$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4714ad7b-a768-483a-bdb9-c35a68830b39.roa File: 4714ad7b-a768-483a-bdb9-c35a68830b39.roa (raw, json) Hash identifier: Ca4a4kWyNZ42kdjd6KNaH+WQ9mAJSME25blBw5gzQwY= Subject key identifier: AB:33:E0:98:24:5D:3B:4A:24:D6:A0:7A:5B:80:6B:64:CD:30:66:26 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 02D911A3DFF96BF42FBA54AEC066869E6149E4A7 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4714ad7b-a768-483a-bdb9-c35a68830b39.roa Signing time: Mon 21 Jul 2025 15:20:41 +0000 ROA not before: Mon 21 Jul 2025 15:20:41 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:d9:11:a3:df:f9:6b:f4:2f:ba:54:ae:c0:66:86:9e:61:49:e4:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:20:41 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=817d88f35ecce68778bfc255c4783a9db3942c01f5fa95807a6c4cd3318d52a2, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a4:96:0d:2e:c7:35:7a:d6:df:25:01:75:35: f0:79:0d:c7:ea:97:b5:41:a3:a6:95:14:76:aa:92: 37:47:4b:4b:b2:7d:52:8a:9a:f2:10:6f:f7:4b:9d: 02:4a:ea:fc:9d:39:6a:6b:d1:1e:81:50:78:ce:01: 7d:d1:74:aa:f1:f7:66:0b:74:c3:d6:d8:97:ec:d1: 3b:fa:62:c0:f7:f6:29:1c:ee:8c:83:62:0d:76:aa: 81:89:15:d7:78:0a:3c:58:68:69:26:2f:83:a4:ce: 90:7a:34:63:bd:54:7e:14:af:0d:a7:83:a0:0e:9c: c7:ea:f2:d5:00:91:bd:6e:31:20:66:fd:87:7d:a2: 66:6d:3f:9c:f5:b3:44:7f:f1:b6:12:a5:01:fc:bf: 8e:7f:fa:1b:cb:0d:b1:e3:80:d9:be:dc:bc:b6:1d: e8:1c:b7:65:96:20:7d:97:fb:27:0b:82:8a:db:a2: 23:c2:ca:63:f3:90:c6:93:b7:6b:a2:1e:5e:04:b1: b8:b7:24:3f:ae:4c:eb:86:5d:b2:96:d8:2c:08:07: 38:81:e9:f8:74:d6:e2:a6:ba:c7:28:68:a8:7c:9a: 7a:ea:e2:04:fe:10:57:99:c8:b6:5d:bc:e2:39:2e: db:99:59:6d:f1:2d:25:e2:38:80:e5:1e:b7:31:cc: 52:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:33:E0:98:24:5D:3B:4A:24:D6:A0:7A:5B:80:6B:64:CD:30:66:26 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4714ad7b-a768-483a-bdb9-c35a68830b39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.216.0/24 Signature Algorithm: sha256WithRSAEncryption 40:15:13:3f:0b:80:97:d6:07:9b:80:18:25:c6:42:7e:8d:34: 3a:83:67:1d:49:27:a3:d0:27:3e:59:90:69:70:86:fd:d5:da: cd:74:6f:74:f5:4a:e1:00:58:20:94:d5:74:2f:32:2e:03:9c: d8:49:7a:98:6a:a9:5a:29:87:22:be:16:f5:21:ca:b1:52:cd: 60:97:31:f0:64:ee:84:99:c7:ce:47:9e:23:80:54:b4:97:73: 77:b9:d9:aa:7c:9f:b0:ce:d9:83:31:b6:bd:2d:10:06:90:06: 67:f1:00:06:cf:64:51:58:27:48:74:ca:53:36:4d:fd:5d:38: fb:f4:f1:3c:08:c0:41:4e:c1:97:26:9f:9a:d9:1a:c2:b5:d6: 2d:1d:41:c3:9e:71:5c:e9:47:d9:c9:09:08:56:2a:d5:b0:7a: 76:f4:39:82:76:d1:33:94:02:80:cc:08:f3:97:a3:4b:ef:3d: 24:08:82:2c:b1:1f:40:6e:67:7b:85:f6:17:8a:20:69:5d:ed: 76:8f:c9:e5:e8:32:9a:9e:99:78:68:90:37:4e:48:f4:71:56: ea:d5:69:94:f5:b9:f9:c5:ab:41:e4:cd:bd:64:b7:88:fd:23: 10:3a:d8:5f:92:d0:82:1c:11:72:d2:e7:e8:7e:72:5c:ca:64: b4:88:8b:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAtkRo9/5a/QvulSuwGaGnmFJ5KcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMDQxWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTdkODhmMzVlY2NlNjg3NzhiZmMyNTVjNDc4M2E5ZGIz OTQyYzAxZjVmYTk1ODA3YTZjNGNkMzMxOGQ1MmEyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJpJYNLsc1etbfJQF1NfB5Dcfql7VBo6aVFHaqkjdHS0uy fVKKmvIQb/dLnQJK6vydOWpr0R6BUHjOAX3RdKrx92YLdMPW2Jfs0Tv6YsD39ikc 7oyDYg12qoGJFdd4CjxYaGkmL4OkzpB6NGO9VH4Urw2ng6AOnMfq8tUAkb1uMSBm /Yd9omZtP5z1s0R/8bYSpQH8v45/+hvLDbHjgNm+3Ly2Hegct2WWIH2X+ycLgorb oiPCymPzkMaTt2uiHl4Esbi3JD+uTOuGXbKW2CwIBziB6fh01uKmuscoaKh8mnrq 4gT+EFeZyLZdvOI5LtuZWW3xLSXiOIDlHrcxzFIVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqzPgmCRdO0ok1qB6W4BrZM0wZiYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzQ3MTRhZDdiLWE3NjgtNDgzYS1iZGI5LWMzNWE2ODgzMGIzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dgwDQYJKoZIhvcNAQELBQADggEBAEAVEz8LgJfWB5uAGCXGQn6NNDqD Zx1JJ6PQJz5ZkGlwhv3V2s10b3T1SuEAWCCU1XQvMi4DnNhJephqqVophyK+FvUh yrFSzWCXMfBk7oSZx85HniOAVLSXc3e52ap8n7DO2YMxtr0tEAaQBmfxAAbPZFFY J0h0ylM2Tf1dOPv08TwIwEFOwZcmn5rZGsK11i0dQcOecVzpR9nJCQhWKtWwenb0 OYJ20TOUAoDMCPOXo0vvPSQIgiyxH0BuZ3uF9heKIGld7XaPyeXoMpqemXhokDdO SPRxVurVaZT1ufnFq0Hkzb1kt4j9IxA62F+S0IIcEXLS5+h+clzKZLSIixE= -----END CERTIFICATE-----Generated at Wed Jul 23 01:57:20 2025 by rpki-client