$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa File: 946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa (raw, json) Hash identifier: yxj4O1LSox/1avBRzCpkesCEBt6ugxfpeqrTwv2m7X8= Subject key identifier: A9:97:8C:D5:C1:D9:E4:87:01:F1:DF:FE:79:7D:E6:41:DC:97:92:36 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 313BD1B14768AEFC3719F0EBEFF1DFC5F40A9BDE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa Signing time: Mon 21 Jul 2025 15:21:12 +0000 ROA not before: Mon 21 Jul 2025 15:21:12 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:3b:d1:b1:47:68:ae:fc:37:19:f0:eb:ef:f1:df:c5:f4:0a:9b:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:21:12 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=3cc4fd17046c6e002507e4aacda30109d4dcc503fbdf436847522c3b0e1d344a, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:af:fe:c1:88:af:d1:e9:39:b3:d3:08:a8:13: a2:ea:16:e5:18:26:2c:24:62:8c:47:e6:03:ff:fd: 71:b3:b3:7f:e2:84:a1:20:66:c3:19:2a:24:09:d8: 8a:6d:f7:f5:8e:16:d1:d2:6e:a7:49:87:29:c3:da: d7:1c:da:a4:0c:5d:2a:35:57:a5:ef:99:30:63:77: 8e:ab:08:0e:5e:f1:5d:8d:0d:6a:a1:e2:5e:fe:22: a7:81:d6:18:e2:1e:55:04:f8:cb:6d:71:86:ca:36: db:f0:55:c6:c7:46:8f:19:b3:0c:40:e8:4a:93:52: 20:0b:be:91:c4:f2:34:ae:1f:f9:4f:e0:05:c1:ae: 24:84:38:a7:df:6e:19:53:b9:f1:ee:22:e5:15:e0: 61:c8:c2:d2:e1:6e:7d:a9:86:6e:d1:9f:ab:2a:b5: 59:00:3b:af:64:d2:c1:04:ed:c0:87:6a:60:aa:c5: 0a:e3:de:07:06:49:ab:ea:e4:9f:54:13:d3:47:bb: b7:4d:0f:20:1e:47:ed:a1:87:16:ff:4b:2a:bd:86: 70:b3:60:62:d4:89:82:c3:ee:2f:e5:c2:b2:7a:6c: ca:9d:ea:c6:8e:dc:f4:af:8a:6e:9c:f4:49:51:80: e6:25:ee:5c:a6:83:27:43:d3:70:36:31:39:47:11: 8f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:97:8C:D5:C1:D9:E4:87:01:F1:DF:FE:79:7D:E6:41:DC:97:92:36 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.225.0/24 Signature Algorithm: sha256WithRSAEncryption 20:fe:ed:7b:75:ea:30:0c:83:5c:41:0b:0c:41:bd:98:74:a5: a2:2a:10:6d:88:94:5b:c4:86:e7:9b:67:de:68:18:d7:fa:e5: f3:04:8d:a1:d0:a6:3f:81:1a:fa:c5:83:88:bf:b6:50:5f:92: 05:fe:53:f7:0c:4d:a8:cf:b4:c1:a1:3d:3b:69:14:27:7e:65: c3:b0:f6:3d:ac:87:f9:e1:82:ac:8f:01:dd:bf:cf:bb:55:f6: 24:ed:c6:b8:6e:4e:e2:84:7f:db:22:b2:15:7a:3e:4d:5d:ed: 7d:25:aa:6f:1e:12:3e:9e:aa:28:09:9b:9a:93:a8:0d:cf:08: f0:79:73:79:09:3b:4a:56:4a:39:c1:4e:85:da:9b:93:13:ed: 3a:53:8d:6c:7b:44:9a:4e:69:ab:e3:7e:ac:bb:10:aa:af:4f: 93:d8:0c:81:52:b8:1c:d8:ef:59:25:9c:8f:59:b6:4d:f5:00: 11:42:0c:b7:50:a5:3f:e7:e6:fa:79:5c:74:28:2e:0e:0f:30: 6d:97:24:21:72:18:0e:1e:43:23:64:ca:39:d8:44:38:58:0e: 83:59:6a:72:24:6c:f2:7c:8a:c9:14:f4:6e:10:f1:80:15:6e: 35:1c:00:d2:14:77:22:9f:a3:05:a9:62:65:14:eb:b2:97:4e: 74:24:63:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMTvRsUdorvw3GfDr7/HfxfQKm94wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMTEyWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzY2M0ZmQxNzA0NmM2ZTAwMjUwN2U0YWFjZGEzMDEwOWQ0 ZGNjNTAzZmJkZjQzNjg0NzUyMmMzYjBlMWQzNDRhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkr/7BiK/R6Tmz0wioE6LqFuUYJiwkYoxH5gP//XGzs3/i hKEgZsMZKiQJ2Ipt9/WOFtHSbqdJhynD2tcc2qQMXSo1V6XvmTBjd46rCA5e8V2N DWqh4l7+IqeB1hjiHlUE+MttcYbKNtvwVcbHRo8ZswxA6EqTUiALvpHE8jSuH/lP 4AXBriSEOKffbhlTufHuIuUV4GHIwtLhbn2phm7Rn6sqtVkAO69k0sEE7cCHamCq xQrj3gcGSavq5J9UE9NHu7dNDyAeR+2hhxb/Syq9hnCzYGLUiYLD7i/lwrJ6bMqd 6saO3PSvim6c9ElRgOYl7lymgydD03A2MTlHEY/1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqZeM1cHZ5IcB8d/+eX3mQdyXkjYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk0NmFlYzBhLWRkZGYtNDlhYi1iNWJmLWVjNzI4MWViMWU3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++EwDQYJKoZIhvcNAQELBQADggEBACD+7Xt16jAMg1xBCwxBvZh0paIq EG2IlFvEhuebZ95oGNf65fMEjaHQpj+BGvrFg4i/tlBfkgX+U/cMTajPtMGhPTtp FCd+ZcOw9j2sh/nhgqyPAd2/z7tV9iTtxrhuTuKEf9sishV6Pk1d7X0lqm8eEj6e qigJm5qTqA3PCPB5c3kJO0pWSjnBToXam5MT7TpTjWx7RJpOaavjfqy7EKqvT5PY DIFSuBzY71klnI9Ztk31ABFCDLdQpT/n5vp5XHQoLg4PMG2XJCFyGA4eQyNkyjnY RDhYDoNZanIkbPJ8iskU9G4Q8YAVbjUcANIUdyKfowWpYmUU67KXTnQkY6U= -----END CERTIFICATE-----Generated at Tue Aug 5 17:17:48 2025 by rpki-client