$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: q81fBUgfAj/jWJRXZ8c9q0rcLLBTunKGRfrgzrEsL5s= Subject key identifier: A7:08:9B:98:92:1A:75:CE:18:1E:F7:7F:44:28:29:CB:C7:C8:BD:92 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5B4DDBF6BE3611474C59CAB188EDC43358CDC386 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Tue 24 Jun 2025 00:00:08 +0000 ROA not before: Tue 24 Jun 2025 00:00:08 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:4d:db:f6:be:36:11:47:4c:59:ca:b1:88:ed:c4:33:58:cd:c3:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 24 00:00:08 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=ce5d81a3bdc27e42111f08f7ef9d7ba2f2fadc4d2d6d90905ec32399419eeee3, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d6:0f:48:12:7d:04:0a:dc:87:43:c8:6b:e5: ba:38:20:cd:8a:5e:38:46:8b:90:dc:cb:93:57:14: 15:cc:dd:7e:c8:92:b5:c6:b0:cb:a7:c8:1a:ca:fd: 9b:f8:e2:8e:47:97:26:c5:c5:ee:25:7b:57:4c:0c: d9:25:a6:da:2e:02:d2:5c:34:57:8c:29:fb:f7:4d: 07:3c:58:a1:b4:a0:53:db:3b:12:c7:95:39:a0:f3: 5e:2b:06:81:75:82:da:28:be:a1:7f:b3:0c:2e:a5: fd:19:15:f7:d5:b9:ab:07:19:25:be:22:6b:27:a7: d5:2b:ec:f1:7a:e6:27:d9:e1:c0:61:6f:fe:c8:fd: 48:71:27:0a:1f:e3:6b:37:c5:45:63:66:60:7b:85: 08:b3:9c:a4:0b:0c:d4:27:c2:10:ee:2c:a7:9a:15: 08:8c:e5:6f:7d:d6:b6:06:8f:6a:e2:bc:3a:e5:e2: 61:4c:3f:b6:16:e1:77:5e:1d:44:4f:7f:c9:69:39: da:5e:d1:97:2e:90:88:86:6b:f5:c1:72:b3:80:04: 0b:fc:23:80:41:e3:d1:2d:83:44:44:42:af:9c:0b: f4:3d:ff:0a:aa:12:6a:ae:33:c2:a8:6f:0e:ee:52: 2f:f5:c7:f7:5a:48:6a:16:91:39:2a:d6:ad:76:74: db:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:08:9B:98:92:1A:75:CE:18:1E:F7:7F:44:28:29:CB:C7:C8:BD:92 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 18:ab:66:07:18:ad:0a:2f:2d:75:49:da:83:9f:19:ca:c7:2d: e8:94:be:ed:17:d4:e3:55:06:25:e5:ee:9e:0e:16:12:ca:c0: b4:27:6f:94:8d:bf:2d:d6:6e:94:a7:a9:f7:e8:39:56:4b:e8: 77:c5:74:95:7e:7c:f2:16:49:d4:66:94:c3:2b:d6:6a:a0:5d: 7b:c5:24:01:38:7e:f0:0b:e0:51:07:96:da:99:d3:0e:5d:a3: 69:af:e9:c9:fc:4d:dc:1d:65:53:59:47:ce:e5:ba:ae:b9:99: 71:06:34:8e:e1:2d:80:42:8d:17:7e:b2:a7:59:a0:81:d2:8d: 81:3a:63:2e:dc:56:d0:95:e3:6f:1c:7f:db:2c:06:5f:c3:c5: 00:28:08:ad:13:a2:b8:da:10:08:df:90:bf:d1:99:31:a4:e6: 34:b9:d4:33:05:42:23:b2:3d:47:c0:8c:7a:bc:b3:f7:b9:22: 71:c1:3e:bd:bc:9d:18:8b:7a:35:1d:92:c2:82:eb:df:9e:eb: a6:2f:8b:6e:b6:fb:5d:d5:8f:97:d0:6b:7a:de:a8:49:f0:b7: 6c:48:ab:58:5c:8b:a9:ed:0e:71:70:ce:d5:64:0a:c9:13:ea: 90:76:22:bc:48:02:39:f3:ad:6b:3b:34:74:86:61:8d:f4:05: 67:a2:0c:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW03b9r42EUdMWcqxiO3EM1jNw4YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI0MDAwMDA4WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTVkODFhM2JkYzI3ZTQyMTExZjA4ZjdlZjlkN2JhMmYy ZmFkYzRkMmQ2ZDkwOTA1ZWMzMjM5OTQxOWVlZWUzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs1g9IEn0ECtyHQ8hr5bo4IM2KXjhGi5Dcy5NXFBXM3X7I krXGsMunyBrK/Zv44o5HlybFxe4le1dMDNklptouAtJcNFeMKfv3TQc8WKG0oFPb OxLHlTmg814rBoF1gtoovqF/swwupf0ZFffVuasHGSW+Imsnp9Ur7PF65ifZ4cBh b/7I/UhxJwof42s3xUVjZmB7hQiznKQLDNQnwhDuLKeaFQiM5W991rYGj2rivDrl 4mFMP7YW4XdeHURPf8lpOdpe0ZcukIiGa/XBcrOABAv8I4BB49Etg0REQq+cC/Q9 /wqqEmquM8Kobw7uUi/1x/daSGoWkTkq1q12dNtLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpwibmJIadc4YHvd/RCgpy8fIvZIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBABirZgcYrQovLXVJ2oOfGcrHLeiU vu0X1ONVBiXl7p4OFhLKwLQnb5SNvy3WbpSnqffoOVZL6HfFdJV+fPIWSdRmlMMr 1mqgXXvFJAE4fvAL4FEHltqZ0w5do2mv6cn8TdwdZVNZR87luq65mXEGNI7hLYBC jRd+sqdZoIHSjYE6Yy7cVtCV428cf9ssBl/DxQAoCK0TorjaEAjfkL/RmTGk5jS5 1DMFQiOyPUfAjHq8s/e5InHBPr28nRiLejUdksKC69+e66Yvi262+13Vj5fQa3re qEnwt2xIq1hci6ntDnFwztVkCskT6pB2IrxIAjnzrWs7NHSGYY30BWeiDM8= -----END CERTIFICATE-----Generated at Mon Jun 30 19:22:09 2025 by rpki-client