$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa File: 5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa (raw, json) Hash identifier: pxbJY8M6bKyLgv+WOFiwh50i+65ZKfCC7yPQIPI39g0= Subject key identifier: AD:D9:3F:43:4B:01:A1:0D:FE:48:FC:B8:5F:63:E6:CD:B5:D5:A3:B3 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4519DC0CA513125AA06A383DA8DA33F54E38BC49 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa Signing time: Fri 13 Jun 2025 00:10:12 +0000 ROA not before: Fri 13 Jun 2025 00:10:12 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:19:dc:0c:a5:13:12:5a:a0:6a:38:3d:a8:da:33:f5:4e:38:bc:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 13 00:10:12 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=cf49bab856e40b5be084922ac1e63cf7c7a474567c9247dc76316ba66c588697, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ad:c2:f1:15:5e:2b:d5:30:3d:96:91:20:18: 42:e1:3e:20:a7:1f:49:2a:09:a1:51:cd:37:a6:c9: 12:a2:25:a2:72:b0:50:fa:c2:4d:fa:16:77:63:94: d7:bc:cb:78:d9:d3:c4:95:8c:d0:48:4b:3e:06:5b: a4:f5:d3:4a:ae:66:2b:a6:3e:e1:d2:c7:2a:5d:ec: 30:d9:a0:30:42:b9:51:eb:e4:06:58:45:bc:51:22: ac:b1:a6:ad:ba:62:bb:a2:7f:24:6d:1a:df:5b:ce: 05:a1:f2:93:e0:22:89:db:6d:fc:77:5a:9e:a9:d0: e8:04:00:29:68:77:13:cd:06:d0:6e:5a:48:28:53: 8a:dd:71:b7:c1:ed:08:49:82:34:b0:b0:c2:10:52: 5a:39:df:aa:0f:da:23:43:c5:12:f3:66:a6:ae:ad: 6a:99:89:49:10:a8:d5:4c:dd:c5:80:4b:81:b6:ca: 06:21:42:f5:b4:32:79:8c:7d:c0:50:42:6c:5b:ce: 89:1a:2b:c7:a1:7b:7a:f4:c0:f2:65:9f:62:ac:e4: cc:ce:d3:e1:22:68:3b:66:60:a6:b7:1d:59:eb:7b: 7d:92:0f:a2:f6:42:57:b3:3f:dc:8f:26:59:02:0c: dc:51:7d:75:1b:c9:4e:a9:7b:86:08:cd:9b:9b:1f: 6a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D9:3F:43:4B:01:A1:0D:FE:48:FC:B8:5F:63:E6:CD:B5:D5:A3:B3 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.235.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:3f:bd:dc:1b:53:e3:4b:6f:cd:1a:c0:35:89:d1:10:d9:df: ea:9f:a6:e4:24:0a:30:48:39:c2:96:d3:53:29:ac:dd:66:76: 9d:88:00:a0:0d:f1:38:9c:18:af:97:50:9f:44:52:b0:8f:80: 28:25:09:82:cf:54:5f:02:a3:a5:50:70:fb:66:be:62:78:51: 12:8c:48:fb:2d:21:43:aa:84:43:8f:e6:1c:5b:7a:cc:90:e3: d2:75:2f:f7:dc:e8:7c:c2:72:dc:3b:76:ee:2b:89:8c:da:02: 48:f1:71:23:e6:bb:17:3c:08:bf:f2:e9:71:7f:7b:7e:3e:a2: 5a:3f:7d:ed:43:ea:5c:aa:4c:57:89:db:0d:9d:fc:a1:44:25: 41:7f:6d:c6:c2:cc:b6:db:2d:7e:55:41:34:6f:19:85:d1:b8: 2d:a1:72:fd:fe:cf:bd:af:28:f9:34:90:a2:a1:e8:c6:a1:e1: 05:c2:4e:dd:b3:2c:c1:53:fb:d2:4f:a9:45:90:f0:2e:88:63: 54:ca:42:72:bc:e2:ad:80:54:e5:e1:15:3e:cb:ae:bc:97:19: b8:97:95:79:f6:46:9e:39:47:51:9c:b9:55:6a:02:5f:ac:a7: b5:99:70:8b:e5:54:85:d2:26:b3:5e:b4:15:35:b0:ad:5f:c8: 66:00:3b:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURRncDKUTElqgajg9qNoz9U44vEkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjEzMDAxMDEyWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjQ5YmFiODU2ZTQwYjViZTA4NDkyMmFjMWU2M2NmN2M3 YTQ3NDU2N2M5MjQ3ZGM3NjMxNmJhNjZjNTg4Njk3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmrcLxFV4r1TA9lpEgGELhPiCnH0kqCaFRzTemyRKiJaJy sFD6wk36FndjlNe8y3jZ08SVjNBISz4GW6T100quZiumPuHSxypd7DDZoDBCuVHr 5AZYRbxRIqyxpq26YruifyRtGt9bzgWh8pPgIonbbfx3Wp6p0OgEAClodxPNBtBu WkgoU4rdcbfB7QhJgjSwsMIQUlo536oP2iNDxRLzZqaurWqZiUkQqNVM3cWAS4G2 ygYhQvW0MnmMfcBQQmxbzokaK8ehe3r0wPJln2Ks5MzO0+EiaDtmYKa3HVnre32S D6L2QlezP9yPJlkCDNxRfXUbyU6pe4YIzZubH2oRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrdk/Q0sBoQ3+SPy4X2PmzbXVo7MwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkM2U4NjUyLWY0MTAtNGM5Mi1iNWEyLTcxNzNjOWFiNGVhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeswDQYJKoZIhvcNAQELBQADggEBAC8/vdwbU+NLb80awDWJ0RDZ3+qf puQkCjBIOcKW01MprN1mdp2IAKAN8TicGK+XUJ9EUrCPgCglCYLPVF8Co6VQcPtm vmJ4URKMSPstIUOqhEOP5hxbesyQ49J1L/fc6HzCctw7du4riYzaAkjxcSPmuxc8 CL/y6XF/e34+olo/fe1D6lyqTFeJ2w2d/KFEJUF/bcbCzLbbLX5VQTRvGYXRuC2h cv3+z72vKPk0kKKh6Mah4QXCTt2zLMFT+9JPqUWQ8C6IY1TKQnK84q2AVOXhFT7L rryXGbiXlXn2Rp45R1GcuVVqAl+sp7WZcIvlVIXSJrNetBU1sK1fyGYAO7c= -----END CERTIFICATE-----Generated at Sat Jun 14 06:30:25 2025 by rpki-client