$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa File: 16b57026-c673-4ef1-bc38-7596daa2e043.roa (raw, json) Hash identifier: 9xstxfr04WCvI+NCS23fvGNf/AYmaGYpFh6FpM75veg= Subject key identifier: 23:70:97:88:24:EC:69:57:60:FB:9C:A2:55:C3:9E:56:14:E8:0D:2C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 188D5D230097CE34DB2646431CC2E03FCCA2500A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa Signing time: Mon 21 Jul 2025 15:21:24 +0000 ROA not before: Mon 21 Jul 2025 15:21:24 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:8d:5d:23:00:97:ce:34:db:26:46:43:1c:c2:e0:3f:cc:a2:50:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:21:24 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=a73cb067f9ee08c84e78ffd532e1fc931ef0283099d6e694746bce78e97a855b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f1:35:c6:bf:d0:af:01:40:6a:bd:ac:7a:c0: f7:69:87:63:0f:c6:c2:e7:e0:38:66:e3:69:37:51: 05:58:f8:f6:62:81:74:65:b1:62:e0:67:ae:be:f3: 3c:58:50:76:8b:a6:71:0b:63:10:97:1f:90:b8:c8: 84:32:9f:70:cb:1a:d6:09:d5:dc:2d:33:49:8d:71: 20:f5:64:8e:69:eb:14:f9:8b:6e:99:23:ed:14:af: 77:f6:9f:a5:8d:7d:47:2f:c5:6c:79:c8:de:f1:29: e6:66:3d:a8:a8:43:b0:7f:3e:e0:df:8c:86:0b:31: 2c:ea:61:81:7d:2e:a6:df:c6:36:d3:b2:07:ec:a9: b1:20:ed:13:97:4b:4d:4a:52:88:0b:01:d7:9f:bb: ee:ec:31:0e:7d:92:62:50:90:81:5d:94:ab:8b:f7: 9e:ea:bd:ca:2f:3a:31:ab:c4:30:4f:bd:a5:93:f7: d6:d1:4b:26:c6:a8:cd:c4:43:42:17:9d:b5:6e:36: 54:71:a0:1a:bc:b4:1c:e0:41:08:24:f7:76:0d:c4: 14:00:e9:45:e9:d0:77:0f:99:da:d0:b3:72:eb:b0: 81:91:3c:84:0d:3c:28:83:81:86:79:f3:d7:62:75: b4:2f:a4:8d:ec:12:d8:68:b7:42:0b:1c:21:99:90: db:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:70:97:88:24:EC:69:57:60:FB:9C:A2:55:C3:9E:56:14:E8:0D:2C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.226.0/24 Signature Algorithm: sha256WithRSAEncryption 29:d5:e0:2f:39:a1:79:e0:65:7d:2d:6f:93:9b:f1:97:e3:24: 8a:05:aa:96:d5:11:fa:76:d5:be:ba:dc:ee:05:f2:48:78:09: 21:9d:0b:dd:16:7e:60:2f:2d:de:9e:c7:5b:e4:df:2b:07:92: 02:fc:b1:8e:66:0b:88:14:f4:8b:b3:5e:85:83:d7:01:a5:05: d8:67:fa:76:72:f6:3a:97:9b:d1:f4:3c:af:ca:1b:01:97:e8: 56:9d:4c:ad:de:f5:51:1a:b2:50:3b:9f:02:50:10:4d:ad:85: 95:ca:b2:08:82:3c:ef:5b:cf:b2:f9:d0:89:c9:74:b2:41:6a: 75:cb:87:43:cc:6e:76:d5:9a:10:74:ef:83:42:c7:61:73:54: 26:1e:1c:cb:96:61:ae:d2:77:46:29:9f:e8:58:81:e6:b3:b2: bb:6a:52:16:5d:2e:7d:ba:d5:c2:7d:22:3b:57:53:fe:67:ab: 76:c6:1d:42:b5:4a:29:33:53:59:1d:b9:0d:15:4c:ff:56:a8: d0:91:a4:cc:de:d2:84:55:31:5c:88:19:b4:eb:ae:c7:4f:dd: 4d:d5:48:e2:d5:89:cd:f2:9d:9d:b2:82:51:f1:f2:18:b3:26: 6f:47:d2:ee:10:fc:a9:d2:7d:4c:d0:7a:cb:ce:40:dd:31:f8: 00:8f:8c:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGI1dIwCXzjTbJkZDHMLgP8yiUAowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMTI0WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzNjYjA2N2Y5ZWUwOGM4NGU3OGZmZDUzMmUxZmM5MzFl ZjAyODMwOTlkNmU2OTQ3NDZiY2U3OGU5N2E4NTViMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa8TXGv9CvAUBqvax6wPdph2MPxsLn4Dhm42k3UQVY+PZi gXRlsWLgZ66+8zxYUHaLpnELYxCXH5C4yIQyn3DLGtYJ1dwtM0mNcSD1ZI5p6xT5 i26ZI+0Ur3f2n6WNfUcvxWx5yN7xKeZmPaioQ7B/PuDfjIYLMSzqYYF9LqbfxjbT sgfsqbEg7ROXS01KUogLAdefu+7sMQ59kmJQkIFdlKuL957qvcovOjGrxDBPvaWT 99bRSybGqM3EQ0IXnbVuNlRxoBq8tBzgQQgk93YNxBQA6UXp0HcPmdrQs3LrsIGR PIQNPCiDgYZ589didbQvpI3sEthot0ILHCGZkNsNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI3CXiCTsaVdg+5yiVcOeVhToDSwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzE2YjU3MDI2LWM2NzMtNGVmMS1iYzM4LTc1OTZkYWEyZTA0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeIwDQYJKoZIhvcNAQELBQADggEBACnV4C85oXngZX0tb5Ob8ZfjJIoF qpbVEfp21b663O4F8kh4CSGdC90WfmAvLd6ex1vk3ysHkgL8sY5mC4gU9IuzXoWD 1wGlBdhn+nZy9jqXm9H0PK/KGwGX6FadTK3e9VEaslA7nwJQEE2thZXKsgiCPO9b z7L50InJdLJBanXLh0PMbnbVmhB074NCx2FzVCYeHMuWYa7Sd0Ypn+hYgeazsrtq UhZdLn261cJ9IjtXU/5nq3bGHUK1SikzU1kduQ0VTP9WqNCRpMze0oRVMVyIGbTr rsdP3U3VSOLVic3ynZ2yglHx8hizJm9H0u4Q/KnSfUzQesvOQN0x+ACPjO4= -----END CERTIFICATE-----Generated at Wed Aug 6 05:13:05 2025 by rpki-client