$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa File: 271f0380-5b52-472a-bc37-cdbbdcd650e9.roa (raw, json) Hash identifier: +vJxgQ9WeSSIOYzAjpyJJpl/y2MCyzW60hoJGvnE2jg= Subject key identifier: 90:42:BD:38:8E:53:C9:91:57:FA:DE:A0:01:3F:D7:8F:96:64:DB:74 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5A667708A230230A6EE64B73460130B50572A34D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa Signing time: Wed 25 Jun 2025 00:00:10 +0000 ROA not before: Wed 25 Jun 2025 00:00:10 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:66:77:08:a2:30:23:0a:6e:e6:4b:73:46:01:30:b5:05:72:a3:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 25 00:00:10 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=0b397432e1fad16ae2e3e4fb9395265a7cca129391a97f7b8dd6229c5b9b20f5, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:67:d4:e8:7d:23:f1:5c:1d:b7:eb:d6:fe:04: 08:da:e3:ed:07:1b:60:66:15:77:0e:23:a3:63:4c: 5f:2f:36:a1:07:4b:24:c4:86:4f:d3:9a:b7:d4:fb: 67:cf:f7:19:ae:45:53:49:5a:61:cb:5f:46:97:e1: f9:47:37:9b:63:ce:76:5c:64:6f:87:22:c1:62:00: af:94:e2:b6:66:41:22:9f:c5:3a:74:bf:40:c2:55: 11:a6:0e:35:32:e5:f9:59:a8:35:33:1b:71:32:1e: eb:94:10:7d:22:e3:27:47:01:c1:c3:82:3a:8d:f3: 0a:23:34:b6:e5:b4:9e:17:51:20:cf:2b:9e:0d:e5: 3d:3f:e7:e6:47:04:ac:d2:ce:21:21:11:7c:d6:d2: 45:d8:5c:24:f5:b5:4d:2f:58:5e:97:26:24:56:6a: 7f:e5:ee:cc:52:a2:4f:15:cb:95:d3:5c:e4:4c:bb: 2a:57:a6:1f:51:88:18:af:ae:ab:c9:f1:3d:e4:fd: a2:43:7a:94:97:8f:a5:69:68:1b:ec:b6:f2:f1:79: 71:92:64:b8:26:65:5a:c2:fb:85:1d:a7:54:50:a0: ce:e3:fb:61:a9:23:33:e4:73:a2:b5:d8:5b:83:cf: f9:6b:f5:5f:f9:24:7c:ff:c0:58:b3:55:72:ea:84: 5e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:42:BD:38:8E:53:C9:91:57:FA:DE:A0:01:3F:D7:8F:96:64:DB:74 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.217.0/24 Signature Algorithm: sha256WithRSAEncryption 25:8c:f9:67:d0:1b:c6:10:12:74:30:27:a5:7b:50:2d:88:e5: 95:83:2a:50:23:70:01:71:f8:63:80:4c:ca:3b:66:6b:b3:9d: 05:5c:e0:67:c2:55:6d:33:3b:c6:9d:0f:95:fb:ef:00:3d:78: fb:00:49:c1:0a:6a:a4:c1:91:ec:05:7d:cc:a1:01:18:00:ef: f2:cb:6b:78:86:da:65:e5:4f:8a:2e:c3:e9:31:f2:09:0a:78: b7:1a:3b:a4:fd:1a:05:db:9d:bc:89:3e:69:a8:60:bc:84:26: b2:54:b1:69:0f:cd:9e:73:3e:c2:36:a4:b0:0f:44:47:36:c5: 00:9e:a9:bd:3e:2e:4f:24:dc:2f:ad:77:85:fe:cc:98:10:be: 97:01:39:bc:86:59:33:f4:b0:c0:1b:01:f5:2b:a5:44:21:a5: 5c:57:0b:9f:d2:f2:bd:8f:de:7f:aa:ed:a1:a3:f1:b4:75:a0: f7:44:7c:18:76:7c:3a:34:72:21:c0:66:b0:54:36:d4:a4:fd: 12:73:27:bf:40:62:48:54:50:f5:08:0d:fe:d8:4b:04:9b:30: 71:bb:0c:ab:52:a5:34:54:56:12:bf:48:79:ea:cd:36:3e:69: 69:86:36:38:21:4e:d9:ba:9b:e7:83:db:de:02:c0:ac:7b:eb: ec:2e:43:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWmZ3CKIwIwpu5ktzRgEwtQVyo00wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI1MDAwMDEwWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjM5NzQzMmUxZmFkMTZhZTJlM2U0ZmI5Mzk1MjY1YTdj Y2ExMjkzOTFhOTdmN2I4ZGQ2MjI5YzViOWIyMGY1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjZ9TofSPxXB2369b+BAja4+0HG2BmFXcOI6NjTF8vNqEH SyTEhk/TmrfU+2fP9xmuRVNJWmHLX0aX4flHN5tjznZcZG+HIsFiAK+U4rZmQSKf xTp0v0DCVRGmDjUy5flZqDUzG3EyHuuUEH0i4ydHAcHDgjqN8wojNLbltJ4XUSDP K54N5T0/5+ZHBKzSziEhEXzW0kXYXCT1tU0vWF6XJiRWan/l7sxSok8Vy5XTXORM uypXph9RiBivrqvJ8T3k/aJDepSXj6VpaBvstvLxeXGSZLgmZVrC+4Udp1RQoM7j +2GpIzPkc6K12FuDz/lr9V/5JHz/wFizVXLqhF4DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkEK9OI5TyZFX+t6gAT/Xj5Zk23QwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzI3MWYwMzgwLTViNTItNDcyYS1iYzM3LWNkYmJkY2Q2NTBlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dkwDQYJKoZIhvcNAQELBQADggEBACWM+WfQG8YQEnQwJ6V7UC2I5ZWD KlAjcAFx+GOATMo7ZmuznQVc4GfCVW0zO8adD5X77wA9ePsAScEKaqTBkewFfcyh ARgA7/LLa3iG2mXlT4ouw+kx8gkKeLcaO6T9GgXbnbyJPmmoYLyEJrJUsWkPzZ5z PsI2pLAPREc2xQCeqb0+Lk8k3C+td4X+zJgQvpcBObyGWTP0sMAbAfUrpUQhpVxX C5/S8r2P3n+q7aGj8bR1oPdEfBh2fDo0ciHAZrBUNtSk/RJzJ79AYkhUUPUIDf7Y SwSbMHG7DKtSpTRUVhK/SHnqzTY+aWmGNjghTtm6m+eD294CwKx76+wuQ3g= -----END CERTIFICATE-----Generated at Tue Jul 1 10:01:34 2025 by rpki-client