$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: BP2ZLwbPlZ7b8JXweMIkfZztrXBPK8aGS6Th0jKPJRE= Subject key identifier: C1:A6:41:D0:95:6B:B4:27:0B:F4:A5:56:C6:E5:C9:5B:B1:F8:3F:7A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1FE8E5FD7502F38024AB17696346D6801C35D428 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Sat 19 Jul 2025 00:00:07 +0000 ROA not before: Sat 19 Jul 2025 00:00:07 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:e8:e5:fd:75:02:f3:80:24:ab:17:69:63:46:d6:80:1c:35:d4:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 19 00:00:07 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=ef8d52ff9920d37cd55388e6243d3fb36570b84886cd23b6ddaa67c8d3ad84a0, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:01:32:ed:fd:18:92:20:44:4d:80:25:e1:db: 07:d3:a3:f5:b4:1e:2b:fe:32:16:c3:41:d1:74:92: ac:b1:52:fa:51:0c:8b:b5:ba:c8:13:4b:06:31:f3: 6c:af:95:80:2a:26:46:43:01:b3:f9:a5:a0:5d:a1: 55:91:06:e4:d6:8c:29:14:1e:72:70:7a:56:bc:02: 0f:24:96:2c:82:61:2f:59:27:9a:cd:35:13:99:ef: 06:93:aa:50:7a:f9:c3:6d:d4:69:08:31:0b:b5:58: d4:ab:a1:d4:9a:4a:37:bf:e3:86:db:f8:0c:62:e0: ae:ae:9a:4c:93:c7:54:55:fc:d7:a2:5e:74:f8:96: 4e:ab:a8:c9:ce:2d:5d:55:6c:79:3d:12:54:19:79: fb:8d:71:24:e0:50:31:3a:5b:12:ba:fa:40:e6:3d: 44:08:3c:20:1a:f9:fe:72:ac:09:c2:f7:c3:c5:1b: 75:72:dc:ed:3d:0a:fc:cc:5d:92:fb:f8:a3:2b:76: d3:ef:28:66:b0:86:f6:58:a5:c5:a4:87:76:60:27: 9b:7c:b7:6d:a3:70:3c:f9:4a:e8:24:6e:4c:29:0a: 00:3c:73:7c:98:f9:74:98:3a:e0:e9:31:f9:14:38: f1:8c:82:70:80:57:f8:f2:61:42:14:06:2a:ae:a8: f6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A6:41:D0:95:6B:B4:27:0B:F4:A5:56:C6:E5:C9:5B:B1:F8:3F:7A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:6f:99:c8:c4:da:f9:4b:35:f0:ce:bb:e7:31:37:c7:bf:ab: 92:4c:b2:dc:ba:26:2a:9c:ae:e7:78:24:4a:12:8f:55:83:48: 64:1b:1b:a7:38:46:71:21:52:5b:a7:70:19:b1:d4:c5:e5:bc: 9a:c3:cd:c5:1e:d4:5b:34:a8:01:b2:66:de:ee:fd:d6:89:96: 70:70:d8:23:31:76:5f:7f:f0:dc:22:09:43:30:35:66:80:79: 47:f1:c7:6a:0a:f8:20:a3:41:8a:31:63:eb:5a:69:f3:b6:e9: 15:ae:0c:68:44:fb:0f:a3:9b:32:ed:6d:32:5f:04:5e:c4:22: a8:8e:17:22:4b:fd:9c:49:70:a2:7b:34:29:5d:2f:3e:34:f6: ea:81:57:38:8a:02:81:5e:56:cf:e6:fe:e9:59:39:3f:fa:a3: e9:5d:79:6f:94:00:c8:cf:af:98:5e:6e:b1:9e:0e:f4:d1:2d: ff:cc:9b:60:bb:16:ee:42:be:e5:d2:ea:16:0f:ec:73:66:d7: 13:ab:61:60:6d:c7:2a:67:c5:19:5a:bf:7c:06:31:bf:86:b2: 55:14:b3:29:80:c9:81:9a:4e:6e:85:55:9a:f2:04:96:6e:75: 64:99:49:20:93:41:b5:3c:bf:87:27:e6:2a:8b:31:be:5c:5b: 03:97:81:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH+jl/XUC84AkqxdpY0bWgBw11CgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzE5MDAwMDA3WhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjhkNTJmZjk5MjBkMzdjZDU1Mzg4ZTYyNDNkM2ZiMzY1 NzBiODQ4ODZjZDIzYjZkZGFhNjdjOGQzYWQ4NGEwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD4ATLt/RiSIERNgCXh2wfTo/W0Hiv+MhbDQdF0kqyxUvpR DIu1usgTSwYx82yvlYAqJkZDAbP5paBdoVWRBuTWjCkUHnJwela8Ag8kliyCYS9Z J5rNNROZ7waTqlB6+cNt1GkIMQu1WNSrodSaSje/44bb+Axi4K6umkyTx1RV/Nei XnT4lk6rqMnOLV1VbHk9ElQZefuNcSTgUDE6WxK6+kDmPUQIPCAa+f5yrAnC98PF G3Vy3O09CvzMXZL7+KMrdtPvKGawhvZYpcWkh3ZgJ5t8t22jcDz5SugkbkwpCgA8 c3yY+XSYOuDpMfkUOPGMgnCAV/jyYUIUBiquqPYhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwaZB0JVrtCcL9KVWxuXJW7H4P3owHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAB9vmcjE2vlLNfDOu+cxN8e/q5JM sty6Jiqcrud4JEoSj1WDSGQbG6c4RnEhUluncBmx1MXlvJrDzcUe1Fs0qAGyZt7u /daJlnBw2CMxdl9/8NwiCUMwNWaAeUfxx2oK+CCjQYoxY+taafO26RWuDGhE+w+j mzLtbTJfBF7EIqiOFyJL/ZxJcKJ7NCldLz409uqBVziKAoFeVs/m/ulZOT/6o+ld eW+UAMjPr5hebrGeDvTRLf/Mm2C7Fu5CvuXS6hYP7HNm1xOrYWBtxypnxRlav3wG Mb+GslUUsymAyYGaTm6FVZryBJZudWSZSSCTQbU8v4cn5iqLMb5cWwOXgeA= -----END CERTIFICATE-----Generated at Wed Jul 23 12:14:14 2025 by rpki-client