$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa File: 32c53391-9c3f-4b16-925f-978e804a33ba.roa (raw, json) Hash identifier: 7vrWjy804bytJu1+h9egMb0dzftL4I4z59wCpUN+srk= Subject key identifier: 96:B2:09:EB:42:54:D6:A2:B1:DD:FB:8B:5D:2E:99:F9:16:B4:0D:8B Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1DFE6645F7B22572AF372F4CF4EA613C73912A77 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa Signing time: Sat 16 Aug 2025 00:00:02 +0000 ROA not before: Sat 16 Aug 2025 00:00:02 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 24.110.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:fe:66:45:f7:b2:25:72:af:37:2f:4c:f4:ea:61:3c:73:91:2a:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 16 00:00:02 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=001ecca14f0655b0003b4fa4a574a1151ca8c700c92edc575695c0092c6b7552, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:e8:dd:43:57:c7:b2:9b:36:bf:f9:94:18:6e: 00:a1:4a:6d:e6:98:98:18:cc:20:f1:90:5c:22:76: b7:02:83:46:c8:db:f1:68:72:28:91:c8:fe:ce:75: 55:f4:b5:3d:47:fa:9a:42:03:88:c7:26:fb:3a:5d: 4a:f7:88:97:aa:d1:43:ee:c9:4d:f0:14:25:7a:f1: 20:12:bf:93:c0:a0:af:04:a7:ab:d2:5c:06:12:3a: 42:9e:82:98:af:a4:e1:82:c7:4c:ea:bc:0d:38:4e: 86:ee:33:3f:b7:22:11:cd:bc:e3:8e:86:28:63:da: dd:91:c0:fb:9e:71:6c:5a:21:e9:24:0d:19:32:a3: e1:cb:47:54:b8:b7:8b:d1:0a:ad:13:1d:2a:bc:0b: 4e:fa:7d:59:64:54:02:64:e3:9a:fa:c9:55:1d:0b: 9c:65:8f:e6:b5:4f:8a:6c:e2:45:ed:d1:2b:aa:30: b3:af:3f:d9:ea:0c:b7:83:39:18:b8:ea:e4:ad:93: bd:14:5e:09:58:1d:fa:d1:e2:7a:13:5c:a2:35:a4: 23:3a:9d:a3:33:50:07:e2:d6:d4:36:fd:95:eb:11: df:74:26:87:35:80:dd:e2:30:51:06:1d:90:5f:d6: 88:8b:3a:31:35:4f:8f:9f:db:42:23:36:9e:c8:1c: 85:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:B2:09:EB:42:54:D6:A2:B1:DD:FB:8B:5D:2E:99:F9:16:B4:0D:8B X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.64.0/18 Signature Algorithm: sha256WithRSAEncryption 1a:71:55:1d:b9:04:20:12:c5:25:6b:48:19:e7:d0:36:d0:1d: 5e:d1:ef:95:39:7b:ff:58:62:2c:85:8b:06:20:ac:84:12:80: 5b:05:3b:73:82:df:dd:da:e7:10:a2:8a:ab:24:eb:e5:7e:ee: 70:44:b5:cb:b5:c8:b5:d7:e3:d6:35:c7:1c:a9:41:aa:37:dd: 04:aa:b8:a1:03:90:4c:c7:eb:20:13:0e:b1:bd:fc:59:c9:1a: 79:dd:20:e8:66:14:4f:22:77:ec:6b:d1:41:45:57:48:1d:b9: 43:68:a4:dc:38:7b:23:8b:02:bf:78:8c:2f:cb:aa:b9:ef:f3: 10:c0:fa:47:2f:06:db:2f:02:1d:7f:a4:4b:1e:57:70:6a:5c: 42:a9:33:58:e9:3e:f3:3b:35:c8:8a:19:95:b6:45:14:04:3b: 54:f9:c2:1a:10:f2:02:78:61:e4:4d:66:31:fb:78:95:71:8a: bb:42:51:05:ab:26:05:fe:b9:f1:0c:55:d2:0b:c3:43:7a:f8: eb:97:0f:79:16:07:f6:7d:c9:ef:33:23:ea:92:8d:bc:87:f4: c2:fb:49:94:1f:e3:66:8b:3f:84:32:0d:b6:48:10:37:df:b7: 09:55:39:90:0f:70:3c:58:a7:44:7a:36:b2:d9:5d:f8:c4:00: 5e:f9:01:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHf5mRfeyJXKvNy9M9OphPHORKncwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE2MDAwMDAyWhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDFlY2NhMTRmMDY1NWIwMDAzYjRmYTRhNTc0YTExNTFj YThjNzAwYzkyZWRjNTc1Njk1YzAwOTJjNmI3NTUyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDl6N1DV8eymza/+ZQYbgChSm3mmJgYzCDxkFwidrcCg0bI 2/FociiRyP7OdVX0tT1H+ppCA4jHJvs6XUr3iJeq0UPuyU3wFCV68SASv5PAoK8E p6vSXAYSOkKegpivpOGCx0zqvA04TobuMz+3IhHNvOOOhihj2t2RwPuecWxaIekk DRkyo+HLR1S4t4vRCq0THSq8C076fVlkVAJk45r6yVUdC5xlj+a1T4ps4kXt0Suq MLOvP9nqDLeDORi46uStk70UXglYHfrR4noTXKI1pCM6naMzUAfi1tQ2/ZXrEd90 Joc1gN3iMFEGHZBf1oiLOjE1T4+f20IjNp7IHIUPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlrIJ60JU1qKx3fuLXS6Z+Ra0DYswHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzMyYzUzMzkxLTljM2YtNGIxNi05MjVmLTk3OGU4MDRhMzNiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYYbkAwDQYJKoZIhvcNAQELBQADggEBABpxVR25BCASxSVrSBnn0DbQHV7R 75U5e/9YYiyFiwYgrIQSgFsFO3OC393a5xCiiqsk6+V+7nBEtcu1yLXX49Y1xxyp Qao33QSquKEDkEzH6yATDrG9/FnJGnndIOhmFE8id+xr0UFFV0gduUNopNw4eyOL Ar94jC/Lqrnv8xDA+kcvBtsvAh1/pEseV3BqXEKpM1jpPvM7NciKGZW2RRQEO1T5 whoQ8gJ4YeRNZjH7eJVxirtCUQWrJgX+ufEMVdILw0N6+OuXD3kWB/Z9ye8zI+qS jbyH9ML7SZQf42aLP4QyDbZIEDfftwlVOZAPcDxYp0R6NrLZXfjEAF75AUg= -----END CERTIFICATE-----Generated at Sat Aug 23 08:11:10 2025 by rpki-client