$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa File: 93d7471b-56b1-4f53-982e-a84765e52ef3.roa (raw, json) Hash identifier: WNuHHq4ucgGiOQqSHDackfMYpDI5wVfWu7OTh4YPON4= Subject key identifier: 6A:5F:FF:AD:99:A0:8C:69:D8:65:F7:3F:68:EA:00:E3:C2:3E:4F:3E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4ABD61247846F56DCD696F5BC129121037EB0DFB Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa Signing time: Fri 11 Apr 2025 00:10:08 +0000 ROA not before: Fri 11 Apr 2025 00:10:08 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:bd:61:24:78:46:f5:6d:cd:69:6f:5b:c1:29:12:10:37:eb:0d:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 11 00:10:08 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=3a6b093591fbe0c8e9f756cae2018ae0b166c4e63ac468c6f83e7727c00d200f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:00:ea:c9:09:68:55:a1:a4:0f:f2:c7:4c:2b: 7b:0e:0e:0b:20:5f:c4:2a:ab:7a:28:83:d3:40:d9: 47:8e:46:b3:eb:b0:c5:57:c7:a9:89:07:51:1f:80: 26:0b:de:0c:57:20:c8:fe:67:02:85:6c:f9:98:1d: 02:e8:fd:ac:6a:39:c0:ec:7e:c4:cd:5c:fd:49:04: 7f:7e:a2:ec:35:a5:c1:a1:16:e7:94:8f:37:96:82: 72:b6:9b:3c:4b:ec:ed:2f:cb:3c:eb:1e:7c:c4:61: b9:fa:7f:61:29:55:6a:88:14:23:25:97:5e:2c:a8: d7:87:1b:c5:44:94:c1:ab:0d:d5:29:8a:c6:55:7d: 38:3f:88:cb:18:77:38:70:5a:80:96:44:39:92:30: 3c:02:b0:e8:13:00:17:79:65:b2:af:3a:d8:84:bf: b1:80:8c:3d:5e:2e:70:69:04:e9:ec:dd:e1:6e:11: 8e:ba:12:34:61:d2:a9:a1:24:c4:4f:5a:81:10:28: 50:04:29:e2:a8:ce:2a:bd:43:a9:88:af:0e:cc:e9: d9:b7:f5:37:09:cf:73:47:5c:05:89:c8:d4:cc:56: e8:c9:fb:d2:dc:72:0b:56:67:eb:62:3b:ea:fb:81: f0:07:f7:29:b9:cd:c6:42:35:cb:af:be:32:7f:59: 56:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:5F:FF:AD:99:A0:8C:69:D8:65:F7:3F:68:EA:00:E3:C2:3E:4F:3E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.188.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:ef:20:eb:82:bc:d3:f9:0a:dd:f6:61:f6:53:c2:dc:e3:fb: eb:aa:34:bc:6a:de:78:fe:cb:2d:27:b6:5a:2a:41:af:1a:9a: 01:dc:f3:44:18:6e:78:59:90:66:00:97:44:c9:4e:80:51:32: 39:fa:d5:f2:f7:9c:2d:47:49:52:49:98:5e:3b:50:bf:79:3d: cf:81:f7:54:bf:8c:59:9e:ce:c0:71:d4:d3:8f:35:49:df:b3: 1e:94:7c:bf:6d:b4:68:28:7a:9c:c5:8c:25:b2:c1:4e:5d:ec: 20:16:c7:77:47:fa:4f:16:a5:91:cc:59:19:23:c0:37:f5:b3: 11:8b:36:ab:1b:82:e5:34:6c:1d:04:ef:d9:7c:b3:eb:7c:66: cd:cf:35:ea:9e:4c:6e:f0:b7:61:c4:35:06:e0:49:c6:05:01: 60:14:38:63:5a:5d:d2:5f:68:6a:87:61:81:c1:b9:fc:47:f3: 6b:57:cb:dd:27:73:89:34:cb:25:eb:fc:af:95:7f:fd:ee:55: 95:76:7b:0a:af:56:38:79:a8:f0:34:cf:3a:e8:a4:a5:88:91: 22:28:b3:52:e6:8b:e3:62:da:8d:24:3f:0c:df:fe:87:26:f4: 03:1b:9a:68:50:64:0d:6e:b5:37:d0:5a:b1:62:48:8f:5f:f7: 34:37:be:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSr1hJHhG9W3NaW9bwSkSEDfrDfswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDExMDAxMDA4WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTZiMDkzNTkxZmJlMGM4ZTlmNzU2Y2FlMjAxOGFlMGIx NjZjNGU2M2FjNDY4YzZmODNlNzcyN2MwMGQyMDBmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5AOrJCWhVoaQP8sdMK3sODgsgX8Qqq3oog9NA2UeORrPr sMVXx6mJB1EfgCYL3gxXIMj+ZwKFbPmYHQLo/axqOcDsfsTNXP1JBH9+ouw1pcGh FueUjzeWgnK2mzxL7O0vyzzrHnzEYbn6f2EpVWqIFCMll14sqNeHG8VElMGrDdUp isZVfTg/iMsYdzhwWoCWRDmSMDwCsOgTABd5ZbKvOtiEv7GAjD1eLnBpBOns3eFu EY66EjRh0qmhJMRPWoEQKFAEKeKoziq9Q6mIrw7M6dm39TcJz3NHXAWJyNTMVujJ +9LccgtWZ+tiO+r7gfAH9ym5zcZCNcuvvjJ/WVZ7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUal//rZmgjGnYZfc/aOoA48I+Tz4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzkzZDc0NzFiLTU2YjEtNGY1My05ODJlLWE4NDc2NWU1MmVmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37wwDQYJKoZIhvcNAQELBQADggEBAH3vIOuCvNP5Ct32YfZTwtzj++uq NLxq3nj+yy0ntloqQa8amgHc80QYbnhZkGYAl0TJToBRMjn61fL3nC1HSVJJmF47 UL95Pc+B91S/jFmezsBx1NOPNUnfsx6UfL9ttGgoepzFjCWywU5d7CAWx3dH+k8W pZHMWRkjwDf1sxGLNqsbguU0bB0E79l8s+t8Zs3PNeqeTG7wt2HENQbgScYFAWAU OGNaXdJfaGqHYYHBufxH82tXy90nc4k0yyXr/K+Vf/3uVZV2ewqvVjh5qPA0zzro pKWIkSIos1Lmi+Ni2o0kPwzf/ocm9AMbmmhQZA1utTfQWrFiSI9f9zQ3vv0= -----END CERTIFICATE-----Generated at Sat Apr 26 16:05:08 2025 by rpki-client