$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa File: f174f360-a3ca-4335-8414-4727cef110a8.roa (raw, json) Hash identifier: jiCv/Gckugjt/qwj9Hojc4QyBDtuzolCBNgXFiNAw/w= Subject key identifier: 62:3C:7E:23:5C:BC:2D:52:F9:D6:5B:94:15:61:EB:30:A5:50:37:AD Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3392C7DFD51D0646AE1E262D6B50A96B2B7CE7A6 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa Signing time: Fri 15 Aug 2025 00:20:09 +0000 ROA not before: Fri 15 Aug 2025 00:20:09 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:92:c7:df:d5:1d:06:46:ae:1e:26:2d:6b:50:a9:6b:2b:7c:e7:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:20:09 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=0c0d3904a59a7672f2348a290ff77808f5915d8cf675186d840576ba23474ce1, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ac:68:ba:b0:79:04:b7:01:d7:c7:5e:ac:a2: 3f:1e:a8:11:cc:bd:28:cf:7c:14:1b:03:0a:79:7e: 32:d9:c0:74:32:1c:ad:5b:2b:c6:bf:20:41:d4:06: dd:d1:1b:02:76:a0:46:ae:16:77:8b:9a:1b:21:3f: 1d:f8:4e:b0:04:20:bf:55:0f:73:65:64:85:75:c0: 9f:9e:69:d7:71:05:eb:cc:cb:26:e9:13:41:6c:6b: 1a:f1:43:30:38:a9:d8:e4:d5:60:05:bd:62:46:21: e1:5e:e5:0e:ca:fd:ec:92:a3:4a:cd:9d:2f:ce:58: 83:07:af:7d:48:ba:c1:af:e6:71:c5:2a:83:dc:19: 18:25:49:13:ad:15:f6:da:aa:75:ae:1d:84:98:53: bf:fe:1b:4b:45:95:af:6d:4e:4c:90:63:d1:bd:01: 96:f5:30:99:18:11:7a:6e:5f:28:53:4d:6a:2b:b3: c7:9b:2c:16:1d:0d:1e:ef:fb:f2:d6:51:f6:48:78: 84:15:00:46:01:d1:97:f1:ba:dd:e9:be:37:65:87: 17:95:39:c4:19:ab:96:6c:87:fd:0e:4b:f7:b8:72: 1e:7a:69:f3:4c:cd:77:e7:18:38:b3:8a:e3:30:8b: af:79:c8:06:3a:25:f9:b9:42:e6:89:da:68:b6:64: 02:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:3C:7E:23:5C:BC:2D:52:F9:D6:5B:94:15:61:EB:30:A5:50:37:AD X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 96:e0:b1:bb:d5:f9:03:e6:86:6a:ee:98:fc:d5:3d:cd:29:ee: 21:53:7c:be:be:73:fa:83:4a:b2:da:6c:10:95:ed:c5:14:66: 7a:fa:77:04:57:d4:a1:93:0e:26:bf:9d:28:1e:49:0d:8d:aa: bf:59:fd:58:1c:93:75:aa:07:78:fa:c3:9a:b9:65:d3:cb:2d: 2c:96:a5:2a:04:7c:53:13:85:77:65:22:ff:b0:e8:36:0d:3d: 75:3c:0b:aa:11:99:38:38:1c:c6:0d:24:80:ab:3a:8a:f5:b0: 32:2a:22:ab:72:0e:af:a4:c7:cc:23:02:5c:ed:bb:70:29:2f: f1:55:cf:67:f8:44:31:29:37:37:59:37:e4:eb:5a:d1:49:2c: 44:8a:2b:40:29:c6:00:7f:8e:d7:f0:2d:47:36:9d:59:8b:a6: 2f:6f:1e:3d:d3:8f:b4:4e:39:04:dc:c5:06:6c:9c:1e:7e:25: 6b:f7:d1:83:be:87:f7:eb:1f:04:99:22:c1:20:7f:f0:ff:d9: f6:61:0a:a3:c2:46:4e:37:c1:12:4c:10:a8:8f:07:36:b3:ec: 2d:e3:71:a4:49:2f:5c:a3:e9:f6:c3:70:8f:9e:ec:c1:88:53: 9f:32:e7:7a:c1:d2:f9:b6:b7:9d:55:13:8f:77:32:e7:4e:a5: ca:b1:32:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM5LH39UdBkauHiYta1Cpayt856YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMDA5WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzBkMzkwNGE1OWE3NjcyZjIzNDhhMjkwZmY3NzgwOGY1 OTE1ZDhjZjY3NTE4NmQ4NDA1NzZiYTIzNDc0Y2UxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDerGi6sHkEtwHXx16soj8eqBHMvSjPfBQbAwp5fjLZwHQy HK1bK8a/IEHUBt3RGwJ2oEauFneLmhshPx34TrAEIL9VD3NlZIV1wJ+eaddxBevM yybpE0FsaxrxQzA4qdjk1WAFvWJGIeFe5Q7K/eySo0rNnS/OWIMHr31IusGv5nHF KoPcGRglSROtFfbaqnWuHYSYU7/+G0tFla9tTkyQY9G9AZb1MJkYEXpuXyhTTWor s8ebLBYdDR7v+/LWUfZIeIQVAEYB0Zfxut3pvjdlhxeVOcQZq5Zsh/0OS/e4ch56 afNMzXfnGDiziuMwi695yAY6Jfm5QuaJ2mi2ZALhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYjx+I1y8LVL51luUFWHrMKVQN60wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2YxNzRmMzYwLWEzY2EtNDMzNS04NDE0LTQ3MjdjZWYxMTBhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBAJbgsbvV+QPmhmrumPzVPc0p7iFT fL6+c/qDSrLabBCV7cUUZnr6dwRX1KGTDia/nSgeSQ2Nqr9Z/Vgck3WqB3j6w5q5 ZdPLLSyWpSoEfFMThXdlIv+w6DYNPXU8C6oRmTg4HMYNJICrOor1sDIqIqtyDq+k x8wjAlztu3ApL/FVz2f4RDEpNzdZN+TrWtFJLESKK0ApxgB/jtfwLUc2nVmLpi9v Hj3Tj7ROOQTcxQZsnB5+JWv30YO+h/frHwSZIsEgf/D/2fZhCqPCRk43wRJMEKiP Bzaz7C3jcaRJL1yj6fbDcI+e7MGIU58y53rB0vm2t51VE493MudOpcqxMtc= -----END CERTIFICATE-----Generated at Sat Aug 23 08:34:47 2025 by rpki-client