$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa File: d61aefde-15db-4326-8486-f4cd98992cbc.roa (raw, json) Hash identifier: y9Fslwiz5kmI/JO3ezp2+8YP5G2W0rWM+0JgG1LftG8= Subject key identifier: 0D:8F:51:35:C0:71:FB:74:33:6F:24:72:54:9A:86:8C:76:5B:EF:61 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 61E3C2D1E6BDD9B967A1104AE2F75141FA629069 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa Signing time: Sat 31 May 2025 00:01:09 +0000 ROA not before: Sat 31 May 2025 00:01:09 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e3:c2:d1:e6:bd:d9:b9:67:a1:10:4a:e2:f7:51:41:fa:62:90:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:01:09 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=7b15c40f0eae19f2f6957696ece5052d6944cdae5a9924b1f423272d1550074f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ec:5f:dd:58:4d:a3:ab:93:4f:92:23:d8:0f: 72:5f:8a:71:02:ee:c8:da:ee:3b:5a:bb:91:84:30: ca:22:28:84:b8:9d:59:8e:23:90:bc:ca:79:c4:62: 3c:03:59:f1:fe:c8:c5:40:75:64:5f:42:4d:84:5c: a9:cf:ff:04:c3:8b:ac:2b:56:d5:7b:83:84:f9:10: 46:2f:eb:ae:68:10:04:78:f6:5b:89:53:41:d3:e3: 0b:9d:5a:f8:cd:70:6c:da:7c:08:45:ca:9a:25:db: c9:76:6f:1a:73:84:e7:91:58:a4:82:cf:80:bb:da: 6b:22:14:25:6d:38:67:f0:49:7e:a4:8c:6c:11:18: 14:f2:b4:68:83:41:dc:bb:73:70:a8:be:77:d2:a5: 6d:b3:cf:2e:ef:7d:30:93:3a:8a:da:26:ce:c7:c5: f7:45:b8:c9:c8:30:f7:a9:84:8b:55:c9:33:e0:82: 75:db:ab:2f:0e:2c:d0:95:76:db:d5:d7:7e:db:7a: ad:04:76:99:a0:07:08:f9:14:60:15:fe:4f:85:32: 03:de:ff:6a:00:84:74:01:d2:dd:c9:df:d1:49:14: d7:b9:a5:95:8d:65:83:c1:21:76:d3:fe:47:05:7c: 3b:09:1d:e9:3c:56:fb:6e:5b:da:02:e6:af:63:8e: 6a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:8F:51:35:C0:71:FB:74:33:6F:24:72:54:9A:86:8C:76:5B:EF:61 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.223.0/24 Signature Algorithm: sha256WithRSAEncryption 72:08:20:63:04:10:06:df:79:3e:72:ba:0e:dd:2e:a4:24:66: 40:27:81:21:58:af:b1:38:c5:67:c7:16:13:08:98:83:2e:97: 83:08:69:dd:57:94:da:83:aa:46:18:24:fc:e3:4b:d3:f3:5b: 22:26:71:4d:89:b9:bb:c7:a0:a8:13:81:7a:c7:b1:16:57:82: 40:74:fb:21:3c:7c:f8:25:32:9b:41:5d:72:8a:2f:45:97:40: 8d:03:85:ba:bc:14:b0:cf:05:dc:54:93:4c:aa:56:15:50:0f: d5:71:75:30:f8:2a:28:9d:06:b5:59:32:64:17:44:a8:56:40: e2:df:47:39:27:d0:96:14:7d:16:5c:57:94:1f:fc:4b:f3:51: 0f:32:61:fd:f9:7b:64:36:34:1f:27:d5:f4:2b:59:0f:d6:f1: 14:eb:2c:42:25:da:3c:79:70:6c:b3:05:f9:5a:a9:34:40:6e: 68:4b:70:85:22:67:c2:59:2a:e6:f1:af:eb:20:c2:92:43:e3: ab:f0:ba:37:24:9a:f4:03:1e:66:d4:9e:f1:1c:46:54:23:97: cb:cd:24:b7:a1:a8:eb:27:d3:54:21:ba:76:f0:48:78:9b:71: 5e:92:df:25:6a:44:49:52:e2:09:d1:69:70:84:99:28:29:93: f2:9d:56:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYePC0ea92blnoRBK4vdRQfpikGkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMTA5WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjE1YzQwZjBlYWUxOWYyZjY5NTc2OTZlY2U1MDUyZDY5 NDRjZGFlNWE5OTI0YjFmNDIzMjcyZDE1NTAwNzRmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD7F/dWE2jq5NPkiPYD3JfinEC7sja7jtau5GEMMoiKIS4 nVmOI5C8ynnEYjwDWfH+yMVAdWRfQk2EXKnP/wTDi6wrVtV7g4T5EEYv665oEAR4 9luJU0HT4wudWvjNcGzafAhFypol28l2bxpzhOeRWKSCz4C72msiFCVtOGfwSX6k jGwRGBTytGiDQdy7c3CovnfSpW2zzy7vfTCTOoraJs7HxfdFuMnIMPephItVyTPg gnXbqy8OLNCVdtvV137beq0EdpmgBwj5FGAV/k+FMgPe/2oAhHQB0t3J39FJFNe5 pZWNZYPBIXbT/kcFfDsJHek8VvtuW9oC5q9jjmqrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDY9RNcBx+3QzbyRyVJqGjHZb72EwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Q2MWFlZmRlLTE1ZGItNDMyNi04NDg2LWY0Y2Q5ODk5MmNiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d8wDQYJKoZIhvcNAQELBQADggEBAHIIIGMEEAbfeT5yug7dLqQkZkAn gSFYr7E4xWfHFhMImIMul4MIad1XlNqDqkYYJPzjS9PzWyImcU2JubvHoKgTgXrH sRZXgkB0+yE8fPglMptBXXKKL0WXQI0Dhbq8FLDPBdxUk0yqVhVQD9VxdTD4Kiid BrVZMmQXRKhWQOLfRzkn0JYUfRZcV5Qf/EvzUQ8yYf35e2Q2NB8n1fQrWQ/W8RTr LEIl2jx5cGyzBflaqTRAbmhLcIUiZ8JZKubxr+sgwpJD46vwujckmvQDHmbUnvEc RlQjl8vNJLehqOsn01QhunbwSHibcV6S3yVqRElS4gnRaXCEmSgpk/KdVhU= -----END CERTIFICATE-----Generated at Wed Jun 4 10:37:27 2025 by rpki-client