$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e7138651-9d24-41c2-8af2-d0a2f7645ca5.roa File: e7138651-9d24-41c2-8af2-d0a2f7645ca5.roa (raw, json) Hash identifier: 1UePX5Q7gNy7i6FTg+ng23o5FErxeYxtO/TaszH5nQo= Subject key identifier: 90:FF:7D:96:B2:25:8B:6B:86:F9:AF:AE:0C:D9:A7:C0:D7:23:7E:F7 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 616A5758215A07B163DDBBF69596D58D3F31B348 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e7138651-9d24-41c2-8af2-d0a2f7645ca5.roa Signing time: Sat 26 Apr 2025 00:00:03 +0000 ROA not before: Sat 26 Apr 2025 00:00:03 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:6a:57:58:21:5a:07:b1:63:dd:bb:f6:95:96:d5:8d:3f:31:b3:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 26 00:00:03 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=c474a6425a350975cab0f5db8412b4b06b71be33b1580b83eb70d6d476cbf32e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8d:65:f3:38:bb:8f:dc:2b:97:5e:d3:25:21: 6d:81:0d:b6:04:2c:34:0a:87:94:2b:12:4c:0a:7b: 14:1f:18:3e:5a:68:33:2b:aa:dc:b4:77:e3:24:1a: 7f:76:c2:bb:66:8d:d4:b5:57:1a:ec:ec:ef:91:2d: 91:19:b7:84:84:f7:67:90:ae:b7:1e:42:7f:e0:02: 1f:a2:1e:dd:a7:c3:3a:35:1f:1c:33:11:41:6c:82: a6:58:e4:4a:b0:99:a7:00:1a:7e:68:8c:c0:60:52: ff:2c:6f:d5:5d:a2:d6:46:f7:8d:53:36:8f:27:c3: e1:d8:a1:e8:ec:b9:17:94:33:f4:3a:4e:c9:b8:26: 9f:c6:12:91:76:9a:10:9e:ff:0e:46:7b:4e:d9:ef: f0:47:f9:38:29:e8:8b:f7:db:05:02:cc:c0:b0:bd: b0:18:08:bc:a5:cf:f8:4e:3a:7d:d5:8e:d0:85:5b: cb:73:2e:d9:38:49:b5:0c:54:52:fb:7c:e7:33:fb: 0d:6d:b8:94:10:80:4e:85:80:dd:0b:4e:a9:2a:56: 42:b9:c0:57:35:a5:e1:5b:e5:c4:ad:75:4c:39:a8: fe:86:ab:66:9a:e7:9d:5d:ae:c9:93:a8:ef:e7:1c: b8:84:00:52:e0:17:ba:fc:27:28:09:97:aa:93:67: cd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FF:7D:96:B2:25:8B:6B:86:F9:AF:AE:0C:D9:A7:C0:D7:23:7E:F7 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e7138651-9d24-41c2-8af2-d0a2f7645ca5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.163.0/24 Signature Algorithm: sha256WithRSAEncryption 78:52:49:8d:4d:17:f0:5b:b2:f8:9c:e2:d5:29:59:75:3a:ef: 23:37:f5:19:28:69:1e:35:ef:65:93:b3:56:6e:d2:fb:a6:66: ce:50:ea:fd:65:92:52:39:a2:59:37:af:8d:21:a1:d0:54:f0: 6c:f8:a6:e5:3c:b8:78:84:37:81:10:21:55:72:9b:66:a7:06: 9e:d8:c3:6d:11:c6:e9:e5:62:5d:04:2f:c2:14:a3:4e:05:2f: bd:80:8a:76:bb:91:0a:aa:79:a0:45:23:29:c1:0b:80:da:f4: e6:20:a2:ea:88:7f:3f:cf:81:d1:14:ec:db:5a:b7:53:47:57: 72:42:38:bf:ae:54:bd:a6:9a:e0:41:f4:98:80:e5:56:eb:b4: 0c:c8:16:d0:96:e2:6a:91:09:84:66:fa:74:e2:c0:c9:e5:0a: 46:61:3d:ce:11:59:6b:68:8c:72:9a:8f:2f:8f:9e:09:b6:b8: d6:3e:65:2b:eb:4c:e7:c9:0b:5c:f4:a4:7a:c6:a8:6b:a6:77: 22:09:43:41:e1:4c:13:5a:02:2c:7e:bf:f5:57:e9:19:a4:a8: 64:db:e5:81:8c:5d:55:d8:58:fa:93:24:68:9e:e6:e8:95:2e: 9d:26:34:e3:72:5c:e1:ad:62:2c:64:98:b1:e1:6a:42:17:51: 1f:63:9e:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYWpXWCFaB7Fj3bv2lZbVjT8xs0gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDI2MDAwMDAzWhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDc0YTY0MjVhMzUwOTc1Y2FiMGY1ZGI4NDEyYjRiMDZi NzFiZTMzYjE1ODBiODNlYjcwZDZkNDc2Y2JmMzJlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqjWXzOLuP3CuXXtMlIW2BDbYELDQKh5QrEkwKexQfGD5a aDMrqty0d+MkGn92wrtmjdS1Vxrs7O+RLZEZt4SE92eQrrceQn/gAh+iHt2nwzo1 HxwzEUFsgqZY5EqwmacAGn5ojMBgUv8sb9VdotZG941TNo8nw+HYoejsuReUM/Q6 Tsm4Jp/GEpF2mhCe/w5Ge07Z7/BH+Tgp6Iv32wUCzMCwvbAYCLylz/hOOn3VjtCF W8tzLtk4SbUMVFL7fOcz+w1tuJQQgE6FgN0LTqkqVkK5wFc1peFb5cStdUw5qP6G q2aa551drsmTqO/nHLiEAFLgF7r8JygJl6qTZ81tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkP99lrIli2uG+a+uDNmnwNcjfvcwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2U3MTM4NjUxLTlkMjQtNDFjMi04YWYyLWQwYTJmNzY0NWNhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADY3aMwDQYJKoZIhvcNAQELBQADggEBAHhSSY1NF/Bbsvic4tUpWXU67yM3 9RkoaR4172WTs1Zu0vumZs5Q6v1lklI5olk3r40hodBU8Gz4puU8uHiEN4EQIVVy m2anBp7Yw20RxunlYl0EL8IUo04FL72Aina7kQqqeaBFIynBC4Da9OYgouqIfz/P gdEU7Ntat1NHV3JCOL+uVL2mmuBB9JiA5VbrtAzIFtCW4mqRCYRm+nTiwMnlCkZh Pc4RWWtojHKajy+Pngm2uNY+ZSvrTOfJC1z0pHrGqGumdyIJQ0HhTBNaAix+v/VX 6RmkqGTb5YGMXVXYWPqTJGie5uiVLp0mNONyXOGtYixkmLHhakIXUR9jnrg= -----END CERTIFICATE-----Generated at Sat Apr 26 17:43:01 2025 by rpki-client