$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa File: cb088b4a-420f-4b13-84d1-b160e021b919.roa (raw, json) Hash identifier: cNdhnVl1aXundrC7j/kghi/afhxsBfor80eJTdnZGWw= Subject key identifier: E6:79:74:02:CB:81:F3:09:2B:A7:5C:0F:76:8A:9B:3C:E5:2F:1B:F2 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 398C81012FC1D64743C1EEC5DF0F5A4650889936 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa Signing time: Mon 21 Jul 2025 15:21:21 +0000 ROA not before: Mon 21 Jul 2025 15:21:21 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:8c:81:01:2f:c1:d6:47:43:c1:ee:c5:df:0f:5a:46:50:88:99:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:21:21 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=76e08d83092314351eba3259d005b587ea89a4933ac400797ab24de14a5243fc, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:4f:70:f6:08:6d:1a:cf:e1:ae:77:f2:fb:ef: c2:c5:bf:95:99:f6:fc:9c:0a:68:11:99:c4:71:81: e3:6a:18:a9:c9:dd:52:ad:e3:7e:ae:ed:7c:bf:d4: 62:b5:ac:4e:17:bf:d7:bc:65:0c:d9:52:ea:01:58: 09:e5:c6:33:a3:e5:76:cd:fb:f9:b6:30:23:39:33: 97:4d:09:47:87:fb:37:38:ff:d6:78:d7:1b:c3:2a: 38:e5:89:49:86:8f:95:25:b9:1a:f2:11:a1:c3:cc: 99:f5:9e:c5:dc:ac:bb:e6:ac:08:9f:63:ae:77:74: 4c:b3:10:06:93:54:53:c0:05:f5:a9:3f:7e:d3:0f: 9b:5a:07:61:b2:47:ea:31:db:fb:57:c1:c2:ee:32: 4f:53:13:1a:ab:c8:a6:9b:b9:8b:c0:42:4b:d3:7f: 77:1b:94:72:ee:0d:3d:4f:7c:f9:e2:a1:9c:2b:26: a5:f7:97:b8:d3:82:86:a3:d7:55:8f:ce:e1:e2:0b: 0b:a9:43:57:63:a7:6c:25:81:81:f5:d8:65:63:a6: c6:6e:d5:88:52:98:2f:d6:c3:3f:c9:01:d1:52:ef: f7:be:06:0f:2b:fd:f1:aa:bd:ef:75:34:ab:ee:79: 4f:17:2d:5c:b8:f9:f5:cb:40:a9:df:97:72:7b:eb: 0c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:79:74:02:CB:81:F3:09:2B:A7:5C:0F:76:8A:9B:3C:E5:2F:1B:F2 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.227.0/24 Signature Algorithm: sha256WithRSAEncryption 87:8a:a0:a7:4d:8b:11:32:64:6e:fd:a4:c5:e9:7c:73:d2:67: 62:1a:ea:9a:7c:37:a6:26:82:32:bf:86:ce:2b:30:8c:74:7f: c4:62:e7:be:ee:ba:29:cf:86:e4:17:b4:e7:e7:6d:82:59:61: 0b:8e:3b:1a:a8:ed:49:13:eb:8d:5e:31:7e:fb:49:c8:c4:60: 29:99:6e:2a:af:98:b9:aa:ca:e6:0e:fb:54:18:e9:6e:78:c5: 53:d5:4a:51:89:c3:9f:82:c7:7b:a8:93:67:bb:c8:7b:06:2a: f8:b2:34:57:8e:ed:f4:28:cb:b1:5e:af:04:cc:e0:90:ac:d4: e5:c4:aa:24:7f:74:76:b4:7c:a6:c2:a2:a4:2a:3a:31:10:1a: 50:1e:57:1e:60:c5:a4:a7:97:27:82:f3:7c:61:ea:b8:b3:b4: e7:b4:88:ba:cb:78:e3:f5:82:a0:b0:c4:89:e7:fa:e0:c1:2b: 85:a1:d6:02:a7:13:9b:49:18:ea:6a:04:a1:cf:ac:a8:b2:2d: a2:a9:03:c2:3b:ee:4a:cc:98:36:1f:ca:d6:a1:a6:1a:38:4d: 07:26:39:70:93:07:b2:de:ac:41:da:e3:ab:11:12:78:47:c0: 81:d7:af:0d:c6:38:3a:7f:d9:37:c5:b8:e5:57:59:a3:62:4b: 55:d5:93:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOYyBAS/B1kdDwe7F3w9aRlCImTYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMTIxWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmUwOGQ4MzA5MjMxNDM1MWViYTMyNTlkMDA1YjU4N2Vh ODlhNDkzM2FjNDAwNzk3YWIyNGRlMTRhNTI0M2ZjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPT3D2CG0az+Gud/L778LFv5WZ9vycCmgRmcRxgeNqGKnJ 3VKt436u7Xy/1GK1rE4Xv9e8ZQzZUuoBWAnlxjOj5XbN+/m2MCM5M5dNCUeH+zc4 /9Z41xvDKjjliUmGj5UluRryEaHDzJn1nsXcrLvmrAifY653dEyzEAaTVFPABfWp P37TD5taB2GyR+ox2/tXwcLuMk9TExqryKabuYvAQkvTf3cblHLuDT1PfPnioZwr JqX3l7jTgoaj11WPzuHiCwupQ1djp2wlgYH12GVjpsZu1YhSmC/Wwz/JAdFS7/e+ Bg8r/fGqve91NKvueU8XLVy4+fXLQKnfl3J76wxnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5nl0AsuB8wkrp1wPdoqbPOUvG/IwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NiMDg4YjRhLTQyMGYtNGIxMy04NGQxLWIxNjBlMDIxYjkxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeMwDQYJKoZIhvcNAQELBQADggEBAIeKoKdNixEyZG79pMXpfHPSZ2Ia 6pp8N6YmgjK/hs4rMIx0f8Ri577uuinPhuQXtOfnbYJZYQuOOxqo7UkT641eMX77 ScjEYCmZbiqvmLmqyuYO+1QY6W54xVPVSlGJw5+Cx3uok2e7yHsGKviyNFeO7fQo y7FerwTM4JCs1OXEqiR/dHa0fKbCoqQqOjEQGlAeVx5gxaSnlyeC83xh6riztOe0 iLrLeOP1gqCwxInn+uDBK4Wh1gKnE5tJGOpqBKHPrKiyLaKpA8I77krMmDYfytah pho4TQcmOXCTB7LerEHa46sREnhHwIHXrw3GODp/2TfFuOVXWaNiS1XVk64= -----END CERTIFICATE-----Generated at Wed Aug 6 00:33:42 2025 by rpki-client