$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/eaef83ec-c27a-4971-921b-164f8f284067.roa File: eaef83ec-c27a-4971-921b-164f8f284067.roa (raw, json) Hash identifier: tWiybKYYtNg2Q9YOwIdE0MOpNd7KW8JwBWSvacyo8Yg= Subject key identifier: F1:D6:72:34:B6:8F:72:97:32:DE:C4:34:F8:88:FA:29:87:34:C3:CA Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6525AD29CBC15BE679A89C1700E49E8011422C00 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/eaef83ec-c27a-4971-921b-164f8f284067.roa Signing time: Fri 11 Apr 2025 00:10:06 +0000 ROA not before: Fri 11 Apr 2025 00:10:06 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:25:ad:29:cb:c1:5b:e6:79:a8:9c:17:00:e4:9e:80:11:42:2c:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 11 00:10:06 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=596a42b183d9611701160516250a94876f1ef6535910a74bee04272cd768c8f4, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:67:7b:39:78:26:45:58:23:4a:93:3e:55:31: b7:7f:71:ec:65:14:e0:88:f4:f4:29:d9:1e:78:3a: f0:b3:e0:89:c6:98:00:a3:dc:d7:b7:e6:40:29:2c: 7c:02:a7:a9:14:0e:f7:72:9e:c5:45:90:b2:69:a3: e0:2d:39:26:cd:cd:af:6a:e0:4e:b9:7e:18:5e:29: 4d:f3:e3:67:56:3c:65:7a:c0:99:32:48:35:df:6d: 28:0e:ef:8b:b7:0e:af:27:a4:e9:9b:5e:47:64:80: d0:ed:6c:ac:6a:f7:33:e6:ef:25:1b:aa:64:33:6e: 47:dd:15:5b:49:ab:1f:21:d0:ce:d6:6d:70:4e:bf: cc:e3:1f:bc:ae:1c:2c:7e:53:a6:2b:68:32:84:6e: bc:73:cc:a2:f4:43:c6:5c:e9:6a:cc:6f:27:fb:d5: b3:79:59:9f:f2:c1:2d:d9:fd:cb:75:2a:cf:1a:bf: 3d:e7:9f:49:63:32:14:2b:ca:34:2c:66:d0:11:38: c5:76:cc:5e:c0:ce:7a:d6:05:66:70:04:cc:3c:e7: a3:48:85:6a:d5:a8:84:7a:2f:d5:e1:fe:b8:25:5d: 9a:cb:0b:a1:b1:b6:dd:70:47:66:09:77:fe:85:82: 58:62:ae:80:e4:fd:e8:dd:51:40:30:58:ac:3e:3e: e3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D6:72:34:B6:8F:72:97:32:DE:C4:34:F8:88:FA:29:87:34:C3:CA X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/eaef83ec-c27a-4971-921b-164f8f284067.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.187.0/24 Signature Algorithm: sha256WithRSAEncryption 07:da:f2:2e:53:17:e8:8f:3b:3c:5c:f5:aa:da:1b:c0:19:ad: 4c:ba:38:a5:e6:84:f3:7d:a0:53:c5:36:d1:b5:1f:ae:9a:45: d4:9a:8a:90:7d:0b:21:a7:71:0c:c5:db:7a:2f:26:f2:96:79: fa:8b:ef:ee:2b:3c:cb:a7:cf:d4:82:5e:5f:c3:26:19:8e:f6: af:ba:46:09:bb:33:4f:a7:7a:3c:e4:f1:f0:1d:f8:89:d5:7c: 29:c2:09:40:35:9d:0b:0b:c4:47:c7:0b:6f:10:31:80:ff:cf: 75:c2:b7:6e:1d:9c:fe:b3:12:ec:3a:43:fd:13:cb:48:99:34: 03:b7:3b:f1:d8:09:fb:39:48:3b:4d:0c:3a:a7:dc:e5:a5:d2: c3:68:3c:4a:e3:df:ef:27:9a:8c:c9:45:09:50:b5:11:12:44: c6:19:e0:08:3a:62:30:8a:9d:26:86:21:c1:24:94:cd:36:52: 3d:c4:77:6c:12:84:51:6c:11:f6:67:a9:09:f9:b2:a7:50:d2: a2:a4:d8:66:69:34:1e:33:b7:29:c2:a9:86:83:04:d1:3c:0c: af:44:a3:87:b1:f3:d2:d1:aa:86:5d:ab:95:b4:73:a0:19:42: c6:61:97:6b:73:a2:87:c6:57:64:0a:72:79:e0:c0:cd:d3:26: 86:ca:f0:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZSWtKcvBW+Z5qJwXAOSegBFCLAAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDExMDAxMDA2WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTZhNDJiMTgzZDk2MTE3MDExNjA1MTYyNTBhOTQ4NzZm MWVmNjUzNTkxMGE3NGJlZTA0MjcyY2Q3NjhjOGY0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaZ3s5eCZFWCNKkz5VMbd/cexlFOCI9PQp2R54OvCz4InG mACj3Ne35kApLHwCp6kUDvdynsVFkLJpo+AtOSbNza9q4E65fhheKU3z42dWPGV6 wJkySDXfbSgO74u3Dq8npOmbXkdkgNDtbKxq9zPm7yUbqmQzbkfdFVtJqx8h0M7W bXBOv8zjH7yuHCx+U6YraDKEbrxzzKL0Q8Zc6WrMbyf71bN5WZ/ywS3Z/ct1Ks8a vz3nn0ljMhQryjQsZtAROMV2zF7AznrWBWZwBMw856NIhWrVqIR6L9Xh/rglXZrL C6Gxtt1wR2YJd/6FglhiroDk/ejdUUAwWKw+PuPXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8dZyNLaPcpcy3sQ0+Ij6KYc0w8owHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2VhZWY4M2VjLWMyN2EtNDk3MS05MjFiLTE2NGY4ZjI4NDA2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37swDQYJKoZIhvcNAQELBQADggEBAAfa8i5TF+iPOzxc9araG8AZrUy6 OKXmhPN9oFPFNtG1H66aRdSaipB9CyGncQzF23ovJvKWefqL7+4rPMunz9SCXl/D JhmO9q+6Rgm7M0+nejzk8fAd+InVfCnCCUA1nQsLxEfHC28QMYD/z3XCt24dnP6z Euw6Q/0Ty0iZNAO3O/HYCfs5SDtNDDqn3OWl0sNoPErj3+8nmozJRQlQtRESRMYZ 4Ag6YjCKnSaGIcEklM02Uj3Ed2wShFFsEfZnqQn5sqdQ0qKk2GZpNB4ztynCqYaD BNE8DK9Eo4ex89LRqoZdq5W0c6AZQsZhl2tzoofGV2QKcnngwM3TJobK8IM= -----END CERTIFICATE-----Generated at Sat Apr 26 18:04:54 2025 by rpki-client