$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa File: 59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa (raw, json) Hash identifier: 3H75aw4O+lTxL6pyXzN3+lpBJIPiLCoCck+e6xj0UN0= Subject key identifier: 0D:BB:76:E3:42:62:1E:9F:3F:3F:8A:89:13:12:B2:E9:53:06:B2:CA Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1740A56B9C366F14B71FF0E3C178EF3E3D302BF1 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa Signing time: Wed 25 Jun 2025 00:00:12 +0000 ROA not before: Wed 25 Jun 2025 00:00:12 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:40:a5:6b:9c:36:6f:14:b7:1f:f0:e3:c1:78:ef:3e:3d:30:2b:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 25 00:00:12 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=632e870fc7851f0fb9baa1a3df48d50a6b809b0da2bda67cbbe96b199f09eda9, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:50:54:33:c2:94:97:e9:7b:eb:6a:7a:af:15: fb:7c:ff:a1:fe:7b:ed:b4:29:4f:34:f7:a3:db:32: 7b:89:57:9f:b0:aa:62:09:56:39:fd:60:a8:6e:48: b1:9f:81:20:8b:34:4b:9a:60:87:b5:9a:6c:53:b4: 3a:c7:32:a4:40:67:c1:ad:39:8f:a6:c0:05:8e:fc: 52:09:09:58:1c:11:23:f0:fb:64:6f:cc:cc:b4:ed: a8:cb:35:5e:a0:c0:a8:1c:c7:c1:9a:97:7d:c3:2f: 31:7f:5d:ce:6c:16:d4:87:78:40:2e:22:91:2d:e8: bc:c2:65:ef:90:48:ae:d0:36:9a:c3:1e:1d:25:2a: c2:1a:c8:a4:9b:fb:44:34:c8:42:64:74:d9:92:4e: 71:8d:3d:51:b2:9f:05:e0:c4:2b:70:24:13:72:83: 8d:c4:aa:39:63:c8:63:89:95:79:cb:23:fa:a1:04: f1:ad:ab:49:28:3c:b0:af:81:33:34:31:9a:ae:9a: f4:63:6c:05:9a:4f:25:f7:e5:10:3b:e0:f0:4e:fe: e8:21:46:88:27:2e:7d:a3:ef:08:52:28:e2:56:b3: 48:3e:35:9d:eb:70:c4:73:87:11:5e:dd:f3:f5:48: bc:d5:73:6f:4f:43:8b:fe:07:b7:bf:0d:55:eb:20: e4:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:BB:76:E3:42:62:1E:9F:3F:3F:8A:89:13:12:B2:E9:53:06:B2:CA X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.220.0/24 Signature Algorithm: sha256WithRSAEncryption 27:a5:23:d6:bb:e0:ab:56:06:4e:40:1c:66:16:72:4b:89:fb: 3b:bf:c5:cc:ee:3d:b8:78:fa:dc:f1:27:ca:50:6e:a2:0d:ce: d3:3e:a9:43:f4:11:24:67:92:5c:f7:81:e3:41:5a:ec:09:f9: 99:53:7b:84:3a:d7:4a:ab:11:ac:0f:cc:c9:4f:8f:ed:d4:5f: a5:53:c2:19:12:48:98:3b:9c:f3:1c:2f:02:89:46:93:4c:b5: 95:35:47:6a:84:90:f3:06:4f:09:51:f7:5c:8a:c2:46:1f:79: dd:57:63:55:97:94:65:fa:b3:a1:7b:ad:8a:0a:8f:94:de:7e: 44:87:a3:75:eb:78:be:2a:46:68:ef:f7:1e:d7:be:21:8d:ef: 82:cd:83:be:62:96:77:d0:fe:7c:1f:98:3d:51:40:9e:2e:d8: 3e:6b:b6:bf:15:62:7e:a4:ee:c0:c0:64:ce:74:6d:c2:a8:89: d3:4a:07:39:17:13:4e:5d:95:42:ba:25:a5:9d:3a:ca:8c:0c: 21:da:ba:95:3d:9b:0f:57:7f:14:8e:42:56:67:b1:c7:ba:7f: 3f:bb:93:4b:f5:74:50:6c:9c:4c:94:69:a5:90:1d:50:52:59: 4e:f6:48:a8:e3:e8:01:b1:85:a9:4e:c7:42:8a:7b:6f:a7:c7: ff:61:23:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF0Cla5w2bxS3H/DjwXjvPj0wK/EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI1MDAwMDEyWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MzJlODcwZmM3ODUxZjBmYjliYWExYTNkZjQ4ZDUwYTZi ODA5YjBkYTJiZGE2N2NiYmU5NmIxOTlmMDllZGE5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeUFQzwpSX6XvranqvFft8/6H+e+20KU8096PbMnuJV5+w qmIJVjn9YKhuSLGfgSCLNEuaYIe1mmxTtDrHMqRAZ8GtOY+mwAWO/FIJCVgcESPw +2RvzMy07ajLNV6gwKgcx8Gal33DLzF/Xc5sFtSHeEAuIpEt6LzCZe+QSK7QNprD Hh0lKsIayKSb+0Q0yEJkdNmSTnGNPVGynwXgxCtwJBNyg43EqjljyGOJlXnLI/qh BPGtq0koPLCvgTM0MZqumvRjbAWaTyX35RA74PBO/ughRognLn2j7whSKOJWs0g+ NZ3rcMRzhxFe3fP1SLzVc29PQ4v+B7e/DVXrIORDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDbt240JiHp8/P4qJExKy6VMGssowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU5YWIyNjRlLTI4NGYtNGUzMC1iMmYwLWQ4NWZhNzNiNjJiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dwwDQYJKoZIhvcNAQELBQADggEBACelI9a74KtWBk5AHGYWckuJ+zu/ xczuPbh4+tzxJ8pQbqINztM+qUP0ESRnklz3geNBWuwJ+ZlTe4Q610qrEawPzMlP j+3UX6VTwhkSSJg7nPMcLwKJRpNMtZU1R2qEkPMGTwlR91yKwkYfed1XY1WXlGX6 s6F7rYoKj5TefkSHo3XreL4qRmjv9x7XviGN74LNg75ilnfQ/nwfmD1RQJ4u2D5r tr8VYn6k7sDAZM50bcKoidNKBzkXE05dlUK6JaWdOsqMDCHaupU9mw9XfxSOQlZn sce6fz+7k0v1dFBsnEyUaaWQHVBSWU72SKjj6AGxhalOx0KKe2+nx/9hI0Q= -----END CERTIFICATE-----Generated at Sun Jun 29 04:34:01 2025 by rpki-client