$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa File: cc9456b4-9220-4344-96a0-04b9d83c30f6.roa (raw, json) Hash identifier: 11VlXM8Ag+nrE1AB5d7iUVx4vzg5/2k+aO7sM7cUlRQ= Subject key identifier: 18:75:1C:01:AA:F2:19:F9:62:3F:AD:AE:67:1F:AB:67:24:11:9D:6F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 370D3265BCA51ACDD2500AC1EADA29E69DDACE76 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa Signing time: Sat 02 Aug 2025 00:10:12 +0000 ROA not before: Sat 02 Aug 2025 00:10:12 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:0d:32:65:bc:a5:1a:cd:d2:50:0a:c1:ea:da:29:e6:9d:da:ce:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 2 00:10:12 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=988fb9808676c90567a1dc1d74f450421f1f9fe899485cd46e29d2ab7380ff31, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a0:90:c4:3a:9f:2a:63:71:64:2c:df:c2:5d: 61:45:1a:1e:57:96:5b:cb:98:dc:bb:b6:f7:0f:fc: e4:c7:9b:ce:9d:c5:81:00:10:69:ac:ce:99:60:39: 44:9c:20:28:ea:71:d6:29:de:09:22:e9:84:1c:6e: 3f:13:46:37:5c:53:e5:3a:4a:a0:e2:67:da:92:31: dd:0f:1a:e7:f0:45:d7:9a:40:8a:f2:43:e1:5c:3f: 31:48:fa:15:e7:fc:84:ef:ab:a2:d0:91:75:38:0a: 1e:0b:7e:b7:88:da:a3:1f:f9:0a:4b:47:68:af:05: fe:67:56:16:b9:18:ba:3d:0d:ba:5a:d6:48:90:b5: f2:74:7a:88:f6:d8:13:ee:5e:7b:19:c5:19:99:b3: 00:1e:27:51:e6:95:37:2a:91:72:c0:8f:3b:40:09: 07:16:37:ed:aa:ba:4f:32:43:aa:f5:ae:0f:64:d1: fe:22:1a:bf:d0:37:b9:78:86:9d:6a:3f:af:39:d9: 20:08:0b:2a:b6:52:ef:6b:50:75:84:58:b0:66:a5: 08:59:c8:51:f2:2f:1d:ff:8e:4a:c0:59:75:28:be: 61:4f:96:82:ab:2f:e6:5e:19:3e:18:89:c3:4d:36: ee:3f:7d:d7:c4:fd:1a:be:38:92:53:6f:dc:de:b6: be:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:75:1C:01:AA:F2:19:F9:62:3F:AD:AE:67:1F:AB:67:24:11:9D:6F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.248.0/23 Signature Algorithm: sha256WithRSAEncryption 91:28:33:c8:15:f7:20:99:32:b5:68:2d:3d:d1:69:f4:8d:37: 99:ae:d3:c8:b1:38:78:10:3c:0c:43:1d:ac:ac:ac:82:54:6f: 21:71:ee:ad:41:35:4f:2b:59:5b:e4:54:37:6e:e9:9b:92:55: 85:c5:5f:d0:43:53:ac:ff:44:0a:f8:86:b3:c5:3f:20:b0:89: 4b:bb:d3:50:a6:c9:75:53:1d:b1:df:2a:7e:85:77:b4:70:09: d7:50:8b:3e:e9:d2:98:4a:e7:30:82:03:29:32:ba:f1:36:19: a7:4c:ca:e8:f0:94:80:0f:e5:31:54:73:d5:24:cd:05:f1:ea: 69:53:ba:9f:ce:5a:37:df:86:3c:ff:d7:87:de:a2:58:10:bc: c1:d0:b1:fc:0d:10:ca:4c:a0:8f:99:84:78:23:50:13:45:f8: f1:b7:9c:dc:7b:9c:f1:0a:57:68:0b:bd:d0:d9:81:55:46:c5: f4:82:f8:a7:36:8f:6b:1a:b9:ca:ac:11:50:52:14:cd:94:24: ca:ff:72:10:4a:48:1a:c1:bd:01:2a:ff:2e:8b:b5:cc:41:b5: cb:a7:e5:60:2a:e9:53:70:97:49:03:4d:80:d5:68:9b:22:1f: fb:d3:5b:c8:bb:30:60:5c:ac:33:d4:7c:1b:cf:3e:34:1c:24: 7e:7c:a3:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNw0yZbylGs3SUArB6top5p3aznYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODAyMDAxMDEyWhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODhmYjk4MDg2NzZjOTA1NjdhMWRjMWQ3NGY0NTA0MjFm MWY5ZmU4OTk0ODVjZDQ2ZTI5ZDJhYjczODBmZjMxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNoJDEOp8qY3FkLN/CXWFFGh5XllvLmNy7tvcP/OTHm86d xYEAEGmszplgOUScICjqcdYp3gki6YQcbj8TRjdcU+U6SqDiZ9qSMd0PGufwRdea QIryQ+FcPzFI+hXn/ITvq6LQkXU4Ch4LfreI2qMf+QpLR2ivBf5nVha5GLo9Dbpa 1kiQtfJ0eoj22BPuXnsZxRmZswAeJ1HmlTcqkXLAjztACQcWN+2quk8yQ6r1rg9k 0f4iGr/QN7l4hp1qP6852SAICyq2Uu9rUHWEWLBmpQhZyFHyLx3/jkrAWXUovmFP loKrL+ZeGT4YicNNNu4/fdfE/Rq+OJJTb9zetr6BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGHUcAaryGfliP62uZx+rZyQRnW8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NjOTQ1NmI0LTkyMjAtNDM0NC05NmEwLTA0YjlkODNjMzBmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+/gwDQYJKoZIhvcNAQELBQADggEBAJEoM8gV9yCZMrVoLT3RafSNN5mu 08ixOHgQPAxDHaysrIJUbyFx7q1BNU8rWVvkVDdu6ZuSVYXFX9BDU6z/RAr4hrPF PyCwiUu701CmyXVTHbHfKn6Fd7RwCddQiz7p0phK5zCCAykyuvE2GadMyujwlIAP 5TFUc9UkzQXx6mlTup/OWjffhjz/14feolgQvMHQsfwNEMpMoI+ZhHgjUBNF+PG3 nNx7nPEKV2gLvdDZgVVGxfSC+Kc2j2saucqsEVBSFM2UJMr/chBKSBrBvQEq/y6L tcxBtcun5WAq6VNwl0kDTYDVaJsiH/vTW8i7MGBcrDPUfBvPPjQcJH58oyA= -----END CERTIFICATE-----Generated at Tue Aug 5 23:07:45 2025 by rpki-client