$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa File: 854367ff-45b7-4925-99a1-97b01f4fabe8.roa (raw, json) Hash identifier: ojJ3cG1QN0oRCNCQELIngZ8bflaF9LfacdZs9U37esg= Subject key identifier: D1:18:62:60:30:AD:B0:8C:01:7F:FD:47:D3:54:54:B4:46:6A:81:02 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2FB68AD207EBAB38216325A62C6B05F13CE80EB6 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa Signing time: Mon 05 May 2025 15:00:10 +0000 ROA not before: Mon 05 May 2025 15:00:10 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:b6:8a:d2:07:eb:ab:38:21:63:25:a6:2c:6b:05:f1:3c:e8:0e:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 5 15:00:10 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=f6084b60b850d4f97bbdbfe7ec2f3db667b000ba9ee836fa41a8f6e7042019cf, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9b:12:a8:7d:69:da:17:b5:16:0c:f3:78:4a: 78:f2:1a:e8:a2:be:9c:b5:ce:5a:b9:07:75:66:9d: fb:f9:49:09:99:ee:14:48:32:20:85:3d:c9:8f:25: 6f:d8:10:37:5e:93:6f:d8:45:c5:a3:0b:30:ed:94: b5:a7:22:52:e9:7d:ba:ac:29:86:b1:27:b6:69:23: c9:6c:3e:11:74:0b:b6:74:19:27:86:19:17:18:93: b3:ca:ac:ee:83:a0:f1:03:dc:0d:38:70:ad:c6:5b: b7:de:5d:c7:73:91:75:0b:3c:c5:f3:3d:82:72:59: ff:75:94:fc:32:38:da:b8:3e:6a:ea:30:e1:39:be: 74:0e:13:0c:7a:f8:e1:df:7d:ac:31:5f:1c:b5:dd: 45:c6:1a:57:39:90:48:ed:1c:03:1f:f1:d9:64:43: 79:e2:40:68:78:73:f2:5f:c9:3e:28:f8:fb:98:d8: 8d:9b:d2:1d:3f:e1:87:79:89:29:aa:ec:92:76:66: dd:c0:eb:4e:ef:60:41:a6:c2:ca:fa:c7:e5:cc:7f: 7e:c7:8f:1a:40:65:d7:39:7c:9d:ce:42:2a:9f:40: 80:9c:84:96:89:35:62:da:08:0c:21:3f:c1:83:d4: 51:5d:19:cf:65:33:da:4c:55:96:2b:18:b2:61:b9: 1f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:18:62:60:30:AD:B0:8C:01:7F:FD:47:D3:54:54:B4:46:6A:81:02 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 91:51:e1:b7:bf:b9:5a:79:10:45:24:5e:5a:c0:7f:81:90:7e: 93:9b:1f:df:a8:bc:75:e8:7d:b1:bc:0c:e0:40:1e:ca:5c:14: 9d:a4:35:7c:5a:ea:a5:50:a5:0c:1d:5d:22:fa:83:0a:05:cf: 2d:a4:df:8e:c3:69:ea:fa:a4:1c:cf:fd:8c:36:a6:a8:55:46: 56:d9:9b:07:e1:b8:2f:70:3d:b9:44:91:02:8c:03:14:7b:ea: b4:4e:bd:3e:da:d4:df:4d:8c:d8:4e:a4:db:d3:52:fd:ed:29: 5d:f4:17:a2:7e:af:aa:d1:06:e8:11:16:fc:3f:c4:20:c9:7b: a0:7d:9c:3d:e3:8d:98:91:28:93:aa:86:b4:eb:7f:35:71:38: 50:91:fc:95:ec:de:85:88:07:fa:29:da:00:34:e2:0a:bc:0f: ac:72:7e:7e:ae:36:08:df:b4:a4:56:29:0e:d9:c5:3f:4d:94: c4:cf:08:58:41:45:b0:bb:7c:02:8f:27:93:2a:2b:d5:c5:f6: 35:ee:47:54:29:5c:e3:df:24:b8:ba:22:7e:d4:09:43:58:0c: b6:2a:aa:af:1c:db:16:a6:7c:dd:07:f7:fb:3b:88:98:34:6a: 8f:d0:a6:c0:3e:8a:5b:34:57:40:40:c1:30:94:ca:b6:77:91: ac:70:ff:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL7aK0gfrqzghYyWmLGsF8TzoDrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA1MTUwMDEwWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjA4NGI2MGI4NTBkNGY5N2JiZGJmZTdlYzJmM2RiNjY3 YjAwMGJhOWVlODM2ZmE0MWE4ZjZlNzA0MjAxOWNmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHmxKofWnaF7UWDPN4SnjyGuiivpy1zlq5B3Vmnfv5SQmZ 7hRIMiCFPcmPJW/YEDdek2/YRcWjCzDtlLWnIlLpfbqsKYaxJ7ZpI8lsPhF0C7Z0 GSeGGRcYk7PKrO6DoPED3A04cK3GW7feXcdzkXULPMXzPYJyWf91lPwyONq4Pmrq MOE5vnQOEwx6+OHffawxXxy13UXGGlc5kEjtHAMf8dlkQ3niQGh4c/JfyT4o+PuY 2I2b0h0/4Yd5iSmq7JJ2Zt3A607vYEGmwsr6x+XMf37HjxpAZdc5fJ3OQiqfQICc hJaJNWLaCAwhP8GD1FFdGc9lM9pMVZYrGLJhuR/LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0RhiYDCtsIwBf/1H01RUtEZqgQIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg1NDM2N2ZmLTQ1YjctNDkyNS05OWExLTk3YjAxZjRmYWJlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAJFR4be/uVp5EEUkXlrAf4GQfpOb H9+ovHXofbG8DOBAHspcFJ2kNXxa6qVQpQwdXSL6gwoFzy2k347Daer6pBzP/Yw2 pqhVRlbZmwfhuC9wPblEkQKMAxR76rROvT7a1N9NjNhOpNvTUv3tKV30F6J+r6rR BugRFvw/xCDJe6B9nD3jjZiRKJOqhrTrfzVxOFCR/JXs3oWIB/op2gA04gq8D6xy fn6uNgjftKRWKQ7ZxT9NlMTPCFhBRbC7fAKPJ5MqK9XF9jXuR1QpXOPfJLi6In7U CUNYDLYqqq8c2xamfN0H9/s7iJg0ao/QpsA+ils0V0BAwTCUyrZ3kaxw/1k= -----END CERTIFICATE-----Generated at Sun May 11 01:05:31 2025 by rpki-client