$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa File: b09c0df5-29e8-430d-b994-fadbc1050235.roa (raw, json) Hash identifier: zK6wn0VhNm73thEyyt0dem7nLlXy/wzSHBmfg3Pdby8= Subject key identifier: 02:1A:64:ED:8A:68:A3:F4:D5:69:D9:EE:0B:C1:E4:2D:76:BA:E6:E8 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 507E037AEE8DD0FFC60844E23A80C53F9E4E4DC5 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa Signing time: Mon 21 Jul 2025 15:20:47 +0000 ROA not before: Mon 21 Jul 2025 15:20:47 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:7e:03:7a:ee:8d:d0:ff:c6:08:44:e2:3a:80:c5:3f:9e:4e:4d:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:20:47 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=3ae6c752d0cae4c9ec7e6f01eb7631876bbaeb6721ee0fd6e67f15227c45f22d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:6e:88:0e:37:74:1c:79:2d:c2:6a:e7:9b:90: 18:63:8e:53:ab:9b:cf:99:31:96:e0:d7:30:d6:06: c9:b0:15:c4:2f:8f:f9:7a:c6:d1:d6:79:a9:66:4c: 05:70:35:d7:0a:9c:17:03:64:4b:a0:f4:da:b2:32: e5:bc:81:26:2b:66:30:f2:25:f2:0b:52:7a:46:5f: fd:ee:28:45:e2:2e:d3:6a:36:e5:0c:57:c9:cf:64: 83:55:e4:d5:85:ca:50:56:cd:a2:a3:50:d5:83:aa: 04:bb:a7:fb:9a:e0:66:d4:93:5d:aa:91:73:5e:d9: 26:41:39:9e:f6:2e:26:61:df:fe:a4:8b:90:2c:95: 44:03:7a:22:92:57:05:b3:bd:3d:8b:78:30:56:52: aa:54:06:ac:03:20:17:dd:ce:fd:09:a0:36:e9:c7: a6:df:b4:b2:f6:1b:07:fa:cb:52:18:a7:e8:48:2f: c3:0d:41:12:4e:1a:6c:40:6c:fa:55:05:0a:a2:14: 87:5d:3c:b8:0d:5e:ee:94:b7:bc:4f:67:72:4e:7b: ea:3d:b6:f2:9e:6f:29:5b:fc:4d:6c:8b:ad:29:28: da:3b:1e:d5:5f:70:02:6b:ac:34:b0:f3:ed:de:8f: 2d:4f:b6:25:20:b1:ec:92:fd:40:54:91:8f:a3:a1: d9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:1A:64:ED:8A:68:A3:F4:D5:69:D9:EE:0B:C1:E4:2D:76:BA:E6:E8 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.214.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:f3:13:72:21:1d:2c:bc:6e:da:cd:98:f7:ad:c9:fa:6b:b0: 0f:e2:e2:27:03:7c:ee:6b:00:cf:80:1c:e5:2c:b2:c4:62:84: 8c:de:6b:70:3d:7c:5c:17:8a:d9:cc:a0:48:29:bd:ac:ea:f2: b2:86:e6:6d:44:11:77:5b:fd:aa:b9:d9:33:3c:90:64:7d:7c: 99:97:bd:e2:be:1e:a1:cd:9a:21:4c:27:ae:5c:c8:15:ee:b1: 9b:65:e1:1a:70:74:80:45:0f:74:e0:0f:ee:b6:70:e8:a0:eb: 72:ed:bc:24:68:ad:8d:dd:cf:a7:b5:6f:fa:71:8d:8e:e7:f7: b6:dd:ba:af:29:bc:e1:4d:e1:e6:0a:36:db:3b:cd:ca:4e:c3: 16:f9:8f:30:0a:8c:e8:9c:d7:2c:8f:be:99:ee:d1:79:f4:69: ae:94:bc:15:fc:9b:fd:ab:78:9a:9f:51:0c:6d:a9:af:60:b8: 09:e8:0c:71:2f:0d:c9:85:2f:7e:63:26:49:a8:98:2f:92:9b: 28:73:a1:40:04:2c:d6:d3:ec:4f:f6:10:0f:1d:12:4b:1f:10: a5:20:78:e7:90:be:ac:ae:c0:b4:84:3d:84:33:89:ef:87:29: 90:bd:8d:1e:a7:69:da:55:63:ed:1a:8c:0d:a3:f7:82:f7:2c: 35:8f:47:1a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUH4Deu6N0P/GCETiOoDFP55OTcUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMDQ3WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYWU2Yzc1MmQwY2FlNGM5ZWM3ZTZmMDFlYjc2MzE4NzZi YmFlYjY3MjFlZTBmZDZlNjdmMTUyMjdjNDVmMjJkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsbogON3QceS3CauebkBhjjlOrm8+ZMZbg1zDWBsmwFcQv j/l6xtHWealmTAVwNdcKnBcDZEug9NqyMuW8gSYrZjDyJfILUnpGX/3uKEXiLtNq NuUMV8nPZINV5NWFylBWzaKjUNWDqgS7p/ua4GbUk12qkXNe2SZBOZ72LiZh3/6k i5AslUQDeiKSVwWzvT2LeDBWUqpUBqwDIBfdzv0JoDbpx6bftLL2Gwf6y1IYp+hI L8MNQRJOGmxAbPpVBQqiFIddPLgNXu6Ut7xPZ3JOe+o9tvKebylb/E1si60pKNo7 HtVfcAJrrDSw8+3ejy1PtiUgseyS/UBUkY+jodmDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAhpk7Ypoo/TVadnuC8HkLXa65ugwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2IwOWMwZGY1LTI5ZTgtNDMwZC1iOTk0LWZhZGJjMTA1MDIzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dYwDQYJKoZIhvcNAQELBQADggEBAE7zE3IhHSy8btrNmPetyfprsA/i 4icDfO5rAM+AHOUsssRihIzea3A9fFwXitnMoEgpvazq8rKG5m1EEXdb/aq52TM8 kGR9fJmXveK+HqHNmiFMJ65cyBXusZtl4RpwdIBFD3TgD+62cOig63LtvCRorY3d z6e1b/pxjY7n97bduq8pvOFN4eYKNts7zcpOwxb5jzAKjOic1yyPvpnu0Xn0aa6U vBX8m/2reJqfUQxtqa9guAnoDHEvDcmFL35jJkmomC+SmyhzoUAELNbT7E/2EA8d EksfEKUgeOeQvqyuwLSEPYQzie+HKZC9jR6nadpVY+0ajA2j94L3LDWPRxo= -----END CERTIFICATE-----Generated at Tue Jul 22 11:55:50 2025 by rpki-client