$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa File: a1532cad-101c-42fe-83e3-e4a74867afd7.roa (raw, json) Hash identifier: eY0jbUCN7bOqjwISpulrjaIfTDcFVOZb7AN19qxh3vE= Subject key identifier: 4B:D0:DD:4E:CB:1B:00:45:EB:2B:90:07:7D:37:DC:A4:17:F7:DF:F7 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0EF56D38109A34BF75EBB743D85ABB3A90FF6D9A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa Signing time: Sat 02 Aug 2025 00:10:10 +0000 ROA not before: Sat 02 Aug 2025 00:10:10 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:f5:6d:38:10:9a:34:bf:75:eb:b7:43:d8:5a:bb:3a:90:ff:6d:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 2 00:10:10 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=ce9b8a215ea155b1f7bcd45d609cacac2fd54882b146b10e9966a49e0cb3ba34, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bb:9e:de:3b:b9:85:d9:b8:47:24:31:a4:94: fd:30:10:54:9a:5c:44:51:8f:7c:5c:15:c5:2b:54: 98:32:2f:16:aa:4a:5f:a5:40:63:b7:7d:d8:fb:30: c0:25:72:15:9f:a6:7f:cf:87:08:ca:74:8f:d5:07: 76:b9:9f:1c:80:1c:39:ec:d5:99:ed:6c:a9:4a:f6: fd:b4:71:4e:9e:57:55:05:e8:65:bf:54:ba:c6:57: 0e:62:87:fa:e7:b6:65:11:57:f5:0a:b7:8d:05:39: 72:c6:58:89:2a:7d:c5:d9:54:4f:ae:16:a2:a9:a0: 80:7e:b2:d3:78:71:6c:7a:cb:82:3c:e4:3b:ee:5b: 01:78:23:b5:7b:f8:36:5a:f8:32:9b:cb:47:2c:1d: c0:fd:e3:47:c2:3d:28:bb:69:e9:6c:f7:1b:49:e8: d2:a2:51:90:16:bf:4e:ad:0b:99:db:fc:2b:45:76: aa:57:08:56:bc:41:11:19:94:a1:59:92:7a:a6:72: 34:dd:2f:0e:a3:ea:1a:10:ac:44:ca:a6:42:6d:70: 6e:5f:2c:0a:77:80:1e:3d:be:0c:fb:d6:4a:ba:c3: 75:64:06:fa:7c:db:77:a4:0f:29:79:78:c0:a7:f7: fe:3e:3f:3c:72:29:39:7c:7a:15:fa:96:d4:f0:3a: 0d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:D0:DD:4E:CB:1B:00:45:EB:2B:90:07:7D:37:DC:A4:17:F7:DF:F7 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a1532cad-101c-42fe-83e3-e4a74867afd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.224.0/19 Signature Algorithm: sha256WithRSAEncryption 1e:6c:c8:60:ad:ec:46:11:e9:71:9c:b0:64:e8:6d:ff:65:1c: 17:44:38:eb:17:61:83:64:28:b3:a2:ea:ca:e1:86:34:05:60: fd:52:3c:e2:68:7c:dc:aa:16:f0:7a:08:cc:52:8e:7e:b8:ae: 22:33:aa:fa:da:65:78:f4:91:1e:8f:ea:51:04:2d:ee:d0:25: c3:7c:09:18:62:b3:f5:1f:3f:98:37:2a:91:01:ad:a3:01:67: ad:b5:f6:d1:1d:bb:03:2c:c9:16:02:e7:fd:7c:ff:9f:ce:91: b5:76:05:f1:7a:a6:2f:cd:fb:e3:6d:2d:df:c9:26:91:a2:f9: d7:4c:59:62:1e:2e:e8:1c:05:a2:63:05:9f:dc:f3:66:4b:c8: 47:5e:a1:40:30:7d:d4:ac:bc:b1:a5:b7:cf:41:b3:1b:d3:87: 69:71:4a:89:4e:23:c1:49:cb:6d:e2:2c:ca:60:2b:70:28:27: 64:be:5d:77:31:9e:2f:9f:6d:c3:7d:d0:3e:5c:16:20:09:c9: bd:a9:05:f9:2e:43:95:76:ed:13:e9:d4:64:8b:2c:5f:54:6e: 28:32:3b:a3:11:94:ea:8c:9d:83:ec:75:1c:d5:05:80:ad:fd: 58:91:d6:cd:a1:a9:c1:64:30:8e:2e:df:42:3e:c7:87:e4:97: 69:25:c6:94 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDvVtOBCaNL9167dD2Fq7OpD/bZowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODAyMDAxMDEwWhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTliOGEyMTVlYTE1NWIxZjdiY2Q0NWQ2MDljYWNhYzJm ZDU0ODgyYjE0NmIxMGU5OTY2YTQ5ZTBjYjNiYTM0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZu57eO7mF2bhHJDGklP0wEFSaXERRj3xcFcUrVJgyLxaq Sl+lQGO3fdj7MMAlchWfpn/PhwjKdI/VB3a5nxyAHDns1ZntbKlK9v20cU6eV1UF 6GW/VLrGVw5ih/rntmURV/UKt40FOXLGWIkqfcXZVE+uFqKpoIB+stN4cWx6y4I8 5DvuWwF4I7V7+DZa+DKby0csHcD940fCPSi7aels9xtJ6NKiUZAWv06tC5nb/CtF dqpXCFa8QREZlKFZknqmcjTdLw6j6hoQrETKpkJtcG5fLAp3gB49vgz71kq6w3Vk Bvp823ekDyl5eMCn9/4+PzxyKTl8ehX6ltTwOg2/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS9DdTssbAEXrK5AHfTfcpBf33/cwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ExNTMyY2FkLTEwMWMtNDJmZS04M2UzLWU0YTc0ODY3YWZkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUX++AwDQYJKoZIhvcNAQELBQADggEBAB5syGCt7EYR6XGcsGTobf9lHBdE OOsXYYNkKLOi6srhhjQFYP1SPOJofNyqFvB6CMxSjn64riIzqvraZXj0kR6P6lEE Le7QJcN8CRhis/UfP5g3KpEBraMBZ6219tEduwMsyRYC5/18/5/OkbV2BfF6pi/N ++NtLd/JJpGi+ddMWWIeLugcBaJjBZ/c82ZLyEdeoUAwfdSsvLGlt89BsxvTh2lx SolOI8FJy23iLMpgK3AoJ2S+XXcxni+fbcN90D5cFiAJyb2pBfkuQ5V27RPp1GSL LF9UbigyO6MRlOqMnYPsdRzVBYCt/ViR1s2hqcFkMI4u30I+x4fkl2klxpQ= -----END CERTIFICATE-----Generated at Tue Aug 5 16:37:25 2025 by rpki-client