$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa File: e41ada77-fa4f-4da3-a532-14382438f575.roa (raw, json) Hash identifier: iwBU/r5nKpLpDzhGRrM0oSMgJNtTb/zFSyvuwerlfsU= Subject key identifier: 88:6D:A9:79:F2:44:66:58:6D:9C:A2:31:9B:F5:D7:FF:1D:78:5A:D1 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0FC9D3128E497C32A6E701B5C7D36C84A573FD79 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa Signing time: Wed 25 Jun 2025 00:10:12 +0000 ROA not before: Wed 25 Jun 2025 00:10:12 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 76.223.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c9:d3:12:8e:49:7c:32:a6:e7:01:b5:c7:d3:6c:84:a5:73:fd:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 25 00:10:12 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=345af8e31b2871be62188e3c916a14c81309d2f3d9db87ba7a5fce41b83cd82f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:57:ce:a5:10:a8:35:13:fc:10:30:39:66:51: 1d:6a:c2:26:a8:4c:cb:b8:1c:44:5e:6c:79:3a:56: e0:8a:69:57:8b:f2:a5:ea:bf:0c:d7:da:6f:15:89: b3:27:d0:88:1e:47:99:6f:fc:2c:71:2e:ca:ce:5b: 65:59:e3:a7:4f:11:86:a2:66:92:7b:ca:40:94:2a: 41:14:be:29:fa:e3:20:cc:ec:7e:39:51:a0:9a:a3: a1:45:f7:63:3d:56:e5:ec:89:48:4b:ac:e5:4f:b2: 46:0e:c0:7b:b1:44:ed:0c:f6:28:f2:12:14:79:bf: df:7f:ac:54:4f:b5:5c:24:59:ab:c7:35:b3:91:bb: 99:b9:e7:7b:0b:68:7a:e4:41:eb:b1:47:4a:4d:80: f4:95:11:92:59:20:a7:df:a9:0f:ab:00:b5:09:b6: 9c:f9:76:90:31:f6:de:7f:d0:1c:e4:02:db:97:1b: 80:62:1d:4d:ee:43:1a:ab:be:07:19:33:67:92:76: e3:de:6f:a0:69:86:cb:0b:b1:d3:0c:07:c0:84:d0: 14:31:d5:7a:19:f4:f5:ca:84:b1:e0:18:cb:9d:81: 8d:48:b3:77:8a:ce:1a:bd:35:bf:d8:fe:90:25:c4: 29:d2:f9:0e:27:da:15:19:23:a9:a6:58:07:e1:e1: 62:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:6D:A9:79:F2:44:66:58:6D:9C:A2:31:9B:F5:D7:FF:1D:78:5A:D1 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.191.0/24 Signature Algorithm: sha256WithRSAEncryption 45:dd:60:58:34:5f:ad:b9:4e:8f:41:7a:7d:95:31:3b:87:cd: c6:93:d4:22:02:a3:ff:6c:23:4e:62:6f:ff:22:80:76:99:6e: a3:10:e4:30:26:cc:b3:53:eb:db:c0:81:ad:2e:65:0c:98:af: 6c:ea:f8:7d:37:46:c4:24:a7:6b:6b:d4:c4:dc:55:97:4d:ac: 9b:fe:df:9b:7e:d4:8c:3c:36:09:13:8a:00:ae:d0:cc:fe:b2: 06:3a:a9:d5:4a:99:63:2f:9c:26:89:ed:5b:fb:72:f7:2c:ac: 1a:f2:13:c9:28:78:0c:73:1d:29:8e:6b:b5:6b:5a:dc:58:1c: 78:24:76:3d:1c:74:b1:d4:8d:1a:93:91:01:4c:19:a5:13:73: ce:63:9c:02:c1:15:6c:d4:8f:09:36:d3:f6:33:60:4b:5b:4b: 98:97:f8:53:a4:7b:89:7f:00:a9:c9:6c:31:ee:1f:21:91:e7: 77:19:49:09:7e:3e:94:09:68:71:98:9d:0d:29:f1:10:21:12: 1e:31:00:67:8e:9d:97:d1:99:06:48:95:e0:e1:f5:0d:98:d9: a1:64:2c:2d:c1:63:b2:df:95:f0:f6:32:bf:f4:22:9b:6d:0c: 3c:1f:ea:1f:6a:0e:12:2e:c0:0b:51:2d:26:35:c9:73:3f:e6: eb:17:f1:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD8nTEo5JfDKm5wG1x9NshKVz/XkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI1MDAxMDEyWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDVhZjhlMzFiMjg3MWJlNjIxODhlM2M5MTZhMTRjODEz MDlkMmYzZDlkYjg3YmE3YTVmY2U0MWI4M2NkODJmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDuV86lEKg1E/wQMDlmUR1qwiaoTMu4HERebHk6VuCKaVeL 8qXqvwzX2m8VibMn0IgeR5lv/CxxLsrOW2VZ46dPEYaiZpJ7ykCUKkEUvin64yDM 7H45UaCao6FF92M9VuXsiUhLrOVPskYOwHuxRO0M9ijyEhR5v99/rFRPtVwkWavH NbORu5m553sLaHrkQeuxR0pNgPSVEZJZIKffqQ+rALUJtpz5dpAx9t5/0BzkAtuX G4BiHU3uQxqrvgcZM2eSduPeb6BphssLsdMMB8CE0BQx1XoZ9PXKhLHgGMudgY1I s3eKzhq9Nb/Y/pAlxCnS+Q4n2hUZI6mmWAfh4WLVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiG2pefJEZlhtnKIxm/XX/x14WtEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2U0MWFkYTc3LWZhNGYtNGRhMy1hNTMyLTE0MzgyNDM4ZjU3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM378wDQYJKoZIhvcNAQELBQADggEBAEXdYFg0X625To9Ben2VMTuHzcaT 1CICo/9sI05ib/8igHaZbqMQ5DAmzLNT69vAga0uZQyYr2zq+H03RsQkp2tr1MTc VZdNrJv+35t+1Iw8NgkTigCu0Mz+sgY6qdVKmWMvnCaJ7Vv7cvcsrBryE8koeAxz HSmOa7VrWtxYHHgkdj0cdLHUjRqTkQFMGaUTc85jnALBFWzUjwk20/YzYEtbS5iX +FOke4l/AKnJbDHuHyGR53cZSQl+PpQJaHGYnQ0p8RAhEh4xAGeOnZfRmQZIleDh 9Q2Y2aFkLC3BY7LflfD2Mr/0IpttDDwf6h9qDhIuwAtRLSY1yXM/5usX8YE= -----END CERTIFICATE-----Generated at Sun Jun 29 14:40:15 2025 by rpki-client