$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa File: 8a554833-7334-4e02-8426-138572f3d41a.roa (raw, json) Hash identifier: DGxl/w7aUG+xoEVjMbYAHAYhDzs8HwLq9aMRQtkpRiQ= Subject key identifier: 7C:99:09:9D:C4:9D:98:F5:1B:B8:6C:7C:FA:EC:56:9F:C3:16:56:7D Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1AB5A1B1C7D2089E3F1288B5495D2AAA73E7A4B2 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa Signing time: Fri 15 Aug 2025 00:20:11 +0000 ROA not before: Fri 15 Aug 2025 00:20:11 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:b5:a1:b1:c7:d2:08:9e:3f:12:88:b5:49:5d:2a:aa:73:e7:a4:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:20:11 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=39700b3dc333a99dae1348d633019ac83ca8633fcc64cefd642bda6d5689ef56, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0b:af:13:cf:5f:63:c7:2a:dd:6f:14:0c:af: 17:ec:23:85:d7:63:7a:8c:01:89:9b:0b:a4:3e:55: b9:c8:6c:3b:cc:f8:f4:b4:ef:81:8b:30:7a:31:7a: cc:24:8c:9c:49:70:8f:ed:56:c5:c6:53:5f:42:a1: fc:18:35:7f:a4:c5:56:33:e9:0b:88:a7:45:6b:7a: 39:30:85:ba:fc:91:d1:f0:a5:25:5f:8e:9e:69:c7: 92:3b:e7:5d:fa:66:87:0a:a4:2e:02:bb:4d:b7:fd: 9d:de:38:de:b7:8c:13:5d:3f:a0:89:62:69:0c:0d: a3:53:d8:72:b6:f7:82:b6:ec:ef:65:8e:23:2c:01: 14:4a:97:31:77:a1:1f:39:a9:70:87:ee:bf:d7:cd: 09:0a:bc:62:7e:56:ad:c7:cf:e1:f4:d5:2e:fa:02: f0:45:19:bb:78:6d:f1:60:ea:78:0a:eb:ab:f3:dd: c3:be:db:5c:d9:2a:3b:a7:27:0b:0d:6c:8a:ba:a5: e1:8a:d9:ee:1c:34:4a:4a:c1:ff:7c:a7:f8:fd:fd: 3f:c4:1f:aa:d0:3c:ee:fe:77:08:eb:51:07:a0:79: 7a:38:8f:fc:66:36:dc:2a:35:b6:78:63:93:10:30: eb:c7:de:45:33:1a:d6:bd:1a:26:03:9d:45:8d:3d: 8c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:99:09:9D:C4:9D:98:F5:1B:B8:6C:7C:FA:EC:56:9F:C3:16:56:7D X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.217.0/24 Signature Algorithm: sha256WithRSAEncryption 34:2e:17:8d:42:a1:78:c3:ef:95:93:c7:38:52:96:50:c4:7d: af:66:1c:e5:72:31:59:3a:1d:e6:59:7c:44:d7:71:3a:e5:90: 3f:5a:cc:ff:e8:9a:b5:0b:04:c1:f4:27:48:2c:ea:03:be:95: 57:9b:64:35:f4:6f:d1:46:2e:bd:2b:bb:f0:48:c1:5d:92:d4: 17:7b:1d:94:1a:35:00:98:5f:e5:f7:2c:82:e7:f9:9d:b9:5e: e0:d3:46:8c:36:2f:01:c1:07:8f:fa:ef:71:8c:f3:2d:54:54: 16:b2:2c:c4:eb:34:29:a4:c7:fb:ae:28:06:a5:f3:02:44:75: b9:56:97:09:8f:8d:12:4b:24:e7:7a:be:22:cc:32:9e:17:44: 08:22:d8:f0:fd:c2:26:28:86:11:0e:3e:70:55:63:a8:0b:ef: b3:6b:dd:ca:41:f4:5e:6c:97:af:07:18:23:c9:51:62:7f:a7: 7a:11:06:7b:c6:0c:42:c6:b2:fc:e2:dc:8a:fa:52:31:95:72: d7:45:67:f8:fc:d8:bd:40:9b:a8:fa:a2:bd:33:7d:5d:e7:26: db:61:44:5a:71:ed:8c:cc:b6:d7:f3:44:12:17:35:b0:41:3a: 7a:5a:0a:5f:91:08:c8:1a:6d:05:51:dd:96:a9:26:1b:7a:95: 0d:fe:a5:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGrWhscfSCJ4/Eoi1SV0qqnPnpLIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMDExWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTcwMGIzZGMzMzNhOTlkYWUxMzQ4ZDYzMzAxOWFjODNj YTg2MzNmY2M2NGNlZmQ2NDJiZGE2ZDU2ODllZjU2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxC68Tz19jxyrdbxQMrxfsI4XXY3qMAYmbC6Q+VbnIbDvM +PS074GLMHoxeswkjJxJcI/tVsXGU19CofwYNX+kxVYz6QuIp0Vrejkwhbr8kdHw pSVfjp5px5I75136ZocKpC4Cu023/Z3eON63jBNdP6CJYmkMDaNT2HK294K27O9l jiMsARRKlzF3oR85qXCH7r/XzQkKvGJ+Vq3Hz+H01S76AvBFGbt4bfFg6ngK66vz 3cO+21zZKjunJwsNbIq6peGK2e4cNEpKwf98p/j9/T/EH6rQPO7+dwjrUQegeXo4 j/xmNtwqNbZ4Y5MQMOvH3kUzGta9GiYDnUWNPYyrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfJkJncSdmPUbuGx8+uxWn8MWVn0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzhhNTU0ODMzLTczMzQtNGUwMi04NDI2LTEzODU3MmYzZDQxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dkwDQYJKoZIhvcNAQELBQADggEBADQuF41CoXjD75WTxzhSllDEfa9m HOVyMVk6HeZZfETXcTrlkD9azP/omrULBMH0J0gs6gO+lVebZDX0b9FGLr0ru/BI wV2S1Bd7HZQaNQCYX+X3LILn+Z25XuDTRow2LwHBB4/673GM8y1UVBayLMTrNCmk x/uuKAal8wJEdblWlwmPjRJLJOd6viLMMp4XRAgi2PD9wiYohhEOPnBVY6gL77Nr 3cpB9F5sl68HGCPJUWJ/p3oRBnvGDELGsvzi3Ir6UjGVctdFZ/j82L1Am6j6or0z fV3nJtthRFpx7YzMttfzRBIXNbBBOnpaCl+RCMgabQVR3ZapJht6lQ3+pYw= -----END CERTIFICATE-----Generated at Sat Aug 23 09:07:23 2025 by rpki-client