$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa File: 1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa (raw, json) Hash identifier: /PLnyGwW7Qk0ATILly5U+hyzLKfkscK0bxV1QgmQkOk= Subject key identifier: 15:F8:27:B6:46:77:99:0D:29:69:ED:2A:C7:69:AD:B7:13:11:7D:E1 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 552B9A56E509DA2ADBD5473D320899400450D47F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa Signing time: Mon 21 Jul 2025 15:20:36 +0000 ROA not before: Mon 21 Jul 2025 15:20:36 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:2b:9a:56:e5:09:da:2a:db:d5:47:3d:32:08:99:40:04:50:d4:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:20:36 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=2bc544cbd485a7c28d6bb4afb9458906cda44ca89bce77a01e525f7f36259c32, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e2:c3:dc:e2:d1:6c:06:44:01:87:f6:7e:11: 39:a6:42:03:d8:1f:94:99:1f:0f:ea:cb:7e:f9:f0: 85:2a:61:18:35:42:0a:34:15:ea:51:42:51:70:0a: 15:4d:05:c2:79:79:c6:ec:d9:fe:e9:a2:e0:21:fd: df:d0:33:62:ec:66:bb:a9:8d:c9:6b:45:3b:3c:69: a7:65:4a:c1:1f:56:7e:cf:d1:be:2e:2d:f9:5b:a8: d9:74:a0:fa:9c:f5:d1:eb:9f:fb:f4:69:97:2e:44: 95:ae:b1:6e:e3:86:02:0b:c1:87:b5:ea:28:8b:35: 12:e0:1f:9b:21:60:10:1e:86:ca:4f:70:28:e5:16: 50:d0:47:b2:6f:2a:a0:44:eb:e2:c6:88:6d:45:64: 9f:47:5e:79:5a:30:b2:94:0b:29:f4:ad:99:43:55: 26:1d:9b:99:cf:4b:9c:12:13:16:52:d7:f2:6a:e7: 47:8a:10:cc:1d:6b:75:e6:48:a0:e5:c8:f9:3e:87: 03:10:2f:f8:59:a2:43:b3:52:6b:6e:16:c9:96:80: 74:8d:69:ba:7a:70:6c:a0:1b:63:52:41:a9:68:3f: 96:7b:12:7f:b1:9e:75:c6:20:9b:43:8d:38:98:49: af:86:d7:a3:18:d7:cd:f1:61:77:02:c8:72:8b:a1: 76:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F8:27:B6:46:77:99:0D:29:69:ED:2A:C7:69:AD:B7:13:11:7D:E1 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.208.0/20 Signature Algorithm: sha256WithRSAEncryption 94:99:16:93:f8:d0:e0:f9:a9:af:58:c9:ce:79:da:e6:50:9e: f3:ec:22:46:48:56:a3:27:fe:05:6d:28:48:b1:e8:13:9d:56: 36:1e:2e:3d:b4:2b:55:33:03:d2:98:9d:3b:67:68:74:22:1f: cf:9a:b8:00:c1:51:de:02:d6:de:b2:b7:f8:22:76:1a:62:a0: 77:ac:21:8e:f4:5b:0d:05:a5:a3:d0:e0:19:d6:ba:99:44:7f: 6c:94:f7:bb:ed:9f:d1:58:cc:b0:23:e9:6c:99:44:1c:88:4b: ce:17:fb:82:3c:25:d4:27:dc:66:50:e2:cc:d2:ef:f0:46:2e: 76:2d:d7:1a:96:f8:50:29:5a:f1:83:aa:05:d3:29:2b:39:ed: 33:ad:48:32:60:9c:f0:84:c3:fb:fd:7c:27:3e:94:e7:c4:3b: 2a:e3:62:9b:63:dd:c6:bb:25:28:f6:0e:3b:f7:52:e6:f8:f6: bf:62:45:ca:10:09:02:83:9a:0a:37:97:c4:d2:77:08:3c:f9: 91:9e:b4:8f:04:f3:95:1e:0c:a7:24:51:36:75:ce:6e:5d:cb: c6:6c:99:16:25:36:b6:88:1c:f2:98:a1:15:8d:60:0e:10:19: 49:25:74:f9:b9:80:ae:ad:fb:81:17:37:f2:e8:f9:2b:8d:4c: 58:99:ca:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVSuaVuUJ2irb1Uc9MgiZQARQ1H8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMDM2WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmM1NDRjYmQ0ODVhN2MyOGQ2YmI0YWZiOTQ1ODkwNmNk YTQ0Y2E4OWJjZTc3YTAxZTUyNWY3ZjM2MjU5YzMyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO4sPc4tFsBkQBh/Z+ETmmQgPYH5SZHw/qy3758IUqYRg1 Qgo0FepRQlFwChVNBcJ5ecbs2f7pouAh/d/QM2LsZrupjclrRTs8aadlSsEfVn7P 0b4uLflbqNl0oPqc9dHrn/v0aZcuRJWusW7jhgILwYe16iiLNRLgH5shYBAehspP cCjlFlDQR7JvKqBE6+LGiG1FZJ9HXnlaMLKUCyn0rZlDVSYdm5nPS5wSExZS1/Jq 50eKEMwda3XmSKDlyPk+hwMQL/hZokOzUmtuFsmWgHSNabp6cGygG2NSQaloP5Z7 En+xnnXGIJtDjTiYSa+G16MY183xYXcCyHKLoXatAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFfgntkZ3mQ0pae0qx2mttxMRfeEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzFjOTU5ZTY2LWY5NjctNDNkNi05M2JkLWNiZGNmMTYwY2JiNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQX+dAwDQYJKoZIhvcNAQELBQADggEBAJSZFpP40OD5qa9Yyc552uZQnvPs IkZIVqMn/gVtKEix6BOdVjYeLj20K1UzA9KYnTtnaHQiH8+auADBUd4C1t6yt/gi dhpioHesIY70Ww0FpaPQ4BnWuplEf2yU97vtn9FYzLAj6WyZRByIS84X+4I8JdQn 3GZQ4szS7/BGLnYt1xqW+FApWvGDqgXTKSs57TOtSDJgnPCEw/v9fCc+lOfEOyrj Yptj3ca7JSj2Djv3Uub49r9iRcoQCQKDmgo3l8TSdwg8+ZGetI8E85UeDKckUTZ1 zm5dy8ZsmRYlNraIHPKYoRWNYA4QGUkldPm5gK6t+4EXN/Lo+SuNTFiZypU= -----END CERTIFICATE-----Generated at Tue Jul 22 19:31:40 2025 by rpki-client