$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa File: e41ada77-fa4f-4da3-a532-14382438f575.roa (raw, json) Hash identifier: +2CrfvkrFtFhczCYQh6Zc2i33UPVMKeCW1hXvUy/LiY= Subject key identifier: 72:45:4C:C3:8F:A2:A1:DB:CA:C7:FB:71:75:FF:B0:1B:2B:9B:87:22 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 47F3328ADB56A52E14FAF277A19A6FD2F4DB7C6F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa Signing time: Tue 06 May 2025 00:10:07 +0000 ROA not before: Tue 06 May 2025 00:10:07 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 76.223.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:f3:32:8a:db:56:a5:2e:14:fa:f2:77:a1:9a:6f:d2:f4:db:7c:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 6 00:10:07 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=fc2c320c5beef3cf7c04044eb05b6bc50a32da0dea78b17c62d7938255f39f02, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9b:05:52:71:1a:69:09:e6:4f:3b:dd:45:87: 0e:be:c8:67:e5:57:86:25:d4:d5:07:dc:2b:64:32: bb:00:9b:f9:19:24:f5:87:e2:54:14:90:3b:cd:da: 1d:28:67:e0:e1:a5:7c:f0:5c:d0:19:4d:1b:f2:3b: 22:20:85:8d:7a:79:66:d9:06:cb:32:0c:d2:8a:1e: 46:83:5d:d1:11:d5:7a:5d:8c:8d:02:f7:ea:8f:81: 5b:be:36:02:74:16:b1:5a:3f:3d:28:28:51:f9:6c: 56:0d:ed:6f:0c:92:fb:71:31:1a:58:ed:5a:03:5d: d8:8b:5c:08:6c:33:7a:1d:ec:fa:90:9e:2e:1c:43: 5e:ac:15:9f:24:65:a5:76:1e:d5:98:78:d8:d5:ef: 87:5d:5b:ed:41:14:39:5a:19:93:d7:7e:03:67:51: 51:f4:e7:de:41:4a:47:c9:e5:99:b9:97:70:36:5b: b4:f6:83:2e:54:bd:c2:68:0d:e4:64:7a:68:4b:1c: ad:d1:50:f4:18:f3:91:85:8e:c5:6b:e1:93:22:00: 45:b8:5c:f1:58:7a:f7:da:16:8c:69:bd:b6:b0:38: 77:88:65:ab:d5:36:b7:84:5b:bf:bd:c1:4d:25:8b: 08:96:63:60:19:f5:b6:c0:8a:e3:4f:1c:c7:5c:d0: f6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:45:4C:C3:8F:A2:A1:DB:CA:C7:FB:71:75:FF:B0:1B:2B:9B:87:22 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.191.0/24 Signature Algorithm: sha256WithRSAEncryption 81:cc:4b:35:29:c0:13:4c:15:29:be:95:0c:1c:77:bf:02:10: 58:ad:cf:cf:34:7d:e8:ad:98:0d:91:d1:95:20:1f:23:08:83: d7:3b:7f:31:ac:a0:e4:ef:5b:be:91:85:a5:b1:1b:90:30:f2: 11:22:a5:c5:4f:1f:f4:8a:d1:fc:3c:17:bf:24:f4:6f:99:fd: b3:3e:33:0c:8d:85:16:d0:33:91:5a:9c:e2:1e:b1:5f:b5:d0: 55:14:50:f5:6a:45:50:b2:70:aa:b5:8f:bc:93:d8:a7:a8:55: 42:85:7a:46:a8:4c:e2:52:f3:01:58:70:8c:a3:85:b4:c0:de: 9b:5d:98:d5:c6:98:ab:70:f1:e6:23:74:f0:e3:f6:df:1f:45: d7:e6:6f:28:e1:3b:60:2e:01:6b:70:1d:27:0a:a5:54:a8:ea: aa:a1:c0:36:75:0d:52:b4:45:e6:ae:5d:8f:e7:5c:57:4d:c3: 79:02:42:dd:78:af:27:35:10:4c:a9:8e:25:52:db:7d:f1:3d: 32:06:06:97:48:55:3b:e8:24:8d:60:b5:d7:17:91:71:12:eb: 33:73:0e:5f:21:9c:21:a8:23:76:29:e2:b3:0e:d7:0f:0d:10: 03:a5:3d:8e:03:06:3f:97:1c:7c:d2:c0:c6:ab:82:3b:7a:e4: d4:be:ca:56 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR/MyittWpS4U+vJ3oZpv0vTbfG8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTA2MDAxMDA3WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYzJjMzIwYzViZWVmM2NmN2MwNDA0NGViMDViNmJjNTBh MzJkYTBkZWE3OGIxN2M2MmQ3OTM4MjU1ZjM5ZjAyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1mwVScRppCeZPO91Fhw6+yGflV4Yl1NUH3CtkMrsAm/kZ JPWH4lQUkDvN2h0oZ+DhpXzwXNAZTRvyOyIghY16eWbZBssyDNKKHkaDXdER1Xpd jI0C9+qPgVu+NgJ0FrFaPz0oKFH5bFYN7W8MkvtxMRpY7VoDXdiLXAhsM3od7PqQ ni4cQ16sFZ8kZaV2HtWYeNjV74ddW+1BFDlaGZPXfgNnUVH0595BSkfJ5Zm5l3A2 W7T2gy5UvcJoDeRkemhLHK3RUPQY85GFjsVr4ZMiAEW4XPFYevfaFoxpvbawOHeI ZavVNreEW7+9wU0liwiWY2AZ9bbAiuNPHMdc0PYVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUckVMw4+iodvKx/txdf+wGyubhyIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2U0MWFkYTc3LWZhNGYtNGRhMy1hNTMyLTE0MzgyNDM4ZjU3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM378wDQYJKoZIhvcNAQELBQADggEBAIHMSzUpwBNMFSm+lQwcd78CEFit z880feitmA2R0ZUgHyMIg9c7fzGsoOTvW76RhaWxG5Aw8hEipcVPH/SK0fw8F78k 9G+Z/bM+MwyNhRbQM5FanOIesV+10FUUUPVqRVCycKq1j7yT2KeoVUKFekaoTOJS 8wFYcIyjhbTA3ptdmNXGmKtw8eYjdPDj9t8fRdfmbyjhO2AuAWtwHScKpVSo6qqh wDZ1DVK0ReauXY/nXFdNw3kCQt14ryc1EEypjiVS233xPTIGBpdIVTvoJI1gtdcX kXES6zNzDl8hnCGoI3Yp4rMO1w8NEAOlPY4DBj+XHHzSwMargjt65NS+ylY= -----END CERTIFICATE-----Generated at Fri May 9 00:42:33 2025 by rpki-client