$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa File: f67538ee-cd29-4883-9251-086023a50dc3.roa (raw, json) Hash identifier: l7NqixocLb6qq/3visQczokIY/Avek6qlzP1s9sGd+A= Subject key identifier: 63:77:EE:7C:41:C0:5F:51:0A:E3:AE:4E:B1:E9:CF:C0:57:BA:26:EC Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0D89BE3BCC679054F235A7ABD672D10FBC6BF91D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa Signing time: Mon 21 Jul 2025 15:21:06 +0000 ROA not before: Mon 21 Jul 2025 15:21:06 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:89:be:3b:cc:67:90:54:f2:35:a7:ab:d6:72:d1:0f:bc:6b:f9:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:21:06 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=ef6709eddda0152ed3dd3a4cabd6c9f36e449f11a279a16e4c8cb5b418b6aec1, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:d6:93:68:cd:66:27:e9:07:8a:08:ba:0e:58: 33:70:cb:59:0f:33:3d:10:4e:7e:47:47:5e:a4:3d: 06:aa:6d:56:c4:e6:7b:80:bd:83:0c:59:3b:36:93: 9e:f1:f8:ab:fe:83:b1:e4:ec:69:04:f5:51:e4:63: d8:3d:df:7d:7d:bb:94:ec:09:14:d3:7e:36:be:c3: e7:2e:34:55:3f:b1:a8:19:54:ab:39:3d:8f:1d:68: 57:b1:98:59:39:ea:4c:e9:27:eb:14:c4:cb:02:01: 22:aa:bb:3e:d6:6a:72:51:05:7b:14:88:64:e7:d7: fe:db:c6:e2:7b:20:b7:1f:54:68:8b:d8:89:7c:04: 67:16:77:6c:e1:9a:8c:bd:b9:f8:09:b3:75:0f:2f: 1c:fd:0f:96:92:0a:52:ca:94:8b:52:92:cc:8c:f5: 7d:5b:c8:16:72:81:6e:e6:34:39:b5:c5:b4:fc:b7: 92:d9:89:86:fd:00:6a:38:d2:68:d0:25:1a:eb:ae: b7:ed:e7:9c:41:00:a5:50:05:91:83:38:0c:77:e1: be:c9:98:5a:ce:ec:79:1f:9b:e4:de:f0:26:c4:f7: 28:b8:bd:60:9b:95:b0:83:e1:e9:17:e5:69:3f:3e: 6c:f7:cf:6e:44:05:4b:88:44:c9:2b:69:ce:0b:ba: b9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:77:EE:7C:41:C0:5F:51:0A:E3:AE:4E:B1:E9:CF:C0:57:BA:26:EC X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.227.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:1d:bf:38:5a:c3:85:ca:da:b8:da:37:0c:5e:94:93:2b:3d: 6d:99:99:af:06:92:fa:66:2c:90:44:ff:f7:df:58:7f:92:c9: 79:44:64:2a:3e:02:b0:08:48:27:12:64:22:d1:5e:31:cb:ea: 47:30:cc:e5:0f:4c:91:d9:76:06:6e:ab:2d:ff:4e:3d:20:af: 2f:b8:71:03:f6:db:b0:e2:22:82:4a:6e:03:d6:32:82:ec:1a: 9e:7c:66:f7:b4:29:52:72:64:b5:78:46:79:5e:03:a9:7a:42: ce:c5:04:22:17:47:79:f8:ef:45:ab:7d:68:f5:59:a9:65:cf: 9d:72:01:a1:4d:5b:97:39:d3:bf:f8:e1:af:a6:21:28:c2:78: a1:78:76:83:4a:b2:67:54:84:2d:76:0f:c1:ec:0b:d8:72:cb: 3c:08:ad:c7:b7:1f:38:e6:9d:02:14:04:90:7f:bb:26:ee:1f: 82:08:54:51:ca:18:5c:0b:17:dd:9c:da:56:c1:1a:ea:9d:b4: 10:45:80:0f:ed:6e:f0:9b:5c:14:cc:8a:c9:7f:79:bd:ef:0a: 00:ca:4c:86:14:ee:50:b9:a9:d5:48:9d:ec:df:59:04:45:a5: 0d:08:9d:66:d3:e0:66:70:0e:3d:9d:01:53:59:84:b3:f9:9e: 08:63:67:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDYm+O8xnkFTyNaer1nLRD7xr+R0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMTA2WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjY3MDllZGRkYTAxNTJlZDNkZDNhNGNhYmQ2YzlmMzZl NDQ5ZjExYTI3OWExNmU0YzhjYjViNDE4YjZhZWMxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCI1pNozWYn6QeKCLoOWDNwy1kPMz0QTn5HR16kPQaqbVbE 5nuAvYMMWTs2k57x+Kv+g7Hk7GkE9VHkY9g93319u5TsCRTTfja+w+cuNFU/sagZ VKs5PY8daFexmFk56kzpJ+sUxMsCASKquz7WanJRBXsUiGTn1/7bxuJ7ILcfVGiL 2Il8BGcWd2zhmoy9ufgJs3UPLxz9D5aSClLKlItSksyM9X1byBZygW7mNDm1xbT8 t5LZiYb9AGo40mjQJRrrrrft55xBAKVQBZGDOAx34b7JmFrO7Hkfm+Te8CbE9yi4 vWCblbCD4ekX5Wk/Pmz3z25EBUuIRMkrac4LurlVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY3fufEHAX1EK465OsenPwFe6JuwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y2NzUzOGVlLWNkMjktNDg4My05MjUxLTA4NjAyM2E1MGRjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++MwDQYJKoZIhvcNAQELBQADggEBAFodvzhaw4XK2rjaNwxelJMrPW2Z ma8GkvpmLJBE//ffWH+SyXlEZCo+ArAISCcSZCLRXjHL6kcwzOUPTJHZdgZuqy3/ Tj0gry+4cQP227DiIoJKbgPWMoLsGp58Zve0KVJyZLV4RnleA6l6Qs7FBCIXR3n4 70WrfWj1Wallz51yAaFNW5c507/44a+mISjCeKF4doNKsmdUhC12D8HsC9hyyzwI rce3HzjmnQIUBJB/uybuH4IIVFHKGFwLF92c2lbBGuqdtBBFgA/tbvCbXBTMisl/ eb3vCgDKTIYU7lC5qdVInezfWQRFpQ0InWbT4GZwDj2dAVNZhLP5nghjZz8= -----END CERTIFICATE-----Generated at Fri Aug 8 19:23:18 2025 by rpki-client