$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa File: 59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa (raw, json) Hash identifier: TDH9M3MvzP8RQBmmb2sMwgZ8bngOvjv+SbT2mxk6h7w= Subject key identifier: 59:6C:3D:05:06:EA:20:33:38:C3:7E:C4:4E:DC:24:F0:DF:67:D1:AD Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 692EDB92658D9CD78E8982226DE43F51858A2881 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa Signing time: Fri 15 Aug 2025 00:20:16 +0000 ROA not before: Fri 15 Aug 2025 00:20:16 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:2e:db:92:65:8d:9c:d7:8e:89:82:22:6d:e4:3f:51:85:8a:28:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:20:16 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=4c10abec66708291eef3dd42388b03f74f8595c43c34f3ea343b54bbbd962418, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:9c:da:11:80:46:82:8f:ba:51:d8:61:ac:d8: db:9c:d9:6b:25:63:23:0b:fa:2d:a2:73:8b:d8:d8: d5:1a:08:80:bf:96:35:eb:fa:b4:e0:e8:1f:1d:9d: 35:2e:50:70:3b:4c:f0:20:c4:d3:61:7b:35:04:a4: 99:4a:92:c9:0f:88:5f:60:17:ae:b7:00:06:10:d1: 4b:4e:98:5f:11:fb:11:5b:54:be:01:f8:d6:65:9d: 8d:94:16:f7:fe:f9:96:9c:61:4a:6b:b5:81:be:b9: 50:f5:e3:8b:8f:39:ba:a8:c4:76:ff:fd:2e:77:3f: 81:4a:59:e8:38:25:9a:0d:d1:a3:81:3e:2e:6c:0a: f1:52:5a:17:a1:ab:26:a5:b4:fa:b2:37:34:73:74: b2:ff:05:be:6f:5f:0f:a4:dc:50:ac:96:f9:c6:25: 4f:d3:fd:a8:06:bb:3d:84:6c:2b:96:e0:78:ae:5b: ca:cb:d7:0c:5a:70:5d:7d:b6:9a:a2:79:1e:c5:e6: 88:d0:72:47:43:b3:02:c3:28:2f:a2:80:e6:11:ce: fe:b0:ba:df:99:2e:dd:39:19:1f:9e:9b:e9:a3:1d: 4f:55:d4:64:39:df:dd:48:97:89:b1:61:f2:e5:09: a9:90:94:2c:61:2b:1a:c7:0f:80:b9:d6:c3:f6:4d: f5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:6C:3D:05:06:EA:20:33:38:C3:7E:C4:4E:DC:24:F0:DF:67:D1:AD X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.220.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:e3:dc:b5:dc:11:94:86:db:3a:8f:d7:b2:a2:fb:0f:cd:86: b0:4a:f8:ca:ef:9b:20:a1:e9:95:6d:61:48:89:9b:22:85:2f: ce:2c:5b:ad:de:93:e9:ab:ab:01:ed:bc:5f:a6:fb:2f:29:cd: f0:81:96:8d:ef:6a:5d:30:e2:f4:06:ce:a4:e2:e2:08:43:03: 90:c2:6d:96:32:8e:3f:b8:d7:c5:98:01:5d:7c:1a:c9:48:e3: 27:6e:0d:ea:2f:87:b3:60:8f:23:43:73:27:79:74:b1:25:16: 65:ba:3a:0e:33:f0:25:f2:b4:25:da:62:b7:1d:bb:f3:52:d0: 99:64:fb:fa:a3:bc:93:56:c4:9c:c3:c6:71:af:40:9f:91:56: ad:79:46:34:8b:5a:60:8b:06:47:6f:20:37:7c:51:cf:8f:87: c3:f1:40:ff:84:69:77:0d:97:f2:98:7b:99:53:8a:14:06:35: c5:8b:45:6b:38:f1:84:e8:50:7b:5c:26:ac:3e:bb:25:ff:20: c5:d5:0d:e7:fd:29:8e:b4:ce:2a:94:06:16:29:03:b5:38:aa: af:5a:73:12:e1:77:93:73:26:dd:f7:bb:e8:67:f1:ec:0a:c3: ee:16:82:83:60:a4:09:bc:45:4f:d2:c1:cd:b8:08:c8:31:bc: ed:28:8e:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaS7bkmWNnNeOiYIibeQ/UYWKKIEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMDE2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzEwYWJlYzY2NzA4MjkxZWVmM2RkNDIzODhiMDNmNzRm ODU5NWM0M2MzNGYzZWEzNDNiNTRiYmJkOTYyNDE4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpnNoRgEaCj7pR2GGs2Nuc2WslYyML+i2ic4vY2NUaCIC/ ljXr+rTg6B8dnTUuUHA7TPAgxNNhezUEpJlKkskPiF9gF663AAYQ0UtOmF8R+xFb VL4B+NZlnY2UFvf++ZacYUprtYG+uVD144uPObqoxHb//S53P4FKWeg4JZoN0aOB Pi5sCvFSWhehqyaltPqyNzRzdLL/Bb5vXw+k3FCslvnGJU/T/agGuz2EbCuW4Hiu W8rL1wxacF19tpqieR7F5ojQckdDswLDKC+igOYRzv6wut+ZLt05GR+em+mjHU9V 1GQ5391Il4mxYfLlCamQlCxhKxrHD4C51sP2TfXTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWWw9BQbqIDM4w37ETtwk8N9n0a0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU5YWIyNjRlLTI4NGYtNGUzMC1iMmYwLWQ4NWZhNzNiNjJiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dwwDQYJKoZIhvcNAQELBQADggEBAIvj3LXcEZSG2zqP17Ki+w/NhrBK +MrvmyCh6ZVtYUiJmyKFL84sW63ek+mrqwHtvF+m+y8pzfCBlo3val0w4vQGzqTi 4ghDA5DCbZYyjj+418WYAV18GslI4yduDeovh7NgjyNDcyd5dLElFmW6Og4z8CXy tCXaYrcdu/NS0Jlk+/qjvJNWxJzDxnGvQJ+RVq15RjSLWmCLBkdvIDd8Uc+Ph8Px QP+EaXcNl/KYe5lTihQGNcWLRWs48YToUHtcJqw+uyX/IMXVDef9KY60ziqUBhYp A7U4qq9acxLhd5NzJt33u+hn8ewKw+4WgoNgpAm8RU/Swc24CMgxvO0ojjc= -----END CERTIFICATE-----Generated at Sat Aug 23 08:13:53 2025 by rpki-client