$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa File: 854367ff-45b7-4925-99a1-97b01f4fabe8.roa (raw, json) Hash identifier: JaFziSWFSruNrKFfrYSGm7J/ZNGolQrCRww2RyRS7TI= Subject key identifier: C6:B7:D7:7F:6B:A7:F2:8C:09:47:83:DB:C2:60:FE:87:3C:31:DC:28 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 647AFDDA3167110C8B51A1AED4C88B0097E361A7 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa Signing time: Tue 24 Jun 2025 00:00:09 +0000 ROA not before: Tue 24 Jun 2025 00:00:09 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:7a:fd:da:31:67:11:0c:8b:51:a1:ae:d4:c8:8b:00:97:e3:61:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 24 00:00:09 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=a2ddee2f6b3ea92c96aa9f508a428a5bd724e6261a41005ffc6882d4e92c4f8f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:06:53:b9:b7:ee:91:cd:fa:59:48:30:98:cb: 59:88:30:cf:64:3b:92:8d:47:60:f1:38:ca:c7:9e: 5b:d8:99:1f:09:ad:e8:63:56:c3:8f:58:0f:fe:c3: ce:10:a8:26:44:52:db:5e:bf:5c:c2:58:2c:73:57: 38:ca:46:eb:75:e2:f0:57:79:20:66:fb:51:12:05: 78:87:e7:af:d2:2e:2b:98:a9:51:7b:f3:50:98:50: 16:94:80:90:87:c4:d7:08:80:21:c6:8e:2d:f7:d1: 6a:2e:d3:8f:e0:56:f9:8d:a0:6a:c0:98:d4:06:71: b5:85:91:ba:e0:15:32:69:6a:7d:8a:cb:07:10:1d: 95:2d:18:0a:70:ee:97:2b:57:5a:21:81:0b:dc:b1: 07:a0:1b:c1:53:33:67:f3:fc:29:58:14:8a:83:c8: 9c:f9:c9:b4:a7:45:bc:b9:04:b4:06:97:e0:35:cb: 42:38:bf:d2:09:dc:f6:b9:b3:b3:27:e5:ec:c8:60: d6:a4:90:3f:bf:8c:c5:f3:7f:3c:7f:42:14:1b:27: 1b:bb:46:10:29:0b:aa:db:2e:d8:b4:c5:28:1b:74: 8f:46:d3:52:76:96:df:ec:e3:48:cb:7e:5b:2b:d4: e8:4d:95:e9:7c:53:c5:af:3a:f2:7e:5d:7a:10:e9: e6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B7:D7:7F:6B:A7:F2:8C:09:47:83:DB:C2:60:FE:87:3C:31:DC:28 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 13:97:48:77:48:74:c8:f0:ba:16:ad:3a:39:2d:d7:09:8e:f8: 98:90:d8:f8:59:ba:c0:90:85:c6:c9:1e:c1:fd:a0:f9:60:fa: b4:d2:2b:82:8e:aa:6f:ad:49:6a:20:df:c8:ee:c5:53:9f:2b: 81:29:e0:03:d4:9f:7e:e7:d6:3a:c5:86:6c:66:26:3d:c6:47: 3c:1d:ce:96:04:ac:87:cd:db:de:48:cf:f9:f8:b1:56:1c:2a: 81:a1:14:22:51:44:e0:2b:fa:1a:0c:b5:0b:81:63:a8:d0:56: bb:7b:d8:1d:5f:95:66:7e:28:cd:fc:3a:40:c3:c3:0e:48:f0: a4:72:57:d8:9a:d7:cf:c7:24:24:4e:ff:fa:30:cc:8d:7d:de: 8a:34:a2:b1:38:36:55:35:22:03:b0:50:33:90:6c:58:3a:e0: 98:3c:ff:8b:ff:da:88:24:b8:9b:af:01:88:6d:06:ac:5c:dd: 3d:18:5f:50:bd:ec:76:9f:74:8a:42:f9:00:ef:4f:e6:e5:af: fd:ee:a0:17:28:32:5a:3c:a4:1d:c1:23:de:58:1e:5d:58:4a: 24:73:89:d6:0b:27:e8:8b:9b:bd:21:3e:23:b8:70:76:85:70: 97:77:c0:1c:64:f0:56:fb:e3:8a:0f:7d:c2:e1:dd:81:06:98: c7:8b:14:26 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZHr92jFnEQyLUaGu1MiLAJfjYacwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI0MDAwMDA5WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMmRkZWUyZjZiM2VhOTJjOTZhYTlmNTA4YTQyOGE1YmQ3 MjRlNjI2MWE0MTAwNWZmYzY4ODJkNGU5MmM0ZjhmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4BlO5t+6RzfpZSDCYy1mIMM9kO5KNR2DxOMrHnlvYmR8J rehjVsOPWA/+w84QqCZEUttev1zCWCxzVzjKRut14vBXeSBm+1ESBXiH56/SLiuY qVF781CYUBaUgJCHxNcIgCHGji330Wou04/gVvmNoGrAmNQGcbWFkbrgFTJpan2K ywcQHZUtGApw7pcrV1ohgQvcsQegG8FTM2fz/ClYFIqDyJz5ybSnRby5BLQGl+A1 y0I4v9IJ3Pa5s7Mn5ezIYNakkD+/jMXzfzx/QhQbJxu7RhApC6rbLti0xSgbdI9G 01J2lt/s40jLflsr1OhNlel8U8WvOvJ+XXoQ6eZ7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxrfXf2un8owJR4PbwmD+hzwx3CgwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg1NDM2N2ZmLTQ1YjctNDkyNS05OWExLTk3YjAxZjRmYWJlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBABOXSHdIdMjwuhatOjkt1wmO+JiQ 2PhZusCQhcbJHsH9oPlg+rTSK4KOqm+tSWog38juxVOfK4Ep4APUn37n1jrFhmxm Jj3GRzwdzpYErIfN295Iz/n4sVYcKoGhFCJRROAr+hoMtQuBY6jQVrt72B1flWZ+ KM38OkDDww5I8KRyV9ia18/HJCRO//owzI193oo0orE4NlU1IgOwUDOQbFg64Jg8 /4v/2ogkuJuvAYhtBqxc3T0YX1C97HafdIpC+QDvT+blr/3uoBcoMlo8pB3BI95Y Hl1YSiRzidYLJ+iLm70hPiO4cHaFcJd3wBxk8Fb744oPfcLh3YEGmMeLFCY= -----END CERTIFICATE-----Generated at Tue Jul 1 00:28:11 2025 by rpki-client