$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa File: ced1d856-48cb-491b-a1ab-adf22d3bad75.roa (raw, json) Hash identifier: EG0Iqt7eiS8MvvKFVeshiSxT5sHm8SRVNORXPaALhrQ= Subject key identifier: 3D:03:68:9B:D5:E2:BB:BE:B7:A1:7D:35:00:8E:44:F5:8B:5B:05:82 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 433EE40A283CE02218A4ED545BD5CAD3ADAD64C1 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa Signing time: Fri 13 Jun 2025 00:10:27 +0000 ROA not before: Fri 13 Jun 2025 00:10:27 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:3e:e4:0a:28:3c:e0:22:18:a4:ed:54:5b:d5:ca:d3:ad:ad:64:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 13 00:10:27 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=ded7c69d753c77a0fd7b81b751861d4cabb8b982427d14f6358d56347999c74f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:cb:1a:7f:d3:7d:e0:3f:51:9f:fe:6b:b0:b5: 1b:0e:15:12:10:f0:0e:32:36:00:55:0a:1d:09:7e: 8c:d1:b3:55:83:8e:6e:b6:37:b5:2c:1d:d3:87:b2: dd:2b:30:08:ee:7e:94:3c:4d:42:df:3b:91:5f:69: 77:fc:25:0d:34:12:fe:f0:15:67:5f:6c:f3:30:6d: 77:04:4e:d3:dc:7d:9c:96:b2:e2:23:9c:b9:5d:f2: 30:55:56:ff:36:c9:1d:e4:85:40:a0:f6:1c:1b:e2: 13:63:9d:a6:52:00:de:38:20:f3:ca:c7:a8:45:33: 02:8c:c4:93:6e:e8:ec:c4:8b:e1:20:e4:1c:dc:ef: 87:33:42:4c:ae:b6:21:d2:14:3a:b3:fc:1f:04:2b: 52:a6:75:85:5d:0c:1f:19:7c:b0:89:04:42:ff:a2: 06:7c:a7:99:68:bd:a9:93:05:2d:f6:d5:68:f9:13: 5c:a0:54:51:36:31:e1:6f:30:7f:f9:49:a1:ae:3d: 7a:1d:dc:23:51:84:a1:ca:5f:11:31:20:5c:a7:75: dd:c9:7e:97:90:22:c8:49:a2:34:f3:78:72:52:d3: 70:97:4c:e7:9b:16:b2:43:05:d9:7e:50:cc:b0:26: c1:99:79:e4:7c:22:6a:bc:eb:54:89:5d:bc:f7:db: a2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:03:68:9B:D5:E2:BB:BE:B7:A1:7D:35:00:8E:44:F5:8B:5B:05:82 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ced1d856-48cb-491b-a1ab-adf22d3bad75.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.176.0/20 Signature Algorithm: sha256WithRSAEncryption 4f:9f:07:33:b4:4b:6c:c3:7c:31:a8:6a:d2:89:79:b1:1d:b1: a9:f7:b9:16:db:0b:0d:95:d0:e0:5a:5a:aa:35:90:40:5c:7b: bc:11:de:9c:66:b7:33:19:53:9f:a4:52:bc:99:78:65:47:c1: 52:fd:b0:24:00:dc:95:74:2c:a1:26:a7:a3:9e:d5:83:10:39: 51:5a:21:ed:a4:5d:07:b2:74:bd:b7:95:c2:15:71:2d:3a:40: ec:7f:71:19:7e:61:dc:c1:60:89:b7:00:51:73:53:a0:c2:e2: e9:6b:c3:c3:1c:51:0e:2a:c1:75:46:1c:f0:07:3e:95:9d:f3: f2:89:25:fc:3a:76:31:43:b6:91:02:dd:b7:1a:44:97:f9:f3: 13:34:40:c4:db:f1:88:57:7e:d2:0d:e5:f4:59:90:bb:6d:09: 59:8a:06:f1:39:3c:03:f8:03:22:5c:49:98:09:47:0a:66:58: 86:a3:34:e0:94:48:c8:78:c1:24:bb:1a:64:bb:6b:24:42:63: 48:cf:fd:b9:9a:53:94:fb:57:a1:6b:42:e5:4a:c1:53:cf:ac: 61:28:63:46:d2:c2:fe:4b:b0:bf:a2:ff:24:34:60:8e:d5:6d: ce:b9:1c:d3:e3:9f:63:7c:a3:3a:6f:8e:c7:00:d4:bc:6b:28: e9:63:c9:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQz7kCig84CIYpO1UW9XK062tZMEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjEzMDAxMDI3WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWQ3YzY5ZDc1M2M3N2EwZmQ3YjgxYjc1MTg2MWQ0Y2Fi YjhiOTgyNDI3ZDE0ZjYzNThkNTYzNDc5OTljNzRmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLyxp/033gP1Gf/muwtRsOFRIQ8A4yNgBVCh0JfozRs1WD jm62N7UsHdOHst0rMAjufpQ8TULfO5FfaXf8JQ00Ev7wFWdfbPMwbXcETtPcfZyW suIjnLld8jBVVv82yR3khUCg9hwb4hNjnaZSAN44IPPKx6hFMwKMxJNu6OzEi+Eg 5Bzc74czQkyutiHSFDqz/B8EK1KmdYVdDB8ZfLCJBEL/ogZ8p5lovamTBS321Wj5 E1ygVFE2MeFvMH/5SaGuPXod3CNRhKHKXxExIFyndd3JfpeQIshJojTzeHJS03CX TOebFrJDBdl+UMywJsGZeeR8Imq861SJXbz326KhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPQNom9Xiu763oX01AI5E9YtbBYIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NlZDFkODU2LTQ4Y2ItNDkxYi1hMWFiLWFkZjIyZDNiYWQ3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARM37AwDQYJKoZIhvcNAQELBQADggEBAE+fBzO0S2zDfDGoatKJebEdsan3 uRbbCw2V0OBaWqo1kEBce7wR3pxmtzMZU5+kUryZeGVHwVL9sCQA3JV0LKEmp6Oe 1YMQOVFaIe2kXQeydL23lcIVcS06QOx/cRl+YdzBYIm3AFFzU6DC4ulrw8McUQ4q wXVGHPAHPpWd8/KJJfw6djFDtpEC3bcaRJf58xM0QMTb8YhXftIN5fRZkLttCVmK BvE5PAP4AyJcSZgJRwpmWIajNOCUSMh4wSS7GmS7ayRCY0jP/bmaU5T7V6FrQuVK wVPPrGEoY0bSwv5LsL+i/yQ0YI7Vbc65HNPjn2N8ozpvjscA1LxrKOljyT8= -----END CERTIFICATE-----Generated at Sat Jun 14 06:36:29 2025 by rpki-client