$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa File: 5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa (raw, json) Hash identifier: 4hf9YUC1yBYZG8ZPzDRhUCDHe2rAdFrmBWNHkDdyEws= Subject key identifier: 42:2A:51:C7:C6:9E:7C:83:9A:51:89:FD:7A:2C:C7:79:F5:A8:99:26 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 53DC8CF505FB63A3C8AA224A7C578CA3249CD854 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa Signing time: Tue 09 Sep 2025 00:21:08 +0000 ROA not before: Tue 09 Sep 2025 00:21:08 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:dc:8c:f5:05:fb:63:a3:c8:aa:22:4a:7c:57:8c:a3:24:9c:d8:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:21:08 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=2c5f1b96f8798682610513a775d3b8884d2f283eee26f294095ead49584e3a87, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7c:3b:73:cf:32:4d:3f:f1:c8:89:ed:00:0b: 35:6e:03:c7:7a:98:eb:2a:7c:21:4e:43:a9:ef:50: 82:6a:e3:95:b7:6d:11:dc:a1:85:1f:d0:a1:c1:19: d2:8e:76:55:72:cc:96:f4:82:45:24:9a:20:a6:0e: bf:f3:11:f0:67:ac:f1:92:73:d8:b8:5d:14:01:10: 71:18:d2:05:d0:0f:18:6d:09:27:f9:77:5b:41:bc: 57:d2:28:8b:61:f9:51:d4:7f:41:04:e3:40:60:8e: ec:fc:9c:09:d4:0a:c5:c4:af:8c:a7:1f:3d:db:fe: 05:eb:f1:e2:2b:4b:e6:e9:40:3c:a5:99:30:f6:e9: 0c:be:11:72:48:92:0f:fb:64:20:cc:65:67:6e:3e: e9:58:9a:98:5a:94:1f:2f:99:0d:18:42:51:83:0e: bd:1e:67:53:3d:6f:02:49:bc:f7:5c:4b:bd:2a:10: c0:7e:af:f9:d8:66:0e:0e:bd:f1:dc:ac:51:5a:47: 36:d0:95:9f:88:9d:db:a5:7d:55:e2:e0:06:e8:e0: ae:6e:86:69:31:10:3e:c7:f7:80:a9:54:06:4d:32: b4:c1:b1:e5:b5:58:70:95:97:d2:69:47:92:95:01: 41:99:8b:68:e5:4c:cf:95:b3:19:23:df:4e:41:a3: a9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:2A:51:C7:C6:9E:7C:83:9A:51:89:FD:7A:2C:C7:79:F5:A8:99:26 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.233.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:bc:3b:5c:d8:99:8a:85:25:f8:da:42:58:a3:19:58:9f:c5: 5b:b7:eb:53:76:2c:c7:60:7d:cb:30:50:2b:02:02:f1:ff:fc: 47:3a:1e:8f:71:08:13:59:6b:3e:5a:22:9d:a4:60:15:67:98: 26:08:1c:cb:c4:bb:cf:ad:8b:ce:c7:3e:d7:0b:7b:16:d8:ac: 31:71:ff:5d:7b:31:38:e3:66:11:11:10:f7:96:c4:a4:23:c9: 3b:e3:a7:c4:bc:d8:bd:63:52:99:95:6f:4f:05:87:ad:69:f4: 1e:7a:4c:b0:b3:19:4f:e0:3f:78:27:e1:e6:26:76:75:9f:13: 62:d3:3c:d1:09:91:d8:7f:a3:26:bc:12:17:36:9b:d1:9f:75: e4:bb:ed:ed:bc:cc:52:34:cc:f1:c8:14:ae:02:b9:ef:f6:8d: 1d:4a:75:ca:76:ed:6b:5f:b5:e9:a3:de:08:91:78:13:4d:08: d6:20:fb:26:d4:d4:8d:58:44:bc:ba:d4:95:43:21:33:5e:95: 94:a1:85:f3:24:08:e9:62:1b:14:60:5c:c7:3c:d7:b4:0d:4e: 4e:f8:b9:73:d1:5e:53:95:f3:15:d3:4e:69:44:16:4e:4e:43: c0:4a:60:24:7a:45:1f:9b:89:bf:01:ae:e1:dd:1f:f4:06:91: a4:4c:17:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU9yM9QX7Y6PIqiJKfFeMoySc2FQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwOTA5MDAyMTA4WhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzVmMWI5NmY4Nzk4NjgyNjEwNTEzYTc3NWQzYjg4ODRk MmYyODNlZWUyNmYyOTQwOTVlYWQ0OTU4NGUzYTg3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkfDtzzzJNP/HIie0ACzVuA8d6mOsqfCFOQ6nvUIJq45W3 bRHcoYUf0KHBGdKOdlVyzJb0gkUkmiCmDr/zEfBnrPGSc9i4XRQBEHEY0gXQDxht CSf5d1tBvFfSKIth+VHUf0EE40Bgjuz8nAnUCsXEr4ynHz3b/gXr8eIrS+bpQDyl mTD26Qy+EXJIkg/7ZCDMZWduPulYmphalB8vmQ0YQlGDDr0eZ1M9bwJJvPdcS70q EMB+r/nYZg4OvfHcrFFaRzbQlZ+IndulfVXi4Abo4K5uhmkxED7H94CpVAZNMrTB seW1WHCVl9JpR5KVAUGZi2jlTM+Vsxkj305Bo6n7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQipRx8aefIOaUYn9eizHefWomSYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkMzRmNzk3LTZkMTYtNDk4YS1iNjZkLThjN2QwZmNhYzc3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++kwDQYJKoZIhvcNAQELBQADggEBAHq8O1zYmYqFJfjaQlijGVifxVu3 61N2LMdgfcswUCsCAvH//Ec6Ho9xCBNZaz5aIp2kYBVnmCYIHMvEu8+ti87HPtcL exbYrDFx/117MTjjZhEREPeWxKQjyTvjp8S82L1jUpmVb08Fh61p9B56TLCzGU/g P3gn4eYmdnWfE2LTPNEJkdh/oya8Ehc2m9GfdeS77e28zFI0zPHIFK4Cue/2jR1K dcp27Wtftemj3giReBNNCNYg+ybU1I1YRLy61JVDITNelZShhfMkCOliGxRgXMc8 17QNTk74uXPRXlOV8xXTTmlEFk5OQ8BKYCR6RR+bib8BruHdH/QGkaRMF6s= -----END CERTIFICATE-----Generated at Fri Sep 19 13:04:18 2025 by rpki-client