$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/feb848d0-befe-434e-8b06-9622757cd5f5.roa File: feb848d0-befe-434e-8b06-9622757cd5f5.roa (raw, json) Hash identifier: stSaYi7u50gUCGazJD7k1UboGBQYBB+oGr/APRMH63U= Subject key identifier: 58:C1:DB:E4:93:CA:F2:15:91:24:79:42:6E:D1:17:E6:16:4F:94:D9 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 19D9E91500205447D64EB5971F2BA4ED478CA00E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/feb848d0-befe-434e-8b06-9622757cd5f5.roa Signing time: Wed 23 Apr 2025 00:10:35 +0000 ROA not before: Wed 23 Apr 2025 00:10:35 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:d9:e9:15:00:20:54:47:d6:4e:b5:97:1f:2b:a4:ed:47:8c:a0:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 23 00:10:35 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=33cf18c745d82098d47f3062e9e054f1a29be7613dd207f1ab3db63c54b070be, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4c:0f:6e:39:7b:d2:47:f4:59:7a:fe:03:f3: c4:cd:e1:81:62:31:1e:bb:fb:3c:29:0e:0f:08:52: 59:5d:47:8b:19:49:66:f0:3f:64:83:d1:19:35:12: ef:d0:24:7a:1e:5b:1e:32:2a:a4:40:c3:c7:89:4c: 8f:be:58:be:26:e6:1f:16:eb:2d:75:85:78:69:3a: 4d:52:e3:fc:6c:ac:47:ef:27:42:6d:45:a9:f7:e5: 41:07:b0:86:f3:53:57:d8:51:af:92:39:f2:e6:56: a7:eb:39:74:63:4d:5d:a1:94:e5:fe:4e:41:f1:bf: f8:d2:af:d4:32:b0:6e:91:4b:d0:42:ed:66:d1:21: 19:4f:06:0e:77:36:9c:f7:8a:7c:7b:12:0e:34:bb: d8:fe:1d:0c:cc:01:0a:53:c2:a3:e0:0f:5c:14:60: 7d:d0:5a:b5:06:61:89:6f:89:f5:b4:17:37:4a:13: b3:93:58:62:bb:7f:76:d0:36:b1:31:7f:d9:f4:a9: 91:dd:9c:b9:05:d0:cf:6e:22:7a:e5:9f:e5:79:0d: a4:71:fe:49:b7:47:89:74:65:b6:e9:b6:00:44:6f: 3a:af:44:66:7e:2f:17:c5:95:58:54:df:57:d6:dc: d6:0b:19:4c:28:e1:23:b6:16:73:c1:6f:f4:c4:6c: fa:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C1:DB:E4:93:CA:F2:15:91:24:79:42:6E:D1:17:E6:16:4F:94:D9 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/feb848d0-befe-434e-8b06-9622757cd5f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.180.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:41:b0:2d:47:11:dc:5d:93:75:d2:7e:41:5d:7c:c6:48:e7: 8e:83:34:0f:01:7f:2b:be:51:2c:cb:ce:b6:2e:fb:3b:d6:6e: d9:a7:50:a7:0b:57:f5:e9:b4:29:6c:c9:ad:e7:80:61:a9:e6: 1b:b1:f0:49:f6:d5:23:82:8e:1e:00:5a:c4:7c:35:48:8e:29: 43:df:e2:64:db:47:fd:f2:cd:87:5d:33:6d:45:09:5d:0f:86: f4:e5:53:21:ec:0f:e9:de:67:94:ac:fd:36:8c:62:58:14:0b: 10:21:3a:29:9c:a6:e8:1e:21:72:82:38:7c:31:25:02:b2:f9: f2:3f:4c:19:07:ec:70:c4:80:0b:6f:1d:c8:92:da:6c:ec:c2: f9:0b:fd:1f:00:df:a6:c8:08:a1:7e:38:43:47:cf:dc:c2:dc: 69:d2:b6:8e:1b:18:c1:3e:28:cc:a9:5c:b1:3a:f2:0e:0e:43: ba:36:ec:8a:58:b5:f6:bf:f1:7a:7a:60:20:98:f8:ac:a7:7f: 67:ba:ab:65:ba:05:04:27:db:d2:76:df:54:7b:60:98:9f:64: a5:c3:0f:5d:98:e3:4a:30:93:bf:4e:0b:1f:6a:f9:a6:97:98: 3c:86:4f:d4:95:64:99:b4:e5:a8:ae:bf:53:54:3d:bb:ac:40: d0:ef:ce:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGdnpFQAgVEfWTrWXHyuk7UeMoA4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDIzMDAxMDM1WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzM2NmMThjNzQ1ZDgyMDk4ZDQ3ZjMwNjJlOWUwNTRmMWEy OWJlNzYxM2RkMjA3ZjFhYjNkYjYzYzU0YjA3MGJlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyTA9uOXvSR/RZev4D88TN4YFiMR67+zwpDg8IUlldR4sZ SWbwP2SD0Rk1Eu/QJHoeWx4yKqRAw8eJTI++WL4m5h8W6y11hXhpOk1S4/xsrEfv J0JtRan35UEHsIbzU1fYUa+SOfLmVqfrOXRjTV2hlOX+TkHxv/jSr9QysG6RS9BC 7WbRIRlPBg53Npz3inx7Eg40u9j+HQzMAQpTwqPgD1wUYH3QWrUGYYlvifW0FzdK E7OTWGK7f3bQNrExf9n0qZHdnLkF0M9uInrln+V5DaRx/km3R4l0ZbbptgBEbzqv RGZ+LxfFlVhU31fW3NYLGUwo4SO2FnPBb/TEbPqxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWMHb5JPK8hWRJHlCbtEX5hZPlNkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ZlYjg0OGQwLWJlZmUtNDM0ZS04YjA2LTk2MjI3NTdjZDVmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFM37QwDQYJKoZIhvcNAQELBQADggEBACxBsC1HEdxdk3XSfkFdfMZI546D NA8Bfyu+USzLzrYu+zvWbtmnUKcLV/XptClsya3ngGGp5hux8En21SOCjh4AWsR8 NUiOKUPf4mTbR/3yzYddM21FCV0PhvTlUyHsD+neZ5Ss/TaMYlgUCxAhOimcpuge IXKCOHwxJQKy+fI/TBkH7HDEgAtvHciS2mzswvkL/R8A36bICKF+OENHz9zC3GnS to4bGME+KMypXLE68g4OQ7o27IpYtfa/8Xp6YCCY+Kynf2e6q2W6BQQn29J231R7 YJifZKXDD12Y40owk79OCx9q+aaXmDyGT9SVZJm05aiuv1NUPbusQNDvzoQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:48:41 2025 by rpki-client