$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa File: 1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa (raw, json) Hash identifier: DD5iwL20dYlogDajwuN5d+xZpHbK+M/BcG/M8Cw1ahA= Subject key identifier: 17:06:A1:6C:C6:E0:56:53:07:7F:B6:76:A4:64:ED:CA:CF:36:97:CD Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3B2A88E79446612203A3A7C50F93EE90FC17CB6D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa Signing time: Wed 25 Jun 2025 00:00:04 +0000 ROA not before: Wed 25 Jun 2025 00:00:04 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:2a:88:e7:94:46:61:22:03:a3:a7:c5:0f:93:ee:90:fc:17:cb:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 25 00:00:04 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=ffee82a77f620b9ccf99e3489a20d45d5aa407a020af2306f479d5e2a1996a45, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:63:66:e2:89:e8:0c:9d:e3:20:28:1d:03:f5: 2d:4f:32:26:a3:74:d0:bd:19:99:95:da:b1:43:93: 2f:95:25:d5:3c:74:a9:17:f1:76:b3:c6:0e:d9:52: 92:30:a1:bf:00:e3:50:bf:af:ea:49:22:39:96:f0: d4:9a:a0:91:5f:f7:a8:02:76:fa:41:8a:12:d4:7f: 1f:0f:b1:e4:37:f1:32:52:eb:40:5c:20:78:f0:88: 88:e9:5f:08:70:60:48:68:cb:33:98:5e:67:93:d3: dc:24:75:24:d4:be:dd:c6:91:e9:b7:d3:4f:86:65: 2f:14:1e:cf:89:8b:cb:bb:06:1f:2a:75:83:66:f6: 25:7a:e0:56:c0:55:1b:2f:11:78:03:11:b0:80:ed: 96:eb:7f:36:d4:d0:85:31:09:e4:3f:86:7e:4f:51: e9:c2:7b:8b:23:a0:ad:88:d1:9f:d1:27:03:17:e1: a6:c1:e9:d4:3a:9a:c4:08:60:c8:14:ac:66:18:02: 5d:44:6c:a5:77:2c:eb:d0:56:1a:44:f9:73:59:b5: a6:92:b9:4a:1b:bd:89:5e:c6:c7:b5:d4:e9:92:d4: a8:bd:95:e4:3b:14:86:e9:60:a7:1e:39:6c:e8:97: 97:19:17:f2:b3:2c:26:54:a2:25:69:9c:07:b9:f7: e1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:06:A1:6C:C6:E0:56:53:07:7F:B6:76:A4:64:ED:CA:CF:36:97:CD X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.208.0/20 Signature Algorithm: sha256WithRSAEncryption 5b:db:b0:f5:da:97:9f:0b:a7:24:a1:a1:78:31:39:dd:12:60: 81:58:28:ab:fe:09:90:a2:19:b2:4d:a9:3d:a3:67:0a:0e:28: e4:2f:f8:37:94:ed:eb:49:6f:88:2a:f8:b2:24:71:4a:45:88: e3:0a:81:b7:b9:e2:fb:06:41:89:46:6b:b5:e9:fe:69:bb:c5: b5:97:23:42:7a:42:ca:c8:35:3b:b3:f3:66:17:0a:41:a2:ed: f3:5c:4b:35:b7:0c:80:aa:19:9b:9a:5a:dc:cb:bd:b2:c8:b4: a3:da:22:d7:b9:d2:2d:7b:d1:8c:c0:db:a3:9a:41:40:06:04: 42:e2:f2:af:b4:ff:9a:74:23:82:5c:d7:4b:ca:0e:97:08:40: 64:15:93:32:40:f2:7c:d2:6b:db:ee:49:43:00:ce:dd:8b:6b: d7:90:0d:bb:b4:32:8b:dd:7d:7c:35:63:ba:03:50:e4:22:46: a6:43:a6:66:68:ff:ed:6f:d8:b6:76:78:8c:21:62:7b:f1:59: ad:4d:73:83:9c:fa:4b:22:9d:a6:60:cd:fe:e9:67:f1:4b:ee: 2e:a7:10:c5:77:33:e0:51:a3:1d:8d:87:17:a1:11:7f:78:de: 37:f6:ca:56:b2:08:e0:e4:88:aa:13:8a:71:57:8e:b9:d3:72: ba:3c:c3:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOyqI55RGYSIDo6fFD5PukPwXy20wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI1MDAwMDA0WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZmVlODJhNzdmNjIwYjljY2Y5OWUzNDg5YTIwZDQ1ZDVh YTQwN2EwMjBhZjIzMDZmNDc5ZDVlMmExOTk2YTQ1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzY2biiegMneMgKB0D9S1PMiajdNC9GZmV2rFDky+VJdU8 dKkX8Xazxg7ZUpIwob8A41C/r+pJIjmW8NSaoJFf96gCdvpBihLUfx8PseQ38TJS 60BcIHjwiIjpXwhwYEhoyzOYXmeT09wkdSTUvt3Gkem300+GZS8UHs+Ji8u7Bh8q dYNm9iV64FbAVRsvEXgDEbCA7ZbrfzbU0IUxCeQ/hn5PUenCe4sjoK2I0Z/RJwMX 4abB6dQ6msQIYMgUrGYYAl1EbKV3LOvQVhpE+XNZtaaSuUobvYlexse11OmS1Ki9 leQ7FIbpYKceOWzol5cZF/KzLCZUoiVpnAe59+GfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFwahbMbgVlMHf7Z2pGTtys82l80wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzFjOTU5ZTY2LWY5NjctNDNkNi05M2JkLWNiZGNmMTYwY2JiNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQX+dAwDQYJKoZIhvcNAQELBQADggEBAFvbsPXal58LpyShoXgxOd0SYIFY KKv+CZCiGbJNqT2jZwoOKOQv+DeU7etJb4gq+LIkcUpFiOMKgbe54vsGQYlGa7Xp /mm7xbWXI0J6QsrINTuz82YXCkGi7fNcSzW3DICqGZuaWtzLvbLItKPaIte50i17 0YzA26OaQUAGBELi8q+0/5p0I4Jc10vKDpcIQGQVkzJA8nzSa9vuSUMAzt2La9eQ Dbu0MovdfXw1Y7oDUOQiRqZDpmZo/+1v2LZ2eIwhYnvxWa1Nc4Oc+ksinaZgzf7p Z/FL7i6nEMV3M+BRox2NhxehEX943jf2ylayCODkiKoTinFXjrnTcro8w74= -----END CERTIFICATE-----Generated at Sun Jun 29 07:32:38 2025 by rpki-client