$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa File: df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa (raw, json) Hash identifier: sOcg5lRme38oOpYYogDjqTFcYxocXzpMpVcIWW2VGvc= Subject key identifier: 41:94:65:0D:E5:BC:77:CF:C9:FC:7E:A3:F1:B6:A0:25:31:29:42:E1 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 63A01380E3C26BB92AE871219D960C7EB90799C2 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa Signing time: Mon 21 Jul 2025 15:21:08 +0000 ROA not before: Mon 21 Jul 2025 15:21:08 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:a0:13:80:e3:c2:6b:b9:2a:e8:71:21:9d:96:0c:7e:b9:07:99:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:21:08 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=9b53e92d4a762d661cd3fae610ecb4a8af8dfc4626b0a5c33ff24bb61399bddb, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c6:e5:97:48:89:09:10:0b:3b:41:97:57:72: 00:cd:66:05:13:23:d6:6f:4d:eb:ff:60:b5:9b:ed: 9b:6b:1c:d4:33:98:d0:9e:66:b0:f5:9b:a1:6a:98: 66:27:c2:af:8e:33:44:8c:4c:7a:0f:f0:a1:ab:4d: 2a:c7:66:b6:a2:d5:a4:6c:33:d2:3d:36:00:07:2c: 9f:12:17:c1:4b:af:61:7d:95:5c:ba:3e:4c:02:31: 20:50:fe:31:d1:ca:f9:d4:13:7c:fa:1f:79:ea:6d: cb:01:1a:25:38:a2:25:d3:31:28:1b:11:8a:a7:14: 77:a1:8c:77:13:8a:30:0f:0d:e1:a6:91:87:a2:85: 44:b2:fa:3c:70:7a:d4:2b:da:96:28:22:b9:50:6b: 2b:a4:60:45:b9:19:5c:60:f1:e1:da:cd:9a:f8:f2: 2d:19:4b:8b:08:64:6e:d2:12:85:bc:f0:a3:c0:a6: 07:81:92:8e:cb:bf:e3:6d:14:e2:59:3f:1a:da:d1: 2e:df:f5:8f:6c:06:e5:a2:3b:9b:82:f5:77:aa:53: db:a5:9a:0f:7e:1e:a1:05:da:58:4b:36:da:a9:ff: e8:42:83:7b:60:48:ec:2e:f5:8d:78:6b:e5:e1:82: 55:0f:04:1c:74:ae:0f:e2:9d:11:7b:a0:39:32:76: 2c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:94:65:0D:E5:BC:77:CF:C9:FC:7E:A3:F1:B6:A0:25:31:29:42:E1 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.232.0/24 Signature Algorithm: sha256WithRSAEncryption 78:87:76:57:4d:7a:fb:f6:8d:b1:30:19:b8:10:dc:61:30:c5: dd:65:1d:02:c3:e4:b6:98:0f:a3:58:53:96:53:6d:00:4c:5a: c0:e9:d3:a7:47:39:74:89:a9:38:8e:e2:45:32:84:70:cc:78: 9a:54:1d:0a:ae:17:26:56:da:0e:fd:c2:0b:d3:a7:48:50:8a: 8a:c2:12:5f:85:39:ea:15:cb:b3:7c:d8:6d:5a:62:ce:17:73: 98:67:6a:0c:44:08:0f:52:15:34:0a:e6:07:f4:7d:e0:36:9c: aa:92:5e:69:62:a8:b4:db:be:76:69:7c:17:2b:94:80:4a:e1: 86:eb:31:76:05:cc:16:4c:c6:3f:83:f6:b4:c9:43:52:b6:32: 6a:45:6d:3f:af:30:da:21:77:66:23:61:86:0d:f8:fa:1d:f7: ee:e2:4e:e5:45:a3:7d:35:0b:cd:85:f8:a3:2c:50:4d:91:20: 06:51:9a:f9:41:32:c5:71:4d:d4:ee:8a:c5:3d:41:d0:18:32: 0c:1b:23:d6:e5:15:93:20:e5:e1:a7:d1:56:73:6a:b5:bd:f1: 69:99:c0:3f:24:65:a8:db:3d:65:11:a7:b8:97:24:79:89:92: 7b:ff:f7:12:e4:27:a7:45:48:cf:71:46:b2:e4:77:b3:b9:98: a5:37:63:af -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY6ATgOPCa7kq6HEhnZYMfrkHmcIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMTA4WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YjUzZTkyZDRhNzYyZDY2MWNkM2ZhZTYxMGVjYjRhOGFm OGRmYzQ2MjZiMGE1YzMzZmYyNGJiNjEzOTliZGRiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkxuWXSIkJEAs7QZdXcgDNZgUTI9ZvTev/YLWb7ZtrHNQz mNCeZrD1m6FqmGYnwq+OM0SMTHoP8KGrTSrHZrai1aRsM9I9NgAHLJ8SF8FLr2F9 lVy6PkwCMSBQ/jHRyvnUE3z6H3nqbcsBGiU4oiXTMSgbEYqnFHehjHcTijAPDeGm kYeihUSy+jxwetQr2pYoIrlQayukYEW5GVxg8eHazZr48i0ZS4sIZG7SEoW88KPA pgeBko7Lv+NtFOJZPxra0S7f9Y9sBuWiO5uC9XeqU9ulmg9+HqEF2lhLNtqp/+hC g3tgSOwu9Y14a+XhglUPBBx0rg/inRF7oDkydizDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQZRlDeW8d8/J/H6j8bagJTEpQuEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2RmMTk3ZWNmLWJiOWEtNDJhZS1hMTlhLWE0MTY4ZmU2YTNhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++gwDQYJKoZIhvcNAQELBQADggEBAHiHdldNevv2jbEwGbgQ3GEwxd1l HQLD5LaYD6NYU5ZTbQBMWsDp06dHOXSJqTiO4kUyhHDMeJpUHQquFyZW2g79wgvT p0hQiorCEl+FOeoVy7N82G1aYs4Xc5hnagxECA9SFTQK5gf0feA2nKqSXmliqLTb vnZpfBcrlIBK4YbrMXYFzBZMxj+D9rTJQ1K2MmpFbT+vMNohd2YjYYYN+Pod9+7i TuVFo301C82F+KMsUE2RIAZRmvlBMsVxTdTuisU9QdAYMgwbI9blFZMg5eGn0VZz arW98WmZwD8kZajbPWURp7iXJHmJknv/9xLkJ6dFSM9xRrLkd7O5mKU3Y68= -----END CERTIFICATE-----Generated at Tue Aug 5 16:38:15 2025 by rpki-client