6:ff:77:ec:74:42: c1:18:30:04:93:54:9f:76:45:c1:e9:22:7f:e6:2b:f2:5e:42: 5f:08:c4:a6:93:06:6c:55:ba:e1:1c:86:37:67:b4:d9:79:26: 45:d1:92:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULcK5nU7bXAGnz3xPXVRzUUeqdrswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAxMDA1WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2YzYjcwNWQ1YjY1NzA4ZTNmZTUzMjVmYjAxZTljMDQ2 ODkzNjdhYzVhYjY5ZDNkMGUyYTE2ZDI0OTk0MWZmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6TIahz8oeNJkNHKQHiiPHAJAChvrGeyWOBcuvCmejgBnH Z+BqyPC0E8HnKVJk5zrfiJhela/Slg1OuK26n7WwbEUDAEtJLh7S1dEUv4CPuCDh wTkpAYtt1/vpmEEGHByFsBsUyyplA+IhM2Aj/ghyruYakeESjawiyy/U9HGb9756 FdzEV37DyvIGHqR1+++xQyq53pbxohohdfKhxsbDasNu1FkixZiOEvXV0NLfSh3G ko4NCDFgibzPtVuzDTWzwk6tgM4211FDE7BXJ9wVa15rdC3m3jO+TAQgx6TuKsFX RZ306zvo+3JzUwKuS40hp41d+8bgrMz6qf1+otBbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjpkB724kveZQTlATZutt34ht9kQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2UzYjg2OTg0LTRlYmYtNGZkZS1iNjhjLWNhMmUzZmJmNzgyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM374wDQYJKoZIhvcNAQELBQADggEBAEFAqORlnvA7MQoQHQzg0pA0qB/2 gznUTaAo6umCGB+5k1z402Y+A+QoBI/2lHmJwvLGeNAvjGlzJ95p0ATpBprXiV6V +/XTwfxM6veP2FlTwW9qI6OIuJO97+P6GmHdB1ApgJILo3jIboxCEzguEcjsso0O 4x48gLcpMZCAIQAvBZVY8cvJ+j2aUqh6l4JiN4fS5/xxmon38WpIddxWkoUH6mll lpMjUjmJ/pKjSrlDJDa48LTOhA80aVAT0C+Ud9PmP6NIYXci+syGUunnh6kt9Ob/ d+x0QsEYMASTVJ92RcHpIn/mK/JeQl8IxKaTBmxVuuEchjdntNl5JkXRkh4= -----END CERTIFICATE-----Generated at Fri Jun 6 04:29:30 2025 by rpki-client