$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa File: 3f672c72-4d5f-408a-8326-7e62adbed891.roa (raw, json) Hash identifier: pJ0vomeHmm1TcfttzuptXXtxfnggKqhCJSULtQ3+zuo= Subject key identifier: 81:06:88:7D:03:FB:1C:EC:6B:E3:8C:54:43:8C:DD:DF:03:89:DC:A0 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 18D183EC991F3D37E27640A698856F368BD11ADB Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa Signing time: Sat 31 May 2025 00:00:56 +0000 ROA not before: Sat 31 May 2025 00:00:56 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:d1:83:ec:99:1f:3d:37:e2:76:40:a6:98:85:6f:36:8b:d1:1a:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:00:56 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=0ffff7754ff0519d9fda818667956d59baf920d50a39e114321b19bd9a65779a, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:66:6e:1c:c2:80:20:da:02:12:b9:af:5a:cd: 8f:fc:e6:80:c7:a0:b5:ac:74:e2:72:43:bd:85:3f: 1d:86:9c:b8:36:11:77:7c:5b:df:13:ab:cb:18:12: 2f:c0:af:f3:5f:3c:5f:7f:4a:ec:4b:21:64:4d:a1: be:2f:61:b3:b6:6f:ad:29:6d:4a:e2:cd:58:2d:e2: fa:fb:16:c2:cc:52:a9:74:6c:37:5b:ac:2f:89:82: a1:84:bd:03:e9:4c:f9:cc:f5:7b:2d:25:dc:de:56: b9:04:8a:36:2a:79:1f:31:f4:73:34:4f:f4:c7:fc: 14:11:11:48:0a:5d:b9:8d:d1:22:68:38:77:64:ed: 0c:34:6e:cb:32:97:53:28:b0:b1:88:f1:ba:68:3a: fd:c1:04:d1:14:ff:48:e3:bd:9f:36:7a:69:eb:ce: 35:09:7a:48:2d:85:61:0f:59:5f:0b:83:6f:8a:c9: 5c:74:d4:83:2f:72:bc:c9:2c:ab:37:3b:f1:e4:29: fa:77:bf:cc:db:ba:48:ec:f3:6f:ec:97:a6:e5:59: 0e:5b:ac:9e:d5:93:28:1a:6c:30:c7:9c:fa:49:c9: 10:41:38:29:78:a9:f2:eb:e4:32:cd:41:a1:20:e1: 99:03:a1:86:91:c4:8b:e4:d0:6b:96:bd:23:23:dd: 72:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:06:88:7D:03:FB:1C:EC:6B:E3:8C:54:43:8C:DD:DF:03:89:DC:A0 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.221.0/24 Signature Algorithm: sha256WithRSAEncryption 14:03:25:91:1c:fc:01:ae:ae:be:73:17:19:7c:fc:f3:ec:95: f2:6a:37:4a:c6:cb:ad:46:04:f0:e4:94:6d:65:28:f3:7c:9a: 06:dd:b3:13:35:d1:3a:0a:b9:0b:bd:81:92:cb:32:6a:e7:d6: 05:a7:44:c8:43:f8:28:3d:da:53:a1:43:c9:de:ef:eb:60:82: 92:ac:dd:6d:5e:5e:98:34:56:d1:d5:fa:7b:d6:f8:ee:36:9b: b8:b8:47:b0:5e:74:38:c1:ca:7b:c7:ce:61:ad:20:ab:d5:13: 7d:84:90:af:d9:51:cc:3e:96:d6:31:5b:a1:43:7d:90:d3:15: ad:4a:29:5a:de:e4:2a:30:d6:3f:f1:ee:8b:7c:17:c0:83:ae: e1:a1:bb:e5:65:b5:56:e3:de:f2:dc:4f:0f:e6:32:c2:04:16: 3a:b3:01:47:9b:db:e7:dc:04:e4:3c:1b:68:d2:d0:a6:19:59: 72:c4:3f:37:5a:fe:43:68:c7:0d:06:53:d1:19:c3:8a:61:8e: 8f:3e:e7:8a:c0:cd:68:d8:36:9c:8d:9f:0f:f9:7a:70:4b:b0: a5:0b:c9:35:ae:26:f8:d6:c7:7a:79:4b:f9:7e:7f:82:5d:d6: 94:e2:5b:11:92:9b:cd:e5:d0:9b:8b:c8:0a:2f:6f:b0:c4:4c: 46:3c:05:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGNGD7JkfPTfidkCmmIVvNovRGtswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMDU2WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZmZmZjc3NTRmZjA1MTlkOWZkYTgxODY2Nzk1NmQ1OWJh ZjkyMGQ1MGEzOWUxMTQzMjFiMTliZDlhNjU3NzlhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHZm4cwoAg2gISua9azY/85oDHoLWsdOJyQ72FPx2GnLg2 EXd8W98Tq8sYEi/Ar/NfPF9/SuxLIWRNob4vYbO2b60pbUrizVgt4vr7FsLMUql0 bDdbrC+JgqGEvQPpTPnM9XstJdzeVrkEijYqeR8x9HM0T/TH/BQREUgKXbmN0SJo OHdk7Qw0bssyl1MosLGI8bpoOv3BBNEU/0jjvZ82emnrzjUJekgthWEPWV8Lg2+K yVx01IMvcrzJLKs3O/HkKfp3v8zbukjs82/sl6blWQ5brJ7VkygabDDHnPpJyRBB OCl4qfLr5DLNQaEg4ZkDoYaRxIvk0GuWvSMj3XITAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgQaIfQP7HOxr44xUQ4zd3wOJ3KAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNmNjcyYzcyLTRkNWYtNDA4YS04MzI2LTdlNjJhZGJlZDg5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d0wDQYJKoZIhvcNAQELBQADggEBABQDJZEc/AGurr5zFxl8/PPslfJq N0rGy61GBPDklG1lKPN8mgbdsxM10ToKuQu9gZLLMmrn1gWnRMhD+Cg92lOhQ8ne 7+tggpKs3W1eXpg0VtHV+nvW+O42m7i4R7BedDjBynvHzmGtIKvVE32EkK/ZUcw+ ltYxW6FDfZDTFa1KKVre5Cow1j/x7ot8F8CDruGhu+VltVbj3vLcTw/mMsIEFjqz AUeb2+fcBOQ8G2jS0KYZWXLEPzda/kNoxw0GU9EZw4phjo8+54rAzWjYNpyNnw/5 enBLsKULyTWuJvjWx3p5S/l+f4Jd1pTiWxGSm83l0JuLyAovb7DETEY8Bb4= -----END CERTIFICATE-----Generated at Mon Jun 16 10:34:26 2025 by rpki-client