$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa File: e41ada77-fa4f-4da3-a532-14382438f575.roa (raw, json) Hash identifier: PUu0fXPFPgSh8+HPkBD9ST6XDw5f2mhrNJ3l8MGWH7c= Subject key identifier: DF:A0:A7:96:C6:67:C6:85:0D:FB:27:18:EB:DE:C1:E6:8E:42:77:EB Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6DDDCE48B40193AD22EFEF09D28497A1691BAF53 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa Signing time: Sat 31 May 2025 00:10:11 +0000 ROA not before: Sat 31 May 2025 00:10:11 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 76.223.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:dd:ce:48:b4:01:93:ad:22:ef:ef:09:d2:84:97:a1:69:1b:af:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:10:11 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=56d9d5b84fe4361ab3cb5cf143eb51ac4600c34a60b7aff42d35556253a3d74e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d1:04:bb:df:ff:a2:24:a7:46:b1:15:7f:f4: bc:71:1b:ff:a6:13:19:65:0b:be:a6:43:4a:a1:df: b4:ba:1c:bc:3f:62:02:6c:af:f9:a8:7a:2f:6e:de: ff:f1:2a:ac:26:d5:a2:c2:e1:06:3f:56:dc:f1:ff: be:48:cd:9f:1f:2f:ad:33:97:29:a3:ef:19:25:a9: c4:8c:e1:62:4e:8e:45:6d:bd:84:a5:df:27:c6:8f: 02:fb:a9:e9:a1:d5:8e:93:0d:91:57:f4:04:81:ba: ae:ab:76:39:48:f9:5d:10:d3:f3:fa:1d:4c:0e:2f: db:38:96:d6:9f:54:34:2d:4f:78:fd:1a:72:67:c5: ec:36:49:24:bc:b5:32:b9:7d:15:5d:a2:60:0b:bd: 34:9f:7e:b7:4c:5b:ae:8f:30:07:0a:d5:62:33:d4: 57:2c:9f:72:e8:7f:5b:9a:bc:4c:31:f5:6d:87:59: 3c:5e:d6:b6:39:83:b3:55:b3:58:38:0d:a0:75:27: d9:2e:b8:5b:a9:5d:d7:9a:a8:bb:c6:c3:c6:20:a1: 3c:c7:17:54:fe:93:e8:20:9b:37:b3:e0:ab:7d:f5: 2c:88:21:87:c7:1a:b8:f0:fa:3c:7c:fe:45:51:9b: 0f:3d:a5:8f:88:fd:6e:41:3c:f5:08:47:f8:fb:6f: 14:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A0:A7:96:C6:67:C6:85:0D:FB:27:18:EB:DE:C1:E6:8E:42:77:EB X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.191.0/24 Signature Algorithm: sha256WithRSAEncryption 36:02:19:d7:4d:db:fc:e4:36:f5:54:54:81:4b:9e:9e:05:46: 65:66:b5:23:7f:78:05:d4:98:3b:91:63:a7:38:47:35:95:5e: 35:fa:12:56:2b:e9:88:36:b5:91:f5:e0:32:78:8d:29:b9:e4: 91:3d:6c:fa:f4:02:ee:7c:f9:b0:11:1d:70:c2:1f:6b:1f:27: 8d:80:d7:e6:ec:79:c3:15:e7:26:88:c2:1d:12:29:fd:2f:e0: 23:c5:eb:8b:a3:3c:20:39:45:3d:13:46:6b:f7:e6:34:54:82: 32:36:91:8f:88:15:98:51:07:21:07:c6:91:93:c2:36:87:05: 18:ca:9a:ed:67:ec:09:0d:3a:af:50:bb:87:4d:96:d4:9e:13: 05:aa:92:d5:3b:57:8d:d4:4b:4a:e5:48:fc:00:ed:89:1d:ad: 1c:7e:d0:87:18:f0:ed:5f:d7:64:e8:17:79:ef:6f:b1:05:87: 6a:e6:f6:73:7c:5e:c2:25:d0:b6:ae:ed:66:71:63:12:ff:d1: 9f:c6:5a:11:21:2e:61:c6:66:01:0b:9f:f5:20:be:b1:c1:03: 0c:70:61:5b:5c:21:bb:d7:8c:7b:5d:fa:cd:65:92:6d:64:75: 72:de:59:80:bb:89:e9:a9:e8:b1:ec:79:b7:15:67:5a:dd:b4: af:00:6a:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbd3OSLQBk60i7+8J0oSXoWkbr1MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAxMDExWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NmQ5ZDViODRmZTQzNjFhYjNjYjVjZjE0M2ViNTFhYzQ2 MDBjMzRhNjBiN2FmZjQyZDM1NTU2MjUzYTNkNzRlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCr0QS73/+iJKdGsRV/9LxxG/+mExllC76mQ0qh37S6HLw/ YgJsr/moei9u3v/xKqwm1aLC4QY/Vtzx/75IzZ8fL60zlymj7xklqcSM4WJOjkVt vYSl3yfGjwL7qemh1Y6TDZFX9ASBuq6rdjlI+V0Q0/P6HUwOL9s4ltafVDQtT3j9 GnJnxew2SSS8tTK5fRVdomALvTSffrdMW66PMAcK1WIz1Fcsn3Lof1uavEwx9W2H WTxe1rY5g7NVs1g4DaB1J9kuuFupXdeaqLvGw8YgoTzHF1T+k+ggmzez4Kt99SyI IYfHGrjw+jx8/kVRmw89pY+I/W5BPPUIR/j7bxTZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU36CnlsZnxoUN+ycY697B5o5Cd+swHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2U0MWFkYTc3LWZhNGYtNGRhMy1hNTMyLTE0MzgyNDM4ZjU3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM378wDQYJKoZIhvcNAQELBQADggEBADYCGddN2/zkNvVUVIFLnp4FRmVm tSN/eAXUmDuRY6c4RzWVXjX6ElYr6Yg2tZH14DJ4jSm55JE9bPr0Au58+bARHXDC H2sfJ42A1+bsecMV5yaIwh0SKf0v4CPF64ujPCA5RT0TRmv35jRUgjI2kY+IFZhR ByEHxpGTwjaHBRjKmu1n7AkNOq9Qu4dNltSeEwWqktU7V43US0rlSPwA7YkdrRx+ 0IcY8O1f12ToF3nvb7EFh2rm9nN8XsIl0Lau7WZxYxL/0Z/GWhEhLmHGZgELn/Ug vrHBAwxwYVtcIbvXjHtd+s1lkm1kdXLeWYC7iemp6LHsebcVZ1rdtK8AatA= -----END CERTIFICATE-----Generated at Sun Jun 15 13:00:14 2025 by rpki-client