$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa File: bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa (raw, json) Hash identifier: 1NJ0W9uLssFk1hIi6zCA9h475Ra8CuXGXNB0tnefMrM= Subject key identifier: 98:00:E3:CE:9A:15:4E:D1:45:56:A0:7A:FA:59:C2:CD:04:54:F5:8A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2C8C45A87C7A102724474000761D276907224532 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa Signing time: Wed 25 Jun 2025 00:00:08 +0000 ROA not before: Wed 25 Jun 2025 00:00:08 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:8c:45:a8:7c:7a:10:27:24:47:40:00:76:1d:27:69:07:22:45:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 25 00:00:08 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=93207a1bcc6723293c1accea588558cb9b50b03c4e51b33437e51f5469ac901a, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:09:4e:6b:c9:03:b1:76:30:21:a3:33:df:51: b1:ce:0f:48:47:3f:f1:c9:92:2b:c2:b7:93:51:d9: f1:55:0c:17:22:0d:ac:ad:5a:e7:b3:6c:7b:1f:e0: 9a:7a:a3:7f:d8:2f:b6:5b:84:95:a2:83:27:b5:b5: 05:8c:d9:7b:02:c6:5b:7b:f8:bf:5e:c6:a2:e0:53: f8:8c:a5:b2:0d:4c:89:fd:65:1a:7f:23:64:a9:47: 67:e5:7c:17:01:58:a3:8e:0a:e4:6e:89:62:5c:d8: dc:6c:1a:af:b9:08:fa:db:e1:ef:c1:d0:ea:2c:c2: 32:d1:92:63:b2:a2:d8:ff:10:e4:a3:86:02:f5:5f: f3:63:39:7c:b1:20:6e:0c:37:be:a2:7c:a0:d0:85: a1:bb:66:eb:4c:71:4d:f0:b3:fc:26:4a:4f:e0:f5: ec:c6:da:a3:4c:75:1a:4b:eb:ba:bc:ee:8a:a0:c3: 03:ff:14:80:21:92:9e:aa:19:ef:ce:4e:dd:ae:43: 36:5f:69:d8:bb:39:08:79:89:3d:6c:29:e7:f0:40: 3a:c5:9b:6f:8f:55:f7:36:b8:ab:d3:75:95:d6:4c: 1f:77:62:cb:12:ea:44:f9:92:13:9e:ae:70:05:d5: 3a:db:cb:a8:92:98:d3:f3:ec:bb:30:4e:e6:34:7b: 40:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:00:E3:CE:9A:15:4E:D1:45:56:A0:7A:FA:59:C2:CD:04:54:F5:8A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 71:6a:81:ed:19:32:7b:a6:1a:7d:34:31:ea:e1:14:a2:56:67: 8a:d7:26:40:26:4e:44:14:4c:28:1e:7d:d4:c0:12:e7:5d:f9: c9:d1:29:e1:0e:9a:bc:bd:a9:8d:2e:02:31:e6:5d:a1:ea:34: 87:37:f6:67:8b:d5:6c:9e:28:93:8d:35:c6:56:9d:df:fb:b0: 49:ef:5e:10:e1:8f:30:2b:81:52:e6:7d:56:94:ce:39:92:14: fd:82:9b:c3:37:ac:13:e4:fb:3c:29:f1:79:10:b2:60:e0:49: 57:09:87:00:a4:52:6f:11:6a:7b:10:1e:6e:d7:d5:cf:7c:87: 57:fe:7f:76:c4:da:fb:af:b4:2c:80:40:fe:d1:9d:9f:00:17: ec:57:89:92:49:5a:36:ab:41:43:06:a7:09:db:35:74:05:0a: 6b:da:eb:c5:54:06:ae:96:2a:a1:b7:23:4b:c7:f8:1f:0c:3c: ad:0c:d9:24:12:f4:31:60:5f:a8:bf:39:11:21:02:3f:97:99: bc:70:55:6c:df:c9:4b:6e:d4:03:9a:83:c7:69:28:06:4a:e8: 09:bd:c6:8a:5d:8c:a6:f2:30:76:59:38:39:21:4a:dc:1a:13: c1:48:d1:a5:a5:a5:64:b9:f6:01:89:0c:f4:d9:6e:b8:50:94: 42:85:2c:75 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULIxFqHx6ECckR0AAdh0naQciRTIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI1MDAwMDA4WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzIwN2ExYmNjNjcyMzI5M2MxYWNjZWE1ODg1NThjYjli NTBiMDNjNGU1MWIzMzQzN2U1MWY1NDY5YWM5MDFhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlCU5ryQOxdjAhozPfUbHOD0hHP/HJkivCt5NR2fFVDBci DaytWuezbHsf4Jp6o3/YL7ZbhJWigye1tQWM2XsCxlt7+L9exqLgU/iMpbINTIn9 ZRp/I2SpR2flfBcBWKOOCuRuiWJc2NxsGq+5CPrb4e/B0OoswjLRkmOyotj/EOSj hgL1X/NjOXyxIG4MN76ifKDQhaG7ZutMcU3ws/wmSk/g9ezG2qNMdRpL67q87oqg wwP/FIAhkp6qGe/OTt2uQzZfadi7OQh5iT1sKefwQDrFm2+PVfc2uKvTdZXWTB93 YssS6kT5khOernAF1Trby6iSmNPz7LswTuY0e0B3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmADjzpoVTtFFVqB6+lnCzQRU9YowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2JmYTUxMGVkLWQ0MGItNDU1Mi1hNGQ4LTViYjRjMzBlNDgyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBAHFqge0ZMnumGn00MerhFKJWZ4rX JkAmTkQUTCgefdTAEudd+cnRKeEOmry9qY0uAjHmXaHqNIc39meL1WyeKJONNcZW nd/7sEnvXhDhjzArgVLmfVaUzjmSFP2Cm8M3rBPk+zwp8XkQsmDgSVcJhwCkUm8R ansQHm7X1c98h1f+f3bE2vuvtCyAQP7RnZ8AF+xXiZJJWjarQUMGpwnbNXQFCmva 68VUBq6WKqG3I0vH+B8MPK0M2SQS9DFgX6i/OREhAj+XmbxwVWzfyUtu1AOag8dp KAZK6Am9xopdjKbyMHZZODkhStwaE8FI0aWlpWS59gGJDPTZbrhQlEKFLHU= -----END CERTIFICATE-----Generated at Sun Jun 29 16:42:19 2025 by rpki-client