$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa File: bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa (raw, json) Hash identifier: cZ/hk592tB27of8REov8r4It78v/VPKUIlsw2j6fbeY= Subject key identifier: AC:DB:C3:E2:C8:3A:27:48:5D:E9:F2:C6:E8:53:AF:4A:FD:2A:D4:7D Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5B06230DC3FE7184D009DD45DE2C3343E1F855B1 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa Signing time: Fri 15 Aug 2025 00:20:10 +0000 ROA not before: Fri 15 Aug 2025 00:20:10 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:06:23:0d:c3:fe:71:84:d0:09:dd:45:de:2c:33:43:e1:f8:55:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:20:10 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=0800783a5a3e3f5a8f491e4f14aaca8a66a179b76277e4ea024fe2a7fba0fe8b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a6:c4:f9:29:3d:0d:8d:c1:a0:91:fb:c2:f3: 5b:96:40:97:de:44:ca:99:08:64:1b:db:f1:f8:45: 86:7f:72:ae:a6:7e:bf:65:aa:7e:65:02:40:93:9a: e9:0c:c3:5f:c8:11:52:81:e7:4d:35:49:f5:67:4d: e6:26:c5:0e:68:0d:61:ec:02:e9:37:23:8b:e7:c8: 53:5f:14:45:a2:75:6e:62:84:e2:4a:db:aa:ff:c7: 55:a9:e8:8d:0a:42:0b:76:20:98:fd:01:90:d9:64: ec:1d:dd:13:93:d6:d4:d5:97:2e:26:59:c9:6a:f1: 15:85:2b:c6:f0:05:7c:aa:50:cd:3f:4f:43:8c:a5: 0e:3f:53:93:1d:8a:71:68:a4:b4:22:29:7f:2f:df: e5:ac:6b:dd:3e:2d:b6:56:af:11:1f:85:77:29:23: 7f:01:f2:ab:56:90:1e:88:ea:c3:37:fc:6c:be:6a: 20:45:4f:d8:b2:5a:23:fb:d5:06:9a:5f:41:96:e5: 6e:fc:2f:bb:b4:df:66:d5:25:a8:f7:9c:6c:94:e4: 96:0d:18:8e:ef:b6:8b:00:3f:e4:51:52:a3:e1:de: dc:8f:c8:79:49:e9:6e:57:81:63:05:90:7c:14:24: dd:3e:b4:3c:2f:a4:d2:a9:29:d4:4e:0a:fe:c8:13: 32:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:DB:C3:E2:C8:3A:27:48:5D:E9:F2:C6:E8:53:AF:4A:FD:2A:D4:7D X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 65:77:c1:79:67:07:64:4d:36:8a:c5:46:e6:f6:5d:47:27:f8: 46:59:3a:7e:f0:bb:ef:1a:86:5c:ae:a4:08:a9:cb:db:b3:9d: eb:28:f1:51:12:ea:64:4c:8f:a4:e9:3d:ab:3f:58:c0:1b:da: 3a:35:59:41:31:f3:43:e1:3a:c9:58:bb:c8:a9:1b:05:e2:d2: 79:48:80:19:2b:2b:6d:d6:ec:3f:f2:1f:91:9e:69:0b:0d:07: 18:2a:df:c5:c6:05:b0:a7:ce:de:3f:89:ea:5e:fa:21:f4:b9: c1:97:cc:89:50:11:4c:4c:d0:b0:39:60:fc:46:24:80:8a:db: 8a:81:66:45:15:d0:61:30:49:8f:87:ae:7b:ff:d4:49:60:1c: bc:a6:15:15:f7:b1:e0:dc:9c:08:48:c5:14:7c:06:d0:37:3a: e8:ba:29:3f:be:e8:fe:06:20:9f:8f:a5:ed:b5:eb:7d:08:68: a0:4f:4f:ff:eb:27:ff:54:25:80:a8:aa:e0:2e:f9:c8:7e:9d: f9:92:d0:37:0a:c0:a4:21:66:ab:93:e1:ed:7e:e2:ed:e8:fa: 47:2b:27:17:24:be:aa:cb:da:d0:4c:81:c3:56:30:4e:10:9d: 27:a6:2f:75:1b:1b:80:fd:f9:67:1a:78:d4:97:1d:a7:aa:86: f6:05:75:f4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWwYjDcP+cYTQCd1F3iwzQ+H4VbEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMDEwWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwODAwNzgzYTVhM2UzZjVhOGY0OTFlNGYxNGFhY2E4YTY2 YTE3OWI3NjI3N2U0ZWEwMjRmZTJhN2ZiYTBmZThiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCpsT5KT0NjcGgkfvC81uWQJfeRMqZCGQb2/H4RYZ/cq6m fr9lqn5lAkCTmukMw1/IEVKB5001SfVnTeYmxQ5oDWHsAuk3I4vnyFNfFEWidW5i hOJK26r/x1Wp6I0KQgt2IJj9AZDZZOwd3ROT1tTVly4mWclq8RWFK8bwBXyqUM0/ T0OMpQ4/U5MdinFopLQiKX8v3+Wsa90+LbZWrxEfhXcpI38B8qtWkB6I6sM3/Gy+ aiBFT9iyWiP71QaaX0GW5W78L7u032bVJaj3nGyU5JYNGI7vtosAP+RRUqPh3tyP yHlJ6W5XgWMFkHwUJN0+tDwvpNKpKdROCv7IEzI7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrNvD4sg6J0hd6fLG6FOvSv0q1H0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2JmYTUxMGVkLWQ0MGItNDU1Mi1hNGQ4LTViYjRjMzBlNDgyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBAGV3wXlnB2RNNorFRub2XUcn+EZZ On7wu+8ahlyupAipy9uzneso8VES6mRMj6TpPas/WMAb2jo1WUEx80PhOslYu8ip GwXi0nlIgBkrK23W7D/yH5GeaQsNBxgq38XGBbCnzt4/iepe+iH0ucGXzIlQEUxM 0LA5YPxGJICK24qBZkUV0GEwSY+Hrnv/1ElgHLymFRX3seDcnAhIxRR8BtA3Oui6 KT++6P4GIJ+Ppe21630IaKBPT//rJ/9UJYCoquAu+ch+nfmS0DcKwKQhZquT4e1+ 4u3o+kcrJxckvqrL2tBMgcNWME4QnSemL3UbG4D9+WcaeNSXHaeqhvYFdfQ= -----END CERTIFICATE-----Generated at Sat Aug 23 13:05:01 2025 by rpki-client