$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa File: 5569e911-3188-427d-83a0-0e8a45b335d3.roa (raw, json) Hash identifier: wSKfX15gBds8oQY0NjD2o7lOqPA5xB9Umj6z2scFmas= Subject key identifier: 2E:32:8D:D4:C4:D2:36:78:88:BB:D1:93:16:42:10:FD:7F:63:34:80 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1A2FA844DF9D7CCF8F950CC1134CEC6A75B6CE7C Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa Signing time: Fri 11 Apr 2025 00:10:19 +0000 ROA not before: Fri 11 Apr 2025 00:10:19 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:2f:a8:44:df:9d:7c:cf:8f:95:0c:c1:13:4c:ec:6a:75:b6:ce:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 11 00:10:19 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=57319902e89ae69aba7c6e59e767c029db7b24e56fabcbb4910faecea035c8fa, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bf:16:13:8f:b3:a7:b7:80:4c:01:a4:de:be: 96:ed:71:8b:4c:5c:c8:a3:d9:cf:63:bd:33:12:f7: 79:73:18:56:7d:1b:50:7d:ec:be:71:71:f0:fd:f3: 19:2a:19:32:a7:96:3f:78:1e:7a:e6:33:71:f8:2c: a3:da:22:71:52:0e:a5:87:d6:9e:3e:1a:23:e2:72: 42:6a:58:0e:f8:72:6d:37:5b:4c:0a:21:ef:9d:5f: 44:96:6f:cc:78:4d:f7:4d:03:20:2a:68:95:e5:3b: b8:03:50:9b:27:b2:2a:ae:93:9c:e5:ca:dc:5a:1e: 1d:19:b0:26:4f:34:4b:10:2a:65:57:c3:d8:96:15: e1:74:81:a3:b8:54:49:9b:ba:37:ad:b7:7c:6e:29: 37:6b:d0:c7:f0:17:bf:8b:b8:53:34:46:67:bb:5f: 1f:7b:ed:f2:43:31:91:0d:84:82:af:f5:02:4f:58: d5:a8:60:d7:24:67:91:ae:69:c5:13:93:6d:b6:49: 08:73:5e:1d:72:c4:86:0c:89:72:14:b0:81:37:49: 24:23:1a:be:a4:6e:e6:8a:44:f3:40:9c:cc:45:2a: 69:7b:3f:c6:9f:2a:78:c7:7a:71:6d:a0:cb:36:7f: f8:c0:de:46:b6:f1:19:9d:3c:b7:a4:75:f9:f0:ad: 8a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:32:8D:D4:C4:D2:36:78:88:BB:D1:93:16:42:10:FD:7F:63:34:80 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.183.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:05:0c:dc:3e:f1:4d:26:20:64:37:24:a7:e9:05:6b:c9:af: 90:e5:be:82:b8:81:ca:5a:49:1f:e0:be:95:4f:39:eb:68:1c: 63:96:5c:75:2e:5a:2c:0a:65:c2:07:c3:11:c7:a1:67:fa:f8: e0:a1:01:a2:1a:08:d8:10:8c:21:7b:b2:64:0e:63:3a:3e:b0: d9:2b:23:01:fe:bc:e2:4c:0d:7a:58:fe:0b:f7:2b:96:d7:1d: e1:f1:6d:ac:02:1b:9a:da:4f:08:75:0d:2b:ed:fe:e9:aa:fa: 1d:31:07:1a:67:dc:01:5d:4b:05:11:56:49:1d:7a:b1:b9:91: be:cd:ff:60:93:41:d8:76:66:14:3c:00:b5:3c:42:c8:6e:3e: 7b:bf:99:29:54:13:97:37:c5:1a:2b:1f:40:e4:40:7d:61:94: 43:86:4d:dd:b5:e8:4b:a9:b5:8c:21:b4:6d:42:10:8d:39:e4: 1a:bc:e9:37:bc:08:33:2f:9b:56:39:cd:f3:d0:19:a6:32:b5: e1:ec:6d:1e:e4:48:86:89:99:70:33:5f:3a:0b:eb:5c:f5:ce: 7a:a2:a3:54:29:31:63:b4:55:95:f3:b5:92:21:ae:e1:d6:a0: c4:b6:ef:0b:d8:a7:ad:0e:63:de:85:e4:7a:01:d8:22:c8:da: 79:0c:f8:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGi+oRN+dfM+PlQzBE0zsanW2znwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDExMDAxMDE5WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzMxOTkwMmU4OWFlNjlhYmE3YzZlNTllNzY3YzAyOWRi N2IyNGU1NmZhYmNiYjQ5MTBmYWVjZWEwMzVjOGZhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6vxYTj7Ont4BMAaTevpbtcYtMXMij2c9jvTMS93lzGFZ9 G1B97L5xcfD98xkqGTKnlj94HnrmM3H4LKPaInFSDqWH1p4+GiPickJqWA74cm03 W0wKIe+dX0SWb8x4TfdNAyAqaJXlO7gDUJsnsiquk5zlytxaHh0ZsCZPNEsQKmVX w9iWFeF0gaO4VEmbujett3xuKTdr0MfwF7+LuFM0Rme7Xx977fJDMZENhIKv9QJP WNWoYNckZ5GuacUTk222SQhzXh1yxIYMiXIUsIE3SSQjGr6kbuaKRPNAnMxFKml7 P8afKnjHenFtoMs2f/jA3ka28RmdPLekdfnwrYoxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULjKN1MTSNniIu9GTFkIQ/X9jNIAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU1NjllOTExLTMxODgtNDI3ZC04M2EwLTBlOGE0NWIzMzVkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37cwDQYJKoZIhvcNAQELBQADggEBAC8FDNw+8U0mIGQ3JKfpBWvJr5Dl voK4gcpaSR/gvpVPOetoHGOWXHUuWiwKZcIHwxHHoWf6+OChAaIaCNgQjCF7smQO Yzo+sNkrIwH+vOJMDXpY/gv3K5bXHeHxbawCG5raTwh1DSvt/umq+h0xBxpn3AFd SwURVkkderG5kb7N/2CTQdh2ZhQ8ALU8QshuPnu/mSlUE5c3xRorH0DkQH1hlEOG Td216EuptYwhtG1CEI055Bq86Te8CDMvm1Y5zfPQGaYyteHsbR7kSIaJmXAzXzoL 61z1znqio1QpMWO0VZXztZIhruHWoMS27wvYp60OY96F5HoB2CLI2nkM+LU= -----END CERTIFICATE-----Generated at Sat Apr 26 16:32:27 2025 by rpki-client