$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/74dc84b0-0790-46ab-ab33-022f86c2512c.roa File: 74dc84b0-0790-46ab-ab33-022f86c2512c.roa (raw, json) Hash identifier: 6JVS5lDRbyWlHFxH9hn3s32qSzV7+R593GFHig19em4= Subject key identifier: B4:41:4B:32:4D:95:8F:90:35:63:96:CA:59:2E:25:A1:3C:40:0F:B6 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 54C464A90E0777BB757CC2A87E9DDE9AC573DB71 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/74dc84b0-0790-46ab-ab33-022f86c2512c.roa Signing time: Sat 31 May 2025 00:00:14 +0000 ROA not before: Sat 31 May 2025 00:00:14 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:c4:64:a9:0e:07:77:bb:75:7c:c2:a8:7e:9d:de:9a:c5:73:db:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:00:14 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=16824ac512abee1dd6d447002667f2ae412220234db7ba057c19ece9edcbdb55, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:87:be:ce:bf:16:16:90:23:5c:c6:c0:6d:d3: 1e:41:bb:87:50:3d:39:b9:53:1c:31:7f:81:3b:7f: dc:cb:8b:86:db:eb:4d:92:70:e2:bb:70:bc:5d:9f: f4:42:01:67:21:f6:ce:c4:62:8b:38:5f:60:1f:77: 94:6c:65:21:b3:4c:78:69:16:c9:6d:75:32:36:b6: 92:52:b4:cd:f4:83:04:dc:ec:b5:49:ad:60:72:3f: f3:fb:ef:0a:49:3a:c9:34:cb:0b:bd:31:1f:a4:89: 3c:ac:3d:bb:15:4a:ca:45:70:10:a5:6b:fa:ff:7f: 20:8b:94:62:db:8c:39:9e:d6:eb:1c:55:38:6e:45: ed:9f:0f:5e:ee:8a:1c:08:cf:84:74:2d:e1:68:b6: 59:ad:60:52:9b:2d:a6:cc:18:25:f4:10:4e:1a:64: 68:9d:f5:a8:6c:bc:fb:69:c5:09:bb:62:8e:1a:1a: 47:5c:c5:9c:a6:19:30:2a:fe:ef:05:d1:e0:09:1b: f2:42:20:55:02:83:d7:78:1b:58:1b:dd:b0:62:ae: 42:5b:ce:90:39:60:07:65:2f:1c:37:a4:3e:0a:ef: 8d:ad:af:13:cb:7f:22:16:48:5b:fb:51:66:1e:de: ff:12:e3:82:1e:cf:22:ec:a4:1e:13:b4:c0:e9:b2: 6a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:41:4B:32:4D:95:8F:90:35:63:96:CA:59:2E:25:A1:3C:40:0F:B6 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/74dc84b0-0790-46ab-ab33-022f86c2512c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.226.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:3f:09:28:2e:2f:53:d0:16:71:3b:40:b3:9c:40:01:a5:3a: 7c:df:c4:39:12:2b:7c:e5:2a:3a:71:93:35:51:4b:19:dc:e3: 53:83:62:ab:2d:db:bb:5c:05:5b:3b:25:d6:59:f7:3e:60:57: ef:37:9c:0d:03:cc:14:0e:3c:b6:d3:c2:d4:e3:17:3f:a9:e3: 4a:fc:39:21:a0:4e:56:2e:2c:64:60:6f:9e:d0:cf:86:28:9e: a2:42:38:c8:11:4b:54:00:c1:05:dd:36:78:90:5d:46:8e:be: eb:a8:47:12:ca:af:91:3a:62:37:39:11:88:8f:4a:0a:f4:18: b1:a9:8f:58:d2:db:1a:62:cb:0b:f2:47:c5:a9:86:cd:34:27: 1e:d5:56:1e:82:43:d1:db:14:bb:e0:45:aa:dc:01:dc:36:54: 15:76:26:4e:b6:01:18:86:32:b3:6f:59:e7:cb:3e:e2:93:fd: 72:9c:1d:e6:4c:77:73:f3:86:ca:74:49:31:c2:e0:1c:fd:b7: ab:7b:9b:34:86:d2:13:d8:29:fb:31:98:a8:1c:db:6e:2d:51: f1:86:c9:84:83:ee:ee:4c:9f:45:cd:26:18:c3:61:76:51:d5: 1f:72:d1:5d:dc:c4:df:10:46:0c:96:cd:f3:df:04:87:51:73: b5:cd:13:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVMRkqQ4Hd7t1fMKofp3emsVz23EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMDE0WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjgyNGFjNTEyYWJlZTFkZDZkNDQ3MDAyNjY3ZjJhZTQx MjIyMDIzNGRiN2JhMDU3YzE5ZWNlOWVkY2JkYjU1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYh77OvxYWkCNcxsBt0x5Bu4dQPTm5Uxwxf4E7f9zLi4bb 602ScOK7cLxdn/RCAWch9s7EYos4X2Afd5RsZSGzTHhpFsltdTI2tpJStM30gwTc 7LVJrWByP/P77wpJOsk0ywu9MR+kiTysPbsVSspFcBCla/r/fyCLlGLbjDme1usc VThuRe2fD17uihwIz4R0LeFotlmtYFKbLabMGCX0EE4aZGid9ahsvPtpxQm7Yo4a GkdcxZymGTAq/u8F0eAJG/JCIFUCg9d4G1gb3bBirkJbzpA5YAdlLxw3pD4K742t rxPLfyIWSFv7UWYe3v8S44IezyLspB4TtMDpsmprAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtEFLMk2Vj5A1Y5bKWS4loTxAD7YwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzc0ZGM4NGIwLTA3OTAtNDZhYi1hYjMzLTAyMmY4NmMyNTEyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++IwDQYJKoZIhvcNAQELBQADggEBAI0/CSguL1PQFnE7QLOcQAGlOnzf xDkSK3zlKjpxkzVRSxnc41ODYqst27tcBVs7JdZZ9z5gV+83nA0DzBQOPLbTwtTj Fz+p40r8OSGgTlYuLGRgb57Qz4YonqJCOMgRS1QAwQXdNniQXUaOvuuoRxLKr5E6 Yjc5EYiPSgr0GLGpj1jS2xpiywvyR8Wphs00Jx7VVh6CQ9HbFLvgRarcAdw2VBV2 Jk62ARiGMrNvWefLPuKT/XKcHeZMd3Pzhsp0STHC4Bz9t6t7mzSG0hPYKfsxmKgc 224tUfGGyYSD7u5Mn0XNJhjDYXZR1R9y0V3cxN8QRgyWzfPfBIdRc7XNExk= -----END CERTIFICATE-----Generated at Sun Jun 8 01:02:09 2025 by rpki-client