$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa File: df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa (raw, json) Hash identifier: ILKmmpY2yXK4A8CQebUjz3r3muxh3vhkMptDfD8S1mg= Subject key identifier: 04:88:55:6E:FC:80:20:20:11:DC:03:D7:5E:65:DB:0C:FC:36:72:DC Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 561137FB962E9647DA428AF641470CF6A272D894 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa Signing time: Sat 31 May 2025 00:00:09 +0000 ROA not before: Sat 31 May 2025 00:00:09 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:11:37:fb:96:2e:96:47:da:42:8a:f6:41:47:0c:f6:a2:72:d8:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:00:09 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=b1486a887162111f9ea8c1602b40a21bba9c3098236fab1c70c98243478a5490, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ba:07:2e:64:bf:29:aa:c0:b6:52:f3:7e:0b: 04:60:16:9f:e8:df:5d:53:3b:dd:66:c2:b3:14:be: b4:f8:e2:4b:9e:0f:71:03:e4:3a:c9:ff:40:ec:f3: e6:c1:c9:be:15:61:09:7d:76:3c:ae:9b:eb:f4:1f: 10:1b:e3:78:42:af:29:b6:17:85:a9:29:46:bb:06: 4e:fc:e4:06:11:f5:2e:ca:fb:6a:65:56:c0:c6:ba: 28:3a:65:41:60:47:42:7b:ff:37:d4:e0:b7:f6:dd: 47:76:7a:41:66:fc:08:f5:ba:75:34:f9:8f:46:32: 9b:83:77:90:08:4c:e4:62:ea:8f:28:6b:3b:cb:73: 87:fe:c7:f3:57:e0:88:87:89:94:ee:8a:95:da:be: a8:87:30:ae:3f:4b:51:e5:c3:1c:2d:3e:df:04:7f: e3:b2:f7:2b:a7:09:16:d9:1d:26:6f:b2:82:43:2a: e9:b6:88:1f:c6:21:7a:67:f9:9f:33:a2:2b:a8:d6: d3:a1:ec:ae:31:42:aa:f2:40:0c:12:ac:34:e2:20: 85:39:18:45:e9:4a:fd:ee:3b:15:be:21:e2:3c:16: f6:8e:04:8c:f6:41:b5:33:55:15:47:ed:54:1f:fc: 94:f1:49:85:ca:c1:d3:6a:6e:a4:76:83:ee:04:49: f7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:88:55:6E:FC:80:20:20:11:DC:03:D7:5E:65:DB:0C:FC:36:72:DC X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.232.0/24 Signature Algorithm: sha256WithRSAEncryption 14:1b:87:05:eb:2d:0f:51:d4:3a:29:8a:25:9a:75:7f:93:dd: 33:e0:84:75:f9:06:43:9d:66:3e:b9:62:9d:3d:0b:db:62:1b: c5:bb:2c:48:64:de:ad:d1:49:90:8c:31:48:c5:3e:55:ca:14: 8b:72:e3:b9:b7:1d:63:9e:f5:f4:e2:bc:af:fe:73:22:d3:5a: 29:62:15:a0:62:09:2e:d8:dd:83:d3:2a:04:52:d3:26:d9:e7: e7:44:4c:42:8c:f2:fc:66:98:cd:4f:2a:63:80:83:e2:70:1b: fe:c9:f2:c1:ba:df:3c:7a:b0:08:62:0c:07:b4:62:8a:3b:be: ac:f3:bd:47:4e:cb:a8:2e:71:a9:6a:4e:2d:3e:73:3e:d3:ab: 76:f3:f0:c8:1b:82:d3:16:2f:10:da:45:f8:37:30:9d:c5:43: b1:cc:53:51:ca:6f:e0:85:e6:24:87:64:fe:22:8f:38:f0:ee: 4c:02:4d:d4:7a:72:34:3c:94:c6:e0:f3:31:8d:c7:04:89:f1: 33:5c:c8:ab:77:1b:cc:3d:68:91:94:d0:54:9e:b9:51:04:12: 94:c5:81:0e:69:a7:94:8f:d2:2b:16:77:75:db:72:5f:31:cd: 3b:82:d8:d3:99:f7:ef:54:ba:62:0b:db:39:d1:df:9e:67:0c: a5:9b:76:e7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVhE3+5YulkfaQor2QUcM9qJy2JQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMDA5WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTQ4NmE4ODcxNjIxMTFmOWVhOGMxNjAyYjQwYTIxYmJh OWMzMDk4MjM2ZmFiMWM3MGM5ODI0MzQ3OGE1NDkwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdugcuZL8pqsC2UvN+CwRgFp/o311TO91mwrMUvrT44kue D3ED5DrJ/0Ds8+bByb4VYQl9djyum+v0HxAb43hCrym2F4WpKUa7Bk785AYR9S7K +2plVsDGuig6ZUFgR0J7/zfU4Lf23Ud2ekFm/Aj1unU0+Y9GMpuDd5AITORi6o8o azvLc4f+x/NX4IiHiZTuipXavqiHMK4/S1HlwxwtPt8Ef+Oy9yunCRbZHSZvsoJD Kum2iB/GIXpn+Z8zoiuo1tOh7K4xQqryQAwSrDTiIIU5GEXpSv3uOxW+IeI8FvaO BIz2QbUzVRVH7VQf/JTxSYXKwdNqbqR2g+4ESfdzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBIhVbvyAICAR3APXXmXbDPw2ctwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2RmMTk3ZWNmLWJiOWEtNDJhZS1hMTlhLWE0MTY4ZmU2YTNhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++gwDQYJKoZIhvcNAQELBQADggEBABQbhwXrLQ9R1DopiiWadX+T3TPg hHX5BkOdZj65Yp09C9tiG8W7LEhk3q3RSZCMMUjFPlXKFIty47m3HWOe9fTivK/+ cyLTWiliFaBiCS7Y3YPTKgRS0ybZ5+dETEKM8vxmmM1PKmOAg+JwG/7J8sG63zx6 sAhiDAe0Yoo7vqzzvUdOy6gucalqTi0+cz7Tq3bz8MgbgtMWLxDaRfg3MJ3FQ7HM U1HKb+CF5iSHZP4ijzjw7kwCTdR6cjQ8lMbg8zGNxwSJ8TNcyKt3G8w9aJGU0FSe uVEEEpTFgQ5pp5SP0isWd3Xbcl8xzTuC2NOZ9+9UumIL2znR355nDKWbduc= -----END CERTIFICATE-----Generated at Sat Jun 14 06:18:21 2025 by rpki-client