$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa File: b5e0d86e-0f74-41d8-a413-497ad79e414d.roa (raw, json) Hash identifier: YMfuUK7n+jdHOcodLlzjP+X/7mN7BaOU0SPGdCn5Usc= Subject key identifier: 31:96:55:50:2B:01:5F:AF:FE:1B:EE:22:74:5C:30:02:19:0E:FD:B3 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 46916EE7F73675B5B2CD5A63789201E872383621 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa Signing time: Sat 26 Apr 2025 00:00:05 +0000 ROA not before: Sat 26 Apr 2025 00:00:05 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:91:6e:e7:f7:36:75:b5:b2:cd:5a:63:78:92:01:e8:72:38:36:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 26 00:00:05 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=efe07ce565cbac666f730548ebddff5908e6c3bc7b78b0a7fdea86e118e59816, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:68:f2:38:3f:94:4b:66:d4:80:08:f8:bf:44: c5:3d:aa:87:47:ea:ca:72:e2:6b:0b:79:66:49:60: 35:a8:b0:16:e6:35:ef:5d:c2:ee:7a:f6:bd:b8:d3: e0:38:ac:2f:c6:54:7b:51:f7:5d:18:f4:94:01:0b: 75:7e:9e:72:49:50:80:42:b8:1e:c7:2b:e3:6a:9a: ab:93:53:5a:ea:fc:43:0f:1d:d8:4f:e0:72:f1:e8: 62:b2:98:6a:34:7c:3e:5b:65:cc:2b:fc:20:84:84: 5b:02:fa:1a:7a:03:bb:3b:c5:08:8e:18:a2:8f:77: e7:0e:f1:84:1e:1e:f8:6a:a0:32:22:4d:78:f5:c8: a5:19:51:ee:c2:0f:2f:67:bb:e0:28:34:e1:39:bb: a1:bb:f5:98:d4:0d:a5:d8:ba:d8:f5:87:3c:bf:41: 16:8a:9d:6f:4a:0f:71:a0:54:01:d4:2c:5d:4a:5e: f2:cc:27:9a:9d:4d:19:eb:c4:fd:8e:8d:4e:3f:cf: 5b:6e:14:ca:24:42:1f:13:8b:8b:11:55:83:09:7f: dc:da:51:e5:33:55:ea:a8:ff:c7:5a:22:e8:b5:dd: 1e:f7:40:5c:51:89:3b:34:97:b1:1d:5e:97:72:3a: cc:80:56:86:a2:52:7c:9f:6a:07:a9:a6:ec:e8:a2: d3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:96:55:50:2B:01:5F:AF:FE:1B:EE:22:74:5C:30:02:19:0E:FD:B3 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.160.0/19 Signature Algorithm: sha256WithRSAEncryption 7c:ee:f7:ee:12:3a:40:df:4d:57:2b:72:96:da:42:9c:59:ea: da:ff:7f:59:0b:df:15:99:c5:fe:33:24:01:6b:7b:23:fc:31: 8b:70:49:19:3c:02:df:40:97:23:2d:89:fb:c0:71:b8:81:6a: 92:ce:87:9f:46:79:bf:11:8c:8e:61:08:69:c4:c3:8f:61:9b: db:40:f4:9c:3b:34:9c:54:ca:df:71:b6:b0:39:97:4f:d8:52: ca:2b:32:ea:2d:17:44:f9:99:f9:c0:08:fa:74:20:02:ce:25: 95:49:d1:71:10:e8:54:71:0b:db:45:b0:fa:77:17:8c:9c:3c: 50:50:59:df:6f:88:86:32:cd:a3:0b:56:07:68:8b:dc:37:8d: 08:39:2a:bb:5a:63:a1:63:16:c7:36:60:40:70:c8:b2:66:68: 66:f4:68:3f:ca:e1:56:93:6f:85:64:05:30:12:71:55:8e:17: a3:53:31:23:f1:e7:31:96:53:3b:41:80:ec:6e:0c:e6:35:3f: af:34:12:de:4a:e3:e9:b4:1c:4f:94:a0:f4:89:fb:c4:99:52: c9:ca:4d:fc:a7:27:f9:53:ba:b9:2a:d2:e3:4d:9a:46:6d:88: 9e:57:a1:6d:8b:ea:2d:da:51:e1:d9:3b:18:f4:fc:4d:8f:7f: 9a:db:89:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURpFu5/c2dbWyzVpjeJIB6HI4NiEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDI2MDAwMDA1WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZmUwN2NlNTY1Y2JhYzY2NmY3MzA1NDhlYmRkZmY1OTA4 ZTZjM2JjN2I3OGIwYTdmZGVhODZlMTE4ZTU5ODE2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmaPI4P5RLZtSACPi/RMU9qodH6spy4msLeWZJYDWosBbm Ne9dwu569r240+A4rC/GVHtR910Y9JQBC3V+nnJJUIBCuB7HK+NqmquTU1rq/EMP HdhP4HLx6GKymGo0fD5bZcwr/CCEhFsC+hp6A7s7xQiOGKKPd+cO8YQeHvhqoDIi TXj1yKUZUe7CDy9nu+AoNOE5u6G79ZjUDaXYutj1hzy/QRaKnW9KD3GgVAHULF1K XvLMJ5qdTRnrxP2OjU4/z1tuFMokQh8Ti4sRVYMJf9zaUeUzVeqo/8daIui13R73 QFxRiTs0l7EdXpdyOsyAVoaiUnyfageppuzootNlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMZZVUCsBX6/+G+4idFwwAhkO/bMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1ZTBkODZlLTBmNzQtNDFkOC1hNDEzLTQ5N2FkNzllNDE0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXY3aAwDQYJKoZIhvcNAQELBQADggEBAHzu9+4SOkDfTVcrcpbaQpxZ6tr/ f1kL3xWZxf4zJAFreyP8MYtwSRk8At9AlyMtifvAcbiBapLOh59Geb8RjI5hCGnE w49hm9tA9Jw7NJxUyt9xtrA5l0/YUsorMuotF0T5mfnACPp0IALOJZVJ0XEQ6FRx C9tFsPp3F4ycPFBQWd9viIYyzaMLVgdoi9w3jQg5KrtaY6FjFsc2YEBwyLJmaGb0 aD/K4VaTb4VkBTAScVWOF6NTMSPx5zGWUztBgOxuDOY1P680Et5K4+m0HE+UoPSJ +8SZUsnKTfynJ/lTurkq0uNNmkZtiJ5XoW2L6i3aUeHZOxj0/E2Pf5rbifw= -----END CERTIFICATE-----Generated at Sat Apr 26 16:03:05 2025 by rpki-client