$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa File: 32c53391-9c3f-4b16-925f-978e804a33ba.roa (raw, json) Hash identifier: hLD0n5u0sZKDxtuMxnQWnCFsqtUOI4l1TjcyoOSqgxY= Subject key identifier: 95:80:6E:2F:B9:B7:E8:21:C8:7B:7F:5A:76:67:64:07:6F:2C:53:C2 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1727287FC793453E292851A38E6C420B3DB1364A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa Signing time: Tue 22 Jul 2025 00:00:03 +0000 ROA not before: Tue 22 Jul 2025 00:00:03 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 24.110.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:27:28:7f:c7:93:45:3e:29:28:51:a3:8e:6c:42:0b:3d:b1:36:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 22 00:00:03 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=e0478bc1839b28a57732e064125e302d2791e4cd539deddf77727d2ff4648714, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bc:ae:da:9e:ef:e6:9f:b0:71:19:7c:90:06: 0d:bc:f1:8c:0d:2f:c7:e5:9b:db:6e:95:5b:bc:db: 02:e0:b2:5d:c6:f9:4e:a5:0b:e4:7a:42:be:bf:f0: 8b:60:19:d4:00:a8:14:33:89:07:34:36:f1:f1:2c: a4:ee:83:35:67:b6:62:25:e0:77:93:88:5e:3a:de: 09:e0:b4:de:f7:ca:d1:2c:76:74:50:4e:d3:54:3c: 20:96:8e:f9:cb:57:67:68:4e:cf:fe:91:88:49:58: 0c:35:ce:93:18:77:f3:1f:46:e2:ea:9e:3e:b7:c4: e6:0f:c0:3e:28:33:eb:de:ca:35:dc:70:2e:e6:7d: 6b:c1:e0:73:e7:60:86:06:04:e5:6c:98:24:3d:25: dc:68:bf:72:11:fe:8f:d3:5c:ac:9b:91:f0:31:86: d8:f7:6c:2b:10:47:87:99:75:65:4f:97:3a:16:53: 28:ed:bc:84:4c:40:ea:ee:e5:ff:af:e1:6e:c4:f3: 21:e8:99:26:fb:7c:89:04:82:3e:62:02:ba:b4:ac: 1e:70:e4:5a:1c:0e:47:9a:b0:aa:c4:48:5e:db:1a: 2e:fd:e8:90:8f:35:44:f5:01:a5:8a:37:8c:6e:94: 93:b0:0c:68:0d:6e:e3:d8:74:7f:18:51:56:7d:8a: 23:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:80:6E:2F:B9:B7:E8:21:C8:7B:7F:5A:76:67:64:07:6F:2C:53:C2 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/32c53391-9c3f-4b16-925f-978e804a33ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.64.0/18 Signature Algorithm: sha256WithRSAEncryption 44:22:c0:94:ee:4a:98:a6:f7:dd:94:07:79:89:be:01:97:db: cd:ce:8f:fe:13:31:58:26:e4:a1:81:85:2e:49:a1:66:51:f4: a6:74:c0:e3:eb:77:2e:0d:ce:ab:9b:52:a6:29:26:5f:74:d3: fd:12:6a:f0:6c:91:a4:9a:36:f0:f4:79:0b:0b:6c:aa:fc:72: 9b:b3:69:62:56:ef:85:f0:a9:2d:88:16:99:9f:fd:26:66:1b: 42:d6:14:fc:8f:52:67:95:34:cf:d7:26:31:71:59:52:73:90: 10:3b:e2:9f:b9:95:ec:50:24:2d:44:ec:cc:bc:29:bb:80:a0: 70:db:d6:4e:e1:53:3f:27:ca:cf:4b:c8:d4:44:01:db:a0:ad: 4e:a1:14:de:51:d1:e1:a9:45:f1:bf:02:e6:b9:90:15:cc:45: 54:c2:82:2c:68:93:ef:84:e7:49:f2:6c:af:15:97:72:a7:e5: 06:de:04:27:4d:b3:ca:76:55:14:8e:fa:c6:8d:0f:bc:58:f1: ce:c1:54:e4:f1:51:18:24:0d:e6:04:52:fb:09:8f:b6:b9:df: f4:65:72:0f:60:11:67:18:83:a5:ac:66:21:11:9c:fe:e1:a8: bb:d2:f1:69:3d:02:0d:3a:a6:7b:d4:0d:84:87:b3:eb:f2:51: 31:22:fd:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFycof8eTRT4pKFGjjmxCCz2xNkowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIyMDAwMDAzWhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDQ3OGJjMTgzOWIyOGE1NzczMmUwNjQxMjVlMzAyZDI3 OTFlNGNkNTM5ZGVkZGY3NzcyN2QyZmY0NjQ4NzE0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqvK7anu/mn7BxGXyQBg288YwNL8flm9tulVu82wLgsl3G +U6lC+R6Qr6/8ItgGdQAqBQziQc0NvHxLKTugzVntmIl4HeTiF463gngtN73ytEs dnRQTtNUPCCWjvnLV2doTs/+kYhJWAw1zpMYd/MfRuLqnj63xOYPwD4oM+veyjXc cC7mfWvB4HPnYIYGBOVsmCQ9Jdxov3IR/o/TXKybkfAxhtj3bCsQR4eZdWVPlzoW UyjtvIRMQOru5f+v4W7E8yHomSb7fIkEgj5iArq0rB5w5FocDkeasKrESF7bGi79 6JCPNUT1AaWKN4xulJOwDGgNbuPYdH8YUVZ9iiMtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlYBuL7m36CHIe39admdkB28sU8IwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzMyYzUzMzkxLTljM2YtNGIxNi05MjVmLTk3OGU4MDRhMzNiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYYbkAwDQYJKoZIhvcNAQELBQADggEBAEQiwJTuSpim992UB3mJvgGX283O j/4TMVgm5KGBhS5JoWZR9KZ0wOPrdy4NzqubUqYpJl900/0SavBskaSaNvD0eQsL bKr8cpuzaWJW74XwqS2IFpmf/SZmG0LWFPyPUmeVNM/XJjFxWVJzkBA74p+5lexQ JC1E7My8KbuAoHDb1k7hUz8nys9LyNREAdugrU6hFN5R0eGpRfG/Aua5kBXMRVTC gixok++E50nybK8Vl3Kn5QbeBCdNs8p2VRSO+saND7xY8c7BVOTxURgkDeYEUvsJ j7a53/Rlcg9gEWcYg6WsZiERnP7hqLvS8Wk9Ag06pnvUDYSHs+vyUTEi/WY= -----END CERTIFICATE-----Generated at Tue Jul 22 11:50:01 2025 by rpki-client