$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa File: f67538ee-cd29-4883-9251-086023a50dc3.roa (raw, json) Hash identifier: OT1vTseQaKG6XAJBxzVmk9byvZEg9T+zCKcpzeVyGBk= Subject key identifier: A1:15:19:B5:9C:FE:32:7F:CC:8B:16:06:C3:E6:1E:63:09:54:1E:6A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 627ACF23E86C974A196E305C33183AF4C7C5662C Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa Signing time: Sat 31 May 2025 00:00:06 +0000 ROA not before: Sat 31 May 2025 00:00:06 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:7a:cf:23:e8:6c:97:4a:19:6e:30:5c:33:18:3a:f4:c7:c5:66:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:00:06 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=20b0d6d0aa875d90cd3f73b81ecbc44937f5b508a43a38c77cb91662ff028ef2, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:aa:af:73:e5:95:ce:b1:4e:1b:8f:d8:c1:dd: 10:bd:f2:38:dc:7e:c8:f0:da:93:8c:4a:8f:68:95: 44:00:e7:2c:86:6a:d3:60:19:2a:a2:19:a5:bd:1c: 54:87:aa:f0:3f:64:85:0e:f2:3d:e9:ea:22:39:e8: a6:7c:88:e4:50:8c:25:b4:bf:af:1c:c9:9f:f3:3e: 69:01:d7:d6:58:c9:84:64:cb:7e:9c:fa:e4:b3:93: 55:14:66:dd:61:e2:8e:f8:f4:2f:38:41:01:99:d9: b4:5a:43:1e:06:d5:3f:c5:29:02:40:0e:00:3b:8d: 1b:58:3c:2e:0e:07:c4:31:ce:13:d3:0b:64:fc:f3: 0b:61:61:ed:c4:27:db:cc:54:91:91:02:41:f6:a3: d3:df:15:a1:b2:77:65:7f:71:21:e8:16:21:89:b4: 04:ef:02:b2:e6:c9:29:c2:4c:00:a8:d8:a9:bc:03: 70:80:f7:94:6f:64:79:8b:e4:de:eb:1d:15:e2:09: 16:69:19:cd:b7:f0:f3:51:69:6a:5f:ed:c0:f2:f7: 8a:c2:4e:52:a5:19:55:1b:e1:65:91:71:02:77:df: 8b:4e:e6:7a:09:a8:bc:b3:c8:17:91:83:1f:af:6e: ca:d9:c2:8b:b8:45:9c:f7:70:30:11:3c:5d:ce:63: 7f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:15:19:B5:9C:FE:32:7F:CC:8B:16:06:C3:E6:1E:63:09:54:1E:6A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.227.0/24 Signature Algorithm: sha256WithRSAEncryption 79:c9:62:a6:c2:24:b1:f1:54:e0:69:9b:f3:4f:9d:e5:3a:3b: 5e:67:24:43:ce:0c:ab:bb:38:0b:e0:1d:40:96:a1:87:a0:e4: 35:cb:92:c7:7d:8e:00:c5:28:19:1f:04:95:b4:f9:98:fd:12: 55:74:3d:77:1e:ce:24:7a:af:4b:62:ef:06:41:50:ed:26:0b: 84:f9:0e:bb:2f:35:75:6b:53:14:0d:6f:bd:e4:db:e9:af:da: b5:39:35:c7:08:62:5f:41:36:7d:15:77:51:a2:ac:ab:07:bd: e9:16:dd:2c:5c:e5:2d:e7:ba:ea:aa:8e:a8:36:ca:4a:0f:11: 6a:9c:86:91:36:cc:18:fe:99:da:30:9e:24:e0:b7:7c:61:39: 59:0f:aa:fe:18:cf:a0:1d:91:f4:94:4f:00:59:ab:5d:b4:fc: b6:1b:db:f3:65:9d:c5:5b:42:9f:45:8f:0f:41:0f:a1:34:3d: 7e:8c:8d:e4:57:63:74:01:1f:dd:f1:71:50:67:87:aa:13:48: c1:45:6f:f4:ae:7d:e6:ce:3a:bb:21:41:09:eb:ef:8d:62:57: 80:01:15:68:c8:33:06:1b:a9:17:fb:70:c1:d9:62:ce:06:82: 8d:a8:3a:f5:03:f0:5f:e6:8a:58:c6:d3:d4:a4:10:ac:b3:e3: 3d:42:c0:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYnrPI+hsl0oZbjBcMxg69MfFZiwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMDA2WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMGIwZDZkMGFhODc1ZDkwY2QzZjczYjgxZWNiYzQ0OTM3 ZjViNTA4YTQzYTM4Yzc3Y2I5MTY2MmZmMDI4ZWYyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQqq9z5ZXOsU4bj9jB3RC98jjcfsjw2pOMSo9olUQA5yyG atNgGSqiGaW9HFSHqvA/ZIUO8j3p6iI56KZ8iORQjCW0v68cyZ/zPmkB19ZYyYRk y36c+uSzk1UUZt1h4o749C84QQGZ2bRaQx4G1T/FKQJADgA7jRtYPC4OB8QxzhPT C2T88wthYe3EJ9vMVJGRAkH2o9PfFaGyd2V/cSHoFiGJtATvArLmySnCTACo2Km8 A3CA95RvZHmL5N7rHRXiCRZpGc238PNRaWpf7cDy94rCTlKlGVUb4WWRcQJ334tO 5noJqLyzyBeRgx+vbsrZwou4RZz3cDARPF3OY3+BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoRUZtZz+Mn/MixYGw+YeYwlUHmowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y2NzUzOGVlLWNkMjktNDg4My05MjUxLTA4NjAyM2E1MGRjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++MwDQYJKoZIhvcNAQELBQADggEBAHnJYqbCJLHxVOBpm/NPneU6O15n JEPODKu7OAvgHUCWoYeg5DXLksd9jgDFKBkfBJW0+Zj9ElV0PXceziR6r0ti7wZB UO0mC4T5DrsvNXVrUxQNb73k2+mv2rU5NccIYl9BNn0Vd1GirKsHvekW3Sxc5S3n uuqqjqg2ykoPEWqchpE2zBj+mdowniTgt3xhOVkPqv4Yz6AdkfSUTwBZq120/LYb 2/NlncVbQp9Fjw9BD6E0PX6MjeRXY3QBH93xcVBnh6oTSMFFb/SufebOOrshQQnr 741iV4ABFWjIMwYbqRf7cMHZYs4Ggo2oOvUD8F/miljG09SkEKyz4z1CwJc= -----END CERTIFICATE-----Generated at Sat Jun 14 07:05:38 2025 by rpki-client