$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa File: 60789a29-f516-47ec-9154-b2b610f7282e.roa (raw, json) Hash identifier: rw09sjxylrPE2MHsKxi6iTQMKhqy6jJ6aKMiDdxy5Zs= Subject key identifier: 08:23:20:9C:CC:10:76:C1:37:6C:83:FA:CB:24:BB:99:59:19:BD:B5 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 61E4F9D9731B0B87E49BFFFE610E48E9444BFF9D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa Signing time: Wed 13 Aug 2025 00:00:10 +0000 ROA not before: Wed 13 Aug 2025 00:00:10 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e4:f9:d9:73:1b:0b:87:e4:9b:ff:fe:61:0e:48:e9:44:4b:ff:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 13 00:00:10 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=3f481675a102ccacf1dfdf788f8605e375cdc15cc1059d4b4bf6b5a95897f37c, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:48:68:e1:4e:f1:57:12:6d:39:3a:4b:04:d4: d7:f8:75:8d:72:6a:b3:10:52:6e:1f:56:d5:a4:d8: 6b:68:8c:97:7d:28:bd:ba:32:a0:6b:81:e8:0b:19: 3c:0a:19:3e:97:c6:4f:41:e2:a2:cb:5c:4f:1d:7b: ae:e1:02:23:ef:0a:43:11:e1:27:f3:a0:32:86:ae: b6:5e:fa:7f:39:00:00:ce:66:5b:df:57:d4:4e:15: 58:e5:0e:b6:ec:30:a7:65:a3:e5:d0:4c:13:87:0d: 3d:f5:66:be:6f:7f:62:18:01:8a:75:4e:aa:5d:98: 7b:7e:76:7c:bf:35:fc:42:da:3f:75:23:8e:2f:36: a4:20:6c:2c:79:78:aa:74:c0:2b:da:07:b9:3f:e3: ee:9e:3e:f6:42:c1:42:e3:e3:a2:0a:e1:87:6b:d1: 3a:a6:47:a1:f6:b8:d2:94:1c:16:c9:9d:7c:3f:a1: 9d:23:b6:21:6e:6a:d0:41:5a:77:19:13:1a:1b:6f: 37:d7:e1:bc:07:3b:99:85:fd:ba:44:72:26:78:72: 38:0a:50:db:c4:eb:e2:eb:03:76:41:41:e4:ed:f3: 94:41:34:ab:db:b0:4d:59:5b:12:46:4a:f6:d4:27: cf:f0:85:5f:17:c7:a0:da:ef:04:3f:72:6c:3b:e3: 91:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:23:20:9C:CC:10:76:C1:37:6C:83:FA:CB:24:BB:99:59:19:BD:B5 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 1d:ba:17:35:44:9f:b2:ed:8a:db:f4:46:27:d4:58:60:32:22: ba:34:14:85:a0:b2:64:98:fe:d6:70:25:4c:fd:d0:71:d7:04: ca:87:db:63:a5:ee:70:e8:f2:8a:d7:6b:0d:67:20:dc:55:45: c7:bf:5c:e8:03:d5:f1:0c:48:ac:52:c8:03:ca:70:da:a3:93: ca:28:e2:af:03:b2:2e:6f:49:2e:22:fc:d0:10:0f:36:10:6e: 48:30:8a:bf:93:f6:3c:89:39:34:73:d2:6d:d2:71:61:be:ac: a6:f5:5b:0d:68:8a:69:c8:86:f7:95:18:aa:21:99:5d:13:f1: 20:eb:36:7d:59:36:bc:0b:7c:b0:38:88:21:68:45:f9:78:ae: e5:0c:13:da:a9:1b:27:b3:4c:f8:62:38:cc:af:aa:56:63:6d: 50:ca:57:03:74:64:30:02:03:f2:96:c4:b2:2e:1d:ae:54:42: 1f:b6:25:be:08:9a:26:2d:89:d5:23:24:2b:fb:ca:a8:54:b0: 64:f6:87:79:b1:3f:14:34:43:06:b5:55:0b:3e:6f:c2:e7:2d: e5:3b:91:08:d9:ce:87:ea:3c:26:59:6b:d7:96:a2:71:3e:46: 6f:75:46:b4:ae:ec:4b:06:44:5d:c7:f9:8a:21:69:80:c8:59: 22:e9:06:8e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYeT52XMbC4fkm//+YQ5I6URL/50wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODEzMDAwMDEwWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjQ4MTY3NWExMDJjY2FjZjFkZmRmNzg4Zjg2MDVlMzc1 Y2RjMTVjYzEwNTlkNGI0YmY2YjVhOTU4OTdmMzdjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVSGjhTvFXEm05OksE1Nf4dY1yarMQUm4fVtWk2GtojJd9 KL26MqBrgegLGTwKGT6Xxk9B4qLLXE8de67hAiPvCkMR4SfzoDKGrrZe+n85AADO ZlvfV9ROFVjlDrbsMKdlo+XQTBOHDT31Zr5vf2IYAYp1TqpdmHt+dny/NfxC2j91 I44vNqQgbCx5eKp0wCvaB7k/4+6ePvZCwULj46IK4Ydr0TqmR6H2uNKUHBbJnXw/ oZ0jtiFuatBBWncZExobbzfX4bwHO5mF/bpEciZ4cjgKUNvE6+LrA3ZBQeTt85RB NKvbsE1ZWxJGSvbUJ8/whV8Xx6Da7wQ/cmw745HVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCCMgnMwQdsE3bIP6yyS7mVkZvbUwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzYwNzg5YTI5LWY1MTYtNDdlYy05MTU0LWIyYjYxMGY3MjgyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBAB26FzVEn7Ltitv0RifUWGAyIro0 FIWgsmSY/tZwJUz90HHXBMqH22Ol7nDo8orXaw1nINxVRce/XOgD1fEMSKxSyAPK cNqjk8oo4q8Dsi5vSS4i/NAQDzYQbkgwir+T9jyJOTRz0m3ScWG+rKb1Ww1oimnI hveVGKohmV0T8SDrNn1ZNrwLfLA4iCFoRfl4ruUME9qpGyezTPhiOMyvqlZjbVDK VwN0ZDACA/KWxLIuHa5UQh+2Jb4ImiYtidUjJCv7yqhUsGT2h3mxPxQ0Qwa1VQs+ b8LnLeU7kQjZzofqPCZZa9eWonE+Rm91RrSu7EsGRF3H+YohaYDIWSLpBo4= -----END CERTIFICATE-----Generated at Sat Aug 23 06:59:02 2025 by rpki-client