$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa File: b63fd343-5e29-48fc-84c9-2d11751d74e8.roa (raw, json) Hash identifier: SilmRu3Pe1mrDXx/Avvopu6ey0X8bQvwgvj5bD2bJJ4= Subject key identifier: 0B:22:4E:EB:D9:2A:DF:E8:C9:D5:49:4C:C9:24:D0:08:F7:15:85:C1 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 19212D3FC9636B7EF3A6C39073517BCFCE07528E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa Signing time: Tue 08 Jul 2025 00:10:24 +0000 ROA not before: Tue 08 Jul 2025 00:10:24 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:21:2d:3f:c9:63:6b:7e:f3:a6:c3:90:73:51:7b:cf:ce:07:52:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 8 00:10:24 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=8374482dd8eb262507b109079d151986815aac8fec3b01adef9d80711eaeb167, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:93:48:c8:d5:78:61:e3:1a:f2:b1:62:03:42: f9:f7:a7:cf:86:5e:78:e9:a1:a8:d7:f9:d2:8c:cf: 20:23:d6:2c:f8:6e:1a:65:8c:a5:1b:b5:57:b0:80: 33:15:00:a9:03:31:ce:0a:3d:1f:d9:94:57:4b:a9: 86:9b:12:2e:4c:46:41:f6:aa:5a:59:29:85:32:34: dc:2b:e1:df:a4:df:16:8e:ad:7f:a9:4d:11:21:cc: 33:4d:2a:2a:e8:e7:9d:ca:62:fa:99:f4:5e:df:b5: c8:d3:16:61:ed:69:45:c3:34:ae:6e:bb:68:a0:56: 77:73:32:b6:6d:8d:0a:e0:d1:9b:41:35:ed:48:a2: d2:d0:a4:48:24:cf:bf:b3:20:17:d6:d5:d7:9d:89: 9a:7a:1b:2a:ae:b1:c9:bf:60:2a:9f:ab:ad:9c:fd: d2:29:93:55:29:10:4a:b1:70:df:d8:d1:bf:f8:d2: 66:11:80:8e:54:24:69:86:70:18:9c:0d:13:54:38: 96:84:ef:40:49:46:41:0c:6a:ce:48:ba:06:0d:3e: 13:cf:17:51:49:0d:d5:f3:7a:2e:d0:ad:d0:e2:08: 2e:3b:d2:e5:56:a0:42:77:9e:95:95:f7:70:83:ab: 22:d8:17:5f:a1:8a:9d:7e:82:4e:2c:82:31:9f:c8: a5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:22:4E:EB:D9:2A:DF:E8:C9:D5:49:4C:C9:24:D0:08:F7:15:85:C1 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b63fd343-5e29-48fc-84c9-2d11751d74e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.238.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:5d:69:e4:ed:f9:49:58:1a:34:06:4f:a5:47:3c:c8:f2:d8: 50:f6:2f:b6:f8:c1:d7:2c:93:30:71:32:59:7a:31:ba:9c:0c: 80:d7:72:9d:d6:46:06:b0:bb:c0:5a:8a:8c:69:97:50:fd:e5: f1:56:3e:87:7c:a3:81:52:0c:c0:56:b7:29:b8:5e:fe:41:b6: 87:e0:31:48:70:b7:ff:cf:42:d7:fc:4e:d5:f7:72:dd:5a:34: 3e:df:21:45:4a:2b:28:c8:c8:9e:06:f7:1c:a7:b2:c4:82:2f: db:5f:fa:e5:c9:3d:3a:2f:b5:d9:a7:92:cd:76:ef:72:bc:36: a1:15:86:ff:0e:57:c6:54:28:bb:77:33:d0:25:13:3b:ea:e5: 03:68:97:a8:60:fa:ec:21:87:b5:08:cc:41:93:bb:1f:77:96: 3b:e1:a5:bd:56:03:6a:70:62:d7:8a:61:48:77:f2:00:c8:d1: 54:5d:29:d9:29:09:bb:ad:cd:2d:14:ff:16:a6:9a:68:61:a0: c1:44:37:03:58:34:ec:84:91:45:8f:61:9a:93:8d:65:e3:e4: 01:f4:bc:0b:de:26:e6:ef:fc:42:a2:bd:f1:85:f9:ad:f8:18: c2:58:ff:dc:5c:94:0d:e6:50:65:2c:b1:a9:6a:2d:b1:ab:b0: ac:83:36:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGSEtP8lja37zpsOQc1F7z84HUo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzA4MDAxMDI0WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4Mzc0NDgyZGQ4ZWIyNjI1MDdiMTA5MDc5ZDE1MTk4Njgx NWFhYzhmZWMzYjAxYWRlZjlkODA3MTFlYWViMTY3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0k0jI1Xhh4xrysWIDQvn3p8+GXnjpoajX+dKMzyAj1iz4 bhpljKUbtVewgDMVAKkDMc4KPR/ZlFdLqYabEi5MRkH2qlpZKYUyNNwr4d+k3xaO rX+pTREhzDNNKiro553KYvqZ9F7ftcjTFmHtaUXDNK5uu2igVndzMrZtjQrg0ZtB Ne1IotLQpEgkz7+zIBfW1dediZp6Gyquscm/YCqfq62c/dIpk1UpEEqxcN/Y0b/4 0mYRgI5UJGmGcBicDRNUOJaE70BJRkEMas5IugYNPhPPF1FJDdXzei7QrdDiCC47 0uVWoEJ3npWV93CDqyLYF1+hip1+gk4sgjGfyKWlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCyJO69kq3+jJ1UlMySTQCPcVhcEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2M2ZkMzQzLTVlMjktNDhmYy04NGM5LTJkMTE3NTFkNzRlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFqe4wDQYJKoZIhvcNAQELBQADggEBAExdaeTt+UlYGjQGT6VHPMjy2FD2 L7b4wdcskzBxMll6MbqcDIDXcp3WRgawu8Baioxpl1D95fFWPod8o4FSDMBWtym4 Xv5BtofgMUhwt//PQtf8TtX3ct1aND7fIUVKKyjIyJ4G9xynssSCL9tf+uXJPTov tdmnks1273K8NqEVhv8OV8ZUKLt3M9AlEzvq5QNol6hg+uwhh7UIzEGTux93ljvh pb1WA2pwYteKYUh38gDI0VRdKdkpCbutzS0U/xammmhhoMFENwNYNOyEkUWPYZqT jWXj5AH0vAveJubv/EKivfGF+a34GMJY/9xclA3mUGUssalqLbGrsKyDNuM= -----END CERTIFICATE-----Generated at Tue Jul 22 11:52:11 2025 by rpki-client