$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa File: b5e0d86e-0f74-41d8-a413-497ad79e414d.roa (raw, json) Hash identifier: P5c6ZqUMvEvx28csARAe5bA9CcInhbHp07qJXVW0Bdc= Subject key identifier: CA:C4:98:DB:C3:94:B8:EC:20:94:C1:7A:AC:A2:91:2D:A3:09:F8:33 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3C2CF6FB5CF1D439AB7C691DD6658A9DF610A787 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa Signing time: Wed 13 Aug 2025 00:00:09 +0000 ROA not before: Wed 13 Aug 2025 00:00:09 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:2c:f6:fb:5c:f1:d4:39:ab:7c:69:1d:d6:65:8a:9d:f6:10:a7:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 13 00:00:09 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=71e31750f58649166de4ae447385598ea0bce118bffed03f49aa1433843a2167, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4d:f8:7e:ad:d3:96:40:81:09:49:d0:cf:6d: 4d:ed:2e:5d:84:67:bb:68:05:33:4c:98:22:8e:1c: c3:13:a3:e0:ca:73:55:11:fe:35:63:46:94:5d:c9: 94:c6:b3:d0:ab:f6:4f:60:8d:d8:1d:07:84:0a:0d: 9a:65:c5:73:a1:ec:1a:ee:5d:b8:64:8c:f6:dc:8c: 22:49:54:a4:b9:13:68:b5:5e:5e:4d:c1:46:f7:46: 0c:7b:f2:05:6b:e4:47:a4:55:d6:28:3b:8b:5f:04: b8:76:ae:19:e9:6a:1b:71:6b:bd:bf:c8:4a:10:6b: ce:8c:ec:8b:3b:cf:03:c4:c2:7c:c9:67:df:95:09: 75:a7:64:13:5a:48:85:8f:6e:0c:08:ca:6c:6a:30: 5e:62:93:32:78:b3:21:9c:0a:09:3b:ea:9a:e5:2a: 2d:2c:d0:9c:0d:b3:be:a3:85:f7:8f:89:d1:06:67: 4a:13:89:e6:82:ec:4e:8e:a3:7a:d4:44:07:f8:d1: b5:c5:e7:6b:ac:5c:15:43:dd:6f:61:fd:7c:3f:bb: 14:08:7a:cc:40:ef:31:e3:df:ce:02:37:71:3e:b1: 81:f9:22:ec:80:0e:e7:c9:69:b4:d7:05:1b:f6:4c: 6b:0d:3a:c5:68:fc:f2:b6:ad:fa:68:40:d2:15:77: f5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:C4:98:DB:C3:94:B8:EC:20:94:C1:7A:AC:A2:91:2D:A3:09:F8:33 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.160.0/19 Signature Algorithm: sha256WithRSAEncryption 17:18:af:9a:7e:56:48:0d:ab:3d:e2:9b:39:e6:98:93:ee:ee: 29:5c:d2:37:6c:20:fd:31:15:2a:7e:34:0d:e9:e8:67:8e:28: b0:13:d0:f6:86:f7:b2:4b:01:0f:5f:8e:e8:d3:cc:ef:b7:aa: 16:c2:cd:b1:e2:d9:74:94:74:6f:bf:fe:a6:6a:3a:c9:e6:09: 7e:5c:f8:f9:c7:20:6f:a3:21:e0:3a:11:24:23:82:76:83:45: 70:e7:6e:46:0b:a7:a0:65:c8:66:b7:31:13:ec:f0:0d:10:cd: 0f:71:14:88:c3:de:7b:7e:5f:0e:69:70:1f:de:ae:71:40:da: 78:a4:ea:87:58:8e:ee:6d:76:b2:fe:e4:2a:7d:1a:80:36:9f: 88:1b:75:c8:1d:7f:fb:9a:0b:48:b1:aa:81:0c:10:ce:99:a9: 26:2b:50:86:57:e9:fc:a3:32:24:ec:c8:f6:8f:ac:55:ca:da: d4:f4:6f:d8:bc:c9:03:6c:ee:b2:3f:f0:dc:5a:89:63:fb:62: f7:f1:0b:5e:28:70:4e:6a:fc:a2:01:22:cb:2f:49:73:80:14: eb:d6:bc:b7:43:65:44:1d:13:bd:ae:da:38:8b:11:c7:43:fb: 3b:f3:03:b8:6a:95:b4:0b:b0:d5:f9:04:6f:34:47:07:bf:1f: a2:07:b3:5b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPCz2+1zx1DmrfGkd1mWKnfYQp4cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODEzMDAwMDA5WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWUzMTc1MGY1ODY0OTE2NmRlNGFlNDQ3Mzg1NTk4ZWEw YmNlMTE4YmZmZWQwM2Y0OWFhMTQzMzg0M2EyMTY3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDATfh+rdOWQIEJSdDPbU3tLl2EZ7toBTNMmCKOHMMTo+DK c1UR/jVjRpRdyZTGs9Cr9k9gjdgdB4QKDZplxXOh7BruXbhkjPbcjCJJVKS5E2i1 Xl5NwUb3Rgx78gVr5EekVdYoO4tfBLh2rhnpahtxa72/yEoQa86M7Is7zwPEwnzJ Z9+VCXWnZBNaSIWPbgwIymxqMF5ikzJ4syGcCgk76prlKi0s0JwNs76jhfePidEG Z0oTieaC7E6Oo3rURAf40bXF52usXBVD3W9h/Xw/uxQIesxA7zHj384CN3E+sYH5 IuyADufJabTXBRv2TGsNOsVo/PK2rfpoQNIVd/WHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUysSY28OUuOwglMF6rKKRLaMJ+DMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1ZTBkODZlLTBmNzQtNDFkOC1hNDEzLTQ5N2FkNzllNDE0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXY3aAwDQYJKoZIhvcNAQELBQADggEBABcYr5p+VkgNqz3imznmmJPu7ilc 0jdsIP0xFSp+NA3p6GeOKLAT0PaG97JLAQ9fjujTzO+3qhbCzbHi2XSUdG+//qZq OsnmCX5c+PnHIG+jIeA6ESQjgnaDRXDnbkYLp6BlyGa3MRPs8A0QzQ9xFIjD3nt+ Xw5pcB/ernFA2nik6odYju5tdrL+5Cp9GoA2n4gbdcgdf/uaC0ixqoEMEM6ZqSYr UIZX6fyjMiTsyPaPrFXK2tT0b9i8yQNs7rI/8NxaiWP7YvfxC14ocE5q/KIBIssv SXOAFOvWvLdDZUQdE72u2jiLEcdD+zvzA7hqlbQLsNX5BG80Rwe/H6IHs1s= -----END CERTIFICATE-----Generated at Sat Aug 23 08:13:10 2025 by rpki-client