$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/6da9618c-e798-462f-afd9-32b58ba88cba.roa File: 6da9618c-e798-462f-afd9-32b58ba88cba.roa (raw, json) Hash identifier: qysn0uY9QDB9oYR+W2PmOMd2gx727dSvpZbb74qWbu4= Subject key identifier: 4B:F6:52:0C:6B:38:8E:C7:46:E0:6F:6D:99:AD:F0:F7:FE:0D:23:92 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3F6FA59632A411BBF575936243763429FADAB8D0 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/6da9618c-e798-462f-afd9-32b58ba88cba.roa Signing time: Mon 21 Jul 2025 15:21:20 +0000 ROA not before: Mon 21 Jul 2025 15:21:20 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:6f:a5:96:32:a4:11:bb:f5:75:93:62:43:76:34:29:fa:da:b8:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:21:20 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=5a6a330c79ef2911ca5e7a9942bcdebb467960616084bdd0c3c5089bfc49a16b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f9:14:d7:19:73:6a:17:aa:74:0f:19:20:f3: 8f:41:e6:f9:48:11:00:f6:99:63:dd:46:0a:2a:ef: 58:cf:2d:26:a7:7a:75:fe:9e:76:91:4a:32:00:2b: e0:5b:c7:85:79:fb:b4:25:17:c6:12:2f:5d:99:ec: f7:a5:26:19:83:6a:b0:2f:84:f2:09:a8:84:1d:71: 50:ba:ff:b0:8a:7b:78:47:5c:a7:1c:94:59:ac:50: b6:47:0b:ed:1d:94:4d:ab:54:26:83:b7:ce:8e:13: c7:9d:cc:1c:2c:ca:83:19:ff:d9:35:09:fc:7d:85: 8c:3f:b0:2b:e4:cf:7f:f8:32:1c:98:cf:f2:40:8d: b3:1e:52:b3:85:dc:79:ae:a1:65:90:44:a9:86:2f: 18:8d:94:40:c9:f8:c1:bd:83:a0:4d:7a:29:24:7f: f2:bf:da:da:46:3a:9c:c5:e3:65:ba:81:46:b5:a8: 8f:66:a6:04:54:86:f2:ca:f8:a0:d7:84:eb:bd:42: 11:53:a0:62:dc:0a:9e:fb:62:34:96:de:65:78:0f: 82:be:da:6b:d6:e8:fc:d3:52:ca:09:d8:63:ea:98: 53:de:c7:ca:e8:39:d1:86:da:43:c4:6d:f4:d3:6a: d9:cf:c1:a9:6a:fd:b6:1a:b4:1d:f7:c9:b5:6e:46: 9e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:F6:52:0C:6B:38:8E:C7:46:E0:6F:6D:99:AD:F0:F7:FE:0D:23:92 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/6da9618c-e798-462f-afd9-32b58ba88cba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.224.0/20 Signature Algorithm: sha256WithRSAEncryption 0c:2a:9f:d1:ca:83:d8:e0:22:87:17:9f:ee:14:19:73:9b:e4: c4:23:ba:7d:5a:74:b4:94:a8:ba:ff:2a:d9:c4:c2:52:a7:35: 74:36:c5:cf:c7:53:57:e8:f4:02:e5:a7:a0:73:21:60:07:17: 99:f2:17:31:a7:73:ba:69:26:2c:19:d8:b8:14:f5:e2:e4:fa: ca:19:3e:ba:e0:5b:2d:f2:bc:d1:28:f1:b4:c0:e2:91:2c:c3: 40:1b:36:4a:b7:77:1a:0e:9f:63:0d:26:99:f9:7a:8c:4c:c2: 87:6e:a7:a3:bc:48:7f:0e:2d:bf:22:1a:d9:b3:76:ab:26:53: e6:04:12:7d:42:25:50:d4:9a:83:71:b5:96:e3:7a:bf:31:e0: 83:cd:3c:83:14:3d:2e:3a:6a:af:98:f0:e6:8f:28:c1:0a:25: a1:75:bb:8c:6c:65:5c:2e:b0:34:61:18:34:fc:d7:2c:9c:34: a3:31:7c:ba:f9:49:a7:95:d9:31:13:43:fb:53:fc:39:ca:a0: 61:94:37:81:0d:d1:6d:03:da:17:aa:95:18:56:74:86:b2:a4: 13:b6:ea:df:21:ff:8b:38:51:4e:33:9f:80:51:05:f6:74:83: 92:01:1d:ec:05:d4:37:97:1d:66:56:95:e4:42:d6:64:2d:b3: 1d:d4:5d:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP2+lljKkEbv1dZNiQ3Y0KfrauNAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMTIwWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTZhMzMwYzc5ZWYyOTExY2E1ZTdhOTk0MmJjZGViYjQ2 Nzk2MDYxNjA4NGJkZDBjM2M1MDg5YmZjNDlhMTZiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG+RTXGXNqF6p0Dxkg849B5vlIEQD2mWPdRgoq71jPLSan enX+nnaRSjIAK+Bbx4V5+7QlF8YSL12Z7PelJhmDarAvhPIJqIQdcVC6/7CKe3hH XKcclFmsULZHC+0dlE2rVCaDt86OE8edzBwsyoMZ/9k1Cfx9hYw/sCvkz3/4MhyY z/JAjbMeUrOF3HmuoWWQRKmGLxiNlEDJ+MG9g6BNeikkf/K/2tpGOpzF42W6gUa1 qI9mpgRUhvLK+KDXhOu9QhFToGLcCp77YjSW3mV4D4K+2mvW6PzTUsoJ2GPqmFPe x8roOdGG2kPEbfTTatnPwalq/bYatB33ybVuRp4fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS/ZSDGs4jsdG4G9tma3w9/4NI5IwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzZkYTk2MThjLWU3OTgtNDYyZi1hZmQ5LTMyYjU4YmE4OGNiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARFqeAwDQYJKoZIhvcNAQELBQADggEBAAwqn9HKg9jgIocXn+4UGXOb5MQj un1adLSUqLr/KtnEwlKnNXQ2xc/HU1fo9ALlp6BzIWAHF5nyFzGnc7ppJiwZ2LgU 9eLk+soZPrrgWy3yvNEo8bTA4pEsw0AbNkq3dxoOn2MNJpn5eoxMwodup6O8SH8O Lb8iGtmzdqsmU+YEEn1CJVDUmoNxtZbjer8x4IPNPIMUPS46aq+Y8OaPKMEKJaF1 u4xsZVwusDRhGDT81yycNKMxfLr5SaeV2TETQ/tT/DnKoGGUN4EN0W0D2heqlRhW dIaypBO26t8h/4s4UU4zn4BRBfZ0g5IBHewF1DeXHWZWleRC1mQtsx3UXVE= -----END CERTIFICATE-----Generated at Tue Jul 22 11:47:48 2025 by rpki-client