$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa File: cb088b4a-420f-4b13-84d1-b160e021b919.roa (raw, json) Hash identifier: jlen4oh7fws88rxcOaF6C4urJrjkDxPVmXB3uXJtg/4= Subject key identifier: 4A:07:86:DE:C1:2E:B7:D6:D8:BB:39:F9:B8:3C:97:EA:C6:4B:49:32 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 20D1F5B153EF065C939EE9297BDF0F10A33ABE58 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa Signing time: Sat 31 May 2025 00:00:23 +0000 ROA not before: Sat 31 May 2025 00:00:23 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d1:f5:b1:53:ef:06:5c:93:9e:e9:29:7b:df:0f:10:a3:3a:be:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 31 00:00:23 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=b3c7c488b9f876df8ed4c6f84799679e93961bd1a0b5bf5c6b5cb8b5503483ce, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:32:f5:cf:69:df:66:a6:4b:1d:de:1c:e5:59: ad:d7:b6:f4:8b:42:c4:15:4b:f4:d0:03:f7:69:e5: bb:46:da:87:04:ed:22:6d:69:d9:a6:a5:ba:3c:fc: e3:58:71:25:08:18:7d:bf:18:21:42:13:92:19:38: 5b:16:76:fa:25:5d:25:dd:67:68:24:7b:1e:77:3a: 27:d8:3a:6d:36:9f:0a:78:dc:c8:8c:b2:62:fc:9b: 44:81:ab:9b:1e:cf:a9:5d:df:f9:5d:86:6c:87:b4: 01:75:f7:8c:8d:23:95:dc:85:c0:58:ac:c4:4f:f0: 7c:96:b3:d3:ea:a1:d5:5b:2b:6e:c8:4b:1c:6b:22: 9f:5c:65:3d:ec:49:e3:97:ad:05:71:cb:52:55:86: 65:68:6d:75:e3:56:32:8d:5f:eb:67:3c:01:5a:c8: 7f:d0:b2:a5:46:17:71:36:76:4a:24:a1:c3:cf:ca: b3:63:3e:03:6e:a5:d0:f8:fa:ee:c1:af:19:8b:70: 01:aa:1c:e9:a2:56:b3:ba:cd:03:ee:de:08:e1:50: 0b:68:5e:84:c8:d9:e4:86:d6:11:ff:09:16:4f:08: 69:b0:23:52:d6:b4:bb:b3:bc:ec:17:1b:9f:9f:8c: 0a:e1:6a:1e:a2:b6:4b:06:a0:b3:b0:92:62:92:7f: 8c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:07:86:DE:C1:2E:B7:D6:D8:BB:39:F9:B8:3C:97:EA:C6:4B:49:32 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.227.0/24 Signature Algorithm: sha256WithRSAEncryption 67:e4:65:85:e5:7f:d1:49:12:3f:40:4f:53:b6:c6:87:68:78: de:06:8f:8f:d5:9d:68:1c:24:db:da:98:b0:6f:e7:80:84:35: 63:81:5a:9a:a4:fa:51:28:15:c8:94:0e:e3:0e:8a:17:9f:c3: f2:35:20:01:e5:2b:1c:4e:6a:1a:fa:4f:81:e4:5d:15:cf:0e: 43:e3:95:77:61:7b:57:8d:c0:0d:9b:79:bf:73:4c:0c:df:81: ce:e0:22:96:67:f6:75:91:8c:4c:5c:2c:1b:28:be:2d:6a:53: 50:0c:5c:a0:56:39:38:7a:31:bc:f0:f8:fe:e8:f7:de:5d:68: d4:c4:72:9c:f3:76:46:28:f6:bf:ff:d9:cf:20:d3:eb:73:68: 38:54:fa:3e:7c:aa:62:5d:30:06:1f:8a:2f:9a:e7:d3:d8:d4: 93:7c:fb:28:08:c4:ff:2c:56:6c:3c:9d:b8:b2:d4:68:f3:5d: 54:76:51:22:07:be:45:65:f9:52:b7:5c:ec:2a:64:3c:0b:60: 8f:5e:8c:26:4e:ee:bd:ed:33:88:86:69:2e:ba:f8:77:f4:e2: a4:97:b6:23:d7:f4:9f:ff:8c:f0:eb:38:ce:6b:fe:31:07:e3: d3:35:f6:6b:6f:0f:d3:bb:12:c2:55:a0:f9:d6:d9:94:0e:cf: 26:2b:30:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUINH1sVPvBlyTnukpe98PEKM6vlgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTMxMDAwMDIzWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2M3YzQ4OGI5Zjg3NmRmOGVkNGM2Zjg0Nzk5Njc5ZTkz OTYxYmQxYTBiNWJmNWM2YjVjYjhiNTUwMzQ4M2NlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGMvXPad9mpksd3hzlWa3XtvSLQsQVS/TQA/dp5btG2ocE 7SJtadmmpbo8/ONYcSUIGH2/GCFCE5IZOFsWdvolXSXdZ2gkex53OifYOm02nwp4 3MiMsmL8m0SBq5sez6ld3/ldhmyHtAF194yNI5XchcBYrMRP8HyWs9PqodVbK27I SxxrIp9cZT3sSeOXrQVxy1JVhmVobXXjVjKNX+tnPAFayH/QsqVGF3E2dkokocPP yrNjPgNupdD4+u7BrxmLcAGqHOmiVrO6zQPu3gjhUAtoXoTI2eSG1hH/CRZPCGmw I1LWtLuzvOwXG5+fjArhah6itksGoLOwkmKSf4y3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSgeG3sEut9bYuzn5uDyX6sZLSTIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NiMDg4YjRhLTQyMGYtNGIxMy04NGQxLWIxNjBlMDIxYjkxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeMwDQYJKoZIhvcNAQELBQADggEBAGfkZYXlf9FJEj9AT1O2xodoeN4G j4/VnWgcJNvamLBv54CENWOBWpqk+lEoFciUDuMOihefw/I1IAHlKxxOahr6T4Hk XRXPDkPjlXdhe1eNwA2beb9zTAzfgc7gIpZn9nWRjExcLBsovi1qU1AMXKBWOTh6 Mbzw+P7o995daNTEcpzzdkYo9r//2c8g0+tzaDhU+j58qmJdMAYfii+a59PY1JN8 +ygIxP8sVmw8nbiy1GjzXVR2USIHvkVl+VK3XOwqZDwLYI9ejCZO7r3tM4iGaS66 +Hf04qSXtiPX9J//jPDrOM5r/jEH49M19mtvD9O7EsJVoPnW2ZQOzyYrMPc= -----END CERTIFICATE-----Generated at Sat Jun 14 06:34:19 2025 by rpki-client