$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa File: b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa (raw, json) Hash identifier: O9j0bAhM6bRHiGJk/fJB9vbsqB0f8yxXa6zvi8T9I7s= Subject key identifier: 56:23:A1:BD:C9:B8:7B:88:20:F6:54:6A:B5:B9:03:1D:CA:FE:D7:6F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 79361B359A0D91C23B0072CD127F42ECB90FE1CC Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa Signing time: Sat 31 May 2025 00:00:17 +0000 ROA not before: Sat 31 May 2025 00:00:17 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.251.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:36:1b:35:9a:0d:91:c2:3b:00:72:cd:12:7f:42:ec:b9:0f:e1:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:00:17 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=e86ce4415c888059cc06f9b62e5dd0bb0ef2de4ec2a56942857fe5c4ca6c40ff, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d3:84:ac:a8:ba:ce:bd:fb:9c:2b:fe:6d:49: 60:65:a5:e9:3b:a1:f2:c8:44:1a:a7:6a:37:8a:d8: aa:d6:e8:9d:5b:e3:32:34:e8:21:30:07:e7:6e:d6: b3:a2:e9:c4:de:38:ba:f4:ed:3e:32:85:f1:aa:c2: cf:2a:0a:ef:5f:e8:30:5f:7c:ec:c2:96:5e:7c:f9: dc:79:ff:e9:ef:ef:92:77:ea:f3:e2:da:16:25:21: b0:68:26:20:03:e5:5a:19:a3:11:89:15:f9:56:38: 33:04:61:62:3d:b7:76:27:64:18:18:0d:98:04:e2: c7:20:18:7e:11:5d:3e:08:7f:f8:48:86:c2:3e:5a: 8b:5a:a2:be:be:5b:3e:fc:e2:94:d5:90:43:1a:a3: 3e:a6:32:ff:92:b1:6c:ae:02:44:e9:ac:c9:3f:5d: f1:a7:45:b1:02:7a:66:a3:95:06:60:7d:6c:ea:2b: 61:4d:7d:50:e0:2a:47:ef:d6:8c:6b:2c:aa:e5:5a: 6c:c8:07:fa:7f:a3:c4:13:91:88:f8:13:82:8e:86: 12:df:cd:90:c9:a7:95:2b:82:79:b2:da:3c:a0:db: 1c:fa:38:a2:fd:6e:07:e0:a9:1e:07:ce:ca:f9:ef: 9e:c9:53:fe:63:ca:3a:92:61:6c:a1:2f:aa:08:cf: a3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:23:A1:BD:C9:B8:7B:88:20:F6:54:6A:B5:B9:03:1D:CA:FE:D7:6F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.228.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:87:9e:68:a0:ab:58:a4:f7:1d:8c:dd:f4:db:cb:ba:76:89: 6e:fc:c2:c6:58:8b:84:e9:80:f5:ca:43:60:50:8e:e0:ed:5e: 9b:0d:6b:07:5a:0c:20:ed:aa:02:46:23:28:5e:bd:64:a7:41: dc:9a:09:3d:41:79:96:a6:dd:a2:25:e2:82:08:07:38:75:16: 90:0e:ea:14:de:8e:7d:91:ce:d7:b6:9b:40:95:5e:2c:5c:68: 10:3f:09:6e:c9:93:70:8d:88:1c:4e:5d:40:5a:51:fc:04:80: 24:78:52:72:b1:5c:08:3a:e9:0b:f9:fc:bb:df:04:74:4b:dc: 31:b3:8b:0d:e8:40:f4:0d:fb:2b:07:84:a7:61:5c:ff:f1:34: 77:c6:db:bf:cf:74:c9:a3:49:81:1e:5a:41:ff:17:25:4e:37: 32:ec:b6:95:40:1a:85:a7:ae:28:87:85:19:38:12:5f:72:fc: ee:43:68:48:e4:e5:9d:59:de:76:79:aa:4c:fa:ac:cb:15:4b: b7:f5:a5:a8:ec:5e:46:84:3b:7f:fd:10:80:67:72:2a:e3:c6: 90:dd:8b:7f:18:26:59:54:e8:b4:e8:db:91:d9:71:e9:9d:ff: ca:42:17:28:b9:b8:40:5f:9e:3b:c0:20:ed:9c:81:2b:e5:46: 82:ea:ee:36 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeTYbNZoNkcI7AHLNEn9C7LkP4cwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMDE3WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlODZjZTQ0MTVjODg4MDU5Y2MwNmY5YjYyZTVkZDBiYjBl ZjJkZTRlYzJhNTY5NDI4NTdmZTVjNGNhNmM0MGZmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ04SsqLrOvfucK/5tSWBlpek7ofLIRBqnajeK2KrW6J1b 4zI06CEwB+du1rOi6cTeOLr07T4yhfGqws8qCu9f6DBffOzCll58+dx5/+nv75J3 6vPi2hYlIbBoJiAD5VoZoxGJFflWODMEYWI9t3YnZBgYDZgE4scgGH4RXT4If/hI hsI+Wotaor6+Wz784pTVkEMaoz6mMv+SsWyuAkTprMk/XfGnRbECemajlQZgfWzq K2FNfVDgKkfv1oxrLKrlWmzIB/p/o8QTkYj4E4KOhhLfzZDJp5Urgnmy2jyg2xz6 OKL9bgfgqR4Hzsr5757JU/5jyjqSYWyhL6oIz6MpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUViOhvcm4e4gg9lRqtbkDHcr+128wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2ZWU5M2Q4LWQ3YTctNDFhZC04ZGUxLTkwYTA1NWJjMTk3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX++QwDQYJKoZIhvcNAQELBQADggEBAEyHnmigq1ik9x2M3fTby7p2iW78 wsZYi4TpgPXKQ2BQjuDtXpsNawdaDCDtqgJGIyhevWSnQdyaCT1BeZam3aIl4oII Bzh1FpAO6hTejn2Rzte2m0CVXixcaBA/CW7Jk3CNiBxOXUBaUfwEgCR4UnKxXAg6 6Qv5/LvfBHRL3DGziw3oQPQN+ysHhKdhXP/xNHfG27/PdMmjSYEeWkH/FyVONzLs tpVAGoWnriiHhRk4El9y/O5DaEjk5Z1Z3nZ5qkz6rMsVS7f1pajsXkaEO3/9EIBn cirjxpDdi38YJllU6LTo25HZcemd/8pCFyi5uEBfnjvAIO2cgSvlRoLq7jY= -----END CERTIFICATE-----Generated at Sun Jun 15 09:04:09 2025 by rpki-client