$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e7138651-9d24-41c2-8af2-d0a2f7645ca5.roa File: e7138651-9d24-41c2-8af2-d0a2f7645ca5.roa (raw, json) Hash identifier: 2Od1fAm6AcHA7+SD2uhwv2t3ofHijvg8lTJPJCtpnPc= Subject key identifier: 6F:AF:A0:DC:51:1A:C2:A5:86:28:41:10:00:2B:EC:A2:AE:21:C4:4B Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1AB9E961D93D4F9852F2E7D8E2A8167E0D137C00 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e7138651-9d24-41c2-8af2-d0a2f7645ca5.roa Signing time: Tue 05 Aug 2025 00:00:03 +0000 ROA not before: Tue 05 Aug 2025 00:00:03 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:b9:e9:61:d9:3d:4f:98:52:f2:e7:d8:e2:a8:16:7e:0d:13:7c:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 5 00:00:03 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=f05aa758ac374130dbb75dfb1b6a87313b4e51012314006d9e2fe1051f47b3c1, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fd:4b:b4:b8:73:f6:96:e5:cf:bd:6e:16:5c: d0:09:a3:48:6d:92:87:d6:fb:2c:c8:7d:e3:13:0b: 2f:e8:9e:f3:48:70:a7:33:21:f6:87:2c:de:23:09: cc:aa:a6:b6:3c:ca:1a:5f:58:08:4f:ce:ed:0d:0f: 94:67:8c:52:8a:ab:c8:09:6a:9a:05:ad:e8:42:39: 42:ce:1b:7d:86:34:79:02:81:0e:10:a8:e4:97:24: 65:0e:23:ab:67:81:bb:e0:08:c7:ee:4d:7d:b9:09: 3f:de:f7:01:89:9a:37:39:ca:e5:3f:00:0c:0d:8c: 3d:d4:d7:ff:2f:12:13:3d:1a:dd:3f:ec:67:bb:fa: bb:06:f8:3e:42:9b:68:3d:77:01:ce:cc:db:82:c8: 58:33:e2:29:51:02:5d:a5:35:8f:ae:f9:17:37:43: 80:06:a8:76:ba:de:44:da:13:5f:50:1e:9e:20:8a: fe:ae:c0:fb:c9:ba:87:98:f8:ca:a3:b1:52:8e:70: 0d:b0:45:65:d0:5f:46:c2:47:a1:b9:04:00:16:b9: f5:3f:e0:c3:e0:4e:fc:63:37:6c:e4:ea:db:42:c3: cd:44:4e:b5:cd:96:c9:7d:db:54:3e:ce:e0:74:95: 67:dd:83:47:64:b7:da:ff:96:29:18:8e:1a:81:c8: e3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:AF:A0:DC:51:1A:C2:A5:86:28:41:10:00:2B:EC:A2:AE:21:C4:4B X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e7138651-9d24-41c2-8af2-d0a2f7645ca5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.163.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:9e:fb:a7:46:18:19:f8:10:6d:da:cd:1f:7f:f0:79:73:25: 74:1a:8a:cb:34:8b:0b:7f:ce:cc:a1:be:7c:1f:16:5d:51:d0: 1d:dc:c0:93:1a:5d:11:65:b9:b6:4c:9a:2b:3a:62:18:d6:24: 26:e5:8f:87:31:0a:d6:d1:92:71:87:93:ba:bf:b8:b3:55:70: b2:71:41:69:62:5d:8b:3d:fc:4c:30:8a:eb:da:d0:11:cd:39: b0:86:43:b0:c2:15:e8:83:3d:3b:0c:55:10:f6:d2:73:33:16: 61:7f:2c:aa:05:8f:ca:46:a7:78:66:54:06:71:dd:3c:50:54: 56:ee:73:6c:82:e7:fd:0f:9c:cd:d4:35:4c:21:ae:06:09:e7: 51:df:5b:fe:fd:33:3c:a3:6c:c9:40:8c:f8:9c:50:fb:2a:47: bb:86:b3:58:e5:b2:c9:48:d9:a8:9c:a9:85:68:e2:15:40:53: 95:09:a9:cc:99:7a:83:6a:a4:ad:ad:c9:75:c6:3a:0d:1e:da: e8:5e:21:bd:51:3c:a9:9b:f5:14:3a:06:9a:7f:27:8a:ca:b9: f0:a1:40:92:90:de:51:12:b5:48:86:2b:5d:b6:14:1e:3b:45: f3:01:4b:35:d6:30:e4:3a:b7:eb:fb:0c:cb:42:8c:72:ac:e1: 33:27:20:87 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGrnpYdk9T5hS8ufY4qgWfg0TfAAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODA1MDAwMDAzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDVhYTc1OGFjMzc0MTMwZGJiNzVkZmIxYjZhODczMTNi NGU1MTAxMjMxNDAwNmQ5ZTJmZTEwNTFmNDdiM2MxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn/Uu0uHP2luXPvW4WXNAJo0htkofW+yzIfeMTCy/onvNI cKczIfaHLN4jCcyqprY8yhpfWAhPzu0ND5RnjFKKq8gJapoFrehCOULOG32GNHkC gQ4QqOSXJGUOI6tngbvgCMfuTX25CT/e9wGJmjc5yuU/AAwNjD3U1/8vEhM9Gt0/ 7Ge7+rsG+D5Cm2g9dwHOzNuCyFgz4ilRAl2lNY+u+Rc3Q4AGqHa63kTaE19QHp4g iv6uwPvJuoeY+MqjsVKOcA2wRWXQX0bCR6G5BAAWufU/4MPgTvxjN2zk6ttCw81E TrXNlsl921Q+zuB0lWfdg0dkt9r/likYjhqByOMBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUb6+g3FEawqWGKEEQACvsoq4hxEswHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2U3MTM4NjUxLTlkMjQtNDFjMi04YWYyLWQwYTJmNzY0NWNhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADY3aMwDQYJKoZIhvcNAQELBQADggEBACue+6dGGBn4EG3azR9/8HlzJXQa iss0iwt/zsyhvnwfFl1R0B3cwJMaXRFlubZMmis6YhjWJCblj4cxCtbRknGHk7q/ uLNVcLJxQWliXYs9/Ewwiuva0BHNObCGQ7DCFeiDPTsMVRD20nMzFmF/LKoFj8pG p3hmVAZx3TxQVFbuc2yC5/0PnM3UNUwhrgYJ51HfW/79MzyjbMlAjPicUPsqR7uG s1jlsslI2aicqYVo4hVAU5UJqcyZeoNqpK2tyXXGOg0e2uheIb1RPKmb9RQ6Bpp/ J4rKufChQJKQ3lEStUiGK122FB47RfMBSzXWMOQ6t+v7DMtCjHKs4TMnIIc= -----END CERTIFICATE-----Generated at Tue Aug 5 16:37:27 2025 by rpki-client