$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa File: 8621c38c-da14-4436-8fad-6252da797f1a.roa (raw, json) Hash identifier: vgowe0OH0elNhnoHuh9ckqmqFWoCx3NLcncKTgb0F+4= Subject key identifier: 0F:0E:E4:59:48:B9:6F:F6:0A:97:4D:FE:F6:E1:A2:59:F2:6A:EA:C7 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 27BE29E55E01DF37238BC1F4913DD15FB0C95E28 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa Signing time: Fri 15 Aug 2025 00:20:18 +0000 ROA not before: Fri 15 Aug 2025 00:20:18 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:be:29:e5:5e:01:df:37:23:8b:c1:f4:91:3d:d1:5f:b0:c9:5e:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:20:18 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=f1d7f3c045b2571f172bb6285825c836820f197b61dea1acb6e8266c22343711, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b4:28:4d:9a:5d:18:f8:f7:be:84:79:66:14: 18:30:3b:d5:54:52:d4:4d:2e:41:dd:fc:77:37:e6: 3f:6d:ec:6e:e3:86:90:f3:04:03:68:99:f0:bc:43: 23:63:83:ef:7a:b0:48:4e:e9:25:af:1e:8e:b7:43: ea:54:70:ec:43:17:30:7c:b5:d2:4b:80:ef:e1:61: 5e:92:97:7a:a7:92:ef:b1:1a:36:fa:0f:a5:3e:57: 70:24:0c:25:60:75:d4:c4:10:39:9b:f3:50:c4:84: a3:82:01:8e:78:96:f0:71:bb:20:43:8b:de:08:a3: c4:e0:11:c3:9c:cc:d0:a9:f6:f7:e0:a9:36:96:99: f9:c2:9e:01:50:d3:13:5f:99:ac:46:df:2e:fe:ff: 7f:55:c1:bc:bc:b6:eb:21:86:fa:c3:3c:51:a0:a0: 77:7d:f4:92:7d:f2:69:2d:e2:ed:17:18:b9:07:9f: bc:c0:2e:77:77:d5:e3:50:30:29:70:4a:f0:0b:c9: fb:bf:fe:9b:eb:28:81:15:6b:12:b4:e2:d3:ac:9d: f7:06:a9:b5:e0:64:31:3a:0c:d5:d1:dc:16:96:59: 42:cb:00:04:69:96:79:bb:9a:cd:37:77:e0:fa:de: bd:e6:cf:27:c1:c3:64:eb:7a:10:1f:2d:00:79:a9: 29:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:0E:E4:59:48:B9:6F:F6:0A:97:4D:FE:F6:E1:A2:59:F2:6A:EA:C7 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8621c38c-da14-4436-8fad-6252da797f1a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.222.0/24 Signature Algorithm: sha256WithRSAEncryption 45:dd:79:3b:b7:f3:6f:4f:4b:54:4c:1a:87:56:bd:47:e1:97: c8:a0:6e:85:66:65:49:5d:04:c7:fd:e7:12:9e:da:2c:b8:52: 9a:88:81:ed:23:a3:8a:72:70:03:98:42:59:82:4d:c3:17:43: ac:d4:27:c9:4c:c4:d9:00:8b:d4:4a:47:ca:7f:ee:46:c3:ad: 9d:e2:01:3c:57:b9:1a:8f:d8:d2:46:65:c1:b1:2b:d0:cb:48: 4e:1a:11:d8:67:4b:47:a2:81:2a:ff:fc:49:d5:b2:f2:fc:60: da:1b:b5:2f:7e:da:11:da:e3:84:ba:9c:81:b4:71:ad:91:83: 3b:04:f0:14:d1:58:e0:33:f2:d3:ca:b7:9a:a6:e1:1c:d7:ba: 5b:4c:9d:19:39:a3:45:c8:44:4e:61:76:af:57:1a:cf:b5:26: a5:b4:b9:77:24:79:b8:cb:1d:a2:60:c6:be:b4:f8:23:14:06: 25:07:95:dd:56:11:b4:bd:5e:ba:50:22:cf:b6:fe:f7:66:4b: 1f:30:3e:4b:02:fe:bd:be:ee:31:70:c8:0f:d0:1c:40:0f:0d: b4:37:56:2a:c8:b3:2f:44:fc:dd:55:4a:79:92:ed:e9:51:95: e9:80:de:25:e8:76:b3:8a:14:d8:fa:9e:05:51:87:27:7c:19: 27:82:b6:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ74p5V4B3zcji8H0kT3RX7DJXigwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMDE4WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWQ3ZjNjMDQ1YjI1NzFmMTcyYmI2Mjg1ODI1YzgzNjgy MGYxOTdiNjFkZWExYWNiNmU4MjY2YzIyMzQzNzExMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHtChNml0Y+Pe+hHlmFBgwO9VUUtRNLkHd/Hc35j9t7G7j hpDzBANomfC8QyNjg+96sEhO6SWvHo63Q+pUcOxDFzB8tdJLgO/hYV6Sl3qnku+x Gjb6D6U+V3AkDCVgddTEEDmb81DEhKOCAY54lvBxuyBDi94Io8TgEcOczNCp9vfg qTaWmfnCngFQ0xNfmaxG3y7+/39Vwby8tushhvrDPFGgoHd99JJ98mkt4u0XGLkH n7zALnd31eNQMClwSvALyfu//pvrKIEVaxK04tOsnfcGqbXgZDE6DNXR3BaWWULL AARplnm7ms03d+D63r3mzyfBw2TrehAfLQB5qSmXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDw7kWUi5b/YKl03+9uGiWfJq6scwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg2MjFjMzhjLWRhMTQtNDQzNi04ZmFkLTYyNTJkYTc5N2YxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d4wDQYJKoZIhvcNAQELBQADggEBAEXdeTu3829PS1RMGodWvUfhl8ig boVmZUldBMf95xKe2iy4UpqIge0jo4pycAOYQlmCTcMXQ6zUJ8lMxNkAi9RKR8p/ 7kbDrZ3iATxXuRqP2NJGZcGxK9DLSE4aEdhnS0eigSr//EnVsvL8YNobtS9+2hHa 44S6nIG0ca2RgzsE8BTRWOAz8tPKt5qm4RzXultMnRk5o0XIRE5hdq9XGs+1JqW0 uXckebjLHaJgxr60+CMUBiUHld1WEbS9XrpQIs+2/vdmSx8wPksC/r2+7jFwyA/Q HEAPDbQ3VirIsy9E/N1VSnmS7elRlemA3iXodrOKFNj6ngVRhyd8GSeCtgs= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:54 2025 by rpki-client