$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: jJn4ZQrPfJPj11B+q0C659wFi7nbuD0TyTdn3bNy+e4= Subject key identifier: C8:37:80:24:15:A2:36:BC:34:31:45:7B:93:14:E5:B3:9A:A5:57:AB Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0B9CEFB2495F0F9629C5998F7FCAE240D6668EB6 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Mon 05 May 2025 15:00:09 +0000 ROA not before: Mon 05 May 2025 15:00:09 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:9c:ef:b2:49:5f:0f:96:29:c5:99:8f:7f:ca:e2:40:d6:66:8e:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 5 15:00:09 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=c3a0b74a4cc65a1f755ea2492448ea2887f022045d18f74dee735c195d2533ac, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:79:08:1f:4e:8f:4d:01:0c:e5:b6:14:d2:bc: fc:83:1f:77:ca:e2:cf:fb:de:59:50:46:a6:7e:88: 46:d4:3e:4a:8e:1e:ac:2c:e9:af:47:15:f1:7a:1f: 03:2c:cf:77:5a:76:ac:73:e3:dd:66:4c:a4:49:19: b9:2e:5c:56:55:e5:02:f0:69:d9:9a:a0:e3:32:43: 62:f3:45:80:f9:64:bb:31:86:a8:79:e1:15:d8:c7: 55:4d:79:2b:11:22:07:d6:b1:2c:6d:6d:3a:48:ca: d1:03:9c:3c:44:e2:31:99:c6:42:f9:43:f4:47:36: 87:72:63:a9:4f:91:79:ec:e7:8f:5b:54:da:6a:f0: 92:a4:2b:00:64:e3:aa:68:8c:7a:4a:b2:80:9c:75: 9b:37:b7:0b:c4:79:2d:fb:10:5b:1d:18:10:4d:f8: 50:7a:3c:14:cc:97:ac:fd:55:9f:42:f0:04:af:0c: 4f:d2:84:46:eb:c2:75:35:47:a7:7c:be:24:ab:3e: fb:ee:7a:ea:14:40:b0:a5:12:8a:f6:10:ea:24:be: c8:9e:91:16:b7:79:ed:33:ad:7b:69:5c:9d:8e:f4: aa:72:e0:fd:ca:72:f5:39:5f:14:b7:b2:7c:04:22: d5:ec:95:a5:58:46:4b:58:78:a4:49:5d:2d:37:f7: 70:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:37:80:24:15:A2:36:BC:34:31:45:7B:93:14:E5:B3:9A:A5:57:AB X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:f3:c5:f7:98:42:21:58:ff:ac:c4:46:d2:8e:9f:7c:e7:f8: 94:c3:ef:22:e9:d2:cf:68:b6:2e:92:1c:15:97:03:d8:8d:e9: fc:8e:b6:3f:74:f7:df:2d:cf:66:ae:9d:d9:cc:20:e2:28:d0: 28:36:0f:68:0c:e9:42:0d:8a:6e:7f:50:0e:03:92:02:2d:fe: bf:c7:66:f1:23:73:5d:69:eb:ed:6b:f8:1e:0a:5e:31:40:ff: 5f:56:90:5f:49:d1:1b:75:4b:84:72:35:19:28:78:a9:d7:51: ac:87:03:18:bf:e5:65:44:6d:f5:c8:16:92:89:5a:b8:df:fe: 1a:63:81:3c:73:8b:60:96:cf:d5:65:e4:e7:c4:a3:1e:a1:3d: 4b:8a:80:c5:23:ea:50:a3:85:32:ed:50:40:b6:6e:f4:e8:f8: 25:bb:65:4e:e4:92:c5:98:05:3d:bf:28:88:14:aa:bc:a6:c2: 1e:00:1c:fd:1e:dc:d8:8c:04:a6:5c:8c:cf:65:a1:15:52:98: 82:35:85:61:58:b0:3b:22:49:0b:c7:2b:e6:06:07:bd:8c:b4: d3:59:3f:90:c3:93:a8:fe:91:11:de:82:a5:e5:2c:c0:39:2c: c5:2e:6d:98:01:ec:95:b9:5d:09:46:d9:04:99:ca:1f:ef:f6: 14:11:3b:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC5zvsklfD5YpxZmPf8riQNZmjrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA1MTUwMDA5WhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjM2EwYjc0YTRjYzY1YTFmNzU1ZWEyNDkyNDQ4ZWEyODg3 ZjAyMjA0NWQxOGY3NGRlZTczNWMxOTVkMjUzM2FjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMeQgfTo9NAQzlthTSvPyDH3fK4s/73llQRqZ+iEbUPkqO Hqws6a9HFfF6HwMsz3dadqxz491mTKRJGbkuXFZV5QLwadmaoOMyQ2LzRYD5ZLsx hqh54RXYx1VNeSsRIgfWsSxtbTpIytEDnDxE4jGZxkL5Q/RHNodyY6lPkXns549b VNpq8JKkKwBk46pojHpKsoCcdZs3twvEeS37EFsdGBBN+FB6PBTMl6z9VZ9C8ASv DE/ShEbrwnU1R6d8viSrPvvueuoUQLClEor2EOokvsiekRa3ee0zrXtpXJ2O9Kpy 4P3KcvU5XxS3snwEItXslaVYRktYeKRJXS0393DzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyDeAJBWiNrw0MUV7kxTls5qlV6swHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBADzzxfeYQiFY/6zERtKOn3zn+JTD 7yLp0s9oti6SHBWXA9iN6fyOtj90998tz2aundnMIOIo0Cg2D2gM6UINim5/UA4D kgIt/r/HZvEjc11p6+1r+B4KXjFA/19WkF9J0Rt1S4RyNRkoeKnXUayHAxi/5WVE bfXIFpKJWrjf/hpjgTxzi2CWz9Vl5OfEox6hPUuKgMUj6lCjhTLtUEC2bvTo+CW7 ZU7kksWYBT2/KIgUqrymwh4AHP0e3NiMBKZcjM9loRVSmII1hWFYsDsiSQvHK+YG B72MtNNZP5DDk6j+kRHegqXlLMA5LMUubZgB7JW5XQlG2QSZyh/v9hQRO2g= -----END CERTIFICATE-----Generated at Sat May 10 10:16:53 2025 by rpki-client