$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa File: 1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa (raw, json) Hash identifier: ZW8bHjhoT+nzFw/DKhjRgUcdUAXhnQ6t+dfcduTWj+4= Subject key identifier: 3D:D1:9F:30:42:82:9D:B7:78:A2:0D:13:CC:ED:25:7E:CD:11:7C:3C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 323E3B0AB56AFC0E77CD48189946B0A0B54ED666 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa Signing time: Wed 27 Aug 2025 00:10:15 +0000 ROA not before: Wed 27 Aug 2025 00:10:15 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:3e:3b:0a:b5:6a:fc:0e:77:cd:48:18:99:46:b0:a0:b5:4e:d6:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 27 00:10:15 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=d478487922ae6b8485223627b4b3b27d265d35218a9e07304a848e1338feb0e7, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:67:34:a3:20:28:3e:5c:37:9b:72:de:90:39: 0e:c1:0a:d2:da:b0:ef:24:8c:54:d7:5e:70:c3:e9: e0:79:9a:24:91:5b:d5:5b:bb:7c:e2:4d:91:7f:d7: 14:da:38:56:9c:ff:49:b5:92:34:a1:e7:4f:54:2a: 23:ad:82:bf:70:7d:30:f6:09:d1:2a:c2:4f:a7:78: 1a:07:91:49:af:37:88:7d:1d:10:b3:5e:3f:b6:b2: 89:9b:5b:77:48:b5:22:71:4f:35:f9:1e:03:e0:36: e0:4d:ae:66:9c:0e:5c:37:54:06:7d:3b:01:1c:1d: 98:8e:49:53:35:b3:66:75:74:dd:da:f4:1b:cc:bf: cb:fe:04:ed:bc:78:31:1f:ad:9b:79:d1:a7:f0:a2: b8:4d:d8:11:6d:7d:53:48:70:ed:c3:d2:25:95:52: 5d:7b:c1:87:c8:6b:04:4f:e4:e5:4d:5c:54:a4:7f: ca:76:ed:36:c3:9f:04:0c:7d:59:3b:e9:6f:a9:22: 2a:7c:54:98:fc:2b:8f:30:c2:01:8b:e5:20:6c:85: c3:7d:c0:9b:df:f9:7c:55:83:5f:ba:68:87:6f:b8: 3d:32:30:d8:a7:45:bb:b4:9a:5f:fc:f3:76:a3:04: 7a:55:2b:61:09:b6:18:6b:1e:68:6f:fa:4b:49:a7: 13:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D1:9F:30:42:82:9D:B7:78:A2:0D:13:CC:ED:25:7E:CD:11:7C:3C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/1c959e66-f967-43d6-93bd-cbdcf160cbb5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.208.0/20 Signature Algorithm: sha256WithRSAEncryption 4b:b6:c5:4b:da:b1:b7:68:59:81:5a:0b:59:9c:fb:ec:b5:43: 43:d0:4d:82:65:cb:83:39:e6:36:70:fe:13:cc:53:93:df:7b: da:d6:b3:c9:da:5b:d1:75:e8:06:53:d6:e7:00:16:23:f9:e5: 6e:42:ed:fc:e3:13:35:38:ad:09:44:22:ef:7d:26:ad:72:38: 90:95:f5:fd:0d:9e:d6:1a:15:52:4e:ec:5b:b7:c2:7e:3e:22: 54:ab:01:78:83:16:51:b6:5b:dd:ab:bb:f7:5a:e1:c8:f4:db: be:46:e7:db:24:90:69:13:2a:00:ad:c2:10:ff:66:d2:ac:78: 9c:f7:73:fa:3d:a4:1b:9d:e8:dd:ef:07:7f:c4:f0:b9:af:ba: 64:f7:39:96:da:53:76:4c:91:d4:27:76:c7:dd:de:d7:c0:ac: 4d:30:fe:36:eb:cf:34:4f:c6:86:08:54:56:ac:28:d7:fc:be: 68:7a:67:9a:5f:53:30:09:57:bb:97:ac:d5:4c:63:28:22:84: 9d:49:58:bf:89:a9:d9:ee:a9:a2:ae:8c:2f:52:e6:51:34:50: fb:28:c3:96:12:d2:a2:84:e7:b2:f7:26:5e:29:0e:38:47:30: 38:56:06:21:4f:d8:2f:b7:89:46:27:c6:5d:71:99:23:0b:31: c3:3f:fc:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMj47CrVq/A53zUgYmUawoLVO1mYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODI3MDAxMDE1WhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDc4NDg3OTIyYWU2Yjg0ODUyMjM2MjdiNGIzYjI3ZDI2 NWQzNTIxOGE5ZTA3MzA0YTg0OGUxMzM4ZmViMGU3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6ZzSjICg+XDebct6QOQ7BCtLasO8kjFTXXnDD6eB5miSR W9Vbu3ziTZF/1xTaOFac/0m1kjSh509UKiOtgr9wfTD2CdEqwk+neBoHkUmvN4h9 HRCzXj+2sombW3dItSJxTzX5HgPgNuBNrmacDlw3VAZ9OwEcHZiOSVM1s2Z1dN3a 9BvMv8v+BO28eDEfrZt50afworhN2BFtfVNIcO3D0iWVUl17wYfIawRP5OVNXFSk f8p27TbDnwQMfVk76W+pIip8VJj8K48wwgGL5SBshcN9wJvf+XxVg1+6aIdvuD0y MNinRbu0ml/883ajBHpVK2EJthhrHmhv+ktJpxNhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPdGfMEKCnbd4og0TzO0lfs0RfDwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzFjOTU5ZTY2LWY5NjctNDNkNi05M2JkLWNiZGNmMTYwY2JiNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQX+dAwDQYJKoZIhvcNAQELBQADggEBAEu2xUvasbdoWYFaC1mc++y1Q0PQ TYJly4M55jZw/hPMU5Pfe9rWs8naW9F16AZT1ucAFiP55W5C7fzjEzU4rQlEIu99 Jq1yOJCV9f0NntYaFVJO7Fu3wn4+IlSrAXiDFlG2W92ru/da4cj0275G59skkGkT KgCtwhD/ZtKseJz3c/o9pBud6N3vB3/E8LmvumT3OZbaU3ZMkdQndsfd3tfArE0w /jbrzzRPxoYIVFasKNf8vmh6Z5pfUzAJV7uXrNVMYygihJ1JWL+JqdnuqaKujC9S 5lE0UPsow5YS0qKE57L3Jl4pDjhHMDhWBiFP2C+3iUYnxl1xmSMLMcM//NI= -----END CERTIFICATE-----Generated at Sun Sep 7 16:14:10 2025 by rpki-client