$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa File: b63fd343-5e29-48fc-84c9-2d11751d74e8.roa (raw, json) Hash identifier: najG5oO+RpCJdaPIiZGIl2xs4+6FOPq6Z20dkeaBJ0Q= Subject key identifier: DA:2F:6B:9A:0F:EB:BC:D9:E7:69:D9:88:84:1B:68:71:83:44:87:12 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 12FEDC9F4B065D19B806A351057C06270340F53A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa Signing time: Sat 02 Aug 2025 00:10:21 +0000 ROA not before: Sat 02 Aug 2025 00:10:21 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:fe:dc:9f:4b:06:5d:19:b8:06:a3:51:05:7c:06:27:03:40:f5:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 2 00:10:21 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=47aa06f53033c45b4d380ae8fd3761883cd5ef45e3edb59b1a7a7213eee7896f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:61:14:bf:ff:67:f7:8a:36:d8:4a:32:c7:12: 85:28:60:bb:ec:40:94:c0:91:b2:c0:f3:30:38:d3: e3:70:41:d1:c6:90:75:e5:c1:fa:dc:83:53:ec:d1: 80:e8:78:d4:15:cc:1d:28:81:2e:5c:05:03:28:bd: e6:6f:20:f1:15:6c:c7:d6:c4:56:4b:a9:1e:6e:b2: f1:94:9d:d0:1d:fd:54:ff:2a:66:20:df:77:1b:ea: 26:7c:bc:07:ad:1a:99:5a:0a:cb:b0:18:af:ef:a8: d5:ef:40:60:b8:71:81:36:81:c0:1d:6a:ec:14:cc: df:77:e1:73:9f:4b:07:0e:ee:e2:11:dd:12:2a:52: 51:f2:ad:cd:52:3e:e1:be:39:df:78:3d:ae:87:65: b9:6f:3b:22:00:f6:62:0a:e3:59:5a:4d:66:3d:1a: ee:52:fc:d8:3c:76:cd:4e:cb:2b:1b:9b:3f:c4:72: cd:27:49:d7:5d:a8:c6:cf:67:9a:ad:c2:95:2d:9c: c3:1f:1e:89:ef:8d:58:4b:5a:06:de:2c:36:91:15: fd:4b:b3:1b:78:f1:b2:24:f6:7d:4f:2a:a8:75:6b: ae:e1:40:01:1e:6b:70:ff:e3:75:af:5c:04:b1:e3: c6:26:71:c2:7d:af:53:08:fe:cc:55:91:45:55:ad: 3e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:2F:6B:9A:0F:EB:BC:D9:E7:69:D9:88:84:1B:68:71:83:44:87:12 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.238.0/23 Signature Algorithm: sha256WithRSAEncryption 39:45:4d:54:62:f9:91:09:62:df:12:21:7f:61:bc:0a:e7:ac: ce:8b:83:30:1d:3a:e5:a2:79:5b:3c:2e:40:cb:37:e9:ec:98: 82:2c:f4:79:cd:b5:96:f7:e0:3c:bf:cb:a6:7d:2d:ec:fc:81: d7:4f:ef:7f:eb:36:d0:38:29:62:29:8d:cc:2d:36:7e:c6:21: b9:eb:f3:e7:7e:4c:de:00:97:0e:7f:d0:24:e6:46:48:3f:82: 4a:2f:84:50:cf:e1:ff:ae:8b:13:79:46:4e:1d:cd:9c:e7:b7: 2a:85:5f:7f:6b:f2:94:75:cc:d1:f3:b9:72:a5:79:98:52:b7: 17:b5:74:75:a0:e0:04:ee:36:10:2c:57:2a:b5:44:fa:77:bf: b1:2d:ed:b1:2f:a5:5c:e4:92:a9:a5:b0:1e:75:11:92:b0:4c: 74:c8:29:57:74:e0:b9:5e:c4:44:3f:fe:a7:ea:64:fc:1f:d6: e8:cd:56:5d:28:1c:16:5c:85:50:05:73:ab:01:9e:de:de:41: eb:36:58:83:11:a6:e2:ef:d6:c8:05:14:7b:d7:ec:05:16:ac: 82:e3:d0:47:17:27:08:52:9f:c4:aa:b6:c1:fc:8d:22:05:90: c2:35:74:2d:34:19:84:4f:90:f8:eb:ae:62:cd:e9:86:93:c2: 85:b6:03:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEv7cn0sGXRm4BqNRBXwGJwNA9TowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODAyMDAxMDIxWhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2FhMDZmNTMwMzNjNDViNGQzODBhZThmZDM3NjE4ODNj ZDVlZjQ1ZTNlZGI1OWIxYTdhNzIxM2VlZTc4OTZmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpYRS//2f3ijbYSjLHEoUoYLvsQJTAkbLA8zA40+NwQdHG kHXlwfrcg1Ps0YDoeNQVzB0ogS5cBQMoveZvIPEVbMfWxFZLqR5usvGUndAd/VT/ KmYg33cb6iZ8vAetGplaCsuwGK/vqNXvQGC4cYE2gcAdauwUzN934XOfSwcO7uIR 3RIqUlHyrc1SPuG+Od94Pa6HZblvOyIA9mIK41laTWY9Gu5S/Ng8ds1Oyysbmz/E cs0nSdddqMbPZ5qtwpUtnMMfHonvjVhLWgbeLDaRFf1Lsxt48bIk9n1PKqh1a67h QAEea3D/43WvXASx48YmccJ9r1MI/sxVkUVVrT4tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2i9rmg/rvNnnadmIhBtocYNEhxIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2M2ZkMzQzLTVlMjktNDhmYy04NGM5LTJkMTE3NTFkNzRlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFqe4wDQYJKoZIhvcNAQELBQADggEBADlFTVRi+ZEJYt8SIX9hvArnrM6L gzAdOuWieVs8LkDLN+nsmIIs9HnNtZb34Dy/y6Z9Lez8gddP73/rNtA4KWIpjcwt Nn7GIbnr8+d+TN4Alw5/0CTmRkg/gkovhFDP4f+uixN5Rk4dzZzntyqFX39r8pR1 zNHzuXKleZhStxe1dHWg4ATuNhAsVyq1RPp3v7Et7bEvpVzkkqmlsB51EZKwTHTI KVd04LlexEQ//qfqZPwf1ujNVl0oHBZchVAFc6sBnt7eQes2WIMRpuLv1sgFFHvX 7AUWrILj0EcXJwhSn8SqtsH8jSIFkMI1dC00GYRPkPjrrmLN6YaTwoW2A0U= -----END CERTIFICATE-----Generated at Wed Aug 6 00:45:48 2025 by rpki-client