$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa File: 5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa (raw, json) Hash identifier: PYqCDui4V1UrdvPKIiUqGSll0aUbPfxYlczEzPcsSk8= Subject key identifier: 1A:37:4F:6A:DF:B2:22:92:C1:0D:13:01:FF:CA:E8:66:9C:44:A2:1C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6A5B04CF1F6B4CA98D893C6C39B494080351F87E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa Signing time: Sat 02 Aug 2025 00:10:20 +0000 ROA not before: Sat 02 Aug 2025 00:10:20 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:5b:04:cf:1f:6b:4c:a9:8d:89:3c:6c:39:b4:94:08:03:51:f8:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 2 00:10:20 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=9bff99b5a28fd145411012b31a8e59436c1349904b6e21287c300e84b242d0ab, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:43:b5:d7:21:3e:b2:0b:10:36:77:7d:ca:44: 0f:9b:97:22:00:14:fd:1d:b3:dd:51:4a:7e:14:70: be:06:3d:fb:06:47:14:cd:2d:d3:da:4e:1a:3f:23: 25:bc:ea:32:4e:3b:16:7c:f1:a3:7b:49:db:90:92: 61:0a:ea:92:83:73:7f:92:e9:4a:43:28:21:ae:a0: 87:6d:bd:35:11:54:ac:16:50:13:1b:20:df:59:14: 71:b2:a2:64:95:1a:be:40:66:d1:29:95:b5:51:41: 3e:46:85:79:7f:36:cb:6a:64:ab:e9:e7:70:a4:5b: da:b8:aa:1b:a6:f8:21:49:0f:e9:7d:8b:63:71:ad: 55:e2:fa:a7:6b:26:ed:3e:dc:ef:e3:90:40:d2:71: 1b:21:d0:9a:69:91:32:8c:c3:c8:db:79:49:5e:43: f7:4d:25:c5:e3:35:94:51:e3:21:8c:d0:d2:52:a3: 5a:d0:93:a5:86:c4:80:15:f4:a5:ad:d2:53:06:dc: 32:83:17:74:2e:88:9f:b6:8b:9d:e4:ac:73:1f:6d: 6b:cc:27:a5:e0:a8:f5:3f:98:85:29:82:e1:ed:f6: ea:9c:84:64:e6:1c:87:6f:40:ce:2a:60:28:65:de: 29:0d:de:0d:c9:3d:fc:4f:72:b8:b6:f0:41:2b:8b: 92:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:37:4F:6A:DF:B2:22:92:C1:0D:13:01:FF:CA:E8:66:9C:44:A2:1C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d3e8652-f410-4c92-b5a2-7173c9ab4ea0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.235.0/24 Signature Algorithm: sha256WithRSAEncryption 33:91:ea:fd:62:dd:8f:d3:51:5d:59:07:fb:7a:e6:c9:09:4b: 92:32:51:06:39:68:9c:16:84:f7:72:7a:80:5d:cb:b8:a7:a2: 1e:5f:dd:13:9a:7a:b4:d0:4e:1d:ca:84:27:e8:27:59:ba:55: 85:ea:90:21:6c:06:b4:a5:82:26:1e:1a:9f:5a:fe:c3:0d:63: eb:79:a0:52:a6:49:64:dd:2a:60:25:e2:23:70:54:bc:1d:28: 72:a9:e7:94:81:08:68:c1:53:ca:2b:a0:92:5d:2f:23:00:00: 70:7c:22:a1:9e:c0:ac:ee:dc:b1:46:ec:e1:9f:2f:93:a7:28: 04:b3:a6:33:0c:e2:96:29:c0:8a:e0:01:d6:a8:1f:7c:3e:9b: 18:61:9d:ac:7c:da:d5:69:43:42:59:26:01:9d:6a:ce:2f:1c: e3:75:2f:34:4a:3c:d6:df:d1:02:dd:03:57:04:e2:fe:4e:eb: 99:34:08:16:b8:4f:63:34:00:80:94:02:62:01:d5:13:5e:42: dc:fc:20:61:7d:80:56:eb:28:bf:99:dd:f9:e0:f0:2b:fe:fe: cc:dd:80:0b:3c:9c:a6:cc:6f:00:64:0c:8c:4f:0b:69:6b:f6: 68:d6:ac:9f:0b:ce:f1:c3:1b:54:63:20:94:d5:c1:7b:fa:8c: b6:cf:ea:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUalsEzx9rTKmNiTxsObSUCANR+H4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODAyMDAxMDIwWhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YmZmOTliNWEyOGZkMTQ1NDExMDEyYjMxYThlNTk0MzZj MTM0OTkwNGI2ZTIxMjg3YzMwMGU4NGIyNDJkMGFiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDQ7XXIT6yCxA2d33KRA+blyIAFP0ds91RSn4UcL4GPfsG RxTNLdPaTho/IyW86jJOOxZ88aN7SduQkmEK6pKDc3+S6UpDKCGuoIdtvTURVKwW UBMbIN9ZFHGyomSVGr5AZtEplbVRQT5GhXl/NstqZKvp53CkW9q4qhum+CFJD+l9 i2NxrVXi+qdrJu0+3O/jkEDScRsh0JppkTKMw8jbeUleQ/dNJcXjNZRR4yGM0NJS o1rQk6WGxIAV9KWt0lMG3DKDF3QuiJ+2i53krHMfbWvMJ6XgqPU/mIUpguHt9uqc hGTmHIdvQM4qYChl3ikN3g3JPfxPcri28EEri5IRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGjdPat+yIpLBDRMB/8roZpxEohwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkM2U4NjUyLWY0MTAtNGM5Mi1iNWEyLTcxNzNjOWFiNGVhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeswDQYJKoZIhvcNAQELBQADggEBADOR6v1i3Y/TUV1ZB/t65skJS5Iy UQY5aJwWhPdyeoBdy7inoh5f3ROaerTQTh3KhCfoJ1m6VYXqkCFsBrSlgiYeGp9a /sMNY+t5oFKmSWTdKmAl4iNwVLwdKHKp55SBCGjBU8oroJJdLyMAAHB8IqGewKzu 3LFG7OGfL5OnKASzpjMM4pYpwIrgAdaoH3w+mxhhnax82tVpQ0JZJgGdas4vHON1 LzRKPNbf0QLdA1cE4v5O65k0CBa4T2M0AICUAmIB1RNeQtz8IGF9gFbrKL+Z3fng 8Cv+/szdgAs8nKbMbwBkDIxPC2lr9mjWrJ8LzvHDG1RjIJTVwXv6jLbP6pw= -----END CERTIFICATE-----Generated at Tue Aug 5 17:20:39 2025 by rpki-client