$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa File: 60789a29-f516-47ec-9154-b2b610f7282e.roa (raw, json) Hash identifier: 2cE1NCWMuYMQr12yguJtz8angR462RKESeK7a0IUWdg= Subject key identifier: E2:D4:30:E5:9F:C5:56:FD:06:4A:E3:FB:C2:6A:04:02:76:01:4E:78 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 175524C92861706511DCAA899B03420A9BBA2173 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa Signing time: Mon 05 May 2025 15:00:11 +0000 ROA not before: Mon 05 May 2025 15:00:11 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:55:24:c9:28:61:70:65:11:dc:aa:89:9b:03:42:0a:9b:ba:21:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 5 15:00:11 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=c49757bfd28159840740859dd09800860883f00a8cadfc3a09bbc11a39ac335e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d8:52:67:5d:d0:91:81:3c:0b:10:a5:fd:60: 13:f9:68:ee:86:c6:b2:19:c0:57:12:fe:26:98:75: 09:bb:ca:30:68:ce:96:1f:12:3c:da:71:c9:3c:7b: a4:85:d1:6f:4f:85:0e:79:1d:d3:bf:d9:ef:d5:2c: 3b:bc:ed:62:eb:4b:7a:5a:cc:c6:4e:88:e6:e4:62: 35:ae:f0:19:b9:f7:fe:79:62:a5:06:59:ee:dd:32: 71:0c:69:6f:68:8e:0d:29:e5:7b:98:ed:39:6b:75: 18:80:f0:58:9f:17:31:c6:17:3c:3f:b7:a6:a3:6a: e6:6d:96:82:4e:6e:f4:84:01:f5:82:29:33:6f:52: 3a:d6:7b:16:eb:c1:48:1a:45:ed:40:da:bd:9e:9d: 4d:08:a3:41:0c:70:e3:e7:c3:82:53:23:f5:67:aa: 76:fb:63:66:2d:51:8d:b0:57:07:6d:93:42:bb:bf: e0:04:fc:47:17:63:c3:38:d3:90:bc:a6:e6:ab:33: 4a:43:ac:d0:32:fa:4e:56:6b:34:c7:1a:e8:70:12: 7f:30:6a:ee:5c:0b:f2:89:39:d0:3a:06:82:de:00: 34:4c:2a:fa:14:15:a0:91:d8:9f:cd:a0:57:53:75: c5:b8:86:91:af:68:99:67:88:7b:42:55:d4:91:9c: 51:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D4:30:E5:9F:C5:56:FD:06:4A:E3:FB:C2:6A:04:02:76:01:4E:78 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 14:6b:fd:72:28:79:2d:94:2e:b5:79:73:4e:91:77:dc:a4:29: db:d9:5c:29:2a:0d:c0:56:f3:32:ef:76:d5:09:e6:f7:70:e7: ca:5b:97:81:0e:59:db:f0:3f:ff:ba:16:23:75:c8:ce:82:3b: 80:15:58:c3:f2:e5:9b:78:b3:27:ec:57:8e:9e:89:49:48:2e: d5:09:76:d7:7d:b0:fc:ae:c5:ba:7c:7d:97:c0:57:dc:23:04: c6:41:27:9f:3d:8e:f9:2a:04:56:00:9a:ac:aa:fc:90:59:de: 45:ec:6b:92:4b:d8:c8:47:71:6d:53:23:45:54:b9:49:e0:e1: 7d:fd:88:fe:94:c0:bd:25:16:ce:3d:70:df:43:57:e6:3a:33: 04:e9:bf:35:41:5b:b5:5f:d8:fd:24:b5:c5:91:ed:4f:10:ec: ce:c5:09:3d:e1:6f:de:09:c9:89:73:c1:e4:56:16:99:48:61: cb:78:34:b8:33:d5:d3:5b:11:6c:7e:82:39:5f:43:83:23:0b: 06:9f:c6:55:f2:05:9a:82:98:66:08:2b:57:a2:de:db:68:b3: e4:70:48:09:e7:80:86:42:24:cf:45:ec:02:e3:12:f5:d4:45: 96:3d:de:d9:fc:ab:9c:36:c2:d7:46:39:5d:83:ba:66:e6:1c: c7:04:f3:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF1UkyShhcGUR3KqJmwNCCpu6IXMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA1MTUwMDExWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDk3NTdiZmQyODE1OTg0MDc0MDg1OWRkMDk4MDA4NjA4 ODNmMDBhOGNhZGZjM2EwOWJiYzExYTM5YWMzMzVlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy2FJnXdCRgTwLEKX9YBP5aO6GxrIZwFcS/iaYdQm7yjBo zpYfEjzacck8e6SF0W9PhQ55HdO/2e/VLDu87WLrS3pazMZOiObkYjWu8Bm59/55 YqUGWe7dMnEMaW9ojg0p5XuY7TlrdRiA8FifFzHGFzw/t6ajauZtloJObvSEAfWC KTNvUjrWexbrwUgaRe1A2r2enU0Io0EMcOPnw4JTI/Vnqnb7Y2YtUY2wVwdtk0K7 v+AE/EcXY8M405C8puarM0pDrNAy+k5WazTHGuhwEn8wau5cC/KJOdA6BoLeADRM KvoUFaCR2J/NoFdTdcW4hpGvaJlniHtCVdSRnFGhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4tQw5Z/FVv0GSuP7wmoEAnYBTngwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzYwNzg5YTI5LWY1MTYtNDdlYy05MTU0LWIyYjYxMGY3MjgyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBABRr/XIoeS2ULrV5c06Rd9ykKdvZ XCkqDcBW8zLvdtUJ5vdw58pbl4EOWdvwP/+6FiN1yM6CO4AVWMPy5Zt4syfsV46e iUlILtUJdtd9sPyuxbp8fZfAV9wjBMZBJ589jvkqBFYAmqyq/JBZ3kXsa5JL2MhH cW1TI0VUuUng4X39iP6UwL0lFs49cN9DV+Y6MwTpvzVBW7Vf2P0ktcWR7U8Q7M7F CT3hb94JyYlzweRWFplIYct4NLgz1dNbEWx+gjlfQ4MjCwafxlXyBZqCmGYIK1ei 3ttos+RwSAnngIZCJM9F7ALjEvXURZY93tn8q5w2wtdGOV2DumbmHMcE83Q= -----END CERTIFICATE-----Generated at Mon May 12 19:36:33 2025 by rpki-client