$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa File: b09c0df5-29e8-430d-b994-fadbc1050235.roa (raw, json) Hash identifier: HQycnIKAnP01IhieO3tx9dpl9va+7lFjM17rjtHT+/Y= Subject key identifier: B7:A0:39:A1:6D:02:43:40:1A:58:C6:8F:65:B9:87:06:C8:87:BD:BB Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0F4308F0CED37CD7EB3BF3799F3F0FF561D5A5E0 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa Signing time: Wed 25 Jun 2025 00:00:15 +0000 ROA not before: Wed 25 Jun 2025 00:00:15 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:43:08:f0:ce:d3:7c:d7:eb:3b:f3:79:9f:3f:0f:f5:61:d5:a5:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 25 00:00:15 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=3e375c729d62a82add6b0fcf77aa9c0e68bb448e1e738a4a6e9633b2c112b9ca, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:26:41:42:c3:bc:8b:2f:43:8a:63:fb:56:47: f1:d1:39:09:79:2f:f2:9e:0d:d6:98:5d:b5:fc:b8: 37:7a:36:04:59:34:22:0c:f7:c1:7d:6e:cf:e1:3d: 91:d7:33:ff:b6:08:ab:f6:91:1b:37:3c:79:7f:a6: f0:73:fe:f2:23:8b:c5:21:6a:cc:cd:27:90:54:6e: 68:2c:60:83:46:1e:6d:52:59:9f:86:b3:88:a6:4e: 61:c5:43:6c:35:0b:3a:a5:92:bf:bf:dd:e7:6c:79: e0:a5:63:71:89:9c:a9:be:69:ba:26:e8:2c:3f:f2: 21:be:5b:33:8e:d3:8d:8c:c0:e7:b5:10:19:87:79: e4:76:71:bc:19:1c:65:32:8a:bd:28:7b:3f:e0:e4: 59:eb:dc:ff:32:11:f0:b1:0f:04:29:98:9c:f0:3e: 3b:01:a6:4e:aa:55:b2:71:d7:e5:c8:86:16:96:8b: e8:eb:0f:8f:ff:1d:c0:27:23:36:b5:02:7e:f8:80: 5b:2b:77:82:3b:40:09:b9:1c:ae:9c:cb:65:43:21: a1:d4:fd:bb:f6:ea:0f:76:ae:cb:11:af:69:69:9c: ff:42:5f:d0:97:50:b8:9c:86:87:82:59:06:45:6c: 85:1f:2a:cc:ee:33:2f:85:66:9c:e1:5f:cc:27:47: 47:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A0:39:A1:6D:02:43:40:1A:58:C6:8F:65:B9:87:06:C8:87:BD:BB X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.214.0/24 Signature Algorithm: sha256WithRSAEncryption 07:4f:44:2d:94:fe:f5:65:06:c2:68:df:6f:e2:20:28:cf:50: c5:a3:4e:0d:a6:e3:8b:e8:5d:88:e3:77:c7:15:7b:c4:38:34: 6c:2e:08:b2:54:df:3a:e8:8b:5c:6a:f2:ea:7e:b0:d7:42:b6: b4:c8:1d:a2:43:3b:69:5b:13:7e:d8:b5:f4:ae:73:01:cf:d2: 2e:67:3f:b5:22:58:69:ba:d7:e4:a6:bc:6b:a0:00:43:ea:15: db:c6:08:c6:d5:cf:dc:9e:bf:46:02:4d:37:39:5e:22:ed:03: 7f:db:02:39:ec:ac:8c:60:09:4c:9a:6d:43:bd:ec:f3:7b:2b: ee:d0:35:c8:ff:2a:4a:eb:15:4e:be:da:47:a1:70:db:18:03: aa:6c:e0:ee:32:2c:07:c7:9b:01:ce:1e:55:2d:ea:12:86:8a: cc:86:78:fc:f8:66:3b:ac:0e:18:63:11:30:df:72:1c:98:e0: d3:58:0c:d3:2a:e2:dc:53:1e:d5:33:2a:f1:81:28:86:7a:de: e1:a2:48:6e:4c:de:bc:7e:67:55:26:5f:47:cc:76:ad:54:07: 52:81:92:0f:4f:7a:d7:f3:8e:2d:b0:fd:37:3e:68:8a:1f:73: f7:08:c8:14:28:55:8e:85:08:dd:c7:cd:30:a6:a8:e2:c2:f6: 88:1b:cc:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD0MI8M7TfNfrO/N5nz8P9WHVpeAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI1MDAwMDE1WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTM3NWM3MjlkNjJhODJhZGQ2YjBmY2Y3N2FhOWMwZTY4 YmI0NDhlMWU3MzhhNGE2ZTk2MzNiMmMxMTJiOWNhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrJkFCw7yLL0OKY/tWR/HROQl5L/KeDdaYXbX8uDd6NgRZ NCIM98F9bs/hPZHXM/+2CKv2kRs3PHl/pvBz/vIji8UhaszNJ5BUbmgsYINGHm1S WZ+Gs4imTmHFQ2w1Czqlkr+/3edseeClY3GJnKm+abom6Cw/8iG+WzOO042MwOe1 EBmHeeR2cbwZHGUyir0oez/g5Fnr3P8yEfCxDwQpmJzwPjsBpk6qVbJx1+XIhhaW i+jrD4//HcAnIza1An74gFsrd4I7QAm5HK6cy2VDIaHU/bv26g92rssRr2lpnP9C X9CXULichoeCWQZFbIUfKszuMy+FZpzhX8wnR0dLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUt6A5oW0CQ0AaWMaPZbmHBsiHvbswHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2IwOWMwZGY1LTI5ZTgtNDMwZC1iOTk0LWZhZGJjMTA1MDIzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dYwDQYJKoZIhvcNAQELBQADggEBAAdPRC2U/vVlBsJo32/iICjPUMWj Tg2m44voXYjjd8cVe8Q4NGwuCLJU3zroi1xq8up+sNdCtrTIHaJDO2lbE37YtfSu cwHP0i5nP7UiWGm61+SmvGugAEPqFdvGCMbVz9yev0YCTTc5XiLtA3/bAjnsrIxg CUyabUO97PN7K+7QNcj/KkrrFU6+2kehcNsYA6ps4O4yLAfHmwHOHlUt6hKGisyG ePz4ZjusDhhjETDfchyY4NNYDNMq4txTHtUzKvGBKIZ63uGiSG5M3rx+Z1UmX0fM dq1UB1KBkg9Petfzji2w/Tc+aIofc/cIyBQoVY6FCN3HzTCmqOLC9ogbzMg= -----END CERTIFICATE-----Generated at Mon Jun 30 19:29:25 2025 by rpki-client