$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa File: 946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa (raw, json) Hash identifier: kZ1IhaVhb5wtYr0hL7yLmVmTXr7NxBNtuZJYoM+hWeY= Subject key identifier: EC:51:20:12:46:34:96:E3:58:71:D6:ED:26:9E:F7:9D:05:EE:DF:C6 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 28527AA33090DD6F4259F274B29801EA4F347B4B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa Signing time: Wed 25 Jun 2025 00:00:44 +0000 ROA not before: Wed 25 Jun 2025 00:00:44 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:52:7a:a3:30:90:dd:6f:42:59:f2:74:b2:98:01:ea:4f:34:7b:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 25 00:00:44 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=63bf77927f35ba30d47e297acae61670c869771e11b6a3fa0e1431c7cf7e8dcb, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c5:41:e6:dc:73:e2:8a:26:23:34:29:f3:5c: fb:46:8a:3f:62:e4:3c:8a:5f:1e:fb:9a:40:2c:08: f3:86:a2:db:bf:5c:40:b2:d4:a6:9c:4a:08:5c:b4: 8c:36:5e:23:fb:d7:a6:0b:66:2b:f2:e1:cc:90:45: 4e:33:fa:f0:c1:e4:6d:c5:b8:e7:63:f8:d9:3c:a3: 57:85:e0:60:c6:68:dd:5a:7a:eb:5c:67:24:83:36: cb:90:d4:90:7a:4b:a6:33:23:12:54:f4:2b:69:2f: a3:8b:f8:81:98:e2:0c:a0:8f:b0:58:10:9e:5e:0f: 8d:e4:7b:de:e3:9d:80:49:1c:ff:38:b2:4a:f4:59: ad:82:85:73:a9:0e:1c:75:38:11:0b:88:55:f8:a0: c1:64:89:c5:b6:97:cc:99:6b:48:7e:1e:da:20:6b: 3b:4f:4a:90:4a:f3:0b:16:16:7a:a9:fd:c8:31:7d: 0d:60:8c:79:3a:3c:77:b0:53:0f:c7:9a:56:41:53: 8e:b5:ef:f7:af:69:98:82:c8:8e:d6:58:a5:fb:a2: 98:e2:14:59:1a:d9:d2:9f:46:f4:f2:0a:13:fa:6b: 86:95:1c:2e:27:d7:22:26:48:7c:d6:58:8b:65:95: 88:d6:c3:ef:59:5b:80:d4:31:e7:0e:0c:39:ca:dc: ae:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:51:20:12:46:34:96:E3:58:71:D6:ED:26:9E:F7:9D:05:EE:DF:C6 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.225.0/24 Signature Algorithm: sha256WithRSAEncryption 32:12:92:2b:db:b5:2d:38:a3:8f:77:9c:6c:59:1d:f1:f8:73: b8:22:34:ca:f7:9e:dd:8a:8e:d5:ab:b6:60:f0:33:17:ad:ea: e0:77:3b:4d:74:37:78:35:3c:e9:66:83:ed:b1:78:c5:cd:1c: d4:85:c4:5c:90:c4:8e:fc:2d:df:89:e8:ae:78:4f:5f:c3:3f: c2:d9:58:db:f2:11:8e:3a:f5:98:5e:4c:5a:6d:93:45:da:64: 5e:26:4d:e4:aa:8a:2c:56:0b:7b:6f:7c:99:9b:85:58:91:52: 27:c0:5c:e8:49:00:3c:13:8e:95:da:08:3c:b4:3d:18:4a:8f: 5e:bb:c2:93:01:00:0d:8d:58:e0:09:ac:6c:bc:84:aa:b5:21: c5:33:48:7a:30:57:ff:f1:df:91:53:56:a5:7b:99:4c:9d:a3: 24:46:18:01:54:73:de:03:36:aa:6b:ba:87:9b:f1:d5:d7:08: 8f:9c:72:2e:99:d0:7e:1d:75:f5:4b:4c:68:c0:3a:17:8a:23: 3d:af:68:0c:54:d9:5e:ce:b2:e5:88:8a:79:4f:51:2d:86:51: a3:3b:08:2c:9f:76:ba:ac:d3:42:44:a2:ee:b8:89:9c:34:e1: 5c:36:1f:cc:15:54:e5:c6:c6:67:42:82:db:7e:0c:82:3f:fe: b1:1e:04:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKFJ6ozCQ3W9CWfJ0spgB6k80e0swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI1MDAwMDQ0WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2M2JmNzc5MjdmMzViYTMwZDQ3ZTI5N2FjYWU2MTY3MGM4 Njk3NzFlMTFiNmEzZmEwZTE0MzFjN2NmN2U4ZGNiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrxUHm3HPiiiYjNCnzXPtGij9i5DyKXx77mkAsCPOGotu/ XECy1KacSghctIw2XiP716YLZivy4cyQRU4z+vDB5G3FuOdj+Nk8o1eF4GDGaN1a eutcZySDNsuQ1JB6S6YzIxJU9CtpL6OL+IGY4gygj7BYEJ5eD43ke97jnYBJHP84 skr0Wa2ChXOpDhx1OBELiFX4oMFkicW2l8yZa0h+HtogaztPSpBK8wsWFnqp/cgx fQ1gjHk6PHewUw/HmlZBU4617/evaZiCyI7WWKX7opjiFFka2dKfRvTyChP6a4aV HC4n1yImSHzWWItllYjWw+9ZW4DUMecODDnK3K47AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7FEgEkY0luNYcdbtJp73nQXu38YwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk0NmFlYzBhLWRkZGYtNDlhYi1iNWJmLWVjNzI4MWViMWU3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++EwDQYJKoZIhvcNAQELBQADggEBADISkivbtS04o493nGxZHfH4c7gi NMr3nt2KjtWrtmDwMxet6uB3O010N3g1POlmg+2xeMXNHNSFxFyQxI78Ld+J6K54 T1/DP8LZWNvyEY469ZheTFptk0XaZF4mTeSqiixWC3tvfJmbhViRUifAXOhJADwT jpXaCDy0PRhKj167wpMBAA2NWOAJrGy8hKq1IcUzSHowV//x35FTVqV7mUydoyRG GAFUc94DNqpruoeb8dXXCI+cci6Z0H4ddfVLTGjAOheKIz2vaAxU2V7OsuWIinlP US2GUaM7CCyfdrqs00JEou64iZw04Vw2H8wVVOXGxmdCgtt+DII//rEeBFE= -----END CERTIFICATE-----Generated at Sun Jun 29 06:54:19 2025 by rpki-client