$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa File: 5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa (raw, json) Hash identifier: 9DGnsF6KDxHR+16hweX4XIElL32LmbPLPD2P6dU+MTM= Subject key identifier: 81:2C:6D:6E:94:81:9F:C1:22:92:98:40:4E:60:E2:47:E7:5E:31:34 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 50743E391637179FE9C167CDDD7BC6B7C5708B4E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa Signing time: Fri 15 Aug 2025 00:20:49 +0000 ROA not before: Fri 15 Aug 2025 00:20:49 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:74:3e:39:16:37:17:9f:e9:c1:67:cd:dd:7b:c6:b7:c5:70:8b:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:20:49 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=f44130c0afd50d2ad87d6e097510ea5deb6d9b04dbca542bf4b00fba611ebe2e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f9:e6:83:31:49:33:f4:03:0b:5d:29:ec:5c: b9:c4:d9:b2:1a:e2:46:e4:ae:71:34:bf:20:d9:ca: 08:4b:78:70:ac:5d:83:50:f5:f1:55:91:fe:7f:4d: ad:e8:94:eb:36:d1:22:ea:e8:3b:fd:82:4a:f0:0e: 9f:3f:34:41:7c:ff:9a:d6:4b:e0:f7:a4:87:49:2a: e0:23:26:ea:d9:2f:bc:5e:40:62:57:40:c2:44:96: 23:42:c7:6d:14:58:8b:2e:87:f2:74:24:75:07:bd: 2c:20:36:c8:c8:d5:71:ac:c0:5b:79:8b:76:35:dc: 8e:2a:89:0c:3a:51:fe:43:c5:db:76:78:a2:78:78: 7c:9d:47:24:79:3b:24:af:6e:4f:63:4a:83:99:a4: 2b:54:00:a6:6b:f6:26:89:d3:49:a5:46:30:d0:8d: 04:b4:e1:20:fa:ff:0a:d5:a4:95:1d:6d:56:20:82: db:fc:2c:4f:c6:7a:32:88:fd:74:ff:55:8f:95:c7: f0:42:d0:29:75:74:cd:69:74:eb:49:2e:26:e2:76: 43:ab:78:5d:5b:94:f1:85:23:1c:59:7e:46:3e:d0: 17:3c:cd:4c:4a:c3:e4:80:e7:60:8e:03:29:57:c2: 29:11:53:41:65:ec:05:dc:c7:c1:1c:71:fc:60:a7: 55:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2C:6D:6E:94:81:9F:C1:22:92:98:40:4E:60:E2:47:E7:5E:31:34 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.233.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:30:fe:6e:ea:1c:43:e5:0b:d0:c0:58:d6:42:c0:eb:d4:2e: da:85:7c:00:65:08:38:39:b4:f7:ee:09:d8:a4:3d:f3:fc:c2: e6:a6:bd:8b:2c:0e:6e:fb:52:80:c1:93:0e:a7:c7:7e:8d:95: 03:c4:a3:68:83:2b:55:a6:b3:67:30:5d:91:bf:49:59:f2:c7: 6b:6b:11:36:0a:a2:a9:ce:e8:e0:06:1d:6b:f4:30:a0:ce:3a: f3:02:83:06:a9:65:2f:27:25:94:e3:4e:a3:35:3e:1b:f2:76: 14:04:c6:6f:a1:16:c9:b4:73:c6:51:ba:e5:07:89:4e:47:f0: 0e:4f:76:ca:73:ef:08:cf:7b:f4:ca:62:a2:67:46:20:50:17: b2:29:f7:d7:2a:81:24:14:14:2c:15:e6:ee:0f:35:20:6c:cf: e7:7a:b2:f9:7f:fb:b6:2e:2a:c3:fc:2c:46:fa:ba:65:de:f2: 32:57:7a:70:5b:8b:c7:e4:8a:0c:6b:22:49:5f:0a:ac:d7:1e: 8a:13:df:99:ff:45:cb:30:c1:a7:7b:9f:19:ce:df:14:50:5e: 00:6c:bc:8f:b5:d8:cf:90:2d:5b:16:47:18:77:98:3a:fa:f8: d1:54:5c:c9:6f:2f:54:bc:ff:21:32:b8:10:83:91:14:e2:73: 46:6e:b5:e8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUHQ+ORY3F5/pwWfN3XvGt8Vwi04wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMDQ5WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDQxMzBjMGFmZDUwZDJhZDg3ZDZlMDk3NTEwZWE1ZGVi NmQ5YjA0ZGJjYTU0MmJmNGIwMGZiYTYxMWViZTJlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK+eaDMUkz9AMLXSnsXLnE2bIa4kbkrnE0vyDZyghLeHCs XYNQ9fFVkf5/Ta3olOs20SLq6Dv9gkrwDp8/NEF8/5rWS+D3pIdJKuAjJurZL7xe QGJXQMJEliNCx20UWIsuh/J0JHUHvSwgNsjI1XGswFt5i3Y13I4qiQw6Uf5Dxdt2 eKJ4eHydRyR5OySvbk9jSoOZpCtUAKZr9iaJ00mlRjDQjQS04SD6/wrVpJUdbVYg gtv8LE/GejKI/XT/VY+Vx/BC0Cl1dM1pdOtJLibidkOreF1blPGFIxxZfkY+0Bc8 zUxKw+SA52COAylXwikRU0Fl7AXcx8Eccfxgp1V/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgSxtbpSBn8EikphATmDiR+deMTQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkMzRmNzk3LTZkMTYtNDk4YS1iNjZkLThjN2QwZmNhYzc3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++kwDQYJKoZIhvcNAQELBQADggEBACww/m7qHEPlC9DAWNZCwOvULtqF fABlCDg5tPfuCdikPfP8wuamvYssDm77UoDBkw6nx36NlQPEo2iDK1Wms2cwXZG/ SVnyx2trETYKoqnO6OAGHWv0MKDOOvMCgwapZS8nJZTjTqM1PhvydhQExm+hFsm0 c8ZRuuUHiU5H8A5Pdspz7wjPe/TKYqJnRiBQF7Ip99cqgSQUFCwV5u4PNSBsz+d6 svl/+7YuKsP8LEb6umXe8jJXenBbi8fkigxrIklfCqzXHooT35n/Rcswwad7nxnO 3xRQXgBsvI+12M+QLVsWRxh3mDr6+NFUXMlvL1S8/yEyuBCDkRTic0Zuteg= -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:12 2025 by rpki-client