$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa File: 3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa (raw, json) Hash identifier: bkKeD9BM3FZ3VfKGMkmBbSofXQrogOIgy27U5Ooeg/o= Subject key identifier: 36:CF:19:21:66:64:1E:04:D3:D3:E7:5B:97:29:F5:99:2B:DE:76:54 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 311CC5759E7D7FA69A1F111382B15B1862B96180 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa Signing time: Sat 31 May 2025 00:00:10 +0000 ROA not before: Sat 31 May 2025 00:00:10 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:1c:c5:75:9e:7d:7f:a6:9a:1f:11:13:82:b1:5b:18:62:b9:61:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:00:10 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=964ea8cb9d823fe4f764f34a35adf4ba5568c1bf62df100d363180f65a0fecbc, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9c:d8:42:0d:e4:11:38:96:3c:c0:aa:88:36: a4:ea:14:52:cf:56:ad:79:d4:47:4b:c6:47:06:01: 86:c4:2f:77:cd:a8:2a:22:2d:93:ba:06:48:70:8d: b4:96:d0:63:cc:fd:bf:7a:3d:ae:4f:2e:f8:48:1b: 68:86:4b:6c:04:b2:df:58:4f:6a:c2:be:97:3a:fd: f2:3b:a3:d8:db:7f:3e:94:e6:2e:03:5b:ae:0c:fb: 41:c3:1e:23:63:8b:17:a9:4e:fc:4d:fc:8d:71:32: 6e:cb:db:dd:c9:1a:68:2f:2e:69:eb:c8:f5:93:df: 8a:dd:34:94:03:ec:07:46:56:c2:75:95:5b:d2:09: 0f:85:a6:de:21:e5:6d:bc:fc:11:e0:82:a0:78:1e: 4a:64:1e:51:b5:b8:4d:8d:a3:a6:bb:f8:97:ff:fd: fc:64:60:5e:2b:4e:8b:6e:b6:8d:e5:80:79:40:e7: 3a:20:ef:53:12:ea:81:40:4a:18:72:bf:e5:46:ff: ef:13:c5:96:72:20:5d:8e:d5:66:6f:41:f6:cf:ef: 02:a0:2a:50:11:26:85:ff:17:31:59:6d:f5:c3:2d: f0:28:3b:33:7f:54:78:8c:c1:ce:62:d6:4b:e2:97: 45:e9:03:20:c1:85:39:e1:77:d1:91:77:a6:73:74: 84:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:CF:19:21:66:64:1E:04:D3:D3:E7:5B:97:29:F5:99:2B:DE:76:54 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.224.0/24 Signature Algorithm: sha256WithRSAEncryption 93:1b:f8:0c:99:1e:36:95:c7:7f:0d:37:43:1d:1a:01:04:0a: 2d:f8:0d:8a:c1:4f:52:b5:67:99:78:0f:96:60:5d:a4:3c:16: f0:d6:37:f7:76:0e:b8:ec:a3:28:b5:b5:30:38:09:03:60:ca: 2d:9b:b5:17:ef:4d:37:c7:13:b1:3e:bc:44:b0:8b:1c:14:dd: c3:25:a3:d5:d7:90:3b:94:31:d5:9b:15:8f:59:b9:31:07:e8: dd:51:40:86:a3:a5:c8:54:20:4a:84:fc:ec:b4:8e:91:96:3f: 8e:c6:ec:8f:b0:ff:9d:78:46:7d:37:5e:4b:4f:21:ae:8f:58: 72:00:3d:7f:7a:82:88:97:6e:1e:97:32:97:38:74:f6:6d:4e: 82:78:ff:87:0c:c3:5a:3d:1b:bc:24:2d:3a:c2:2f:3c:33:0c: 77:1c:9a:50:d6:ea:94:f6:cc:eb:e6:90:e3:ae:0e:06:7d:4b: db:ee:aa:b5:13:1b:34:47:5d:eb:62:6e:5c:3f:7f:d5:29:3f: c2:05:b8:56:2e:21:25:7b:63:de:a4:d9:32:02:2b:65:67:a3: 68:b8:48:94:d6:21:8d:9f:8a:c1:f4:82:5c:8d:76:f9:36:59: fd:88:d2:a8:6a:ee:96:86:34:d9:bb:2b:ce:5a:1f:da:d3:39: 61:92:ea:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMRzFdZ59f6aaHxETgrFbGGK5YYAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMDEwWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjRlYThjYjlkODIzZmU0Zjc2NGYzNGEzNWFkZjRiYTU1 NjhjMWJmNjJkZjEwMGQzNjMxODBmNjVhMGZlY2JjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAnNhCDeQROJY8wKqINqTqFFLPVq151EdLxkcGAYbEL3fN qCoiLZO6BkhwjbSW0GPM/b96Pa5PLvhIG2iGS2wEst9YT2rCvpc6/fI7o9jbfz6U 5i4DW64M+0HDHiNjixepTvxN/I1xMm7L293JGmgvLmnryPWT34rdNJQD7AdGVsJ1 lVvSCQ+Fpt4h5W28/BHggqB4HkpkHlG1uE2No6a7+Jf//fxkYF4rTotuto3lgHlA 5zog71MS6oFAShhyv+VG/+8TxZZyIF2O1WZvQfbP7wKgKlARJoX/FzFZbfXDLfAo OzN/VHiMwc5i1kvil0XpAyDBhTnhd9GRd6ZzdIT1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNs8ZIWZkHgTT0+dblyn1mSvedlQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNhZDJhZTljLWQ1MDUtNGI1My04YTAzLWMwMDM0NjAyZDQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++AwDQYJKoZIhvcNAQELBQADggEBAJMb+AyZHjaVx38NN0MdGgEECi34 DYrBT1K1Z5l4D5ZgXaQ8FvDWN/d2Drjsoyi1tTA4CQNgyi2btRfvTTfHE7E+vESw ixwU3cMlo9XXkDuUMdWbFY9ZuTEH6N1RQIajpchUIEqE/Oy0jpGWP47G7I+w/514 Rn03XktPIa6PWHIAPX96goiXbh6XMpc4dPZtToJ4/4cMw1o9G7wkLTrCLzwzDHcc mlDW6pT2zOvmkOOuDgZ9S9vuqrUTGzRHXetiblw/f9UpP8IFuFYuISV7Y96k2TIC K2Vno2i4SJTWIY2fisH0glyNdvk2Wf2I0qhq7paGNNm7K85aH9rTOWGS6kg= -----END CERTIFICATE-----Generated at Fri Jun 6 04:31:26 2025 by rpki-client