$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa File: 5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa (raw, json) Hash identifier: 9Z58WX22c8foUYDoiTBhvRm0Q7s3bQ8VtFPylHP+IDc= Subject key identifier: 8D:25:86:D8:AC:E0:A7:00:C6:F5:CD:60:8A:7E:F6:00:8F:78:DE:32 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 067627C2A9F60EB940610D2DD93850F571121957 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa Signing time: Sat 31 May 2025 00:00:10 +0000 ROA not before: Sat 31 May 2025 00:00:10 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:76:27:c2:a9:f6:0e:b9:40:61:0d:2d:d9:38:50:f5:71:12:19:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:00:10 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=ea80da3755721ed4feff44b33a33ae5d26f7222970ce1b56ced3ee3d69a3d73e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:17:45:3f:ee:b5:00:85:75:13:ad:99:f1:6c: cf:a1:9f:9b:bd:5f:60:73:99:42:b7:48:60:e1:b9: 21:13:2b:3f:50:fb:d4:5b:92:d0:6a:99:36:1b:af: 54:19:22:69:cb:bb:6a:f3:33:f5:d8:ab:a0:74:00: d6:8e:53:d8:f5:81:6e:1d:b7:53:2f:e1:df:95:d4: b8:b0:3d:f6:23:f7:98:6e:f1:0a:f6:0f:f7:43:cc: 18:93:c0:46:57:ce:af:ca:17:a3:2e:4c:95:9a:d8: 96:6e:26:b8:ce:0d:97:24:88:3b:19:a7:d9:c9:00: ac:ad:33:71:5c:b8:1c:2c:61:59:fb:ba:db:cb:a4: 47:d3:0f:36:0c:6f:53:c7:1c:6d:90:f9:c0:01:1d: be:5b:f5:af:75:e4:89:02:f7:80:01:3b:54:8d:a4: 78:e2:db:bd:81:ec:a4:60:d1:ea:52:4a:ab:55:45: 07:bc:78:ce:88:de:b8:fc:5b:ba:b6:b8:8d:61:8a: 98:19:47:42:06:d3:b2:da:c5:10:47:d9:49:e7:f6: 45:eb:be:9a:72:77:20:31:06:2c:af:eb:28:0b:07: 21:04:0b:43:e0:92:67:ae:c8:5f:35:85:5b:5e:17: 73:c8:12:58:5b:c9:73:f2:79:75:3c:d2:dd:73:43: be:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:25:86:D8:AC:E0:A7:00:C6:F5:CD:60:8A:7E:F6:00:8F:78:DE:32 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.233.0/24 Signature Algorithm: sha256WithRSAEncryption 22:0a:5c:79:88:8d:22:30:94:35:6e:34:fe:1e:ee:46:aa:68: 58:78:a8:65:19:eb:a8:05:f2:f0:d1:f9:16:75:c8:18:b3:b5: 43:2e:89:fb:68:8c:bd:6f:d9:64:5f:16:54:57:ab:e3:b3:c5: 58:6b:7d:81:4e:42:2c:5f:63:97:44:11:cf:71:83:27:74:15: 50:eb:aa:4e:42:a6:6d:74:0b:00:dc:12:39:b6:c3:63:85:0b: 6b:8b:11:19:18:b1:db:df:87:a2:b7:2a:0d:a4:89:82:e4:04: e7:ca:7a:5c:0e:b4:a6:56:95:93:4b:3e:38:f7:25:ac:e2:be: 5e:47:df:19:e4:b1:5e:f9:c7:61:e8:ec:1c:36:1d:ca:b4:47: 3b:7f:1d:f0:ab:95:d5:9a:55:af:ee:68:3c:24:ae:13:2e:d5: a7:2c:a0:b6:20:15:2a:6b:fb:96:30:45:7a:16:83:86:d4:bf: 9f:4e:c9:9e:33:c6:96:ec:a3:1c:26:60:ed:15:38:f9:f8:f1: 36:f7:ca:e9:2d:e0:e4:99:b2:b3:13:fa:ac:0a:22:d2:78:28: 86:c8:b2:e7:82:f8:3f:49:c7:b7:e3:9c:74:e8:41:c5:fa:b9: 1f:76:58:2a:34:52:5d:8a:e3:8f:f2:59:e1:28:8b:21:c2:31: 3e:70:b3:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBnYnwqn2DrlAYQ0t2ThQ9XESGVcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMDEwWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTgwZGEzNzU1NzIxZWQ0ZmVmZjQ0YjMzYTMzYWU1ZDI2 ZjcyMjI5NzBjZTFiNTZjZWQzZWUzZDY5YTNkNzNlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCF0U/7rUAhXUTrZnxbM+hn5u9X2BzmUK3SGDhuSETKz9Q +9RbktBqmTYbr1QZImnLu2rzM/XYq6B0ANaOU9j1gW4dt1Mv4d+V1LiwPfYj95hu 8Qr2D/dDzBiTwEZXzq/KF6MuTJWa2JZuJrjODZckiDsZp9nJAKytM3FcuBwsYVn7 utvLpEfTDzYMb1PHHG2Q+cABHb5b9a915IkC94ABO1SNpHji272B7KRg0epSSqtV RQe8eM6I3rj8W7q2uI1hipgZR0IG07LaxRBH2Unn9kXrvppydyAxBiyv6ygLByEE C0PgkmeuyF81hVteF3PIElhbyXPyeXU80t1zQ77JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjSWG2KzgpwDG9c1gin72AI943jIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkMzRmNzk3LTZkMTYtNDk4YS1iNjZkLThjN2QwZmNhYzc3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++kwDQYJKoZIhvcNAQELBQADggEBACIKXHmIjSIwlDVuNP4e7kaqaFh4 qGUZ66gF8vDR+RZ1yBiztUMuiftojL1v2WRfFlRXq+OzxVhrfYFOQixfY5dEEc9x gyd0FVDrqk5Cpm10CwDcEjm2w2OFC2uLERkYsdvfh6K3Kg2kiYLkBOfKelwOtKZW lZNLPjj3Jazivl5H3xnksV75x2Ho7Bw2Hcq0Rzt/HfCrldWaVa/uaDwkrhMu1acs oLYgFSpr+5YwRXoWg4bUv59OyZ4zxpbsoxwmYO0VOPn48Tb3yukt4OSZsrMT+qwK ItJ4KIbIsueC+D9Jx7fjnHToQcX6uR92WCo0Ul2K44/yWeEoiyHCMT5ws5A= -----END CERTIFICATE-----Generated at Sat Jun 14 06:40:27 2025 by rpki-client