$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa File: b59643bf-eb80-414a-aca0-653646d46e07.roa (raw, json) Hash identifier: WDejlFFWH5YA1bo85Sk6I5kzVNBb5snmGx0rtL33dzY= Subject key identifier: B1:D9:C6:C7:FE:53:5F:BF:58:FD:DB:8F:9E:6F:12:22:35:85:E1:3B Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 729AE354681943E1D42D50757E4C50093BC17F7E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa Signing time: Tue 20 May 2025 00:10:05 +0000 ROA not before: Tue 20 May 2025 00:10:05 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.127.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:9a:e3:54:68:19:43:e1:d4:2d:50:75:7e:4c:50:09:3b:c1:7f:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 20 00:10:05 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=f1f899f7fa638b0e352485e0e3f9bcca765e26f6f8f8718aee6f2f7df4bc6910, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:00:c4:7f:c9:7a:31:b7:47:fa:64:be:55:42: 02:ab:9a:12:54:e0:ac:60:9b:57:d6:3a:93:6a:58: 85:4a:12:af:81:82:f1:45:17:20:b8:6c:87:64:9d: 13:e7:93:da:7b:01:a4:9f:d5:0b:91:4a:62:30:5c: b6:1a:61:3c:4e:71:b9:cc:82:ee:86:fb:e1:e2:eb: a5:f8:4f:72:24:66:8c:f5:c7:ce:ee:0b:be:00:c4: 19:60:9a:fb:60:f9:26:7c:5e:51:04:a2:39:4b:80: e9:13:bc:11:b6:04:a4:7c:a0:b6:d9:70:d4:39:07: 8f:96:40:ad:10:50:7f:51:81:6f:80:c2:29:53:09: dd:d7:62:38:ae:f9:1f:fd:ec:81:3e:7f:52:b0:a2: 7a:6f:60:41:82:2f:9a:ae:f2:77:11:cd:2f:f8:86: 1b:a9:bf:58:48:b9:8a:3b:d3:89:b5:0b:99:3b:26: 2a:cd:ff:08:8f:dc:87:0e:f8:84:02:0d:b6:98:d2: 8a:73:09:85:ab:d7:cc:41:9d:96:41:9c:93:13:a2: 8e:47:b9:56:49:0c:f1:0e:56:95:b9:9e:6b:67:ad: 9b:3f:c1:90:3d:08:b9:e8:dc:81:18:7a:ae:4d:0d: 44:94:f0:56:d0:da:98:cd:97:af:d6:eb:4e:db:55: 64:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D9:C6:C7:FE:53:5F:BF:58:FD:DB:8F:9E:6F:12:22:35:85:E1:3B X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.127.232.0/22 Signature Algorithm: sha256WithRSAEncryption 21:00:7a:e4:83:70:9b:13:ae:76:82:fb:d6:e0:c8:9a:66:d0: 20:b6:d8:99:60:c6:66:f9:c7:b7:a6:95:8b:5d:06:8e:44:c5: b6:81:2d:98:76:fe:5e:d6:d4:7e:dc:d4:f1:22:59:55:1e:13: 74:b2:ca:4c:0b:60:f1:64:e7:da:30:27:8a:73:7b:c4:a1:1a: 94:df:c6:34:7d:dc:ab:96:9e:c5:86:f7:b7:90:f2:06:e9:54: 75:e7:43:b8:11:a3:1d:9a:ae:11:91:6e:ad:93:65:cd:2e:8d: 1e:5b:0c:c3:27:14:a7:91:16:48:d4:02:f9:c0:ec:4f:2f:43: e4:68:53:75:c3:22:f6:9e:f3:b7:61:84:36:43:17:03:04:26: f7:99:8b:25:6f:b8:4f:9f:02:8b:b8:35:ca:93:af:cc:1a:b7: 6f:8e:19:bc:8a:23:6a:3c:5a:be:52:98:d8:5c:46:05:bb:5a: 1b:f6:08:ce:63:1f:0b:e1:1a:9d:44:c4:13:55:2a:69:5e:87: 97:43:13:f6:3d:4f:1d:1b:b9:80:48:ff:08:8c:54:36:f6:23: 6b:f9:90:fd:92:93:5c:3c:37:dc:ea:0f:8c:3a:36:0e:df:87: 72:dd:19:26:36:b4:f0:8a:dd:cd:2e:f2:c6:0e:e6:ef:a1:70: 19:8b:4e:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcprjVGgZQ+HULVB1fkxQCTvBf34wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTIwMDAxMDA1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWY4OTlmN2ZhNjM4YjBlMzUyNDg1ZTBlM2Y5YmNjYTc2 NWUyNmY2ZjhmODcxOGFlZTZmMmY3ZGY0YmM2OTEwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZAMR/yXoxt0f6ZL5VQgKrmhJU4Kxgm1fWOpNqWIVKEq+B gvFFFyC4bIdknRPnk9p7AaSf1QuRSmIwXLYaYTxOcbnMgu6G++Hi66X4T3IkZoz1 x87uC74AxBlgmvtg+SZ8XlEEojlLgOkTvBG2BKR8oLbZcNQ5B4+WQK0QUH9RgW+A wilTCd3XYjiu+R/97IE+f1KwonpvYEGCL5qu8ncRzS/4hhupv1hIuYo704m1C5k7 JirN/wiP3IcO+IQCDbaY0opzCYWr18xBnZZBnJMToo5HuVZJDPEOVpW5nmtnrZs/ wZA9CLno3IEYeq5NDUSU8FbQ2pjNl6/W607bVWT7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsdnGx/5TX79Y/duPnm8SIjWF4TswHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1OTY0M2JmLWViODAtNDE0YS1hY2EwLTY1MzY0NmQ0NmUwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALHf+gwDQYJKoZIhvcNAQELBQADggEBACEAeuSDcJsTrnaC+9bgyJpm0CC2 2Jlgxmb5x7emlYtdBo5ExbaBLZh2/l7W1H7c1PEiWVUeE3SyykwLYPFk59owJ4pz e8ShGpTfxjR93KuWnsWG97eQ8gbpVHXnQ7gRox2arhGRbq2TZc0ujR5bDMMnFKeR FkjUAvnA7E8vQ+RoU3XDIvae87dhhDZDFwMEJveZiyVvuE+fAou4NcqTr8wat2+O GbyKI2o8Wr5SmNhcRgW7Whv2CM5jHwvhGp1ExBNVKmleh5dDE/Y9Tx0buYBI/wiM VDb2I2v5kP2Sk1w8N9zqD4w6Ng7fh3LdGSY2tPCK3c0u8sYO5u+hcBmLTvI= -----END CERTIFICATE-----Generated at Mon Jun 2 16:56:56 2025 by rpki-client