$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8f549665-8398-44a1-8d57-5658d76e1c61.roa File: 8f549665-8398-44a1-8d57-5658d76e1c61.roa (raw, json) Hash identifier: 6Eh7szDgjJ25dPphdqqf2dNjbCYuj5TnDdNou3IQ+qY= Subject key identifier: A5:08:7C:C2:56:4F:B3:AE:E5:2E:A8:0D:C7:9A:E2:CC:9B:18:C2:F7 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 640F3CA282D234E826FD4FEB491A7B3920BDBCC7 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8f549665-8398-44a1-8d57-5658d76e1c61.roa Signing time: Sat 02 Aug 2025 00:10:16 +0000 ROA not before: Sat 02 Aug 2025 00:10:16 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:0f:3c:a2:82:d2:34:e8:26:fd:4f:eb:49:1a:7b:39:20:bd:bc:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 2 00:10:16 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=71f28bcedd82f3e9d0bfd6e833c805fcbbc83051d10ce96ae8a03eeed18f3754, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ef:e8:eb:55:dd:f3:3d:c7:18:63:32:dc:75: af:f4:3f:09:68:74:ee:72:99:c6:5a:f3:fb:83:2f: 91:8c:fe:1e:65:e1:c2:d8:b3:75:69:25:5e:a5:05: 55:5c:1b:4a:5d:0e:60:8b:58:f6:40:c3:56:54:ef: 13:99:9a:57:9c:36:9a:70:af:22:62:32:18:b0:45: 4c:0d:c1:41:95:bc:f6:1e:1b:96:4a:3c:46:88:4d: ec:69:af:5b:05:40:e0:c7:66:47:ba:72:9b:cc:31: c9:27:84:70:55:b1:1b:78:e1:64:28:cb:50:e9:c0: 30:0c:77:bf:f8:ff:1e:11:91:1c:69:49:47:ac:8a: eb:ed:6d:fb:be:da:e7:a0:40:15:86:c2:dc:10:fe: 5f:38:a0:f1:ee:ea:d7:29:51:59:bd:0b:a0:be:5f: 88:eb:a1:1c:a1:ff:27:3b:c4:94:e4:00:9b:b3:63: 5f:28:68:3d:72:83:c1:c7:92:71:3e:5b:f0:e4:d4: 5a:12:0f:cb:7a:1a:8f:94:14:8d:b1:79:e7:f3:38: 75:27:7c:65:f1:0f:b2:bf:3e:c9:92:f1:af:21:45: 22:6c:91:4d:1e:3c:dc:fd:23:bd:ae:ec:87:11:fe: 86:a6:24:80:10:d3:a2:da:a8:53:57:2b:df:5e:19: a8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:08:7C:C2:56:4F:B3:AE:E5:2E:A8:0D:C7:9A:E2:CC:9B:18:C2:F7 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8f549665-8398-44a1-8d57-5658d76e1c61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.234.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:ac:41:d6:af:ef:c9:13:7d:87:03:35:c6:c8:fa:41:3d:ee: aa:03:da:c2:33:82:8e:56:3b:d4:96:58:fb:6c:a7:15:a1:75: fe:8f:2c:35:22:b8:a5:43:b2:dd:21:84:ee:86:43:99:f6:5c: 78:fe:a4:d8:33:2f:f0:71:1c:94:52:ab:5d:92:de:05:64:58: b8:fa:15:10:33:05:1f:3c:fe:07:bf:56:81:ce:90:1b:46:b3: ea:45:e1:95:79:b1:07:32:f0:90:5e:8e:9a:f3:9d:bc:d4:ef: c9:e9:fc:ab:e8:4b:de:21:36:b1:4f:d2:bc:48:3a:be:27:e9: 70:a1:be:74:8a:6f:49:fa:10:89:f6:28:a7:6a:42:12:1e:38: 39:64:22:53:a9:c2:3f:dc:c3:e9:9f:37:be:51:b3:12:29:53: f3:68:b3:5f:73:44:f7:2c:2e:a5:bb:e5:85:b3:17:4f:94:b6: 53:ec:f1:9d:bc:d9:f6:08:59:ad:e6:50:13:97:1b:21:7c:67: c1:75:85:c4:c6:bb:05:66:22:5f:93:3e:d6:47:89:67:91:48: d7:1e:a7:c9:63:f5:5d:aa:29:37:ea:8a:19:9f:b8:1a:e6:7b: 4b:15:5d:71:3a:c2:d2:34:76:ab:ec:ad:43:ff:08:c0:22:e0: 7c:54:7b:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZA88ooLSNOgm/U/rSRp7OSC9vMcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODAyMDAxMDE2WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWYyOGJjZWRkODJmM2U5ZDBiZmQ2ZTgzM2M4MDVmY2Ji YzgzMDUxZDEwY2U5NmFlOGEwM2VlZWQxOGYzNzU0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ7+jrVd3zPccYYzLcda/0PwlodO5ymcZa8/uDL5GM/h5l 4cLYs3VpJV6lBVVcG0pdDmCLWPZAw1ZU7xOZmlecNppwryJiMhiwRUwNwUGVvPYe G5ZKPEaITexpr1sFQODHZke6cpvMMcknhHBVsRt44WQoy1DpwDAMd7/4/x4RkRxp SUesiuvtbfu+2uegQBWGwtwQ/l84oPHu6tcpUVm9C6C+X4jroRyh/yc7xJTkAJuz Y18oaD1yg8HHknE+W/Dk1FoSD8t6Go+UFI2xeefzOHUnfGXxD7K/PsmS8a8hRSJs kU0ePNz9I72u7IcR/oamJIAQ06LaqFNXK99eGahTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpQh8wlZPs67lLqgNx5rizJsYwvcwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzhmNTQ5NjY1LTgzOTgtNDRhMS04ZDU3LTU2NThkNzZlMWM2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeowDQYJKoZIhvcNAQELBQADggEBABusQdav78kTfYcDNcbI+kE97qoD 2sIzgo5WO9SWWPtspxWhdf6PLDUiuKVDst0hhO6GQ5n2XHj+pNgzL/BxHJRSq12S 3gVkWLj6FRAzBR88/ge/VoHOkBtGs+pF4ZV5sQcy8JBejprznbzU78np/KvoS94h NrFP0rxIOr4n6XChvnSKb0n6EIn2KKdqQhIeODlkIlOpwj/cw+mfN75RsxIpU/No s19zRPcsLqW75YWzF0+UtlPs8Z282fYIWa3mUBOXGyF8Z8F1hcTGuwVmIl+TPtZH iWeRSNcep8lj9V2qKTfqihmfuBrme0sVXXE6wtI0dqvsrUP/CMAi4HxUe6Q= -----END CERTIFICATE-----Generated at Sat Aug 23 06:55:13 2025 by rpki-client