$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa File: b09c0df5-29e8-430d-b994-fadbc1050235.roa (raw, json) Hash identifier: VL3NDQ3o31MiyQu+mqCsEbF/GL/a6hND5tVioAYOLWo= Subject key identifier: AE:C2:C2:59:C4:BA:46:C2:53:71:3F:5C:EB:D6:6E:55:1B:74:2F:BC Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2DAC18644E86317B8AAE54894F6552B09DCDE3EA Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa Signing time: Fri 15 Aug 2025 00:20:21 +0000 ROA not before: Fri 15 Aug 2025 00:20:21 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:ac:18:64:4e:86:31:7b:8a:ae:54:89:4f:65:52:b0:9d:cd:e3:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:20:21 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=88f31ed43f2c8c8bf6b53cecfa863833637c106575514fb6542a56d9bafaac06, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e2:f3:c2:28:1b:0c:62:a4:c7:92:e5:e6:14: d2:a9:ab:14:57:83:90:35:db:18:27:07:6d:a6:7f: f3:ef:94:37:d9:e9:16:75:1b:65:5e:31:88:70:1a: 3d:10:0a:53:01:e3:05:fd:47:51:8b:fd:7b:96:b1: fb:45:18:de:00:08:fc:5c:0c:67:37:fe:78:6f:5b: 9e:fc:a9:df:34:2a:9b:d1:28:eb:0f:f2:75:e9:c3: 4c:1b:85:0a:e8:44:30:dd:b1:21:04:ed:52:b4:2c: 47:48:f5:f2:62:fc:c2:cb:d3:d9:83:7c:86:52:5b: 4c:b4:2d:5b:60:63:72:96:d5:8b:65:43:1b:08:df: 52:0e:e3:2d:89:f0:7e:af:78:85:8e:33:33:d5:8b: 99:5a:39:5d:9e:99:e3:d5:08:29:67:3a:aa:05:e1: 10:1c:d4:f7:95:0e:4f:01:6f:81:19:c1:23:5e:12: d9:fb:07:69:1f:db:f9:c3:dd:32:7f:75:b2:3a:83: 37:f7:47:db:e9:72:d5:f6:93:1d:8c:04:fe:9e:9a: 84:ae:63:f8:e7:2b:b5:00:1e:65:10:4c:e6:1e:b4: 8c:56:34:4e:06:81:84:b6:c4:f2:9b:00:0d:26:de: 2b:06:e7:b1:36:0f:ce:7f:a3:a1:c3:de:6b:97:f4: f4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C2:C2:59:C4:BA:46:C2:53:71:3F:5C:EB:D6:6E:55:1B:74:2F:BC X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.214.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:3b:9c:c2:54:25:3d:fa:1f:d0:c9:45:f6:15:b1:90:cc:6c: 2a:4f:8f:75:d6:50:ba:af:25:19:64:1b:80:e8:34:16:0b:6c: 46:ed:be:ba:f7:b8:9f:7f:03:5e:78:d4:99:ac:f5:b7:ea:2a: 6f:92:4d:fe:36:77:d0:ae:f0:ce:28:46:05:44:8a:d5:2b:61: 92:c1:75:58:85:7d:6b:50:7a:91:de:3b:2c:27:75:26:67:03: 69:0d:a1:9f:20:e0:fe:62:5b:d0:e4:8d:a9:21:be:9a:d3:dd: 2e:3f:2c:06:55:0a:fc:c6:3b:57:41:03:c6:45:bb:1e:3f:00: 10:c2:cd:5b:26:15:d2:31:b9:2f:ed:17:de:a8:89:2a:e6:c8: 8c:98:4d:b5:e3:8b:e9:c5:b7:1b:54:9e:12:20:33:1f:70:99: 89:b0:11:c3:45:15:d2:bd:f6:ce:ef:ac:08:59:e7:72:3b:2d: d0:93:ca:bd:ab:74:54:5e:ad:a3:93:63:bf:b4:d4:f6:d1:9b: a6:84:3c:1d:10:23:3b:37:35:fa:a3:6f:47:53:82:ac:01:02: 60:79:e1:e0:7c:4e:c5:47:22:82:ec:38:57:fb:cf:08:bc:d6: 7a:02:7c:f5:66:2e:46:4b:22:46:a2:5a:54:d9:63:7e:b4:1d: 7e:46:03:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULawYZE6GMXuKrlSJT2VSsJ3N4+owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMDIxWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OGYzMWVkNDNmMmM4YzhiZjZiNTNjZWNmYTg2MzgzMzYz N2MxMDY1NzU1MTRmYjY1NDJhNTZkOWJhZmFhYzA2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX4vPCKBsMYqTHkuXmFNKpqxRXg5A12xgnB22mf/PvlDfZ 6RZ1G2VeMYhwGj0QClMB4wX9R1GL/XuWsftFGN4ACPxcDGc3/nhvW578qd80KpvR KOsP8nXpw0wbhQroRDDdsSEE7VK0LEdI9fJi/MLL09mDfIZSW0y0LVtgY3KW1Ytl QxsI31IO4y2J8H6veIWOMzPVi5laOV2emePVCClnOqoF4RAc1PeVDk8Bb4EZwSNe Etn7B2kf2/nD3TJ/dbI6gzf3R9vpctX2kx2MBP6emoSuY/jnK7UAHmUQTOYetIxW NE4GgYS2xPKbAA0m3isG57E2D85/o6HD3muX9PSPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrsLCWcS6RsJTcT9c69ZuVRt0L7wwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2IwOWMwZGY1LTI5ZTgtNDMwZC1iOTk0LWZhZGJjMTA1MDIzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dYwDQYJKoZIhvcNAQELBQADggEBAE87nMJUJT36H9DJRfYVsZDMbCpP j3XWULqvJRlkG4DoNBYLbEbtvrr3uJ9/A1541Jms9bfqKm+STf42d9Cu8M4oRgVE itUrYZLBdViFfWtQepHeOywndSZnA2kNoZ8g4P5iW9DkjakhvprT3S4/LAZVCvzG O1dBA8ZFux4/ABDCzVsmFdIxuS/tF96oiSrmyIyYTbXji+nFtxtUnhIgMx9wmYmw EcNFFdK99s7vrAhZ53I7LdCTyr2rdFReraOTY7+01PbRm6aEPB0QIzs3Nfqjb0dT gqwBAmB54eB8TsVHIoLsOFf7zwi81noCfPVmLkZLIkaiWlTZY360HX5GA0c= -----END CERTIFICATE-----Generated at Sat Aug 23 08:20:13 2025 by rpki-client