$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa File: cb088b4a-420f-4b13-84d1-b160e021b919.roa (raw, json) Hash identifier: I9VcVGM3xSzwzeqYjueZNODCmtvY7J7AohwRImx8OBM= Subject key identifier: 9B:C3:79:23:4E:65:4C:F8:92:BA:9D:67:61:71:11:C9:86:04:66:38 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 68760C56B8BBB669C6B02E6EBBE1637D24940C52 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa Signing time: Wed 25 Jun 2025 00:00:52 +0000 ROA not before: Wed 25 Jun 2025 00:00:52 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:76:0c:56:b8:bb:b6:69:c6:b0:2e:6e:bb:e1:63:7d:24:94:0c:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jun 25 00:00:52 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=6c604abcf2e3c0e4ad19f8c6e53f8c6b0a720f0d8c97304f303cc7b5e8099193, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:18:21:ef:77:03:17:6e:4f:5c:6f:88:5e:02: eb:33:50:d5:e1:db:b6:ca:20:3e:b4:78:9d:fd:98: bf:f8:83:1f:dc:35:cc:57:8c:e8:38:b2:66:f7:b0: 5b:bd:a4:6f:9b:6d:c6:e1:6c:fe:7f:11:c4:a9:7a: ce:a9:32:4f:47:b1:76:5b:bc:87:a9:65:9a:62:97: 99:76:ef:b5:00:6c:33:c9:29:ab:ed:ac:f0:1c:2f: 2f:bf:21:85:7b:43:78:f0:b7:d8:fa:24:78:41:4b: b8:69:21:dd:e9:48:12:2f:99:54:78:32:55:37:6e: e5:c6:56:38:42:2d:7a:89:97:78:1e:5f:bb:1c:d1: c5:4b:03:d5:ba:de:fa:f8:56:7e:84:78:37:45:b3: 07:5c:c7:14:a6:2f:e2:a2:df:cd:13:7a:a1:71:09: 81:e7:84:40:0e:67:41:7e:76:3c:14:05:b6:b2:ad: 84:01:46:59:ea:40:4f:f3:01:37:13:bd:b2:22:f0: df:3c:ae:55:6d:1b:b6:86:e5:d1:f2:95:3a:2f:8a: 81:0b:c3:0d:26:da:af:03:3f:98:ee:8a:59:07:97: a8:49:5f:78:9d:ba:ea:73:28:30:7d:40:47:cd:d6: 48:43:9b:6d:77:4d:d7:b4:36:44:20:b9:d0:a9:c5: 01:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:C3:79:23:4E:65:4C:F8:92:BA:9D:67:61:71:11:C9:86:04:66:38 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.227.0/24 Signature Algorithm: sha256WithRSAEncryption 16:af:b9:1e:ba:6e:bc:9c:b2:be:1c:09:58:4f:40:2c:1d:00: f5:4e:40:85:c2:57:13:1d:bf:51:ec:58:44:a4:ea:c9:04:9a: cc:1c:59:1a:0c:ac:50:00:39:64:fd:38:6c:ae:b8:c2:2c:df: c2:27:ba:84:fd:fe:86:19:4a:26:7f:ef:10:2d:fb:99:75:00: 15:03:e9:14:d0:76:75:d8:5a:d9:ed:4f:a0:e8:1a:d1:60:16: 0b:43:6d:ba:fa:bb:ce:ce:00:aa:65:a3:d3:88:19:62:04:08: be:67:48:d5:5d:6a:c9:b5:d5:7f:b7:d9:fc:37:f0:77:dd:cb: 92:77:27:70:3b:1e:93:17:5e:bb:80:9f:78:9e:ce:92:d7:cd: 8f:51:95:88:82:ac:71:24:4b:3a:ef:55:f9:32:90:ff:86:eb: 80:f4:ce:7a:94:86:1f:8d:a6:0e:2d:8c:ce:b8:a4:92:16:ce: 1c:ab:ef:91:e4:cd:6c:24:c7:f8:b9:a4:36:a4:b5:1c:db:77: ec:bf:ea:3c:24:d1:1a:f2:85:1c:7e:ee:84:bd:b7:e7:6c:de: ff:f7:cf:35:76:b0:c7:7d:42:0b:dc:27:87:80:38:45:53:e0: 55:14:b7:56:86:01:af:dd:72:94:f6:63:f8:c9:83:17:26:b9: 06:da:12:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaHYMVri7tmnGsC5uu+FjfSSUDFIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNjI1MDAwMDUyWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzYwNGFiY2YyZTNjMGU0YWQxOWY4YzZlNTNmOGM2YjBh NzIwZjBkOGM5NzMwNGYzMDNjYzdiNWU4MDk5MTkzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5GCHvdwMXbk9cb4heAuszUNXh27bKID60eJ39mL/4gx/c NcxXjOg4smb3sFu9pG+bbcbhbP5/EcSpes6pMk9HsXZbvIepZZpil5l277UAbDPJ KavtrPAcLy+/IYV7Q3jwt9j6JHhBS7hpId3pSBIvmVR4MlU3buXGVjhCLXqJl3ge X7sc0cVLA9W63vr4Vn6EeDdFswdcxxSmL+Ki380TeqFxCYHnhEAOZ0F+djwUBbay rYQBRlnqQE/zATcTvbIi8N88rlVtG7aG5dHylTovioELww0m2q8DP5juilkHl6hJ X3iduupzKDB9QEfN1khDm213Tde0NkQgudCpxQHdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm8N5I05lTPiSup1nYXERyYYEZjgwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NiMDg4YjRhLTQyMGYtNGIxMy04NGQxLWIxNjBlMDIxYjkxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeMwDQYJKoZIhvcNAQELBQADggEBABavuR66brycsr4cCVhPQCwdAPVO QIXCVxMdv1HsWESk6skEmswcWRoMrFAAOWT9OGyuuMIs38InuoT9/oYZSiZ/7xAt +5l1ABUD6RTQdnXYWtntT6DoGtFgFgtDbbr6u87OAKplo9OIGWIECL5nSNVdasm1 1X+32fw38Hfdy5J3J3A7HpMXXruAn3iezpLXzY9RlYiCrHEkSzrvVfkykP+G64D0 znqUhh+Npg4tjM64pJIWzhyr75HkzWwkx/i5pDaktRzbd+y/6jwk0RryhRx+7oS9 t+ds3v/3zzV2sMd9QgvcJ4eAOEVT4FUUt1aGAa/dcpT2Y/jJgxcmuQbaEqU= -----END CERTIFICATE-----Generated at Sun Jun 29 08:10:50 2025 by rpki-client