$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa File: b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa (raw, json) Hash identifier: NrrLRckYUFrQIHb3pGYHOlLE5gKor65Km5Dg/lzgrO4= Subject key identifier: 25:10:C1:AB:57:73:B0:89:50:2E:43:50:E4:4A:EB:DF:67:08:FD:93 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5D3B62994DE1ACF8CE1ADDF24ADD2A7EFE6A3431 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa Signing time: Mon 21 Jul 2025 15:21:16 +0000 ROA not before: Mon 21 Jul 2025 15:21:16 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.251.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:3b:62:99:4d:e1:ac:f8:ce:1a:dd:f2:4a:dd:2a:7e:fe:6a:34:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:21:16 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=e99ac36d907e1c2d00850d999703fd86053f234d92ee371a889bbe5c2c425b2a, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:27:12:cd:ef:a9:d1:99:50:59:76:5c:e1:d2: cb:fe:fc:40:a0:53:8e:41:f6:50:c2:0b:ce:5a:a1: 15:a6:1d:2f:f9:1c:54:ac:51:c1:52:9f:af:21:bb: a3:30:4a:e4:63:a0:59:45:36:79:85:9c:75:ed:5d: ce:b0:48:84:07:f8:b8:74:91:65:ec:6d:48:9b:6d: f7:7b:d4:ab:4a:62:9a:80:19:79:4d:78:06:19:fc: 86:17:98:12:7b:26:fa:fd:0e:e2:99:4f:7e:ed:0e: e7:71:5a:45:dd:fa:64:e6:d1:25:ee:f0:c6:9b:fa: 05:c9:bb:70:c1:72:9e:6c:af:1b:d7:28:2f:c5:d3: 96:22:f1:fa:b9:bc:e0:d2:9b:aa:67:7e:58:a9:16: 3d:a4:62:e0:9e:da:cf:dc:8e:ce:58:1f:aa:15:a5: c1:a9:11:d7:20:b6:05:48:d6:ca:53:5f:b6:82:e9: 2b:e2:95:5e:88:bc:74:00:b1:88:76:ec:fe:46:4d: 0e:75:d9:33:ee:07:e1:a9:81:4b:f7:3b:5e:52:3d: cb:e0:73:fe:a1:50:55:18:a5:17:ab:09:f1:33:67: bd:b5:f9:17:ef:ec:15:ec:7e:9e:ff:cb:bc:55:1a: a4:db:4a:f1:c5:c2:7e:ed:06:0a:f4:53:3e:85:98: 74:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:10:C1:AB:57:73:B0:89:50:2E:43:50:E4:4A:EB:DF:67:08:FD:93 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.228.0/22 Signature Algorithm: sha256WithRSAEncryption 13:1c:1f:4e:f1:a5:a5:e9:ca:fb:b5:51:c3:82:75:6e:ec:71: ae:4e:c2:1e:1d:25:34:11:09:52:3e:93:9c:e6:8b:1b:c1:40: bb:40:d6:83:3f:4e:fd:62:e0:b7:13:08:a4:af:e2:ba:91:6b: ef:69:5f:8d:87:38:61:d4:3b:91:04:79:4a:03:34:a7:d9:fe: 36:b9:e3:f7:ff:56:93:12:62:cb:76:28:1e:3b:3b:5b:81:b2: 2c:2b:0e:38:f2:cd:c6:e2:fe:ab:c0:91:14:b8:89:93:16:f7: 7a:eb:d8:73:87:75:06:78:72:30:c0:e6:69:5e:ec:32:49:53: a5:fb:69:5f:60:26:5f:ab:db:72:e2:29:21:ae:91:07:e9:5e: c2:e1:7b:dc:cc:29:7f:52:5e:17:18:a1:4a:7d:ec:3d:e7:1a: d2:74:fb:18:2c:47:98:0b:a0:75:09:ef:f0:ee:8d:2a:82:87: 09:da:2d:57:d8:76:11:10:12:7c:c4:65:39:e6:3f:e2:b1:4a: db:50:5e:d3:7a:01:48:3f:71:be:10:71:3a:85:f0:d0:60:da: 35:f6:b4:83:4d:24:fd:41:bc:14:72:25:f4:34:cd:2c:ab:de: 81:1f:c0:42:66:6c:f6:98:2d:5e:2d:43:ec:4f:f9:00:54:9c: 60:4b:cc:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXTtimU3hrPjOGt3ySt0qfv5qNDEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMTE2WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTlhYzM2ZDkwN2UxYzJkMDA4NTBkOTk5NzAzZmQ4NjA1 M2YyMzRkOTJlZTM3MWE4ODliYmU1YzJjNDI1YjJhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3JxLN76nRmVBZdlzh0sv+/ECgU45B9lDCC85aoRWmHS/5 HFSsUcFSn68hu6MwSuRjoFlFNnmFnHXtXc6wSIQH+Lh0kWXsbUibbfd71KtKYpqA GXlNeAYZ/IYXmBJ7Jvr9DuKZT37tDudxWkXd+mTm0SXu8Mab+gXJu3DBcp5srxvX KC/F05Yi8fq5vODSm6pnflipFj2kYuCe2s/cjs5YH6oVpcGpEdcgtgVI1spTX7aC 6SvilV6IvHQAsYh27P5GTQ512TPuB+GpgUv3O15SPcvgc/6hUFUYpRerCfEzZ721 +Rfv7BXsfp7/y7xVGqTbSvHFwn7tBgr0Uz6FmHRFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJRDBq1dzsIlQLkNQ5Err32cI/ZMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2ZWU5M2Q4LWQ3YTctNDFhZC04ZGUxLTkwYTA1NWJjMTk3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX++QwDQYJKoZIhvcNAQELBQADggEBABMcH07xpaXpyvu1UcOCdW7sca5O wh4dJTQRCVI+k5zmixvBQLtA1oM/Tv1i4LcTCKSv4rqRa+9pX42HOGHUO5EEeUoD NKfZ/ja54/f/VpMSYst2KB47O1uBsiwrDjjyzcbi/qvAkRS4iZMW93rr2HOHdQZ4 cjDA5mle7DJJU6X7aV9gJl+r23LiKSGukQfpXsLhe9zMKX9SXhcYoUp97D3nGtJ0 +xgsR5gLoHUJ7/DujSqChwnaLVfYdhEQEnzEZTnmP+KxSttQXtN6AUg/cb4QcTqF 8NBg2jX2tINNJP1BvBRyJfQ0zSyr3oEfwEJmbPaYLV4tQ+xP+QBUnGBLzLw= -----END CERTIFICATE-----Generated at Tue Jul 22 11:48:50 2025 by rpki-client