$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa File: 38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa (raw, json) Hash identifier: EWYau9oPJ/YAEDqzqkVBG317FdxFba4z3R3Kc4rQHIU= Subject key identifier: AC:3A:7D:46:99:3B:93:2A:D1:3F:2F:0F:05:5C:01:C4:DD:EB:D1:60 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 19355BBBACD6D19D898445CFE476795C799B5A17 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa Signing time: Sat 02 Aug 2025 00:10:09 +0000 ROA not before: Sat 02 Aug 2025 00:10:09 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:35:5b:bb:ac:d6:d1:9d:89:84:45:cf:e4:76:79:5c:79:9b:5a:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 2 00:10:09 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=1d1520f03c3b43b4c0493f88a0f0d4426519c14bd92eff1747477234125166b1, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:16:0a:e0:47:22:a9:df:21:65:41:08:8d:44: 1f:76:15:0e:91:ab:d0:14:d7:22:5e:be:a2:67:63: 21:d1:39:a4:53:7c:b3:c3:d2:b2:f3:e0:57:e7:e0: 74:20:04:9d:07:28:de:56:df:43:92:ec:5f:75:da: 8c:f9:16:d2:cd:25:26:10:be:90:d9:6b:dd:a1:8f: 32:c8:b6:a2:36:08:6f:0c:e7:20:f8:ae:2a:2c:fb: aa:fa:98:d7:a6:c0:e2:df:0a:5a:11:ff:5c:76:2f: ba:43:74:95:60:44:1f:a9:ef:bc:df:4a:06:d6:61: b4:70:db:7a:78:d5:f2:c5:27:90:14:00:15:72:7c: a4:40:d8:18:9b:92:6c:70:de:b0:dc:f3:b4:f7:fd: 37:99:61:1e:db:5d:2d:a0:86:47:43:d9:83:f4:7b: 71:47:ea:3f:c5:65:e8:6d:7d:da:3e:0f:f3:9a:44: 48:f3:06:1d:36:e5:62:06:84:be:2e:ea:0b:08:be: 27:87:48:47:30:42:bc:f2:42:1e:74:0d:48:37:cd: 37:c8:d6:9b:a2:93:f9:80:66:c1:87:8e:b7:24:6d: 24:11:19:72:eb:4d:e7:9f:44:05:e1:bc:96:e3:a0: 62:87:94:18:59:b7:23:e7:c3:b1:0f:c7:8d:ac:e7: d3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3A:7D:46:99:3B:93:2A:D1:3F:2F:0F:05:5C:01:C4:DD:EB:D1:60 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/38b1d6a5-8a6e-4ed3-a057-939fd4f17f57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.240.0/23 Signature Algorithm: sha256WithRSAEncryption 56:3b:35:d2:cb:e9:c6:59:11:8a:61:35:02:2b:55:38:3a:1a: cd:5b:cc:52:99:63:21:d7:10:c2:f1:f1:33:f6:d2:06:fd:09: a6:c7:b0:f2:bd:09:6e:cb:00:57:ec:43:13:5c:52:82:29:f4: 4e:68:eb:37:db:89:8f:ca:7d:cb:f8:48:92:36:ab:cc:30:78: 9a:ce:77:7f:a9:28:db:9b:cc:10:72:b8:04:de:62:d9:38:38: 1a:63:cb:34:4b:fa:b3:01:b6:90:28:9b:ca:7b:34:18:37:37: 26:0d:79:4e:0f:82:94:0a:fc:1a:8d:2a:69:03:4d:4d:7f:49: 6c:eb:60:7c:09:1e:69:d7:a9:c6:40:d3:e7:2b:f1:5a:7e:f7: ad:f7:7d:1e:22:3e:14:b5:1f:51:2a:8e:dc:83:09:19:80:4f: 31:45:fa:a3:15:05:82:5c:26:f9:96:59:03:51:4e:b7:47:cf: bf:1d:c5:a8:7b:e8:e7:9a:76:57:7d:41:26:6f:05:76:f0:84: 00:45:ea:fa:16:f9:8b:aa:d5:5b:63:c5:26:e2:a2:ef:79:31: 58:e9:79:c6:90:69:ee:c4:fc:a8:02:34:bc:2d:5c:ef:72:25: 4f:45:32:ce:7a:16:7f:35:d3:8c:ca:d3:4f:6f:d0:2a:bf:14: 24:03:27:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGTVbu6zW0Z2JhEXP5HZ5XHmbWhcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODAyMDAxMDA5WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDE1MjBmMDNjM2I0M2I0YzA0OTNmODhhMGYwZDQ0MjY1 MTljMTRiZDkyZWZmMTc0NzQ3NzIzNDEyNTE2NmIxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEFgrgRyKp3yFlQQiNRB92FQ6Rq9AU1yJevqJnYyHROaRT fLPD0rLz4Ffn4HQgBJ0HKN5W30OS7F912oz5FtLNJSYQvpDZa92hjzLItqI2CG8M 5yD4rios+6r6mNemwOLfCloR/1x2L7pDdJVgRB+p77zfSgbWYbRw23p41fLFJ5AU ABVyfKRA2Bibkmxw3rDc87T3/TeZYR7bXS2ghkdD2YP0e3FH6j/FZehtfdo+D/Oa REjzBh025WIGhL4u6gsIvieHSEcwQrzyQh50DUg3zTfI1puik/mAZsGHjrckbSQR GXLrTeefRAXhvJbjoGKHlBhZtyPnw7EPx42s59PvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrDp9Rpk7kyrRPy8PBVwBxN3r0WAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzM4YjFkNmE1LThhNmUtNGVkMy1hMDU3LTkzOWZkNGYxN2Y1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+/AwDQYJKoZIhvcNAQELBQADggEBAFY7NdLL6cZZEYphNQIrVTg6Gs1b zFKZYyHXEMLx8TP20gb9CabHsPK9CW7LAFfsQxNcUoIp9E5o6zfbiY/Kfcv4SJI2 q8wweJrOd3+pKNubzBByuATeYtk4OBpjyzRL+rMBtpAom8p7NBg3NyYNeU4PgpQK /BqNKmkDTU1/SWzrYHwJHmnXqcZA0+cr8Vp+9633fR4iPhS1H1EqjtyDCRmATzFF +qMVBYJcJvmWWQNRTrdHz78dxah76Oeadld9QSZvBXbwhABF6voW+Yuq1VtjxSbi ou95MVjpecaQae7E/KgCNLwtXO9yJU9FMs56Fn8104zK009v0Cq/FCQDJ0Q= -----END CERTIFICATE-----Generated at Mon Aug 4 22:22:43 2025 by rpki-client