$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa File: 38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa (raw, json) Hash identifier: 0mgaZeqbjhcadI7HMoAcmGXm1DtSnE3tZ31LDDfHdU0= Subject key identifier: 9F:B3:0A:59:D9:0E:4A:44:92:FB:B8:6C:23:6C:D6:66:D3:88:A7:54 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 60A555047FB50BB0B5655504D35E278E3A76E11F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa Signing time: Fri 13 Jun 2025 00:10:02 +0000 ROA not before: Fri 13 Jun 2025 00:10:02 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:a5:55:04:7f:b5:0b:b0:b5:65:55:04:d3:5e:27:8e:3a:76:e1:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 13 00:10:02 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=3f953b07762a0cec915ebb2a51d06b512029b78375b9f7fa1c6658c92edaf55a, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:57:bd:86:1a:45:0c:85:cb:1c:2f:92:f4:ef: f1:8d:88:97:3b:52:bb:26:95:15:38:02:8e:c5:ba: fb:9f:76:b7:2c:ae:8d:1e:85:1c:f8:a9:1b:25:aa: 6d:06:de:95:ca:93:45:32:a5:fd:0f:b8:00:3c:f8: 72:ca:be:e4:42:79:50:e4:3c:ce:85:48:0a:f6:cd: 9d:d8:33:07:d0:12:76:17:9b:1e:96:52:0a:4b:3a: 39:74:1b:b0:60:60:d0:13:71:da:8a:d1:70:69:e2: ec:d9:7b:9e:60:12:82:ae:a0:b4:3b:8a:f2:d3:29: f3:8b:1e:a9:43:12:35:0e:61:74:8e:e3:d8:d0:20: e1:95:c8:4d:a4:45:c3:d0:26:0d:b0:b2:ae:2d:c0: 82:3b:96:40:66:74:30:dd:ce:37:ae:76:13:88:b6: 92:4c:05:09:2e:31:7a:96:34:ad:71:38:86:f9:c9: 01:d3:0d:b9:57:74:a9:af:dd:ec:ea:70:c4:93:74: 6d:9c:14:ec:c5:e6:c8:f1:eb:7e:c1:8e:b1:fe:c6: a3:10:9a:fa:81:42:68:ce:4a:bf:5a:1d:86:21:9d: dd:6b:8d:d2:b3:74:4e:fe:a8:d7:9e:c0:89:5a:c4: 48:5e:26:0a:2c:d0:33:5a:99:64:59:a9:6c:d7:24: d9:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:B3:0A:59:D9:0E:4A:44:92:FB:B8:6C:23:6C:D6:66:D3:88:A7:54 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.240.0/23 Signature Algorithm: sha256WithRSAEncryption 92:26:b9:2d:30:85:58:a0:b1:fc:83:5e:dc:7c:32:e9:9b:c4: 90:e6:fd:cf:1a:01:f5:d3:da:0a:f0:7d:53:ea:34:74:dd:a5: c3:b0:cd:d4:45:7c:f2:09:6b:d6:1b:a4:b7:20:4f:bc:32:e6: 5c:ab:e7:20:11:6f:ff:df:bd:7e:7f:b0:c8:eb:37:f8:40:8c: d8:89:27:ae:36:be:77:e7:cb:d8:23:0a:ae:1d:a1:de:9d:d0: fa:3e:3f:ca:3c:69:0f:4d:6e:6c:a3:78:96:03:c7:dc:ef:76: 78:f1:a2:29:93:d2:e8:e1:de:53:2e:4f:8c:99:80:f4:ab:6e: 9b:81:f5:92:53:2e:08:5c:29:86:9b:b5:d7:fe:d2:ff:4d:aa: c9:40:52:22:a6:46:28:4c:39:42:2c:77:fc:37:fb:6a:65:07: 98:3f:8a:ac:0c:21:6a:52:01:cb:9a:c6:63:14:7f:b6:05:6f: 96:15:97:19:cd:5c:d4:04:b0:92:fb:e8:cc:b1:d4:fa:ce:40: bf:40:fc:7a:72:0a:14:a7:d6:b4:87:ea:5c:06:67:d1:3c:2c: 77:d5:f0:46:f2:c6:bf:5e:03:3a:ec:fb:84:6a:b3:c3:db:00: 71:d0:f8:ab:27:b0:44:5d:4a:0c:b1:b8:48:d0:70:bf:85:ef: a4:19:0a:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYKVVBH+1C7C1ZVUE014njjp24R8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjEzMDAxMDAyWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjk1M2IwNzc2MmEwY2VjOTE1ZWJiMmE1MWQwNmI1MTIw MjliNzgzNzViOWY3ZmExYzY2NThjOTJlZGFmNTVhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQV72GGkUMhcscL5L07/GNiJc7UrsmlRU4Ao7Fuvufdrcs ro0ehRz4qRslqm0G3pXKk0Uypf0PuAA8+HLKvuRCeVDkPM6FSAr2zZ3YMwfQEnYX mx6WUgpLOjl0G7BgYNATcdqK0XBp4uzZe55gEoKuoLQ7ivLTKfOLHqlDEjUOYXSO 49jQIOGVyE2kRcPQJg2wsq4twII7lkBmdDDdzjeudhOItpJMBQkuMXqWNK1xOIb5 yQHTDblXdKmv3ezqcMSTdG2cFOzF5sjx637BjrH+xqMQmvqBQmjOSr9aHYYhnd1r jdKzdE7+qNeewIlaxEheJgos0DNamWRZqWzXJNk3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUn7MKWdkOSkSS+7hsI2zWZtOIp1QwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzM4YjFkNmE1LThhNmUtNGVkMy1hMDU3LTkzOWZkNGYxN2Y1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+/AwDQYJKoZIhvcNAQELBQADggEBAJImuS0whVigsfyDXtx8MumbxJDm /c8aAfXT2grwfVPqNHTdpcOwzdRFfPIJa9YbpLcgT7wy5lyr5yARb//fvX5/sMjr N/hAjNiJJ642vnfny9gjCq4dod6d0Po+P8o8aQ9NbmyjeJYDx9zvdnjxoimT0ujh 3lMuT4yZgPSrbpuB9ZJTLghcKYabtdf+0v9NqslAUiKmRihMOUIsd/w3+2plB5g/ iqwMIWpSAcuaxmMUf7YFb5YVlxnNXNQEsJL76Myx1PrOQL9A/HpyChSn1rSH6lwG Z9E8LHfV8Ebyxr9eAzrs+4Rqs8PbAHHQ+KsnsERdSgyxuEjQcL+F76QZCoQ= -----END CERTIFICATE-----Generated at Sat Jun 14 06:22:09 2025 by rpki-client