$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa File: 93d7471b-56b1-4f53-982e-a84765e52ef3.roa (raw, json) Hash identifier: hs/KTbIVrM/zDTb8IPmxvlywClIQ0gCRBSF7eGIXUyE= Subject key identifier: AA:D7:6C:6A:44:51:87:57:F9:71:03:58:B5:BE:EE:B2:1E:65:C8:E4 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 68631B455FE369B3B9EED0D3B8FA3F8A8B18A0D5 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa Signing time: Sat 31 May 2025 00:10:04 +0000 ROA not before: Sat 31 May 2025 00:10:04 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:63:1b:45:5f:e3:69:b3:b9:ee:d0:d3:b8:fa:3f:8a:8b:18:a0:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:10:04 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=62d399a6dddebe7cd96f4f942db911e383469ce77fb296c89ed300411e04ce2a, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:f9:ab:4d:1e:e8:6d:86:a0:94:ca:66:66:4c: 90:26:7a:7a:3c:26:10:76:a1:b4:e7:8a:65:35:69: fb:61:2d:76:c2:ee:d7:d1:b9:dd:b5:0a:86:c5:a7: c9:9c:e2:cd:c1:c5:dd:cb:f2:38:05:fa:56:1f:16: 02:06:52:9a:3e:7f:7d:83:58:0a:a4:d8:b7:50:71: 14:d3:99:f3:b7:a2:29:92:f5:15:29:9f:3c:04:44: 54:dd:3e:27:3a:ad:56:3d:9a:4f:9d:ef:f0:96:fd: 37:1f:12:21:9a:28:7f:69:6b:e1:9f:9d:eb:ea:75: 04:7f:82:c5:3c:d6:3d:c8:7a:58:1f:76:a0:44:eb: a1:97:a6:e8:28:57:b9:34:51:12:2f:92:5a:fd:8d: 73:59:a6:89:e8:56:f0:13:78:12:39:57:e1:25:5a: d8:f5:99:d5:3a:5c:18:1a:8b:dd:a0:45:0e:e8:c2: 67:d1:84:ec:6d:3d:5a:8b:14:02:90:e2:e7:74:94: d8:f2:63:24:7f:f4:6f:49:b3:84:a3:a6:10:9a:a4: 42:1e:92:e3:ab:e6:e1:1f:58:1d:77:d8:dc:5c:03: 27:97:99:9c:e8:aa:ef:f1:f5:53:e9:53:e1:8f:3c: b1:dd:74:3c:af:5c:36:2b:cf:b9:0e:1a:60:3b:f1: 0b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:D7:6C:6A:44:51:87:57:F9:71:03:58:B5:BE:EE:B2:1E:65:C8:E4 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.188.0/24 Signature Algorithm: sha256WithRSAEncryption 26:19:ec:2e:7a:f6:4a:a5:4b:58:97:8b:45:e8:e5:56:39:7e: 5d:9e:32:e3:0a:af:5e:ba:36:2c:24:1a:05:9d:94:a6:90:a1: 24:20:66:9b:5e:aa:34:de:06:6b:56:32:77:82:de:2f:75:dd: 24:a1:db:32:b3:1e:f1:57:39:df:13:27:57:09:ab:23:8b:da: 38:f9:58:f2:41:9e:7b:ad:e2:cb:80:c9:32:70:eb:5b:ad:3b: 0d:90:68:06:80:97:41:a3:4f:7f:06:7c:45:b7:87:24:74:c7: cd:ff:0e:09:e3:5f:55:56:7b:d5:d2:21:73:15:f0:81:d4:02: c1:88:06:0f:ab:49:7b:5c:9d:43:34:08:57:25:5e:46:0a:41: 84:0d:4b:09:fc:47:a5:9a:24:d7:28:9a:a4:0c:e2:84:29:9f: f6:2b:27:56:9e:39:d1:b2:43:b7:a7:49:f3:35:e2:4a:4d:63: fb:f4:d2:b9:15:27:3f:6d:3b:d4:cd:17:d3:71:67:53:20:0f: a7:b1:7d:87:33:27:5a:04:b5:68:72:4f:68:d7:23:2a:b6:e2: 5e:e2:ad:7f:f2:c3:ab:43:e1:8f:99:30:2b:37:38:ff:91:03: 8d:e1:45:64:85:be:cd:68:6c:3c:77:b3:ba:74:8c:4b:76:11: ef:82:41:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaGMbRV/jabO57tDTuPo/iosYoNUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAxMDA0WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MmQzOTlhNmRkZGViZTdjZDk2ZjRmOTQyZGI5MTFlMzgz NDY5Y2U3N2ZiMjk2Yzg5ZWQzMDA0MTFlMDRjZTJhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCW+atNHuhthqCUymZmTJAmeno8JhB2obTnimU1afthLXbC 7tfRud21CobFp8mc4s3Bxd3L8jgF+lYfFgIGUpo+f32DWAqk2LdQcRTTmfO3oimS 9RUpnzwERFTdPic6rVY9mk+d7/CW/TcfEiGaKH9pa+GfnevqdQR/gsU81j3Ielgf dqBE66GXpugoV7k0URIvklr9jXNZponoVvATeBI5V+ElWtj1mdU6XBgai92gRQ7o wmfRhOxtPVqLFAKQ4ud0lNjyYyR/9G9Js4SjphCapEIekuOr5uEfWB132NxcAyeX mZzoqu/x9VPpU+GPPLHddDyvXDYrz7kOGmA78Qt9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqtdsakRRh1f5cQNYtb7ush5lyOQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzkzZDc0NzFiLTU2YjEtNGY1My05ODJlLWE4NDc2NWU1MmVmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37wwDQYJKoZIhvcNAQELBQADggEBACYZ7C569kqlS1iXi0Xo5VY5fl2e MuMKr166NiwkGgWdlKaQoSQgZpteqjTeBmtWMneC3i913SSh2zKzHvFXOd8TJ1cJ qyOL2jj5WPJBnnut4suAyTJw61utOw2QaAaAl0GjT38GfEW3hyR0x83/DgnjX1VW e9XSIXMV8IHUAsGIBg+rSXtcnUM0CFclXkYKQYQNSwn8R6WaJNcomqQM4oQpn/Yr J1aeOdGyQ7enSfM14kpNY/v00rkVJz9tO9TNF9NxZ1MgD6exfYczJ1oEtWhyT2jX Iyq24l7irX/yw6tD4Y+ZMCs3OP+RA43hRWSFvs1obDx3s7p0jEt2Ee+CQaE= -----END CERTIFICATE-----Generated at Sat Jun 14 06:27:17 2025 by rpki-client