$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa File: b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa (raw, json) Hash identifier: Lt1VVvyJPYZR8yqfhep4mEFYOW5e6B43ZZ2BVNIgPSA= Subject key identifier: 23:B4:B9:22:4B:23:91:0A:CF:D2:5A:CE:6B:E2:D0:52:14:C8:68:1C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5BB95BB94339BD2F7D6EEE7C1F7166F57E1C425D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa Signing time: Sat 31 May 2025 00:00:19 +0000 ROA not before: Sat 31 May 2025 00:00:19 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.251.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:b9:5b:b9:43:39:bd:2f:7d:6e:ee:7c:1f:71:66:f5:7e:1c:42:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:00:19 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=110ecd003297fda983521352ab68746cdd63abf99c4fd12d19464d8886bd86e5, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:75:52:be:d0:bf:b5:e1:fa:5f:49:1e:7d:a4: 7d:d5:01:a2:f9:93:68:1b:f8:2f:69:c4:93:47:84: d2:71:7a:b0:54:42:fe:e2:5a:71:90:22:63:40:43: c7:f8:3c:c7:ce:13:78:bc:16:4a:e1:ee:7c:dd:33: 8c:99:f4:71:0b:3c:e4:66:2c:a6:38:a2:8a:69:52: 57:04:c2:42:a8:5c:7d:32:72:1d:37:fe:1c:74:bb: 9d:56:b0:47:aa:e2:aa:40:b1:47:39:26:ac:7e:f5: 47:3a:37:cc:96:16:3a:0d:ae:1e:74:93:85:aa:93: 4b:b8:a8:1d:13:76:a1:60:5f:b7:92:e9:a3:f1:bd: 52:9a:b0:e9:23:5b:5a:f1:3f:d1:f0:eb:4d:d3:d2: e0:b7:ca:06:a8:d2:1d:84:17:82:9b:b7:26:93:e5: ea:06:46:4f:e5:dc:25:25:67:61:7c:11:c6:8c:a4: d3:58:86:98:78:3c:02:46:23:7b:c9:53:3b:f2:7f: b7:98:5a:2a:51:e4:76:94:9a:bb:15:d7:4a:b3:f8: 1c:fc:5c:78:ef:8a:2f:20:07:3b:d1:3c:5d:d4:fb: da:fe:4b:23:9e:8a:4c:f6:01:bd:67:89:18:48:11: 31:e1:b8:1b:f5:28:73:71:7b:60:6b:16:74:62:4f: 65:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B4:B9:22:4B:23:91:0A:CF:D2:5A:CE:6B:E2:D0:52:14:C8:68:1C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.252.0/22 Signature Algorithm: sha256WithRSAEncryption 35:e1:52:94:a7:7d:e2:01:cf:85:a6:3f:19:19:cf:f8:5e:cf: ec:aa:73:4a:88:86:21:ef:12:c5:78:49:fd:12:b7:6b:f0:f8: 07:7e:c2:2e:bb:47:ce:1f:81:30:b2:da:c5:7c:a1:34:2c:1a: bc:29:ba:05:73:bd:70:ec:76:84:62:e8:35:f3:08:17:e5:03: 08:a0:b0:45:5e:c0:78:65:8f:e3:00:69:31:38:4b:20:0b:d6: 19:a1:ab:6f:1d:ee:a0:f4:93:cb:1f:c4:4e:ff:fa:ba:ff:6d: dd:28:3d:62:ed:38:0a:1e:59:28:46:90:bd:8b:9b:af:28:7c: 54:79:53:2d:3e:21:5a:a4:3c:2f:19:c5:b3:49:0c:ef:16:eb: aa:a5:11:79:15:7f:76:2a:23:0e:21:63:ff:da:6b:77:48:70: 19:49:11:6d:1d:73:73:88:aa:97:c2:68:f5:32:4a:27:7f:44: 76:4e:4d:74:10:2e:14:be:ab:23:14:0b:c0:ad:bc:96:a5:86: 6b:9e:66:85:15:6f:f6:13:f9:20:cb:e7:4a:28:1d:d1:77:40: ab:d1:cf:1c:ac:cc:44:52:3e:a2:48:a5:dc:12:7d:ad:82:6c: 4c:b5:e4:6b:c7:37:e6:eb:f1:f8:b1:f5:c9:6b:c7:5c:55:3e: e9:de:6b:32 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW7lbuUM5vS99bu58H3Fm9X4cQl0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMDE5WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTBlY2QwMDMyOTdmZGE5ODM1MjEzNTJhYjY4NzQ2Y2Rk NjNhYmY5OWM0ZmQxMmQxOTQ2NGQ4ODg2YmQ4NmU1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmdVK+0L+14fpfSR59pH3VAaL5k2gb+C9pxJNHhNJxerBU Qv7iWnGQImNAQ8f4PMfOE3i8Fkrh7nzdM4yZ9HELPORmLKY4ooppUlcEwkKoXH0y ch03/hx0u51WsEeq4qpAsUc5Jqx+9Uc6N8yWFjoNrh50k4Wqk0u4qB0TdqFgX7eS 6aPxvVKasOkjW1rxP9Hw603T0uC3ygao0h2EF4KbtyaT5eoGRk/l3CUlZ2F8EcaM pNNYhph4PAJGI3vJUzvyf7eYWipR5HaUmrsV10qz+Bz8XHjvii8gBzvRPF3U+9r+ SyOeikz2Ab1niRhIETHhuBv1KHNxe2BrFnRiT2X1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI7S5IksjkQrP0lrOa+LQUhTIaBwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1Y2M4NWI2LWZkYzEtNGE4Zi1iMjY2LTYxMWQ3N2NlYmY1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX+/wwDQYJKoZIhvcNAQELBQADggEBADXhUpSnfeIBz4WmPxkZz/hez+yq c0qIhiHvEsV4Sf0St2vw+Ad+wi67R84fgTCy2sV8oTQsGrwpugVzvXDsdoRi6DXz CBflAwigsEVewHhlj+MAaTE4SyAL1hmhq28d7qD0k8sfxE7/+rr/bd0oPWLtOAoe WShGkL2Lm68ofFR5Uy0+IVqkPC8ZxbNJDO8W66qlEXkVf3YqIw4hY//aa3dIcBlJ EW0dc3OIqpfCaPUySid/RHZOTXQQLhS+qyMUC8CtvJalhmueZoUVb/YT+SDL50oo HdF3QKvRzxyszERSPqJIpdwSfa2CbEy15GvHN+br8fix9clrx1xVPuneazI= -----END CERTIFICATE-----Generated at Sat Jun 14 23:51:50 2025 by rpki-client