$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa File: ced1d856-48cb-491b-a1ab-adf22d3bad75.roa (raw, json) Hash identifier: gehY37XtVH0hsslIqXgQ9EK/wfO+Y2u8BoyDlLBWseY= Subject key identifier: E8:58:B6:30:25:C8:86:BF:9B:20:64:BC:3F:1B:5D:92:91:94:1C:0E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 43276E6C9DA2B2B03F6374930B167BD78BFF5B8B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa Signing time: Wed 23 Apr 2025 00:10:36 +0000 ROA not before: Wed 23 Apr 2025 00:10:36 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:27:6e:6c:9d:a2:b2:b0:3f:63:74:93:0b:16:7b:d7:8b:ff:5b:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:10:36 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=1fd34b4a776025a707e156c5a356018e4b945536b809dbbcb2deb8435cb41d25, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:dc:bb:26:2b:11:9a:2f:0f:06:d6:6d:88:50: a0:a7:0e:6d:4e:59:ed:c1:13:11:eb:45:39:d6:7a: eb:87:8b:61:bf:86:27:4c:23:98:ee:7f:c7:04:6e: 10:99:6b:5e:e1:dd:53:87:a9:4f:ee:4f:ba:57:33: 57:24:8d:37:69:e4:ba:9a:e6:47:17:e8:dd:72:8d: 95:24:04:71:5a:2e:8e:a7:37:ef:83:3d:05:d5:18: 8b:b9:1d:16:33:34:88:37:bc:53:be:6e:c7:3b:ef: 71:47:d6:31:42:c3:fa:f9:a0:1c:2f:7e:89:8d:5d: 6d:45:b4:3a:e7:da:a2:b5:de:16:a3:26:6b:97:10: ea:71:c8:0e:32:68:15:12:4c:f5:6a:ef:ed:c2:ab: b4:54:d1:23:cc:65:e0:37:14:d8:68:16:10:01:62: cd:9d:51:63:79:ba:b9:f8:a7:8c:34:c0:64:09:cf: 67:d4:85:35:4e:41:e3:2a:f8:65:b1:d5:d0:19:80: de:45:88:5b:bd:06:b5:4c:94:4f:6f:95:62:83:54: cd:5a:b2:7f:dc:6a:e2:64:b2:1c:6f:ff:54:b4:5e: 25:73:aa:3d:73:a3:86:5a:11:e5:07:70:30:59:b8: 2c:9a:cf:d3:e5:9f:07:aa:ca:ec:80:3c:a5:13:05: be:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:58:B6:30:25:C8:86:BF:9B:20:64:BC:3F:1B:5D:92:91:94:1C:0E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.176.0/20 Signature Algorithm: sha256WithRSAEncryption 80:64:26:fc:0b:bd:67:68:98:99:5c:d6:f1:1b:be:62:6b:64: 25:ff:63:2b:b9:12:4e:94:cf:04:7f:b4:e5:9e:94:97:58:e0: 57:46:35:c1:7c:8e:0b:28:77:df:1d:e8:ef:87:1b:22:21:8e: b3:75:7a:85:35:73:7b:77:dd:82:49:35:65:5f:90:eb:31:61: 1d:c3:cd:05:c4:f8:f1:5b:04:bd:e8:68:4d:e7:16:f4:fd:7e: 2d:40:6a:a3:4d:b7:36:0e:12:c6:e8:64:8b:d4:4f:d1:2a:1c: d9:a1:e7:76:ea:ac:17:f3:dd:b0:94:5f:f0:38:eb:5b:02:8a: 03:0c:65:29:0c:42:e6:37:e6:14:bf:8d:b9:71:6c:86:b2:1d: 04:46:9a:01:11:58:67:5e:00:e2:d5:d5:6d:a3:61:cb:3e:66: 84:f6:25:03:fd:40:9f:db:c3:c0:9e:e8:17:6e:80:83:c8:08: c2:4f:c6:b2:76:69:6d:14:59:9e:1a:66:e5:79:f4:f9:c8:84: 39:56:d0:36:b1:4f:3c:47:5b:56:81:f3:eb:a4:5d:a0:26:36: d6:a7:97:c2:f6:aa:f8:cd:a9:03:6c:cc:8a:a9:a2:0f:88:36: 75:b9:bb:85:ea:f9:c1:3f:e6:a2:6d:05:90:2c:87:2f:7a:61: 30:b4:c9:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQydubJ2isrA/Y3STCxZ714v/W4swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDIzMDAxMDM2WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZmQzNGI0YTc3NjAyNWE3MDdlMTU2YzVhMzU2MDE4ZTRi OTQ1NTM2YjgwOWRiYmNiMmRlYjg0MzVjYjQxZDI1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCY3LsmKxGaLw8G1m2IUKCnDm1OWe3BExHrRTnWeuuHi2G/ hidMI5juf8cEbhCZa17h3VOHqU/uT7pXM1ckjTdp5Lqa5kcX6N1yjZUkBHFaLo6n N++DPQXVGIu5HRYzNIg3vFO+bsc773FH1jFCw/r5oBwvfomNXW1FtDrn2qK13haj JmuXEOpxyA4yaBUSTPVq7+3Cq7RU0SPMZeA3FNhoFhABYs2dUWN5urn4p4w0wGQJ z2fUhTVOQeMq+GWx1dAZgN5FiFu9BrVMlE9vlWKDVM1asn/cauJkshxv/1S0XiVz qj1zo4ZaEeUHcDBZuCyaz9PlnweqyuyAPKUTBb65AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6Fi2MCXIhr+bIGS8PxtdkpGUHA4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NlZDFkODU2LTQ4Y2ItNDkxYi1hMWFiLWFkZjIyZDNiYWQ3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARM37AwDQYJKoZIhvcNAQELBQADggEBAIBkJvwLvWdomJlc1vEbvmJrZCX/ Yyu5Ek6UzwR/tOWelJdY4FdGNcF8jgsod98d6O+HGyIhjrN1eoU1c3t33YJJNWVf kOsxYR3DzQXE+PFbBL3oaE3nFvT9fi1AaqNNtzYOEsboZIvUT9EqHNmh53bqrBfz 3bCUX/A461sCigMMZSkMQuY35hS/jblxbIayHQRGmgERWGdeAOLV1W2jYcs+ZoT2 JQP9QJ/bw8Ce6BdugIPICMJPxrJ2aW0UWZ4aZuV59PnIhDlW0DaxTzxHW1aB8+uk XaAmNtanl8L2qvjNqQNszIqpog+INnW5u4Xq+cE/5qJtBZAshy96YTC0yXs= -----END CERTIFICATE-----Generated at Sat Apr 26 16:11:54 2025 by rpki-client