$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: v7aDM/iG7KkaAduQtfmOztmyIzHxZzH25y0v9DbGk9k= Subject key identifier: F2:5D:AA:61:C1:5C:35:2D:27:F0:B9:9B:03:8D:BF:94:5A:33:46:C4 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6D9F7780F7C8D148F577E799D960C5C75F857C05 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Wed 13 Aug 2025 00:00:07 +0000 ROA not before: Wed 13 Aug 2025 00:00:07 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:9f:77:80:f7:c8:d1:48:f5:77:e7:99:d9:60:c5:c7:5f:85:7c:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 13 00:00:07 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=4023aff9928f867fed093e5fd82fe299874a1d7a846099f07d54ed21529188c2, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9f:64:82:d9:33:2b:f2:47:da:87:f0:16:56: 73:a7:01:c2:cf:42:6d:5c:c6:1e:21:37:56:79:7d: ae:52:81:2e:19:10:46:30:14:f8:3e:d1:70:45:67: 6e:f7:0d:36:2f:b2:d7:4c:ab:b5:05:44:cb:66:e7: e3:ca:6b:f2:b9:ed:0b:0d:6c:66:7c:b3:25:f1:84: 35:e1:55:83:58:e4:bf:58:90:67:ac:2c:11:24:38: 51:02:ce:34:52:2d:22:34:a3:e4:0f:ff:c7:5f:22: e5:23:cd:de:37:74:64:02:24:f2:72:fe:ae:44:6b: 1c:56:0e:fa:04:c6:7e:51:26:f4:8f:20:a6:b9:75: f9:08:ce:99:b3:36:66:5a:25:a9:b4:8f:0d:be:94: bc:4f:91:0e:7c:22:c7:41:f2:a2:52:47:b3:c3:19: 68:67:2b:b3:bd:bf:0f:65:d0:c8:1a:e3:ff:bc:c8: 28:2f:ae:2b:be:35:4b:fe:04:c6:64:bb:6b:53:71: 0c:78:d7:f9:77:8b:f4:4c:ac:aa:fb:c9:47:8f:a2: 48:8d:65:b2:35:ea:b6:36:ee:90:6e:83:fe:2f:d1: 3e:18:51:c7:7a:7f:56:8a:b0:c2:25:ad:c0:13:5c: 8b:01:c7:81:6f:f4:3d:f6:88:59:f9:21:97:d7:08: 0a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:5D:AA:61:C1:5C:35:2D:27:F0:B9:9B:03:8D:BF:94:5A:33:46:C4 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 87:98:13:52:d6:72:6b:17:83:9e:c9:f5:77:6c:5f:82:fa:a5: eb:b9:bd:39:7a:c9:9e:71:ed:e3:4b:81:8f:9d:6b:8b:d9:69: 02:5c:24:0c:94:11:b5:64:91:6a:73:79:1a:ff:b1:0e:b6:b7: 86:8c:09:d4:7b:35:2f:86:3d:8e:75:ac:34:ed:c9:f7:90:5d: 48:9e:ff:6f:00:51:b0:c1:da:7c:33:ff:07:07:ef:e0:83:50: 37:b7:6f:9b:8f:58:ea:06:7b:41:98:7b:df:14:ed:13:5f:6c: f2:99:3f:0e:96:0e:32:fe:91:d8:c1:47:40:de:d7:83:22:50: 28:f3:d8:68:08:94:4c:cb:fa:f9:ee:9e:d8:4c:5c:b0:90:fb: e0:1b:8f:25:1f:8e:55:17:a6:e6:bf:80:57:bc:45:2a:b3:7e: fe:bf:c8:b8:50:a9:9c:52:a6:6c:c2:62:80:d2:a6:5b:e4:c0: cb:93:b6:fc:34:c8:43:10:89:0e:87:6c:5c:7f:0a:c2:5f:a6: 06:1a:15:11:3e:28:32:88:f5:99:dd:a1:25:d0:1b:6b:0b:04: a4:ce:a7:c3:cd:36:6e:9f:d3:38:0f:17:59:b7:cf:94:c3:b5: 1a:da:71:22:93:93:44:26:45:f4:06:4a:96:e0:ec:73:0d:91: df:81:00:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbZ93gPfI0Uj1d+eZ2WDFx1+FfAUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODEzMDAwMDA3WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDIzYWZmOTkyOGY4NjdmZWQwOTNlNWZkODJmZTI5OTg3 NGExZDdhODQ2MDk5ZjA3ZDU0ZWQyMTUyOTE4OGMyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1n2SC2TMr8kfah/AWVnOnAcLPQm1cxh4hN1Z5fa5SgS4Z EEYwFPg+0XBFZ273DTYvstdMq7UFRMtm5+PKa/K57QsNbGZ8syXxhDXhVYNY5L9Y kGesLBEkOFECzjRSLSI0o+QP/8dfIuUjzd43dGQCJPJy/q5EaxxWDvoExn5RJvSP IKa5dfkIzpmzNmZaJam0jw2+lLxPkQ58IsdB8qJSR7PDGWhnK7O9vw9l0Mga4/+8 yCgvriu+NUv+BMZku2tTcQx41/l3i/RMrKr7yUePokiNZbI16rY27pBug/4v0T4Y Ucd6f1aKsMIlrcATXIsBx4Fv9D32iFn5IZfXCAphAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8l2qYcFcNS0n8LmbA42/lFozRsQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAIeYE1LWcmsXg57J9XdsX4L6peu5 vTl6yZ5x7eNLgY+da4vZaQJcJAyUEbVkkWpzeRr/sQ62t4aMCdR7NS+GPY51rDTt yfeQXUie/28AUbDB2nwz/wcH7+CDUDe3b5uPWOoGe0GYe98U7RNfbPKZPw6WDjL+ kdjBR0De14MiUCjz2GgIlEzL+vnunthMXLCQ++AbjyUfjlUXpua/gFe8RSqzfv6/ yLhQqZxSpmzCYoDSplvkwMuTtvw0yEMQiQ6HbFx/CsJfpgYaFRE+KDKI9ZndoSXQ G2sLBKTOp8PNNm6f0zgPF1m3z5TDtRracSKTk0QmRfQGSpbg7HMNkd+BADs= -----END CERTIFICATE-----Generated at Sat Aug 23 08:20:24 2025 by rpki-client