$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/addfda24-421e-4b45-80e1-dd5a255777c5.roa File: addfda24-421e-4b45-80e1-dd5a255777c5.roa (raw, json) Hash identifier: 02bQudkvD1EjMf/fJT0ryvgHy9PTIvBmH4dcKE19o10= Subject key identifier: 34:BA:0C:C3:7E:FF:28:52:9E:B4:85:DA:8E:9F:60:16:21:01:D6:34 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 354D1D3EF9734FE870AE16359F35A5CB2CF1DF14 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/addfda24-421e-4b45-80e1-dd5a255777c5.roa Signing time: Sat 31 May 2025 00:00:18 +0000 ROA not before: Sat 31 May 2025 00:00:18 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:4d:1d:3e:f9:73:4f:e8:70:ae:16:35:9f:35:a5:cb:2c:f1:df:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:00:18 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=453c3d859a00bc09c8ae7fa2c8d9aa619f90424af31a44be7a878f707ce41658, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:56:eb:5f:67:95:e4:83:27:a2:40:12:89:22: 95:0d:7c:27:e6:5b:b9:76:12:1c:1e:9e:70:d5:34: 84:49:34:37:1c:ab:ed:0d:b9:7f:8d:57:33:1d:ba: 15:dc:37:6a:94:98:bd:af:cc:92:e9:97:89:f4:d0: b4:89:c7:5e:f8:71:73:dd:95:af:48:64:91:ff:b9: b6:29:d4:8d:9f:47:c5:1c:1b:fe:31:02:6a:83:ec: 96:80:2f:46:65:70:e5:cb:04:37:6b:f9:53:07:27: e6:f8:4e:f7:9b:95:75:fd:b9:71:13:9d:d2:74:0e: 0a:d1:60:dd:00:52:8b:af:17:e7:83:9c:bb:e9:0b: 4f:ad:7f:b8:ed:1e:8a:36:f2:37:67:ce:3e:5c:91: be:b4:65:4a:0d:3c:b1:6f:20:31:1a:da:79:f5:2f: be:dd:80:e1:71:5c:b5:ec:d9:e3:c1:df:ae:4d:2d: a8:74:58:29:93:18:83:50:ef:a7:a0:22:99:4c:c2: 79:85:af:6c:9c:dc:4e:b2:3b:6a:44:18:4e:6c:11: 75:7a:12:79:04:37:22:c1:88:d2:2a:73:95:4d:af: eb:eb:c1:7b:e2:29:0f:9c:a0:c3:64:1e:cd:1a:87: 43:28:be:62:b3:03:65:26:59:12:9c:27:a4:81:2e: 31:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BA:0C:C3:7E:FF:28:52:9E:B4:85:DA:8E:9F:60:16:21:01:D6:34 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/addfda24-421e-4b45-80e1-dd5a255777c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.228.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:d0:68:26:79:15:37:d0:4b:ec:48:5d:05:97:c3:ea:77:fb: fc:ce:3c:63:7e:33:df:a2:81:24:95:bb:ea:13:f1:00:bd:5f: 0d:59:68:2a:78:5e:1d:8b:8a:ce:10:40:e8:d7:ea:cf:dd:e7: d8:b6:50:a9:48:14:b9:d1:ae:2d:03:27:73:b1:2f:a8:14:99: ad:7b:f0:6e:47:ba:07:33:c2:28:ce:bb:03:1a:91:59:0e:6e: 55:cc:38:fb:56:d7:ff:dd:d6:ae:3e:d0:34:b4:dd:fc:12:cb: a7:c3:52:2b:54:e3:7b:26:d3:0e:31:05:92:c4:42:0f:0b:24: 0a:45:d0:52:94:97:95:02:f0:6b:4b:1e:00:79:ae:27:c5:3f: ac:07:60:bc:f0:70:59:95:18:3f:be:f1:57:d0:bf:9d:72:5d: 94:43:b0:97:8b:2d:ba:cc:40:d2:a9:75:6f:bb:1b:b5:4b:23: f2:1d:0e:6b:7a:51:63:43:a9:7a:72:90:2a:ed:d8:93:c2:0c: 11:61:33:ce:76:9e:af:8c:c2:01:9c:20:6f:dc:4f:d8:18:f0: 6c:1b:87:76:cd:05:35:35:52:4a:c6:cd:b0:fe:33:3e:3f:f2: 85:93:03:1f:30:32:86:1b:3d:6b:c4:e2:b0:5b:e5:e6:5c:cd: 00:18:68:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNU0dPvlzT+hwrhY1nzWlyyzx3xQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMDE4WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTNjM2Q4NTlhMDBiYzA5YzhhZTdmYTJjOGQ5YWE2MTlm OTA0MjRhZjMxYTQ0YmU3YTg3OGY3MDdjZTQxNjU4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNVutfZ5XkgyeiQBKJIpUNfCfmW7l2EhwennDVNIRJNDcc q+0NuX+NVzMduhXcN2qUmL2vzJLpl4n00LSJx174cXPdla9IZJH/ubYp1I2fR8Uc G/4xAmqD7JaAL0ZlcOXLBDdr+VMHJ+b4TveblXX9uXETndJ0DgrRYN0AUouvF+eD nLvpC0+tf7jtHoo28jdnzj5ckb60ZUoNPLFvIDEa2nn1L77dgOFxXLXs2ePB365N Lah0WCmTGINQ76egIplMwnmFr2yc3E6yO2pEGE5sEXV6EnkENyLBiNIqc5VNr+vr wXviKQ+coMNkHs0ah0MovmKzA2UmWRKcJ6SBLjHzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNLoMw37/KFKetIXajp9gFiEB1jQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2FkZGZkYTI0LTQyMWUtNGI0NS04MGUxLWRkNWEyNTU3NzdjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX++QwDQYJKoZIhvcNAQELBQADggEBAIvQaCZ5FTfQS+xIXQWXw+p3+/zO PGN+M9+igSSVu+oT8QC9Xw1ZaCp4Xh2Lis4QQOjX6s/d59i2UKlIFLnRri0DJ3Ox L6gUma178G5HugczwijOuwMakVkOblXMOPtW1//d1q4+0DS03fwSy6fDUitU43sm 0w4xBZLEQg8LJApF0FKUl5UC8GtLHgB5rifFP6wHYLzwcFmVGD++8VfQv51yXZRD sJeLLbrMQNKpdW+7G7VLI/IdDmt6UWNDqXpykCrt2JPCDBFhM852nq+MwgGcIG/c T9gY8Gwbh3bNBTU1UkrGzbD+Mz4/8oWTAx8wMoYbPWvE4rBb5eZczQAYaEg= -----END CERTIFICATE-----Generated at Fri Jun 6 03:38:35 2025 by rpki-client