$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5dab641b-24fb-48f2-8b71-57a07d630894.roa File: 5dab641b-24fb-48f2-8b71-57a07d630894.roa (raw, json) Hash identifier: Pt9aVKO/AhDFV0AflXNWQkak92OI7IcC83YW2ml5IIs= Subject key identifier: 23:66:EC:73:B8:18:32:39:3D:80:CC:F6:71:38:F2:42:05:E4:7B:6A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 70991EDA8A9B67FAFB3A3A0275ECE52985F9AC52 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5dab641b-24fb-48f2-8b71-57a07d630894.roa Signing time: Wed 25 Jun 2025 00:00:49 +0000 ROA not before: Wed 25 Jun 2025 00:00:49 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:99:1e:da:8a:9b:67:fa:fb:3a:3a:02:75:ec:e5:29:85:f9:ac:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 25 00:00:49 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=9c1a6fdab6a1010f041bbbf3701fecfa6f8bb93726761022a73ca5fb639ce30f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b8:d8:7e:6a:8b:73:3d:7e:91:3b:ba:8c:eb: a8:63:0c:db:d9:6f:81:9d:85:e5:7b:c7:a1:de:af: 74:43:a3:01:6e:26:a2:aa:01:95:10:a7:9e:4f:b7: 08:be:27:21:b9:ad:84:e4:58:66:1a:68:39:eb:cd: b2:96:c0:31:7a:c3:0e:73:ee:92:58:47:0e:d7:bb: 6a:53:ec:fb:d6:c5:6a:18:5a:0e:a5:22:68:8f:6e: fc:50:eb:d7:e7:34:de:75:05:2c:60:58:48:83:71: 6a:53:13:cc:3f:b5:5d:da:90:d8:6d:be:4d:4d:bc: 88:81:72:94:b0:eb:ec:0c:c5:36:ae:57:3a:9d:d2: cb:6d:f7:17:5a:6c:da:16:7d:56:24:39:60:82:14: f2:00:17:51:ea:5b:e3:96:1c:b9:04:c5:66:04:a2: 19:ff:06:af:a6:89:80:52:bb:c7:5f:f6:c9:ef:c2: 09:6f:4d:bd:02:b7:f9:9f:60:28:9b:d2:f4:2c:71: d2:f6:de:37:8c:8b:e4:28:6c:1f:d2:51:2b:c4:95: 34:72:67:88:7c:a9:20:8c:5f:c7:d1:88:c7:7a:62: 84:e2:27:a8:c3:92:df:91:e7:75:4a:1e:28:ad:3f: 52:38:83:2a:85:1c:9b:25:97:51:91:b3:bf:03:13: 79:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:66:EC:73:B8:18:32:39:3D:80:CC:F6:71:38:F2:42:05:E4:7B:6A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5dab641b-24fb-48f2-8b71-57a07d630894.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.252.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:92:0c:26:72:72:69:64:3d:2d:03:98:aa:83:06:4d:22:e7: 2a:ab:6b:b3:23:3d:d9:6b:99:28:1b:bb:4d:a5:6f:a0:11:92: 79:2b:73:66:99:d4:5c:a7:fe:b7:48:0c:9d:66:2f:83:e1:bc: 6c:24:65:f5:08:8f:a3:7a:40:94:28:cf:71:96:08:96:32:0b: 6a:16:99:59:ac:54:ac:81:cb:f1:6a:04:df:cf:3b:dd:48:0e: 72:39:26:6c:da:30:93:bf:23:9d:3e:8c:cf:75:3a:72:7e:77: 1a:ee:48:61:79:ee:92:b6:f9:e3:18:f8:a0:3d:ca:7d:23:7e: 53:f0:2a:97:46:a6:45:c8:3d:f4:72:ab:f2:cd:79:9a:c5:5c: 05:5d:a8:f8:25:64:e7:ce:95:bc:b9:61:68:67:66:15:c8:79: 24:16:96:fa:ac:7a:d3:9e:b4:79:91:85:18:95:f5:ba:db:6e: 3a:62:e6:00:ac:ef:1d:f8:c7:c8:19:0d:f1:64:3b:6d:21:e8: ac:3b:54:5c:1b:d8:8c:da:77:59:e0:b3:a7:0a:63:9d:91:83: bc:00:cd:c0:48:34:e8:f9:28:58:f8:2e:8f:ae:00:d2:3e:79: 0e:ee:8d:2d:91:df:90:a2:f1:8d:9c:a5:7b:41:36:43:52:c0: 0b:77:64:cd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcJke2oqbZ/r7OjoCdezlKYX5rFIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI1MDAwMDQ5WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzFhNmZkYWI2YTEwMTBmMDQxYmJiZjM3MDFmZWNmYTZm OGJiOTM3MjY3NjEwMjJhNzNjYTVmYjYzOWNlMzBmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnuNh+aotzPX6RO7qM66hjDNvZb4GdheV7x6Her3RDowFu JqKqAZUQp55Ptwi+JyG5rYTkWGYaaDnrzbKWwDF6ww5z7pJYRw7Xu2pT7PvWxWoY Wg6lImiPbvxQ69fnNN51BSxgWEiDcWpTE8w/tV3akNhtvk1NvIiBcpSw6+wMxTau Vzqd0stt9xdabNoWfVYkOWCCFPIAF1HqW+OWHLkExWYEohn/Bq+miYBSu8df9snv wglvTb0Ct/mfYCib0vQscdL23jeMi+QobB/SUSvElTRyZ4h8qSCMX8fRiMd6YoTi J6jDkt+R53VKHiitP1I4gyqFHJsll1GRs78DE3nTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI2bsc7gYMjk9gMz2cTjyQgXke2owHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkYWI2NDFiLTI0ZmItNDhmMi04YjcxLTU3YTA3ZDYzMDg5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX+/wwDQYJKoZIhvcNAQELBQADggEBADuSDCZycmlkPS0DmKqDBk0i5yqr a7MjPdlrmSgbu02lb6ARknkrc2aZ1Fyn/rdIDJ1mL4PhvGwkZfUIj6N6QJQoz3GW CJYyC2oWmVmsVKyBy/FqBN/PO91IDnI5JmzaMJO/I50+jM91OnJ+dxruSGF57pK2 +eMY+KA9yn0jflPwKpdGpkXIPfRyq/LNeZrFXAVdqPglZOfOlby5YWhnZhXIeSQW lvqsetOetHmRhRiV9brbbjpi5gCs7x34x8gZDfFkO20h6Kw7VFwb2Izad1ngs6cK Y52Rg7wAzcBINOj5KFj4Lo+uANI+eQ7ujS2R35Ci8Y2cpXtBNkNSwAt3ZM0= -----END CERTIFICATE-----Generated at Sun Jun 29 16:49:50 2025 by rpki-client