$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa File: c9752aac-8490-485f-92b7-6a6ba02b76d5.roa (raw, json) Hash identifier: fC5uD7O46OZ2zMiUOCffiZFyXRKRR1fVodLeh05gJ/U= Subject key identifier: 8B:1D:86:53:0B:1B:82:73:50:BF:EC:E9:A7:90:92:6A:F0:71:C9:6D Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 34842516C37F7EBE906F83B293F31D05BAE72764 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa Signing time: Sat 14 Jun 2025 00:10:01 +0000 ROA not before: Sat 14 Jun 2025 00:10:01 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 199.127.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:84:25:16:c3:7f:7e:be:90:6f:83:b2:93:f3:1d:05:ba:e7:27:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 14 00:10:01 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=97e21e0bafa296614184ed59bbfa43b86adb00db90a52c97335b140d1a080187, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:10:d0:88:0b:c7:79:9f:8f:3e:c7:7e:b8:ca: b9:05:74:ab:c4:7a:10:bc:11:55:02:c9:5a:92:1a: 67:02:6c:45:25:5a:ef:a6:a5:e8:bf:f8:9b:92:1d: 75:dd:06:1c:02:1d:7f:c8:2d:e8:eb:31:e4:89:03: e9:55:ad:6b:95:4c:ac:d5:1a:b5:de:a9:2d:ec:50: 58:11:ae:50:ff:a4:d7:bb:fc:0b:de:b8:42:71:17: 1f:34:99:92:cc:c3:a7:11:8c:d3:11:30:35:20:9c: c7:68:dd:64:02:8e:ae:c2:23:dc:ae:89:38:dd:31: f2:ed:96:8a:3c:fb:90:23:3a:64:6b:ff:79:ac:95: 58:84:2e:2a:e4:d5:f4:1a:6e:ea:03:b4:d6:cf:a3: be:e7:17:e2:4e:d5:cc:ca:f7:95:81:2f:03:17:0a: 5e:be:77:88:15:27:0e:9a:d0:ab:05:0d:e8:25:9e: 99:fa:ab:1e:d1:ac:79:bb:01:92:ab:2c:cf:35:e1: e3:15:0e:1f:96:37:99:39:d1:72:9e:d5:12:4f:3f: 18:57:30:27:9d:2a:40:36:88:57:03:4c:2f:8c:73: 3e:5e:57:5d:5b:d4:48:af:d4:91:58:80:ff:37:9c: 37:d6:d3:e2:bc:b1:ec:f8:23:ab:14:bf:26:ca:ec: 0c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1D:86:53:0B:1B:82:73:50:BF:EC:E9:A7:90:92:6A:F0:71:C9:6D X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.127.232.0/22 Signature Algorithm: sha256WithRSAEncryption 43:6f:bc:79:96:68:ce:1a:84:d9:86:de:77:1a:e4:9f:f5:eb: 9e:c4:7e:fe:ed:11:14:bf:21:c6:f0:d4:4c:21:61:3f:77:18: a3:be:2e:e6:eb:0e:f3:b4:9f:5f:1b:a6:c0:c5:c6:3e:38:e4: 32:b4:7a:f6:d7:11:ab:96:5f:96:b8:20:e8:48:9f:47:59:61: e1:a9:e2:e8:b1:12:30:1c:6a:4b:dc:ac:88:e3:9b:4d:e1:54: 2a:03:7e:00:06:d3:4d:40:8a:b0:3a:14:91:b6:4c:98:3c:ee: b3:25:9f:47:94:ab:0a:6d:c5:6d:e2:20:aa:9b:52:c0:51:ad: 68:a6:92:aa:d4:fe:e4:16:53:77:7a:a0:d5:ae:3c:90:bc:ce: cc:29:8c:cf:0e:b9:ba:9b:d1:56:91:09:5e:97:88:ea:9e:a6: b0:49:c4:9c:b8:ad:5c:d6:d0:0b:64:71:93:33:5a:a8:49:05: 06:8a:42:5b:33:b0:02:4c:cd:7f:a8:82:75:1c:37:b2:74:81: eb:37:9c:6e:0f:05:c4:a2:e5:6d:e1:88:87:7e:18:9b:37:80: fc:0c:16:75:36:34:26:11:c2:a2:be:ab:36:7d:45:ef:56:75: 93:3d:ec:64:94:34:cb:ed:a9:36:7f:ac:6d:8c:05:40:aa:5a: c2:58:da:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNIQlFsN/fr6Qb4Oyk/MdBbrnJ2QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjE0MDAxMDAxWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2UyMWUwYmFmYTI5NjYxNDE4NGVkNTliYmZhNDNiODZh ZGIwMGRiOTBhNTJjOTczMzViMTQwZDFhMDgwMTg3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4ENCIC8d5n48+x364yrkFdKvEehC8EVUCyVqSGmcCbEUl Wu+mpei/+JuSHXXdBhwCHX/ILejrMeSJA+lVrWuVTKzVGrXeqS3sUFgRrlD/pNe7 /AveuEJxFx80mZLMw6cRjNMRMDUgnMdo3WQCjq7CI9yuiTjdMfLtloo8+5AjOmRr /3mslViELirk1fQabuoDtNbPo77nF+JO1czK95WBLwMXCl6+d4gVJw6a0KsFDegl npn6qx7RrHm7AZKrLM814eMVDh+WN5k50XKe1RJPPxhXMCedKkA2iFcDTC+Mcz5e V11b1Eiv1JFYgP83nDfW0+K8sez4I6sUvybK7Aw1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUix2GUwsbgnNQv+zpp5CSavBxyW0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2M5NzUyYWFjLTg0OTAtNDg1Zi05MmI3LTZhNmJhMDJiNzZkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALHf+gwDQYJKoZIhvcNAQELBQADggEBAENvvHmWaM4ahNmG3nca5J/1657E fv7tERS/Icbw1EwhYT93GKO+LubrDvO0n18bpsDFxj445DK0evbXEauWX5a4IOhI n0dZYeGp4uixEjAcakvcrIjjm03hVCoDfgAG001AirA6FJG2TJg87rMln0eUqwpt xW3iIKqbUsBRrWimkqrU/uQWU3d6oNWuPJC8zswpjM8Oubqb0VaRCV6XiOqeprBJ xJy4rVzW0AtkcZMzWqhJBQaKQlszsAJMzX+ognUcN7J0ges3nG4PBcSi5W3hiId+ GJs3gPwMFnU2NCYRwqK+qzZ9Re9WdZM97GSUNMvtqTZ/rG2MBUCqWsJY2gQ= -----END CERTIFICATE-----Generated at Sun Jun 15 11:35:46 2025 by rpki-client