$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa File: 69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa (raw, json) Hash identifier: uemuXNYLXBsOyyLOEkwhL177f02SX2mEq07eDxd7+Z8= Subject key identifier: 0A:2D:F4:05:7A:64:5E:02:69:96:73:C4:89:49:A6:69:C6:32:57:49 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0BBA3CF89879F3793ECDACF7148D7106588F5EDA Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa Signing time: Sat 31 May 2025 00:10:16 +0000 ROA not before: Sat 31 May 2025 00:10:16 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:ba:3c:f8:98:79:f3:79:3e:cd:ac:f7:14:8d:71:06:58:8f:5e:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:10:16 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=1e391632a3ea5453f50ce9663ca8f10054ae7eed8cc391fb07af2339ec57fdfd, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:36:ab:36:81:71:ea:c8:7c:b2:11:92:c7:4c: f8:b3:c9:21:80:92:a1:d7:3f:b2:51:f5:08:66:33: bf:d0:aa:e0:49:43:8b:29:17:1b:8e:3e:9a:55:5e: 3d:d9:4f:ac:b3:fb:0c:fb:50:2f:ec:95:d9:6b:78: 9b:83:37:90:15:41:a8:f2:20:b3:07:01:e5:ed:cc: 1c:d2:ac:db:75:8c:e6:0e:39:47:d5:58:5a:09:04: f4:10:65:72:56:35:bf:3c:b5:39:3b:10:17:cd:cd: 9b:72:66:3f:0a:bc:b1:8c:3e:f3:ba:06:36:b4:ed: dd:78:45:4d:a4:cb:5a:70:ac:cd:1a:16:93:53:d4: 03:cb:c6:8e:25:5c:49:f5:7b:e4:a2:6b:0c:64:13: 27:53:1d:1b:d8:21:2f:fd:df:f4:fe:7a:00:16:c9: e4:bd:34:13:00:f8:02:38:52:36:7f:09:4e:9f:cf: 02:83:ce:7b:fa:3f:67:d9:8a:a7:5b:67:c0:7d:81: 98:94:ae:10:15:04:3e:36:72:7b:b7:8e:7a:5f:ef: bf:0a:18:c9:97:19:f9:21:1c:8c:41:d6:53:8d:56: 4c:80:bd:f9:c7:61:3f:32:f7:42:a1:45:bd:cb:4d: 59:e0:03:f7:08:d1:b2:b9:f6:a5:52:44:83:ea:19: a0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:2D:F4:05:7A:64:5E:02:69:96:73:C4:89:49:A6:69:C6:32:57:49 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.176.0/24 Signature Algorithm: sha256WithRSAEncryption 18:50:4e:13:68:44:c6:0e:64:f5:16:ff:30:d3:45:74:0b:e5: ff:d2:6c:ec:47:c9:05:f2:29:28:fd:3a:04:87:93:52:ce:e9: 0d:31:d0:96:af:bc:c7:5d:65:d3:ed:46:0f:23:af:c9:0a:d5: ed:95:87:89:53:7d:31:fb:30:4f:ff:10:2e:bc:a3:4e:f4:b0: a5:dd:5c:61:24:94:8e:3c:2d:f7:f4:c4:07:fd:f1:ec:dc:38: cb:49:dc:3b:41:2b:02:eb:aa:66:ce:9e:e2:de:c8:43:97:24: 92:2e:72:43:22:dc:bd:0c:f9:0b:54:cf:59:e5:de:eb:48:2c: 8e:c1:e5:fc:c1:c4:38:a2:c3:f0:2b:2e:af:5c:ba:40:c3:2b: 6d:b5:4a:1c:f6:8d:a7:35:55:ee:01:16:34:a1:c8:91:51:78: 1a:af:ab:5c:0a:95:83:91:66:c9:25:02:4a:d4:ed:5c:2d:16: fb:f7:9d:c5:65:05:50:13:ea:8f:66:93:06:1a:e4:27:c5:4c: 32:7f:4a:cd:37:36:f7:77:b2:16:04:b2:5a:8c:f2:7b:4b:9f: 98:16:d6:c8:b0:92:2f:a2:0e:5e:26:6d:46:ef:cf:d6:21:07: 69:e6:64:16:86:0c:4d:e3:97:6c:bc:ad:f2:4e:6e:c1:ff:da: e9:a5:93:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC7o8+Jh583k+zaz3FI1xBliPXtowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAxMDE2WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTM5MTYzMmEzZWE1NDUzZjUwY2U5NjYzY2E4ZjEwMDU0 YWU3ZWVkOGNjMzkxZmIwN2FmMjMzOWVjNTdmZGZkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTNqs2gXHqyHyyEZLHTPizySGAkqHXP7JR9QhmM7/QquBJ Q4spFxuOPppVXj3ZT6yz+wz7UC/sldlreJuDN5AVQajyILMHAeXtzBzSrNt1jOYO OUfVWFoJBPQQZXJWNb88tTk7EBfNzZtyZj8KvLGMPvO6Bja07d14RU2ky1pwrM0a FpNT1APLxo4lXEn1e+SiawxkEydTHRvYIS/93/T+egAWyeS9NBMA+AI4UjZ/CU6f zwKDznv6P2fZiqdbZ8B9gZiUrhAVBD42cnu3jnpf778KGMmXGfkhHIxB1lONVkyA vfnHYT8y90KhRb3LTVngA/cI0bK59qVSRIPqGaBbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCi30BXpkXgJplnPEiUmmacYyV0kwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzY5ODA4OTY4LWU1MWEtNGIyYi04ZjRiLTBhZGQ3YTRkZGE1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37AwDQYJKoZIhvcNAQELBQADggEBABhQThNoRMYOZPUW/zDTRXQL5f/S bOxHyQXyKSj9OgSHk1LO6Q0x0JavvMddZdPtRg8jr8kK1e2Vh4lTfTH7ME//EC68 o070sKXdXGEklI48Lff0xAf98ezcOMtJ3DtBKwLrqmbOnuLeyEOXJJIuckMi3L0M +QtUz1nl3utILI7B5fzBxDiiw/ArLq9cukDDK221Shz2jac1Ve4BFjShyJFReBqv q1wKlYORZsklAkrU7VwtFvv3ncVlBVAT6o9mkwYa5CfFTDJ/Ss03Nvd3shYEslqM 8ntLn5gW1siwki+iDl4mbUbvz9YhB2nmZBaGDE3jl2y8rfJObsH/2umlk0Q= -----END CERTIFICATE-----Generated at Sat Jun 14 06:26:19 2025 by rpki-client