$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f558359a-2a02-4c8e-9a72-7159b2569d66.roa File: f558359a-2a02-4c8e-9a72-7159b2569d66.roa (raw, json) Hash identifier: SNRrAfitVek5F5DIoyNaWM6w3lMGDc3vZ6L48D7CpdU= Subject key identifier: F5:3F:CD:24:6E:D7:B7:4E:BF:85:AC:76:FD:39:C2:02:31:FB:45:0C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 12CBF7F230ABDFB54EC95D1F08D70943850D5A4A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f558359a-2a02-4c8e-9a72-7159b2569d66.roa Signing time: Mon 19 May 2025 15:10:23 +0000 ROA not before: Mon 19 May 2025 15:10:23 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:cb:f7:f2:30:ab:df:b5:4e:c9:5d:1f:08:d7:09:43:85:0d:5a:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 19 15:10:23 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=fe98daf05a65fbc88ac4286b75d0ae68c07cbebb645a04aa54033cf7b9ee5599, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0a:87:93:4d:45:f4:bc:56:62:5f:c0:06:de: f2:ba:bb:12:b6:e2:c4:d3:13:a9:e3:1c:99:33:d9: f2:5a:63:20:25:38:23:b6:c6:90:cd:47:5e:7e:3c: ec:c1:8a:f8:50:39:e6:26:28:16:dc:76:a7:fd:e0: ac:e9:ea:f8:cd:b1:b2:9b:4f:cf:ac:9d:0a:4a:63: 53:2e:53:c3:ad:9d:51:c4:4f:ce:33:c8:e9:7c:9d: 43:26:06:e9:69:b5:47:2b:d8:42:cd:46:53:4e:e2: c1:9d:c0:3a:15:58:7f:cd:f0:21:a4:55:27:06:97: 83:74:bc:f2:4c:80:84:a6:56:df:be:35:99:c7:40: eb:3e:fd:bc:cf:34:98:5d:a2:12:25:a0:6f:6a:f3: d7:04:c0:a9:68:c5:f0:eb:38:bf:6b:82:28:02:01: 2d:4a:1c:43:c5:b1:5f:84:dd:89:2e:2e:40:15:4b: e3:a7:bd:81:cf:d9:4b:76:8a:c4:e8:87:73:48:c7: 39:9f:e4:1c:35:87:26:31:98:f0:c9:78:fb:60:57: e8:22:bf:8d:c2:6d:d8:d6:f7:a6:f0:88:ba:0d:54: d6:8d:b5:d5:20:f1:f2:cc:c9:00:de:6a:0a:e4:66: a4:88:aa:e4:d7:45:ac:31:d8:42:46:88:c9:7b:5f: c2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:3F:CD:24:6E:D7:B7:4E:BF:85:AC:76:FD:39:C2:02:31:FB:45:0C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f558359a-2a02-4c8e-9a72-7159b2569d66.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.210.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:93:18:5f:c3:05:d6:fd:23:1c:3f:e6:ad:8f:cd:a7:3f:72: de:40:1a:11:f8:13:ef:29:00:e9:28:d1:27:ba:ee:26:19:b6: 4a:79:af:15:54:10:1e:be:1c:49:01:5a:3b:73:a9:5a:fc:b2: e6:87:b3:7e:ed:5c:a8:8d:14:92:12:87:fa:ea:33:97:25:6b: f3:2f:e3:65:61:9d:73:9f:ff:25:93:31:66:92:ed:8b:4d:67: 6b:d3:dc:1f:2a:26:57:8a:0a:3e:b2:b2:7e:5d:c9:8e:61:40: 62:63:c6:0c:43:6d:f7:91:de:e2:f6:1f:76:78:bd:33:2d:71: e4:72:7f:00:57:95:56:3b:ab:9e:df:9a:97:69:26:cf:4e:0d: a0:99:17:b8:25:d4:86:dd:e9:8e:37:a4:16:ce:af:5e:c3:76: b5:e3:49:14:e1:65:e9:51:f9:c7:83:2c:14:ea:7a:e3:b0:ff: 81:d5:d2:15:cb:28:9e:f2:a1:68:8c:19:98:cf:38:aa:1a:68: 5c:28:b8:7e:dd:bd:55:66:1f:ed:87:37:14:dd:28:de:bd:ad: 05:2d:cd:5a:6f:15:e5:e8:30:48:17:c2:fd:8d:94:5f:03:cf: ca:b0:24:60:32:93:2b:63:2a:9e:05:cb:20:ff:11:88:52:a9: 2c:ef:41:5b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEsv38jCr37VOyV0fCNcJQ4UNWkowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTE5MTUxMDIzWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTk4ZGFmMDVhNjVmYmM4OGFjNDI4NmI3NWQwYWU2OGMw N2NiZWJiNjQ1YTA0YWE1NDAzM2NmN2I5ZWU1NTk5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgCoeTTUX0vFZiX8AG3vK6uxK24sTTE6njHJkz2fJaYyAl OCO2xpDNR15+POzBivhQOeYmKBbcdqf94Kzp6vjNsbKbT8+snQpKY1MuU8OtnVHE T84zyOl8nUMmBulptUcr2ELNRlNO4sGdwDoVWH/N8CGkVScGl4N0vPJMgISmVt++ NZnHQOs+/bzPNJhdohIloG9q89cEwKloxfDrOL9rgigCAS1KHEPFsV+E3YkuLkAV S+OnvYHP2Ut2isToh3NIxzmf5Bw1hyYxmPDJePtgV+giv43CbdjW96bwiLoNVNaN tdUg8fLMyQDeagrkZqSIquTXRawx2EJGiMl7X8LFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9T/NJG7Xt06/hax2/TnCAjH7RQwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y1NTgzNTlhLTJhMDItNGM4ZS05YTcyLTcxNTliMjU2OWQ2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+dIwDQYJKoZIhvcNAQELBQADggEBAI2TGF/DBdb9Ixw/5q2Pzac/ct5A GhH4E+8pAOko0Se67iYZtkp5rxVUEB6+HEkBWjtzqVr8suaHs37tXKiNFJISh/rq M5cla/Mv42VhnXOf/yWTMWaS7YtNZ2vT3B8qJleKCj6ysn5dyY5hQGJjxgxDbfeR 3uL2H3Z4vTMtceRyfwBXlVY7q57fmpdpJs9ODaCZF7gl1Ibd6Y43pBbOr17DdrXj SRThZelR+ceDLBTqeuOw/4HV0hXLKJ7yoWiMGZjPOKoaaFwouH7dvVVmH+2HNxTd KN69rQUtzVpvFeXoMEgXwv2NlF8Dz8qwJGAykytjKp4FyyD/EYhSqSzvQVs= -----END CERTIFICATE-----Generated at Sat Jun 7 21:48:19 2025 by rpki-client