$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa File: 58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa (raw, json) Hash identifier: huabhNmnNf2gs+vTSnd96d8gFQESOkfqW4rZdUE6jVk= Subject key identifier: E5:9D:40:EB:B8:91:B4:7F:F2:13:0F:7F:E3:FA:A9:7E:5C:88:D3:BB Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 05036ABD0D0EDE98636B08BCE343315B5160A7CE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa Signing time: Sat 02 Aug 2025 00:10:24 +0000 ROA not before: Sat 02 Aug 2025 00:10:24 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:03:6a:bd:0d:0e:de:98:63:6b:08:bc:e3:43:31:5b:51:60:a7:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 2 00:10:24 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=5677aea095d1288b6b12d10d67eb89fb7de952f4973140549d49440d3a46356e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c1:64:11:a1:79:2d:7d:c0:90:49:97:7a:ea: bc:5f:24:21:32:45:e2:33:cb:dd:c4:ec:f0:de:01: 85:4d:ef:b0:8c:97:56:b4:2b:06:d7:79:0b:b5:1b: f8:62:05:8c:0c:02:8c:1e:79:d5:b0:08:9e:9c:92: ca:0c:84:88:04:a4:8c:a1:a2:df:90:12:f4:20:21: 57:5f:91:de:c8:9f:02:c5:2d:11:f2:31:3d:e7:28: f4:5a:5d:2c:b7:1f:49:be:4b:fd:64:5f:77:e2:89: ce:10:25:17:e0:4b:79:11:c1:fc:6a:a4:ed:a1:31: 50:bf:58:a5:72:ad:e8:76:b2:47:77:d4:fe:47:d8: 74:c4:15:09:73:13:06:cf:ab:d1:bf:bf:ac:8f:8b: 9f:a2:0a:fb:9a:f3:5a:7d:41:ed:27:ba:fb:fd:d5: 00:38:81:19:b3:f6:aa:7b:05:b6:89:b0:5d:d9:5e: 2f:a7:2e:bc:4a:1a:f9:e0:fc:a4:04:d5:03:6d:d6: 99:8d:b9:04:5d:31:03:e9:b7:f9:c0:0b:eb:ce:df: 5f:81:94:a0:db:55:24:f3:90:36:9c:17:5c:c0:d4: af:f3:66:f1:34:a9:83:13:cb:f5:e5:11:16:7a:6c: 9d:e0:c1:7e:99:70:9e:5f:cb:55:92:bf:6d:02:0e: 8d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:9D:40:EB:B8:91:B4:7F:F2:13:0F:7F:E3:FA:A9:7E:5C:88:D3:BB X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/58f9ffe5-09fd-40ac-8ea4-fe1f8d01d875.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.232.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:20:ae:74:11:20:cf:f3:11:86:e0:c8:ba:36:89:52:98:63: a6:bc:bb:6f:68:0f:fa:cc:3f:e4:96:65:be:91:aa:ea:31:a9: 6d:44:b9:86:a0:90:b5:30:13:66:e2:c8:c9:97:af:be:ce:34: 1b:de:5f:f3:65:da:a1:4b:7e:b0:8f:8b:a6:b4:b7:e4:22:9a: d4:b7:e5:28:0a:b4:e2:d7:1d:2a:a1:2e:c3:e4:f2:b6:f7:e9: d9:b7:0d:ce:0d:59:e0:d6:4e:c4:1f:cd:e3:52:1e:f7:4d:ed: 3d:03:fe:42:86:ea:3e:1a:56:7f:2e:94:8f:44:27:e3:c7:06: 24:20:db:7f:47:3f:6a:ce:19:be:c1:8d:06:03:15:58:54:45: 36:5a:14:72:75:a9:2e:ec:dd:eb:f5:47:14:b2:53:3e:d2:42: 72:df:36:ca:0c:ff:dc:5d:1f:9e:60:2a:e9:1e:1d:25:0f:e6: e5:ef:1e:d3:5c:09:b4:08:02:0c:8a:f7:2d:2a:fa:11:a4:c5: e6:3c:54:6a:e9:b3:58:95:f4:fa:17:d1:c8:b8:5d:05:fa:b0: 26:f7:57:b0:44:94:b5:94:e3:64:f7:ac:3b:31:52:09:2f:89: f2:a8:dc:40:d2:f0:cb:86:5b:09:f0:66:7d:18:c3:7f:6b:2b: 9e:08:88:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBQNqvQ0O3phjawi840MxW1Fgp84wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODAyMDAxMDI0WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Njc3YWVhMDk1ZDEyODhiNmIxMmQxMGQ2N2ViODlmYjdk ZTk1MmY0OTczMTQwNTQ5ZDQ5NDQwZDNhNDYzNTZlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbwWQRoXktfcCQSZd66rxfJCEyReIzy93E7PDeAYVN77CM l1a0KwbXeQu1G/hiBYwMAoweedWwCJ6cksoMhIgEpIyhot+QEvQgIVdfkd7InwLF LRHyMT3nKPRaXSy3H0m+S/1kX3fiic4QJRfgS3kRwfxqpO2hMVC/WKVyreh2skd3 1P5H2HTEFQlzEwbPq9G/v6yPi5+iCvua81p9Qe0nuvv91QA4gRmz9qp7BbaJsF3Z Xi+nLrxKGvng/KQE1QNt1pmNuQRdMQPpt/nAC+vO31+BlKDbVSTzkDacF1zA1K/z ZvE0qYMTy/XlERZ6bJ3gwX6ZcJ5fy1WSv20CDo2RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5Z1A67iRtH/yEw9/4/qpflyI07swHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU4ZjlmZmU1LTA5ZmQtNDBhYy04ZWE0LWZlMWY4ZDAxZDg3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFqegwDQYJKoZIhvcNAQELBQADggEBAIwgrnQRIM/zEYbgyLo2iVKYY6a8 u29oD/rMP+SWZb6RquoxqW1EuYagkLUwE2biyMmXr77ONBveX/Nl2qFLfrCPi6a0 t+QimtS35SgKtOLXHSqhLsPk8rb36dm3Dc4NWeDWTsQfzeNSHvdN7T0D/kKG6j4a Vn8ulI9EJ+PHBiQg239HP2rOGb7BjQYDFVhURTZaFHJ1qS7s3ev1RxSyUz7SQnLf NsoM/9xdH55gKukeHSUP5uXvHtNcCbQIAgyK9y0q+hGkxeY8VGrps1iV9PoX0ci4 XQX6sCb3V7BElLWU42T3rDsxUgkvifKo3EDS8MuGWwnwZn0Yw39rK54IiFA= -----END CERTIFICATE-----Generated at Wed Aug 6 11:05:33 2025 by rpki-client