$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa File: cff2aad7-f173-47b6-ad48-6f279ff321d1.roa (raw, json) Hash identifier: IbDOWUYeOGP3uF6WMBLI/EwiaQa36mnY/N8qcIOhlsc= Subject key identifier: 41:C2:7D:21:13:56:B1:CC:18:C2:F3:67:67:94:65:41:A5:02:22:76 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6E7862083C895F9C40D5513B1D67D9116F94AA1E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa Signing time: Wed 25 Jun 2025 00:00:05 +0000 ROA not before: Wed 25 Jun 2025 00:00:05 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:78:62:08:3c:89:5f:9c:40:d5:51:3b:1d:67:d9:11:6f:94:aa:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 25 00:00:05 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=4842b9fba0f49df87aed7461fd420b9cf68edfa4c37523b96a61e952c0b290f5, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:86:ff:3f:ac:17:d0:b4:da:9c:92:95:f0:b3: 07:8c:ee:7d:37:39:de:9d:e7:20:ab:41:9c:7d:32: d8:bf:47:70:18:0e:cc:04:e9:fa:af:cb:e1:b7:84: ea:15:a9:80:f6:f9:cd:b4:83:14:1e:a9:14:b3:4f: 52:fb:97:7e:fd:4f:a7:c7:6b:f4:1c:a9:d4:ad:1a: 81:32:88:27:2c:48:19:a7:42:d1:7e:e1:be:96:48: 0d:fd:45:07:1a:2a:a7:3d:61:c5:79:d1:74:e3:aa: 3e:a5:ae:9f:0d:d0:77:85:10:f3:05:18:24:42:42: 1e:cc:07:2a:ee:42:54:7c:96:a9:ad:7d:bd:8c:ee: 51:65:43:65:76:32:1c:d7:27:cf:c2:67:60:16:23: 3f:61:5c:76:48:af:2e:3f:d9:a8:09:23:93:85:97: c9:b3:7e:64:0b:57:c9:b4:c9:4f:6a:79:f1:c3:13: 3b:75:7d:e5:46:40:b9:e6:94:ed:a0:4d:aa:53:da: c9:95:30:ee:0a:13:bf:ab:a7:3e:fc:08:1a:82:d2: 15:b6:18:ed:2a:a4:6c:96:bd:3c:23:af:91:99:aa: 62:06:0e:dd:f5:32:25:a9:38:ea:c3:52:fa:3a:7e: 3a:59:03:25:09:b2:b4:21:b7:bf:14:d3:20:a5:bb: 1e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C2:7D:21:13:56:B1:CC:18:C2:F3:67:67:94:65:41:A5:02:22:76 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.212.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:74:3b:e5:17:b7:d0:e6:01:d3:de:3f:94:ae:f3:ea:0c:12: ed:70:8f:5a:21:60:50:46:3e:86:31:7c:65:53:36:4e:f1:35: 1f:2a:ed:80:66:1f:2a:44:41:e6:5b:da:cd:33:c5:79:8e:bc: 49:12:ed:b0:5d:92:fb:90:64:a4:58:62:6f:3f:93:db:49:60: d8:4a:fd:47:65:59:5a:5e:82:6f:4f:95:9c:78:9a:ed:5e:4a: 92:b4:d1:12:8c:86:be:64:05:95:53:ab:46:37:b2:51:60:f8: f2:98:7a:99:00:15:32:e1:0e:f6:78:60:cc:42:99:f8:d8:55: b4:2f:22:63:c3:83:30:12:47:63:f5:9b:90:23:21:65:4a:15: 79:c6:5c:40:e6:4f:06:01:53:00:57:4b:46:ec:cd:00:20:a3: 4a:5a:5f:98:4d:8c:5d:03:77:0d:32:b1:1d:3f:37:f8:91:33: 00:dd:b1:af:44:3b:b1:5b:da:d5:00:09:71:f1:5d:08:60:c6: 2b:e4:47:f4:98:6a:48:29:5f:44:2d:c0:33:36:ce:43:c7:e0: b7:a2:f7:a0:ac:4b:1a:05:97:c0:13:0b:e2:8f:13:23:8d:7a: c5:c8:ee:82:c8:bd:8e:b5:4c:a0:35:3a:d0:db:a8:e7:94:da: 76:d6:71:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbnhiCDyJX5xA1VE7HWfZEW+Uqh4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI1MDAwMDA1WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODQyYjlmYmEwZjQ5ZGY4N2FlZDc0NjFmZDQyMGI5Y2Y2 OGVkZmE0YzM3NTIzYjk2YTYxZTk1MmMwYjI5MGY1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEhv8/rBfQtNqckpXwsweM7n03Od6d5yCrQZx9Mti/R3AY DswE6fqvy+G3hOoVqYD2+c20gxQeqRSzT1L7l379T6fHa/QcqdStGoEyiCcsSBmn QtF+4b6WSA39RQcaKqc9YcV50XTjqj6lrp8N0HeFEPMFGCRCQh7MByruQlR8lqmt fb2M7lFlQ2V2MhzXJ8/CZ2AWIz9hXHZIry4/2agJI5OFl8mzfmQLV8m0yU9qefHD Ezt1feVGQLnmlO2gTapT2smVMO4KE7+rpz78CBqC0hW2GO0qpGyWvTwjr5GZqmIG Dt31MiWpOOrDUvo6fjpZAyUJsrQht78U0yClux4TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQcJ9IRNWscwYwvNnZ5RlQaUCInYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NmZjJhYWQ3LWYxNzMtNDdiNi1hZDQ4LTZmMjc5ZmYzMjFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dQwDQYJKoZIhvcNAQELBQADggEBABt0O+UXt9DmAdPeP5Su8+oMEu1w j1ohYFBGPoYxfGVTNk7xNR8q7YBmHypEQeZb2s0zxXmOvEkS7bBdkvuQZKRYYm8/ k9tJYNhK/UdlWVpegm9PlZx4mu1eSpK00RKMhr5kBZVTq0Y3slFg+PKYepkAFTLh DvZ4YMxCmfjYVbQvImPDgzASR2P1m5AjIWVKFXnGXEDmTwYBUwBXS0bszQAgo0pa X5hNjF0Ddw0ysR0/N/iRMwDdsa9EO7Fb2tUACXHxXQhgxivkR/SYakgpX0QtwDM2 zkPH4Lei96CsSxoFl8ATC+KPEyONesXI7oLIvY61TKA1OtDbqOeU2nbWcfc= -----END CERTIFICATE-----Generated at Sun Jun 29 07:10:01 2025 by rpki-client