$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa File: 271f0380-5b52-472a-bc37-cdbbdcd650e9.roa (raw, json) Hash identifier: d33HQHBg2tHP7K3sGGMfrznaGYcga0IojAhvZjkpZeE= Subject key identifier: D5:60:E4:00:E9:4D:0C:2B:66:BA:42:13:79:4C:69:9E:85:01:23:C4 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 024D867741D2ACFEC5FD966A27F52FD9476B98BE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa Signing time: Fri 15 Aug 2025 00:20:13 +0000 ROA not before: Fri 15 Aug 2025 00:20:13 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:4d:86:77:41:d2:ac:fe:c5:fd:96:6a:27:f5:2f:d9:47:6b:98:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:20:13 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=a556a28e46ee1e6e72eb73099782a9fdedb27a4c4283755f01a688d8a4735f35, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:35:fc:8f:05:54:3b:ab:40:c8:48:55:e1:b9: dd:a0:e9:69:f9:b6:ea:ab:ed:d8:6e:7e:c7:a1:2e: 9f:fd:7d:0c:62:6d:18:2e:84:2b:53:78:8c:e1:a2: e9:98:34:5f:73:4a:b3:6d:95:b7:80:64:91:43:c5: e6:0e:93:10:14:1a:25:a7:c5:22:8b:85:56:ae:a4: 44:ab:91:a4:8c:0d:55:20:25:aa:22:37:49:ed:d9: 87:ac:ce:5c:70:7f:ac:59:55:79:d9:77:6f:20:32: 38:5f:9f:c9:18:7f:53:dc:f0:10:e7:55:e6:63:66: c9:c5:25:ee:ff:bb:db:ff:78:c4:c7:57:aa:03:e5: c9:50:be:9d:e2:15:70:a9:9e:e2:9c:a1:f7:ca:90: 2e:ce:c3:02:86:67:42:ff:05:96:8d:dd:55:00:86: ba:9a:ef:4e:7a:92:c2:af:44:32:e1:8e:a3:32:96: 58:33:0f:de:fb:b9:3c:61:59:33:c5:68:31:a0:43: 07:65:8f:6e:88:f0:e1:84:8b:93:54:d5:51:0a:54: bb:85:d5:8f:c7:84:1e:10:4a:45:4a:12:8e:8a:d4: fa:e7:93:fb:33:6f:50:22:bb:2a:74:25:9a:76:67: 56:cd:0c:f6:9b:31:e6:90:6e:f8:fb:73:dc:46:3b: b4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:60:E4:00:E9:4D:0C:2B:66:BA:42:13:79:4C:69:9E:85:01:23:C4 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.217.0/24 Signature Algorithm: sha256WithRSAEncryption 20:60:c4:38:db:f6:0d:8d:67:b6:c9:a0:02:94:dd:40:8f:4b: b0:2c:a1:e6:b7:19:9c:dd:f1:9f:f5:7a:ae:23:db:3f:39:97: e6:fd:7a:9b:03:2e:f0:5c:33:4d:f1:ba:0f:6a:72:79:80:6a: fa:89:d2:91:36:a9:9a:a2:f0:4e:f7:f8:32:74:47:b8:a8:63: bf:e8:9e:ce:83:fd:78:ee:b9:51:93:ec:94:5d:c8:63:0d:36: 64:69:85:40:e6:9f:46:35:fc:1a:d9:ac:65:99:58:10:54:21: aa:d9:b5:a1:16:84:72:9a:7b:d9:02:dd:e6:e4:b7:50:3a:30: 34:ff:52:46:50:de:ff:ec:2f:b3:5b:8b:f0:cd:fd:7a:9a:9a: 31:29:51:bf:22:57:5f:91:11:78:7e:6c:3b:d8:7d:a6:ec:24: 6f:4b:bb:9b:95:24:38:9e:79:e4:86:ba:f5:75:eb:a1:67:7d: eb:3f:f6:0f:10:c3:08:34:51:0d:86:c6:2c:0f:23:e9:ce:51: af:dc:55:be:8c:fd:12:06:dc:e2:cb:54:38:c4:21:a6:b8:a4: f9:49:3f:39:68:fc:0a:a2:16:76:9b:d9:28:bd:06:de:81:b5: a0:ed:66:79:65:19:1d:10:61:51:e2:4c:b2:56:42:dc:6b:d6: a5:f0:1d:38 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAk2Gd0HSrP7F/ZZqJ/Uv2UdrmL4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMDEzWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTU2YTI4ZTQ2ZWUxZTZlNzJlYjczMDk5NzgyYTlmZGVk YjI3YTRjNDI4Mzc1NWYwMWE2ODhkOGE0NzM1ZjM1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTNfyPBVQ7q0DISFXhud2g6Wn5tuqr7dhufsehLp/9fQxi bRguhCtTeIzhoumYNF9zSrNtlbeAZJFDxeYOkxAUGiWnxSKLhVaupESrkaSMDVUg JaoiN0nt2Yeszlxwf6xZVXnZd28gMjhfn8kYf1Pc8BDnVeZjZsnFJe7/u9v/eMTH V6oD5clQvp3iFXCpnuKcoffKkC7OwwKGZ0L/BZaN3VUAhrqa7056ksKvRDLhjqMy llgzD977uTxhWTPFaDGgQwdlj26I8OGEi5NU1VEKVLuF1Y/HhB4QSkVKEo6K1Prn k/szb1Aiuyp0JZp2Z1bNDPabMeaQbvj7c9xGO7SpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1WDkAOlNDCtmukITeUxpnoUBI8QwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzI3MWYwMzgwLTViNTItNDcyYS1iYzM3LWNkYmJkY2Q2NTBlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dkwDQYJKoZIhvcNAQELBQADggEBACBgxDjb9g2NZ7bJoAKU3UCPS7As oea3GZzd8Z/1eq4j2z85l+b9epsDLvBcM03xug9qcnmAavqJ0pE2qZqi8E73+DJ0 R7ioY7/ons6D/XjuuVGT7JRdyGMNNmRphUDmn0Y1/BrZrGWZWBBUIarZtaEWhHKa e9kC3ebkt1A6MDT/UkZQ3v/sL7Nbi/DN/XqamjEpUb8iV1+REXh+bDvYfabsJG9L u5uVJDieeeSGuvV166Fnfes/9g8Qwwg0UQ2GxiwPI+nOUa/cVb6M/RIG3OLLVDjE Iaa4pPlJPzlo/AqiFnab2Si9Bt6BtaDtZnllGR0QYVHiTLJWQtxr1qXwHTg= -----END CERTIFICATE-----Generated at Sat Aug 23 06:53:48 2025 by rpki-client