$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa File: cc9456b4-9220-4344-96a0-04b9d83c30f6.roa (raw, json) Hash identifier: ee01Ycx8jKd+uqQN/Ty9tGT/hN9l0bh+hma7lGHOdlk= Subject key identifier: 7A:C1:A4:47:38:BD:95:DB:8F:CC:92:5A:BC:84:E4:45:DF:23:D3:D3 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 21AE8ED5AE7ACD03A77083AA58316C2AFE24ED27 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa Signing time: Fri 13 Jun 2025 00:10:03 +0000 ROA not before: Fri 13 Jun 2025 00:10:03 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ae:8e:d5:ae:7a:cd:03:a7:70:83:aa:58:31:6c:2a:fe:24:ed:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 13 00:10:03 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=d09bff944ad8a597b595f1c4a533d2b444f810272f56c93600fb0f922993c26d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:be:a9:2d:c8:d6:65:c9:18:4b:d7:dc:21:f4: 59:16:bc:1d:a8:03:f5:e0:1c:b1:43:ff:e0:29:b8: 6f:60:b2:3d:56:93:78:87:8b:a4:79:b1:9e:b2:58: 7c:36:98:60:5b:6b:f6:14:98:e5:7c:75:41:b1:66: 17:8b:5d:b3:4a:4d:f6:42:33:79:86:7b:78:3b:b6: 27:42:0a:e5:0f:06:0a:24:d7:d5:18:78:82:8f:be: f7:0a:6d:ae:03:63:88:56:fe:c3:8e:9e:46:2d:c6: a4:74:f7:b0:50:02:1e:b6:b7:7e:ba:47:2e:00:e1: 91:39:98:c8:f4:1b:83:c4:d7:61:98:25:e9:cc:1f: 5f:03:3d:70:96:d8:87:46:04:1b:c5:bb:d1:a0:cb: 12:24:3e:ae:e2:73:22:a8:e1:dc:70:84:28:4f:48: 6e:19:30:00:d9:6e:56:bc:15:99:da:5f:28:45:39: e5:3d:0f:4d:07:f1:59:83:46:5d:20:a1:45:06:a1: af:a8:1e:72:e1:7d:11:36:c8:df:08:0b:12:8a:33: 9d:2d:6f:3b:da:47:7d:bf:b0:17:cb:d7:2b:15:f0: d1:47:fc:6c:ef:81:b3:cd:a8:88:92:cb:1b:da:83: 7f:df:3e:35:68:ee:e0:ad:23:fb:8a:e1:09:b4:07: fe:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C1:A4:47:38:BD:95:DB:8F:CC:92:5A:BC:84:E4:45:DF:23:D3:D3 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9456b4-9220-4344-96a0-04b9d83c30f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.248.0/23 Signature Algorithm: sha256WithRSAEncryption 54:93:58:06:2c:a6:8c:17:9b:fa:ed:76:41:9d:c1:f9:11:55: 04:7f:83:f0:06:51:26:a6:71:21:51:e2:62:ec:64:57:a2:fe: ca:0e:c9:4b:d0:97:1f:78:40:eb:e0:9d:9a:85:c4:a5:dc:6a: 94:ff:6c:87:59:42:77:41:4d:75:60:d9:aa:5e:94:e9:55:11: 41:d1:95:75:77:46:92:72:7b:5b:24:75:2e:88:59:fe:88:de: ed:0e:33:d3:36:cb:ab:40:5f:fa:c4:19:df:be:d2:98:c1:72: a7:7c:f2:67:03:85:30:a4:0e:60:4d:2b:a2:c1:27:79:f4:5b: c4:79:9b:c5:07:a9:d5:12:cb:2c:47:2f:90:cc:02:bc:80:d9: 8e:fc:76:ac:d0:cd:1f:c8:60:c5:b1:0a:54:bc:f2:34:da:c1: c7:68:94:60:56:b6:95:af:c0:f0:21:45:38:61:28:69:a2:4a: bf:cb:b5:32:3b:fa:9c:ef:38:6f:06:d1:5c:72:d4:28:22:9b: 43:d5:6f:6c:3a:1d:cf:d7:ce:7d:13:f9:26:d7:57:52:29:04: 04:a6:3a:b8:6e:32:69:a7:52:8c:7f:a4:86:84:37:06:0d:87: 6c:0e:98:c0:be:9a:c7:fa:48:c3:8e:c3:32:2e:68:12:e4:6c: 51:bb:df:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIa6O1a56zQOncIOqWDFsKv4k7ScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjEzMDAxMDAzWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDliZmY5NDRhZDhhNTk3YjU5NWYxYzRhNTMzZDJiNDQ0 ZjgxMDI3MmY1NmM5MzYwMGZiMGY5MjI5OTNjMjZkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7vqktyNZlyRhL19wh9FkWvB2oA/XgHLFD/+ApuG9gsj1W k3iHi6R5sZ6yWHw2mGBba/YUmOV8dUGxZheLXbNKTfZCM3mGe3g7tidCCuUPBgok 19UYeIKPvvcKba4DY4hW/sOOnkYtxqR097BQAh62t366Ry4A4ZE5mMj0G4PE12GY JenMH18DPXCW2IdGBBvFu9GgyxIkPq7icyKo4dxwhChPSG4ZMADZbla8FZnaXyhF OeU9D00H8VmDRl0goUUGoa+oHnLhfRE2yN8ICxKKM50tbzvaR32/sBfL1ysV8NFH /GzvgbPNqIiSyxvag3/fPjVo7uCtI/uK4Qm0B/6dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUesGkRzi9lduPzJJavITkRd8j09MwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NjOTQ1NmI0LTkyMjAtNDM0NC05NmEwLTA0YjlkODNjMzBmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEX+/gwDQYJKoZIhvcNAQELBQADggEBAFSTWAYspowXm/rtdkGdwfkRVQR/ g/AGUSamcSFR4mLsZFei/soOyUvQlx94QOvgnZqFxKXcapT/bIdZQndBTXVg2ape lOlVEUHRlXV3RpJye1skdS6IWf6I3u0OM9M2y6tAX/rEGd++0pjBcqd88mcDhTCk DmBNK6LBJ3n0W8R5m8UHqdUSyyxHL5DMAryA2Y78dqzQzR/IYMWxClS88jTawcdo lGBWtpWvwPAhRThhKGmiSr/LtTI7+pzvOG8G0Vxy1Cgim0PVb2w6Hc/Xzn0T+SbX V1IpBASmOrhuMmmnUox/pIaENwYNh2wOmMC+msf6SMOOwzIuaBLkbFG73+A= -----END CERTIFICATE-----Generated at Sat Jun 14 06:33:22 2025 by rpki-client