$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa File: 3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa (raw, json) Hash identifier: 1xSyG7SwlMot1P3Rww7ujZid9KZlHe9jBc9/T6T09fg= Subject key identifier: C4:61:EE:C9:BD:55:52:C7:87:C3:65:17:E5:B8:AF:5F:4D:B5:73:E0 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3FC79878A7B7340D65261E6AFCA0B9CF7EE549FF Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa Signing time: Wed 13 Aug 2025 00:00:11 +0000 ROA not before: Wed 13 Aug 2025 00:00:11 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:c7:98:78:a7:b7:34:0d:65:26:1e:6a:fc:a0:b9:cf:7e:e5:49:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 13 00:00:11 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=b4b52f1aeee630db83d28756bd9e86ebb5a6f75b22c16a710b50b3a28b85e49c, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:67:34:b9:be:61:d1:43:60:41:02:ce:68:9a: eb:45:19:cd:bc:02:df:40:b6:8a:5d:04:62:69:a0: 73:ce:fe:48:f5:86:1f:ae:4f:10:27:4a:c0:bb:5a: 49:7c:46:d3:9d:7c:c3:56:af:92:d7:e0:2b:97:34: b5:9d:ab:f2:51:92:1a:47:42:3b:7e:75:af:d4:be: 25:a5:d2:73:8e:ec:b8:c7:c9:e7:8e:8b:b3:ea:a7: 7a:11:e2:4c:61:3e:9c:b8:3b:27:76:6c:70:61:e6: ec:f5:ff:be:74:99:b6:42:48:da:f0:42:34:e6:a4: 32:11:54:30:98:d3:71:4d:8f:93:d9:65:64:7b:66: 49:54:ce:d3:ba:00:8d:1c:1b:cd:73:1d:1d:27:11: 86:f3:62:6c:da:60:ee:b5:67:1e:55:99:5d:c5:97: fb:5a:d3:be:50:0a:c6:23:38:20:5a:2c:ae:e9:7c: 44:43:51:ed:9e:1c:19:33:88:44:5c:d1:b8:9e:bb: 23:a6:b5:95:9c:07:5b:62:3a:2a:70:b5:2f:2a:69: a0:16:f0:79:82:15:2c:a0:3c:b4:75:f9:15:ac:47: 86:98:b9:0a:f2:0c:37:dc:2c:8e:54:e8:cc:fc:df: e1:fb:b6:81:46:f2:46:b9:a0:36:d9:30:cb:b8:51: 97:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:61:EE:C9:BD:55:52:C7:87:C3:65:17:E5:B8:AF:5F:4D:B5:73:E0 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 3e:00:8b:c4:51:66:f5:bf:bd:c5:47:13:01:7f:19:99:2f:b9: ea:7d:e7:44:00:38:74:a7:2c:07:89:39:1a:4d:c6:c7:8d:0e: d9:8c:13:23:cd:c7:97:fb:27:fc:a4:17:53:da:f4:6d:b2:cd: 17:c9:ea:14:3f:75:0a:bd:7e:1e:71:65:a4:bf:0d:67:be:a2: 26:f9:29:b7:71:eb:08:63:28:b0:5a:69:22:b2:29:2b:d0:73: 0a:2e:72:7b:ad:e9:7c:4d:79:8d:f1:d6:e2:e6:cc:28:73:bf: 0d:74:3b:f1:07:b4:91:59:dc:50:a0:c7:3b:e3:8c:05:f8:e1: 99:53:9f:45:e1:7c:53:59:ba:d5:0d:e5:4b:c4:b8:68:a8:41: c0:62:e6:98:c8:de:fe:f0:46:34:09:cc:d3:72:54:d6:aa:62: 27:70:b4:b4:30:ce:42:a5:ec:18:b2:98:f7:ec:ce:a3:82:6a: 8d:e6:6c:8f:10:07:b2:50:dc:f9:15:a8:c2:8b:04:30:33:ca: 1c:f4:24:36:cd:6a:1d:b5:5e:71:c2:b4:84:11:8a:bc:49:38: b4:4a:19:25:eb:02:b7:6a:82:61:07:6c:a5:cb:43:b5:3c:de: f1:f0:48:19:b4:0e:a0:64:0d:ce:96:d5:93:4a:3b:65:10:16: 6c:98:de:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP8eYeKe3NA1lJh5q/KC5z37lSf8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODEzMDAwMDExWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNGI1MmYxYWVlZTYzMGRiODNkMjg3NTZiZDllODZlYmI1 YTZmNzViMjJjMTZhNzEwYjUwYjNhMjhiODVlNDljMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYZzS5vmHRQ2BBAs5omutFGc28At9AtopdBGJpoHPO/kj1 hh+uTxAnSsC7Wkl8RtOdfMNWr5LX4CuXNLWdq/JRkhpHQjt+da/UviWl0nOO7LjH yeeOi7Pqp3oR4kxhPpy4Oyd2bHBh5uz1/750mbZCSNrwQjTmpDIRVDCY03FNj5PZ ZWR7ZklUztO6AI0cG81zHR0nEYbzYmzaYO61Zx5VmV3Fl/ta075QCsYjOCBaLK7p fERDUe2eHBkziERc0bieuyOmtZWcB1tiOipwtS8qaaAW8HmCFSygPLR1+RWsR4aY uQryDDfcLI5U6Mz83+H7toFG8ka5oDbZMMu4UZcpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxGHuyb1VUseHw2UX5bivX021c+AwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNlMGRhY2UzLTBlMmEtNDI1Mi04YzkyLTRjN2VlYzRjMzU4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBAD4Ai8RRZvW/vcVHEwF/GZkvuep9 50QAOHSnLAeJORpNxseNDtmMEyPNx5f7J/ykF1Pa9G2yzRfJ6hQ/dQq9fh5xZaS/ DWe+oib5Kbdx6whjKLBaaSKyKSvQcwoucnut6XxNeY3x1uLmzChzvw10O/EHtJFZ 3FCgxzvjjAX44ZlTn0XhfFNZutUN5UvEuGioQcBi5pjI3v7wRjQJzNNyVNaqYidw tLQwzkKl7BiymPfszqOCao3mbI8QB7JQ3PkVqMKLBDAzyhz0JDbNah21XnHCtIQR irxJOLRKGSXrArdqgmEHbKXLQ7U83vHwSBm0DqBkDc6W1ZNKO2UQFmyY3tY= -----END CERTIFICATE-----Generated at Sat Aug 23 08:22:10 2025 by rpki-client