$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa File: b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa (raw, json) Hash identifier: TX7cKvCCbWILPTvyr3hfEbztCO+awgEfrIvmdJl0pu4= Subject key identifier: 9E:41:C3:39:07:48:0E:28:F5:2B:36:23:7A:09:A6:52:F9:6C:86:99 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 54BE24E97C5DBEE1AFB66EEAE0196B0D9B1B2960 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa Signing time: Wed 25 Jun 2025 00:00:46 +0000 ROA not before: Wed 25 Jun 2025 00:00:46 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.251.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:be:24:e9:7c:5d:be:e1:af:b6:6e:ea:e0:19:6b:0d:9b:1b:29:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 25 00:00:46 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=98433e1d46332e071e7a663f30fd0e9bccde6909504c5ce337826e25c89707a5, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d5:75:bf:a0:11:e5:1f:b0:81:f5:6d:0d:38: 74:8d:7a:34:62:16:ed:cb:56:b1:e8:60:61:fe:ed: a4:cb:cf:64:8f:b9:dc:d9:c0:79:63:f0:d6:2c:1c: 22:09:02:e7:6a:f2:ee:81:a8:9a:79:5d:15:a6:6e: db:e3:07:84:2d:ba:8b:fd:1c:ca:93:85:c1:6c:ba: 66:4e:66:f4:ec:86:c1:18:3f:e7:3d:f6:21:d9:84: 49:fd:0c:fa:dc:65:44:9f:63:8e:3a:95:08:75:13: 15:ed:56:79:d1:d7:77:c7:04:24:27:57:3f:1f:a1: 31:6c:69:62:de:97:f5:4d:92:b7:1e:3c:34:ac:55: 63:3c:64:17:16:6d:9e:1d:32:c5:0d:50:10:c7:c9: 72:86:f3:61:1c:7b:5d:f1:5a:e8:10:b7:ee:ca:fe: f7:c2:ab:cb:bb:63:1a:78:28:16:15:77:50:aa:84: 1b:82:4e:cd:90:c8:2d:22:ae:6e:25:d7:1a:65:86: d5:0c:a0:51:1b:20:96:76:3b:ba:ab:05:45:2a:25: 7b:84:9a:b1:f7:40:9e:39:bb:07:4a:80:54:3d:5a: 32:0c:30:83:de:b2:2a:28:49:a0:48:25:3e:78:cf: 8f:d0:c8:37:a0:6f:05:91:3f:40:27:d3:6a:87:5c: 93:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:41:C3:39:07:48:0E:28:F5:2B:36:23:7A:09:A6:52:F9:6C:86:99 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.228.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:ea:cd:b0:47:6a:c0:61:bd:37:49:d9:78:b5:8c:c5:10:dd: 05:1d:58:dc:d1:ab:2b:e5:a2:4d:9b:2a:ba:86:78:33:0f:57: ed:5a:4f:91:0c:00:93:1a:ef:ca:a7:cb:80:b4:01:b3:2e:e3: 08:35:67:5e:07:74:4f:70:10:4f:fd:25:ef:dc:a5:34:6a:2d: ed:56:aa:a5:ab:0d:64:5a:6a:26:c9:ab:4d:97:17:98:2e:41: e9:96:31:1a:af:db:32:2b:0e:1a:d3:2e:8a:66:2f:b9:c5:8f: 5b:19:df:58:9c:f6:5a:aa:d9:ce:50:bc:cc:44:a1:3c:a7:c8: 96:43:60:a8:b6:44:91:49:25:80:2f:e5:86:95:cf:94:46:03: 1e:13:67:3f:d4:87:ac:eb:99:90:fe:d6:9c:dd:94:73:cf:2c: 9f:f2:a9:ef:c9:da:0c:be:80:60:6c:62:5f:cb:d3:b4:c5:3b: 0f:1b:fa:83:73:c9:3a:88:7a:87:48:c0:91:d5:e3:40:70:de: 13:33:ad:cf:69:52:18:20:44:1e:14:18:94:7c:37:7d:9d:03: ca:f0:79:3c:7d:b1:45:ab:a8:c8:e9:62:87:14:48:d9:c0:e3: 92:b3:47:09:36:76:f8:35:a8:9c:a6:aa:5e:01:89:d2:a6:ef: e6:ca:5e:0a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVL4k6XxdvuGvtm7q4BlrDZsbKWAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI1MDAwMDQ2WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODQzM2UxZDQ2MzMyZTA3MWU3YTY2M2YzMGZkMGU5YmNj ZGU2OTA5NTA0YzVjZTMzNzgyNmUyNWM4OTcwN2E1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh1XW/oBHlH7CB9W0NOHSNejRiFu3LVrHoYGH+7aTLz2SP udzZwHlj8NYsHCIJAudq8u6BqJp5XRWmbtvjB4Qtuov9HMqThcFsumZOZvTshsEY P+c99iHZhEn9DPrcZUSfY446lQh1ExXtVnnR13fHBCQnVz8foTFsaWLel/VNkrce PDSsVWM8ZBcWbZ4dMsUNUBDHyXKG82Ece13xWugQt+7K/vfCq8u7Yxp4KBYVd1Cq hBuCTs2QyC0irm4l1xplhtUMoFEbIJZ2O7qrBUUqJXuEmrH3QJ45uwdKgFQ9WjIM MIPesiooSaBIJT54z4/QyDegbwWRP0An02qHXJP3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnkHDOQdIDij1KzYjegmmUvlshpkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2ZWU5M2Q4LWQ3YTctNDFhZC04ZGUxLTkwYTA1NWJjMTk3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX++QwDQYJKoZIhvcNAQELBQADggEBACzqzbBHasBhvTdJ2Xi1jMUQ3QUd WNzRqyvlok2bKrqGeDMPV+1aT5EMAJMa78qny4C0AbMu4wg1Z14HdE9wEE/9Je/c pTRqLe1WqqWrDWRaaibJq02XF5guQemWMRqv2zIrDhrTLopmL7nFj1sZ31ic9lqq 2c5QvMxEoTynyJZDYKi2RJFJJYAv5YaVz5RGAx4TZz/Uh6zrmZD+1pzdlHPPLJ/y qe/J2gy+gGBsYl/L07TFOw8b+oNzyTqIeodIwJHV40Bw3hMzrc9pUhggRB4UGJR8 N32dA8rweTx9sUWrqMjpYocUSNnA45KzRwk2dvg1qJymql4BidKm7+bKXgo= -----END CERTIFICATE-----Generated at Sun Jun 29 01:38:24 2025 by rpki-client