$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa File: 84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa (raw, json) Hash identifier: 492Gl72hS5xiSxuxsiwP0Hnt9/+QOaYEtN4YNhXE59E= Subject key identifier: 99:DE:FE:2E:75:94:3C:38:79:AB:E8:8A:A5:42:8B:90:81:1F:A7:44 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 021731206C0F983044F9DA0191320128F582BA17 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa Signing time: Fri 15 Aug 2025 00:20:24 +0000 ROA not before: Fri 15 Aug 2025 00:20:24 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:17:31:20:6c:0f:98:30:44:f9:da:01:91:32:01:28:f5:82:ba:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:20:24 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=43662cc1fd57809f7aaf669c62bffbbb4f50a71466d1833050d0c88d44791164, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:77:78:2f:ee:eb:8c:31:38:a4:f4:2b:4e:9f: 53:49:75:29:cb:50:f7:5b:fb:0b:3b:7b:e3:d6:31: 1d:8b:e8:b6:ac:eb:77:10:d8:9a:ab:aa:7f:87:5f: 8a:af:97:22:78:f8:dd:bf:cf:28:51:31:6f:b9:f0: 38:35:15:06:e1:68:b8:52:17:04:ea:60:1e:9a:11: e2:e9:dc:30:d8:b8:be:0e:4c:e4:ad:b4:3c:3c:40: 78:6c:d5:92:78:b6:a8:1f:1c:eb:e6:d7:f9:0e:77: 84:c8:7f:69:f1:68:b9:a2:fd:a1:08:65:a2:1a:bc: 6a:9a:2a:d7:28:73:07:b5:ba:8b:3b:a2:5c:1f:46: 5a:47:98:ac:19:a1:4e:7c:f2:c7:c4:11:15:fd:f7: 28:79:c5:b0:70:46:66:6e:32:85:4e:da:1d:85:f2: 58:05:36:36:82:ca:e2:0e:48:e6:85:f5:4c:12:f2: ed:08:c5:0d:04:b0:0c:8b:18:fd:36:f5:1c:f5:60: c5:df:3f:a0:d7:6e:d9:20:96:17:93:70:34:3d:24: 1f:b1:6a:63:6b:61:26:46:36:29:ed:57:0f:38:d3: 3b:b3:4a:33:0b:a3:2d:c1:db:65:83:f5:57:35:29: c3:cd:d2:4c:63:17:5a:60:2d:ee:17:70:0d:61:d1: 03:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:DE:FE:2E:75:94:3C:38:79:AB:E8:8A:A5:42:8B:90:81:1F:A7:44 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.234.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:31:bd:06:8e:1b:9c:ce:06:ff:ae:1e:80:d1:19:df:38:a9: 62:2e:77:1f:53:65:a9:f0:cf:c1:63:a9:a7:ae:dc:c1:28:bd: 57:3d:a9:32:66:b8:51:25:f8:f9:83:e2:47:79:64:5c:30:94: 8a:0f:32:1a:be:36:d4:0c:ef:a3:ca:ff:52:d2:f3:cb:66:01: df:28:ab:5d:49:c9:0d:fe:09:41:e0:62:9d:0a:7d:e5:f2:1d: 9a:19:c7:35:c8:ef:0f:25:cc:f1:c4:5c:2d:fe:cf:fd:85:3e: 7b:4b:bc:7d:6a:6e:8c:eb:58:68:22:0d:49:0a:86:d8:7b:58: 3e:8b:4c:5f:cb:84:db:ae:75:e6:7e:bc:63:9b:c2:32:e6:74: 2d:dd:4f:81:e7:bb:6a:69:88:b3:f3:9a:e7:f6:19:f3:45:3d: 0f:e2:a3:5a:bd:0e:b9:a4:0b:ef:c8:7c:ff:6d:89:ec:2e:e8: e6:6f:6b:1d:2a:2b:33:10:aa:ff:5a:71:6e:33:e4:61:98:d8: 59:3c:f5:c8:7c:6a:d5:f4:59:b5:02:24:02:57:48:4e:92:a1: 51:6d:c1:1b:1c:47:01:1e:f8:22:e5:a2:0a:34:f6:38:a7:f0: 65:6c:f4:a3:04:84:49:97:97:24:1b:ea:74:82:de:87:e0:19: d2:73:07:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAhcxIGwPmDBE+doBkTIBKPWCuhcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMDI0WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzY2MmNjMWZkNTc4MDlmN2FhZjY2OWM2MmJmZmJiYjRm NTBhNzE0NjZkMTgzMzA1MGQwYzg4ZDQ0NzkxMTY0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3d3gv7uuMMTik9CtOn1NJdSnLUPdb+ws7e+PWMR2L6Las 63cQ2Jqrqn+HX4qvlyJ4+N2/zyhRMW+58Dg1FQbhaLhSFwTqYB6aEeLp3DDYuL4O TOSttDw8QHhs1ZJ4tqgfHOvm1/kOd4TIf2nxaLmi/aEIZaIavGqaKtcocwe1uos7 olwfRlpHmKwZoU588sfEERX99yh5xbBwRmZuMoVO2h2F8lgFNjaCyuIOSOaF9UwS 8u0IxQ0EsAyLGP029Rz1YMXfP6DXbtkglheTcDQ9JB+xamNrYSZGNintVw840zuz SjMLoy3B22WD9Vc1KcPN0kxjF1pgLe4XcA1h0QOvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmd7+LnWUPDh5q+iKpUKLkIEfp0QwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg0YzAzOGFlLTdhNWEtNDE0YS1iZDAwLTFlZGI2ZmJlNWFkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++owDQYJKoZIhvcNAQELBQADggEBAHoxvQaOG5zOBv+uHoDRGd84qWIu dx9TZanwz8Fjqaeu3MEovVc9qTJmuFEl+PmD4kd5ZFwwlIoPMhq+NtQM76PK/1LS 88tmAd8oq11JyQ3+CUHgYp0KfeXyHZoZxzXI7w8lzPHEXC3+z/2FPntLvH1qbozr WGgiDUkKhth7WD6LTF/LhNuudeZ+vGObwjLmdC3dT4Hnu2ppiLPzmuf2GfNFPQ/i o1q9DrmkC+/IfP9tiewu6OZvax0qKzMQqv9acW4z5GGY2Fk89ch8atX0WbUCJAJX SE6SoVFtwRscRwEe+CLlogo09jin8GVs9KMEhEmXlyQb6nSC3ofgGdJzB7I= -----END CERTIFICATE-----Generated at Sat Aug 23 12:15:05 2025 by rpki-client