$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa File: e41ada77-fa4f-4da3-a532-14382438f575.roa (raw, json) Hash identifier: nLg/WKuDYMJmN65dAiUeQXNV36EmgOzJvKtcSvZRQu0= Subject key identifier: EF:9F:2D:0E:96:8E:A5:6C:37:B1:DE:90:1B:61:59:E8:42:AB:8C:24 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 645A65FE29855BF4942CB3AECBAD64F358346AC3 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa Signing time: Fri 11 Apr 2025 00:10:11 +0000 ROA not before: Fri 11 Apr 2025 00:10:11 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 76.223.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:5a:65:fe:29:85:5b:f4:94:2c:b3:ae:cb:ad:64:f3:58:34:6a:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 11 00:10:11 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=a07be83270097d7887fb9578a5b5ee5d5414cca86b2d70dc1265e1fbd46b16d3, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:13:55:f0:f8:1d:98:fa:c8:55:0f:b6:ab:89: c2:00:97:8e:43:a6:95:cc:39:df:ab:6e:2b:ae:21: df:79:2d:45:61:8e:a2:31:68:04:91:83:f2:1b:23: f8:e1:e5:57:7c:fb:e0:32:36:07:79:ab:e1:f0:cd: 65:94:98:55:68:be:6f:10:ec:9b:41:d5:dd:a8:08: cb:06:a8:7d:68:fa:23:6a:31:ce:05:4a:e8:96:75: 58:57:3f:ad:cd:85:87:81:a1:6d:b2:e9:8f:7b:4c: c6:4b:71:d2:ac:5e:6c:19:91:3b:b3:a0:9a:e0:ff: 9d:5a:c7:05:8f:47:49:38:f5:8c:87:69:12:e2:90: 78:93:d6:c7:f0:f0:17:01:4d:6d:8c:9e:31:9c:f5: 46:d6:d2:6c:c5:dc:95:a5:88:06:d8:0b:0d:79:fb: 42:a9:a6:27:d0:e2:68:ad:7d:8a:99:60:36:44:25: 0c:bb:82:cb:5d:9e:88:bc:9e:ac:9c:1e:0f:4d:15: 1f:1c:5a:83:9c:f8:bc:4e:48:9b:45:66:97:22:d0: 9b:20:ed:a1:0c:4f:11:83:f9:34:81:3e:f5:85:3e: c8:fe:8f:56:84:69:e6:f3:03:b8:99:d7:bb:d0:06: 7a:35:72:28:50:cc:7e:22:66:22:43:e4:e7:2c:2e: 92:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:9F:2D:0E:96:8E:A5:6C:37:B1:DE:90:1B:61:59:E8:42:AB:8C:24 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.191.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:61:1c:80:54:a4:ce:46:3b:07:e2:48:61:80:f9:22:7e:f9: 88:44:c8:f9:13:1c:95:54:25:2f:b3:4f:9f:85:0a:54:36:37: f0:82:77:79:1f:7b:60:7a:d3:23:d8:9d:ac:bf:46:e8:17:35: dd:aa:91:30:3c:ce:bf:1b:98:31:eb:ba:a8:7d:b2:92:b6:49: b1:99:a2:05:f3:fb:63:6b:32:53:11:a3:d3:cc:25:60:43:9d: 50:6b:6a:ab:ae:fd:ae:3e:5c:83:37:43:8a:d7:d1:f2:f8:e9: 7f:95:0e:28:c8:71:cf:98:d6:86:6d:28:f9:8c:5c:ee:04:2a: f2:4d:f5:9e:51:c5:07:29:f4:db:51:a2:4f:38:18:3f:48:bf: cd:7e:fe:3d:c8:d8:a6:b3:7d:57:0c:d7:c0:87:43:44:74:b6: e5:f7:0e:77:50:a9:9d:c8:f0:5c:76:ed:15:3a:54:20:ea:d9: 19:f1:9b:8a:97:3e:71:74:9b:2f:c6:42:25:9d:8e:2d:aa:b6: a2:79:da:e1:01:6e:0c:89:7a:0b:67:9e:0a:c9:37:31:31:da: d2:0b:f5:14:78:58:80:31:38:17:93:ff:99:11:05:56:34:63: cf:eb:bd:91:dc:6e:ce:3f:e7:3f:2e:76:2f:f2:34:65:01:91: 96:c3:b0:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZFpl/imFW/SULLOuy61k81g0asMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDExMDAxMDExWhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDdiZTgzMjcwMDk3ZDc4ODdmYjk1NzhhNWI1ZWU1ZDU0 MTRjY2E4NmIyZDcwZGMxMjY1ZTFmYmQ0NmIxNmQzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyE1Xw+B2Y+shVD7aricIAl45DppXMOd+rbiuuId95LUVh jqIxaASRg/IbI/jh5Vd8++AyNgd5q+HwzWWUmFVovm8Q7JtB1d2oCMsGqH1o+iNq Mc4FSuiWdVhXP63NhYeBoW2y6Y97TMZLcdKsXmwZkTuzoJrg/51axwWPR0k49YyH aRLikHiT1sfw8BcBTW2MnjGc9UbW0mzF3JWliAbYCw15+0KppifQ4mitfYqZYDZE JQy7gstdnoi8nqycHg9NFR8cWoOc+LxOSJtFZpci0Jsg7aEMTxGD+TSBPvWFPsj+ j1aEaebzA7iZ17vQBno1cihQzH4iZiJD5OcsLpJdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU758tDpaOpWw3sd6QG2FZ6EKrjCQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2U0MWFkYTc3LWZhNGYtNGRhMy1hNTMyLTE0MzgyNDM4ZjU3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM378wDQYJKoZIhvcNAQELBQADggEBAGxhHIBUpM5GOwfiSGGA+SJ++YhE yPkTHJVUJS+zT5+FClQ2N/CCd3kfe2B60yPYnay/RugXNd2qkTA8zr8bmDHruqh9 spK2SbGZogXz+2NrMlMRo9PMJWBDnVBraquu/a4+XIM3Q4rX0fL46X+VDijIcc+Y 1oZtKPmMXO4EKvJN9Z5RxQcp9NtRok84GD9Iv81+/j3I2KazfVcM18CHQ0R0tuX3 DndQqZ3I8Fx27RU6VCDq2Rnxm4qXPnF0my/GQiWdji2qtqJ52uEBbgyJegtnngrJ NzEx2tIL9RR4WIAxOBeT/5kRBVY0Y8/rvZHcbs4/5z8udi/yNGUBkZbDsC8= -----END CERTIFICATE-----Generated at Sat Apr 26 13:24:03 2025 by rpki-client