$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa File: 951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa (raw, json) Hash identifier: Ymj416KyT0VMWNGr3+jTMohr1+eTNzl2pJAE3JH2/S0= Subject key identifier: AF:DC:CC:6C:1C:D0:D6:2E:8C:7E:28:84:A5:65:61:08:91:58:74:BC Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1A65EDB8A8FD3CA4161C4950573CE4612A3B4C39 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa Signing time: Sat 31 May 2025 00:01:12 +0000 ROA not before: Sat 31 May 2025 00:01:12 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:65:ed:b8:a8:fd:3c:a4:16:1c:49:50:57:3c:e4:61:2a:3b:4c:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:01:12 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=24809df8afed646adaadfd56be5c33c1021b051b19db60e870920cc607ea926a, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:72:72:49:11:68:51:56:22:7f:96:4d:28:e0: 44:78:80:6f:35:45:c9:b9:5b:87:2f:08:3e:c3:0d: 23:e2:bd:36:e0:a3:00:04:5e:c4:23:b6:c6:b0:32: c7:97:75:c1:60:7c:78:88:36:77:e7:82:8b:a1:c5: 9f:56:a4:53:13:e0:4b:43:c3:61:d0:2e:ef:1f:36: 51:37:f0:09:7d:c2:5d:9b:e2:58:c2:fe:08:c4:f7: 8a:16:56:f3:8a:82:46:7d:69:aa:91:b0:63:31:81: 1a:9b:0f:bd:79:14:da:dd:e9:44:d0:70:75:36:3d: 2c:e0:fb:c1:8f:8a:d1:7f:72:58:aa:27:4b:67:79: 11:2e:34:a0:5a:03:08:ea:52:f8:1f:3b:c3:ab:2a: e5:a9:2b:16:c6:06:3e:de:62:fc:37:5c:59:ed:9c: a4:76:9d:45:64:d9:1b:19:3a:a8:f4:fb:ea:55:bf: 21:65:c8:88:cf:19:e3:eb:16:4e:de:e6:9c:95:4f: 2c:f5:2a:4b:52:6e:2c:e2:a2:d2:ea:e2:c8:66:6d: 72:21:5b:75:a8:6b:37:7a:85:a5:2e:35:2b:35:59: 90:31:08:b0:c0:03:d0:6b:55:6c:9e:27:f4:64:6a: 37:fa:42:00:dc:b9:42:7e:3e:24:34:04:96:23:8a: 1d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DC:CC:6C:1C:D0:D6:2E:8C:7E:28:84:A5:65:61:08:91:58:74:BC X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/951b66f0-8993-47d2-9bf5-e85f4ad5e32b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.218.0/23 Signature Algorithm: sha256WithRSAEncryption 24:a0:54:d4:90:8b:b6:f4:45:b5:f4:5a:48:fe:6b:80:f3:d6: 02:7e:7d:77:76:d0:d1:d6:e6:28:b0:6d:80:db:1a:94:0a:b4: 06:69:ef:03:23:e1:c1:a8:52:6d:10:b7:4e:ec:2c:e5:23:d5: 44:c0:19:a0:a1:71:d2:62:0f:af:2a:86:2e:6b:ea:59:12:bb: e6:aa:6b:83:72:33:b0:f7:82:78:a2:9e:11:96:d2:82:cf:d1: a6:0d:90:1e:57:55:3e:b0:dc:c4:04:bc:ab:17:eb:97:d1:5e: 44:ad:8f:6c:f4:03:8f:96:2b:0c:f2:41:d0:0f:d1:a3:25:23: f4:af:17:21:95:7d:a0:a3:e8:e0:6c:8b:1a:5b:24:23:01:9e: 3c:6f:bf:03:b9:49:ca:4a:32:c0:e2:15:5a:c8:ca:c3:79:7c: 91:84:30:f1:b7:07:ee:4f:f1:fc:a6:52:db:e0:8d:3b:d2:ac: ac:c6:96:e0:a6:5d:cf:57:e3:7c:49:ed:0a:a8:48:18:90:f9: 0e:13:27:b8:ec:74:5e:13:d5:b9:4d:16:c3:8a:a0:2a:a4:48: 49:fd:9e:ed:54:98:04:b8:46:49:28:67:97:53:5c:25:91:7a: c9:03:38:9e:17:d9:a8:1d:15:e9:e3:15:a8:9a:ac:81:77:47: 71:06:2c:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGmXtuKj9PKQWHElQVzzkYSo7TDkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMTEyWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDgwOWRmOGFmZWQ2NDZhZGFhZGZkNTZiZTVjMzNjMTAy MWIwNTFiMTlkYjYwZTg3MDkyMGNjNjA3ZWE5MjZhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRcnJJEWhRViJ/lk0o4ER4gG81Rcm5W4cvCD7DDSPivTbg owAEXsQjtsawMseXdcFgfHiINnfngouhxZ9WpFMT4EtDw2HQLu8fNlE38Al9wl2b 4ljC/gjE94oWVvOKgkZ9aaqRsGMxgRqbD715FNrd6UTQcHU2PSzg+8GPitF/cliq J0tneREuNKBaAwjqUvgfO8OrKuWpKxbGBj7eYvw3XFntnKR2nUVk2RsZOqj0++pV vyFlyIjPGePrFk7e5pyVTyz1KktSbiziotLq4shmbXIhW3Woazd6haUuNSs1WZAx CLDAA9BrVWyeJ/Rkajf6QgDcuUJ+PiQ0BJYjih37AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUr9zMbBzQ1i6MfiiEpWVhCJFYdLwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk1MWI2NmYwLTg5OTMtNDdkMi05YmY1LWU4NWY0YWQ1ZTMyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+dowDQYJKoZIhvcNAQELBQADggEBACSgVNSQi7b0RbX0Wkj+a4Dz1gJ+ fXd20NHW5iiwbYDbGpQKtAZp7wMj4cGoUm0Qt07sLOUj1UTAGaChcdJiD68qhi5r 6lkSu+aqa4NyM7D3gniinhGW0oLP0aYNkB5XVT6w3MQEvKsX65fRXkStj2z0A4+W KwzyQdAP0aMlI/SvFyGVfaCj6OBsixpbJCMBnjxvvwO5ScpKMsDiFVrIysN5fJGE MPG3B+5P8fymUtvgjTvSrKzGluCmXc9X43xJ7QqoSBiQ+Q4TJ7jsdF4T1blNFsOK oCqkSEn9nu1UmAS4RkkoZ5dTXCWReskDOJ4X2agdFenjFaiarIF3R3EGLOk= -----END CERTIFICATE-----Generated at Mon Jun 2 16:30:23 2025 by rpki-client