$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa File: 1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa (raw, json) Hash identifier: 2Bng/mw3nYsbQh3xzJ/3qLH3y0ifG/MAkh7ulj8fbrw= Subject key identifier: F8:54:08:B5:E7:15:E1:82:13:A7:9F:55:AF:F1:AA:EA:3C:84:90:0A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1DBEAC4B496578D694AE2F75FC15B0E2E34BCE0D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa Signing time: Sat 31 May 2025 00:00:58 +0000 ROA not before: Sat 31 May 2025 00:00:58 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:be:ac:4b:49:65:78:d6:94:ae:2f:75:fc:15:b0:e2:e3:4b:ce:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:00:58 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=e5cf0aad4633c89b5d027d74c0a34481e11d386110b65fc5af92b83fb9806160, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d4:3c:2c:d0:e0:4c:67:45:fa:81:b4:64:ba: 97:74:c5:29:85:4c:3a:99:44:4c:67:ab:e3:15:15: 60:6d:be:19:93:9e:9e:32:5e:ad:db:fc:77:1c:5f: 69:94:03:5a:2f:63:47:51:45:89:f8:6f:c9:ce:61: f0:32:22:bb:ba:a1:eb:c6:dc:fe:91:e3:7b:09:40: 8d:20:00:cc:45:ee:f5:35:e7:74:23:68:d9:98:bb: 59:9b:38:ba:03:ef:5d:49:77:13:75:d0:00:68:8f: 0b:8b:41:d2:2b:b1:e0:5a:2a:37:3a:83:37:13:fd: 16:b4:9e:89:10:1d:36:ac:13:13:6d:8c:64:bd:f8: 51:7f:74:ed:94:6d:40:80:ed:10:c7:bb:02:c6:16: d8:c3:42:3c:27:e9:a5:07:ef:5e:2d:0d:03:e9:a5: d6:4c:4e:2c:f5:4a:4e:2c:f3:b3:9a:b1:db:ab:24: 9d:be:e6:b7:9d:b3:fe:a4:d3:04:e0:75:c9:95:74: 79:48:3d:59:91:61:9a:46:6d:27:23:fe:a8:75:0f: 97:26:9d:18:35:ba:e6:1b:15:ac:a6:b5:ab:ca:0c: 9c:7e:ee:09:fb:72:6b:8d:39:ff:3a:ca:36:a8:d6: 7a:dc:b5:01:7e:75:45:a4:16:54:40:2a:fb:3e:df: 1a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:54:08:B5:E7:15:E1:82:13:A7:9F:55:AF:F1:AA:EA:3C:84:90:0A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.208.0/20 Signature Algorithm: sha256WithRSAEncryption 1e:45:9f:95:29:5b:e6:34:bb:b7:ce:4f:37:4c:03:6d:75:7e: 69:ac:c3:16:63:1a:55:dd:a8:44:88:d4:06:a2:31:f6:ff:f9: 19:bd:5f:3e:72:d8:a8:8c:00:d0:69:40:d6:70:b3:72:ec:63: c3:f8:0a:0d:cf:cf:0c:6b:48:84:7d:13:31:5a:31:9f:2a:98: 14:7d:e2:3a:95:13:70:ff:28:44:51:2f:f9:c4:75:e8:6e:c4: 43:55:8c:e3:c4:f8:49:fe:78:8f:73:74:7e:61:94:ea:02:d7: fa:1c:80:8f:fe:10:2f:ee:56:84:25:ba:79:e9:99:9d:45:71: ad:c9:0a:c1:33:b6:80:5f:3f:21:31:da:30:4a:40:09:75:29: 19:9c:17:84:e3:65:59:e6:e6:d1:1c:32:87:e2:24:85:3d:a8: 59:bf:9b:e3:9f:9d:72:98:29:4d:c2:65:34:75:69:ff:3d:2c: 3a:e9:d7:fa:6b:64:55:1a:0b:5d:11:49:b7:b9:07:96:62:be: 2c:35:88:cb:a6:21:30:47:79:3d:a8:ac:65:73:03:d9:9d:c0: 3f:36:9e:8e:b7:19:84:74:fa:df:1f:f6:2d:3f:03:63:5d:9f: 9b:4c:3d:cc:97:49:26:8d:98:32:3c:56:b6:dc:e4:b3:0a:34: 84:d5:2a:fb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHb6sS0lleNaUri91/BWw4uNLzg0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMDU4WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWNmMGFhZDQ2MzNjODliNWQwMjdkNzRjMGEzNDQ4MWUx MWQzODYxMTBiNjVmYzVhZjkyYjgzZmI5ODA2MTYwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm1Dws0OBMZ0X6gbRkupd0xSmFTDqZRExnq+MVFWBtvhmT np4yXq3b/HccX2mUA1ovY0dRRYn4b8nOYfAyIru6oevG3P6R43sJQI0gAMxF7vU1 53QjaNmYu1mbOLoD711JdxN10ABojwuLQdIrseBaKjc6gzcT/Ra0nokQHTasExNt jGS9+FF/dO2UbUCA7RDHuwLGFtjDQjwn6aUH714tDQPppdZMTiz1Sk4s87Oasdur JJ2+5reds/6k0wTgdcmVdHlIPVmRYZpGbScj/qh1D5cmnRg1uuYbFaymtavKDJx+ 7gn7cmuNOf86yjao1nrctQF+dUWkFlRAKvs+3xo/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+FQItecV4YITp59Vr/Gq6jyEkAowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzFjOTU5ZTY2LWY5NjctNDNkNi05M2JkLWNiZGNmMTYwY2JiNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQX+dAwDQYJKoZIhvcNAQELBQADggEBAB5Fn5UpW+Y0u7fOTzdMA211fmms wxZjGlXdqESI1AaiMfb/+Rm9Xz5y2KiMANBpQNZws3LsY8P4Cg3PzwxrSIR9EzFa MZ8qmBR94jqVE3D/KERRL/nEdehuxENVjOPE+En+eI9zdH5hlOoC1/ocgI/+EC/u VoQlunnpmZ1Fca3JCsEztoBfPyEx2jBKQAl1KRmcF4TjZVnm5tEcMofiJIU9qFm/ m+OfnXKYKU3CZTR1af89LDrp1/prZFUaC10RSbe5B5Ziviw1iMumITBHeT2orGVz A9mdwD82no63GYR0+t8f9i0/A2Ndn5tMPcyXSSaNmDI8Vrbc5LMKNITVKvs= -----END CERTIFICATE-----Generated at Wed Jun 4 10:24:08 2025 by rpki-client