$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5dab641b-24fb-48f2-8b71-57a07d630894.roa File: 5dab641b-24fb-48f2-8b71-57a07d630894.roa (raw, json) Hash identifier: FpL5ZECPqzUQgKHWmf1eXU/wFRZlSV0E/JzFdTAqKv4= Subject key identifier: AF:54:04:0F:F7:59:6F:EA:21:D2:FC:0B:28:B6:5B:30:7C:89:A4:91 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7C7A90D60497E9B4E720137C83231C068CB8FA76 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5dab641b-24fb-48f2-8b71-57a07d630894.roa Signing time: Mon 21 Jul 2025 15:21:18 +0000 ROA not before: Mon 21 Jul 2025 15:21:18 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:7a:90:d6:04:97:e9:b4:e7:20:13:7c:83:23:1c:06:8c:b8:fa:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:21:18 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=da128b7ac2145aa8ee6ad704d93c401673c13c336af3d283bf2cac2e158d2d6b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:c9:4e:cb:b7:88:52:2d:b2:96:98:1d:dd:03: 09:0c:aa:e4:8c:45:8b:b3:71:92:d0:b2:d1:af:9e: 7d:40:ab:e8:1e:ed:af:93:0a:2d:0d:21:ec:75:3b: c1:ca:ad:1a:05:46:d5:0f:58:ef:1a:dc:1d:71:98: 6f:f7:0d:f9:d1:3f:8b:cc:22:e8:35:44:63:8d:e5: 84:c3:7b:d5:12:09:79:a0:7b:d6:23:63:63:60:6e: e4:84:d3:70:37:d8:a2:2e:80:1a:ae:32:c2:4a:ee: 9b:b4:d9:d2:2a:73:46:46:40:e3:18:fe:fb:69:d5: ed:11:67:39:9a:42:10:76:1d:4e:28:a4:27:06:c9: eb:d5:dd:4f:55:72:0d:e2:c8:67:66:3b:39:e1:69: e3:8f:68:d2:d9:46:bf:4d:1e:33:14:d5:5d:8f:e8: 5a:f8:ad:1c:32:e4:44:7a:6e:c4:c1:66:d3:8b:c0: 99:19:2c:5e:eb:77:0f:db:53:62:42:7a:cd:de:ab: 27:16:89:9c:44:ad:2a:78:47:3d:e5:c8:0a:71:cd: 5f:26:f3:c2:b5:c9:88:c4:51:d2:a6:c3:3f:19:a3: b7:e4:c2:ed:f4:6d:04:8e:ce:1d:3d:fd:ae:2c:0e: f3:46:02:a5:45:af:d6:29:26:ef:84:f7:0b:99:79: c5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:54:04:0F:F7:59:6F:EA:21:D2:FC:0B:28:B6:5B:30:7C:89:A4:91 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5dab641b-24fb-48f2-8b71-57a07d630894.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.252.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:90:73:ae:d9:f3:74:e8:94:3a:f4:bd:ac:5c:0f:7a:76:92: 68:5f:c2:4f:35:ca:5c:0e:71:3a:7f:02:d0:c2:01:8f:ef:5a: f7:24:a5:5b:31:12:85:13:d3:ac:0b:dc:c3:c9:91:46:8e:1c: 5c:6e:c0:dd:65:53:97:08:19:e5:a5:ca:84:df:df:fb:d3:7a: ee:85:ee:a0:ad:ad:c6:45:77:ab:61:7c:0a:13:ee:fb:c6:31: 3c:45:ef:8c:45:03:d5:8f:d5:12:d3:24:7e:6a:96:05:53:bd: 56:13:cb:9f:3c:53:4e:3f:ce:31:f9:fc:93:de:d8:58:84:4b: 96:96:52:97:34:c9:80:52:26:b2:76:35:95:0a:10:4d:63:7e: ff:36:83:ef:20:3b:a7:b9:d9:09:ea:6c:36:92:0d:88:ea:c0: 0e:f7:43:bf:60:d2:bb:f7:55:77:b4:f1:94:72:e4:de:be:3f: ad:01:ff:cb:85:4b:6a:04:43:d4:c7:4f:13:7d:af:82:9a:ac: 34:f7:18:27:ad:48:4e:e3:29:6b:0e:2f:19:47:6c:df:ae:5a: 1f:fc:80:97:b3:23:ea:30:69:24:73:3b:f8:04:f7:cb:5c:08: f9:63:20:03:b4:5f:66:9c:8d:a8:93:84:96:bb:15:21:9a:6b: ef:21:58:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfHqQ1gSX6bTnIBN8gyMcBoy4+nYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMTE4WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTEyOGI3YWMyMTQ1YWE4ZWU2YWQ3MDRkOTNjNDAxNjcz YzEzYzMzNmFmM2QyODNiZjJjYWMyZTE1OGQyZDZiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJyU7Lt4hSLbKWmB3dAwkMquSMRYuzcZLQstGvnn1Aq+ge 7a+TCi0NIex1O8HKrRoFRtUPWO8a3B1xmG/3DfnRP4vMIug1RGON5YTDe9USCXmg e9YjY2NgbuSE03A32KIugBquMsJK7pu02dIqc0ZGQOMY/vtp1e0RZzmaQhB2HU4o pCcGyevV3U9Vcg3iyGdmOznhaeOPaNLZRr9NHjMU1V2P6Fr4rRwy5ER6bsTBZtOL wJkZLF7rdw/bU2JCes3eqycWiZxErSp4Rz3lyApxzV8m88K1yYjEUdKmwz8Zo7fk wu30bQSOzh09/a4sDvNGAqVFr9YpJu+E9wuZecULAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUr1QED/dZb+oh0vwLKLZbMHyJpJEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkYWI2NDFiLTI0ZmItNDhmMi04YjcxLTU3YTA3ZDYzMDg5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX+/wwDQYJKoZIhvcNAQELBQADggEBAE+Qc67Z83TolDr0vaxcD3p2kmhf wk81ylwOcTp/AtDCAY/vWvckpVsxEoUT06wL3MPJkUaOHFxuwN1lU5cIGeWlyoTf 3/vTeu6F7qCtrcZFd6thfAoT7vvGMTxF74xFA9WP1RLTJH5qlgVTvVYTy588U04/ zjH5/JPe2FiES5aWUpc0yYBSJrJ2NZUKEE1jfv82g+8gO6e52QnqbDaSDYjqwA73 Q79g0rv3VXe08ZRy5N6+P60B/8uFS2oEQ9THTxN9r4KarDT3GCetSE7jKWsOLxlH bN+uWh/8gJezI+owaSRzO/gE98tcCPljIAO0X2acjaiThJa7FSGaa+8hWHs= -----END CERTIFICATE-----Generated at Tue Jul 22 11:51:14 2025 by rpki-client