$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: H9RPFXApma7HvOrutd67IPv+X/lEDMcRWDiSL3hNFC8= Subject key identifier: D8:38:C7:2A:8A:AC:34:BD:76:C7:0B:72:F8:99:E8:A4:37:57:DE:96 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1349AA2CFCB0BF93825D22EDF75F4C8A2B894D07 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Fri 30 May 2025 00:00:05 +0000 ROA not before: Fri 30 May 2025 00:00:05 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:49:aa:2c:fc:b0:bf:93:82:5d:22:ed:f7:5f:4c:8a:2b:89:4d:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 30 00:00:05 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=fa897e457a0adf951b399fb267816b725bc463ccc3db5aa065e845000a4e536e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1a:72:2f:68:a4:3c:64:36:4c:30:a3:46:d4: 07:7b:af:b8:61:19:d6:43:73:aa:98:65:b1:76:e7: 76:47:4e:0d:1a:24:36:92:19:0a:1e:7c:8f:f6:f5: 54:57:eb:fb:85:2e:a3:5a:fa:e1:fc:50:a2:dc:65: b6:5e:3b:53:40:ea:c3:14:f8:0c:e6:5b:a6:2b:21: 79:b4:33:b2:72:8c:d4:59:31:ce:8e:be:04:b9:f8: 07:dc:a9:e2:3c:d1:b2:41:84:78:41:8b:bd:ef:71: 2b:f8:2d:87:a8:05:6c:fb:19:30:19:54:3b:d8:a1: bb:ea:f7:05:95:54:07:96:9d:9b:32:9c:71:bb:a6: 75:48:00:60:c8:c0:81:61:27:be:3c:ca:e1:aa:49: 0c:41:5b:e3:8a:12:a0:31:c4:01:87:55:0a:a6:0a: 61:3c:bd:f8:26:d6:e5:3c:a7:38:68:f7:38:1d:92: 32:23:95:62:6d:7a:56:2b:30:2f:75:03:11:6c:7c: 1b:52:3a:6c:c2:7a:92:aa:bc:6e:e6:9f:0d:45:f4: d5:bf:0d:8f:86:4b:34:f1:ee:61:58:90:d3:29:35: e1:26:93:be:dd:66:c9:20:2e:77:5e:c6:f6:22:db: e7:a7:7e:ab:c0:3e:b0:7a:d2:fc:10:4f:22:52:67: 5a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:38:C7:2A:8A:AC:34:BD:76:C7:0B:72:F8:99:E8:A4:37:57:DE:96 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:7e:fa:9e:4a:22:40:e8:9c:c0:82:12:f3:90:92:42:27:b7: 2b:ff:25:30:d2:47:c7:dd:52:95:b5:6c:24:95:bd:d5:92:f8: 3e:f7:7c:fd:95:1a:5e:a3:60:c1:14:9d:82:7b:f1:b0:35:d5: e2:16:19:9b:aa:ac:1c:bb:23:48:cb:65:b7:a7:cd:b4:ff:11: 40:9a:b1:67:23:57:2e:10:17:c7:80:4a:bc:d9:b5:71:3b:97: ef:5e:eb:26:80:61:c0:75:2b:ca:7e:f4:f6:01:37:63:b7:14: 8f:09:8d:2d:36:ff:2f:e8:7b:86:00:6c:31:7e:a5:58:ce:93: 0f:64:14:b1:dc:86:5b:0f:5e:18:e0:7c:59:79:85:55:cd:35: e9:d9:61:56:bd:04:76:de:c7:a5:05:52:a3:cd:37:08:e7:94: 87:11:db:82:a4:2d:61:9f:41:82:93:f1:ac:1a:30:68:65:cf: e3:0e:91:ca:d3:40:b9:21:59:83:a7:09:90:5a:a3:6f:f7:4f: 2d:77:05:03:6f:d8:fd:14:58:50:94:64:f9:d6:59:4e:40:88: 17:33:e7:15:70:3f:12:82:fe:63:9a:2d:25:88:17:67:fe:71: 87:d9:df:ae:1d:46:77:1c:69:7c:91:c9:aa:ea:81:4a:fc:52: 83:0f:9d:e7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE0mqLPywv5OCXSLt919MiiuJTQcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMwMDAwMDA1WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTg5N2U0NTdhMGFkZjk1MWIzOTlmYjI2NzgxNmI3MjVi YzQ2M2NjYzNkYjVhYTA2NWU4NDUwMDBhNGU1MzZlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+GnIvaKQ8ZDZMMKNG1Ad7r7hhGdZDc6qYZbF253ZHTg0a JDaSGQoefI/29VRX6/uFLqNa+uH8UKLcZbZeO1NA6sMU+AzmW6YrIXm0M7JyjNRZ Mc6OvgS5+AfcqeI80bJBhHhBi73vcSv4LYeoBWz7GTAZVDvYobvq9wWVVAeWnZsy nHG7pnVIAGDIwIFhJ748yuGqSQxBW+OKEqAxxAGHVQqmCmE8vfgm1uU8pzho9zgd kjIjlWJtelYrMC91AxFsfBtSOmzCepKqvG7mnw1F9NW/DY+GSzTx7mFYkNMpNeEm k77dZskgLndexvYi2+enfqvAPrB60vwQTyJSZ1q3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2DjHKoqsNL12xwty+JnopDdX3pYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAGx++p5KIkDonMCCEvOQkkIntyv/ JTDSR8fdUpW1bCSVvdWS+D73fP2VGl6jYMEUnYJ78bA11eIWGZuqrBy7I0jLZben zbT/EUCasWcjVy4QF8eASrzZtXE7l+9e6yaAYcB1K8p+9PYBN2O3FI8JjS02/y/o e4YAbDF+pVjOkw9kFLHchlsPXhjgfFl5hVXNNenZYVa9BHbex6UFUqPNNwjnlIcR 24KkLWGfQYKT8awaMGhlz+MOkcrTQLkhWYOnCZBao2/3Ty13BQNv2P0UWFCUZPnW WU5AiBcz5xVwPxKC/mOaLSWIF2f+cYfZ364dRnccaXyRyarqgUr8UoMPnec= -----END CERTIFICATE-----Generated at Sun Jun 8 06:25:30 2025 by rpki-client