$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d99a456-6c99-48ae-bf3a-149585d61d61.roa File: 5d99a456-6c99-48ae-bf3a-149585d61d61.roa (raw, json) Hash identifier: TJ3ZgGfO9xNu1D8830xRrJ32asaB5r3iyXuBku9s2l0= Subject key identifier: 6E:09:3C:65:CC:53:85:22:CC:C1:1C:89:91:4C:66:10:AA:B9:8F:E1 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7E122557D206BFDB9EFF7B81973F39B72C156DCD Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d99a456-6c99-48ae-bf3a-149585d61d61.roa Signing time: Wed 27 Aug 2025 00:10:25 +0000 ROA not before: Wed 27 Aug 2025 00:10:25 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 09 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:12:25:57:d2:06:bf:db:9e:ff:7b:81:97:3f:39:b7:2c:15:6d:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 27 00:10:25 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=d3fa3f51d86931e0dacf1c03a4a7f6a715af12aec19efa9ddba741fb52db3514, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ed:15:c5:56:cb:62:f8:62:9d:7b:3a:54:a3: 6f:8b:41:63:5d:42:37:72:68:cd:4f:b7:04:4e:9e: 26:a9:67:b5:f9:b2:b8:ce:0e:97:c6:56:43:00:c2: b5:6c:db:7e:1f:3a:a6:eb:8a:e0:c7:cd:bd:c4:0d: 4e:2e:b2:f1:41:a3:78:6b:81:ba:bf:ef:62:93:16: 32:82:b2:67:b1:7c:0b:e4:c4:0f:30:f8:3d:d2:14: ad:27:de:88:81:4b:ce:52:54:22:3e:3f:40:0d:d2: 91:a5:ae:b3:27:83:a4:96:3d:11:bc:d0:ad:1f:1c: ae:ec:6e:85:82:ff:69:75:26:8c:df:9b:1e:0a:6e: db:ee:42:bc:7a:8f:df:90:73:a3:2d:cf:a6:3a:61: 9b:b1:a2:da:f9:69:96:24:7b:97:0d:b2:8f:69:20: 05:48:d4:87:35:11:37:29:a2:58:5c:67:e2:4c:9e: 2c:43:8a:48:e0:7e:77:18:8e:20:4c:10:22:29:9d: 53:b6:18:dc:08:72:14:c0:d6:9e:7c:bf:c4:71:51: 2a:e1:cc:87:4d:19:f6:bc:02:68:17:c6:f4:dc:84: f9:55:6c:d8:97:36:71:f8:26:e8:13:10:c2:49:15: 75:66:15:55:4f:c9:0a:64:87:d2:32:01:cc:db:87: 2a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:09:3C:65:CC:53:85:22:CC:C1:1C:89:91:4C:66:10:AA:B9:8F:E1 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d99a456-6c99-48ae-bf3a-149585d61d61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.232.0/22 Signature Algorithm: sha256WithRSAEncryption 37:57:45:73:08:13:50:96:7f:6c:74:3a:5e:4c:dc:1d:ba:94: 64:02:eb:e3:ce:97:16:b7:a0:fa:fe:2f:2c:d3:33:e6:e6:ad: 7f:28:f1:2a:e7:d7:1e:31:ba:19:f2:5b:e5:b1:8d:a6:17:9c: 36:21:e7:71:59:32:20:7d:5e:c3:4b:b9:4a:1d:3f:8e:20:7a: d0:6b:fa:3b:38:76:13:15:84:47:66:b1:c2:fe:ed:ad:3e:22: 13:d6:21:99:aa:98:84:23:58:32:ca:86:e1:80:7a:3e:a2:eb: 9b:ed:ea:9c:96:1a:42:3d:c2:6b:a4:1b:d4:1b:b1:aa:0f:0a: d7:6d:5a:79:16:9f:7b:fc:6c:8c:64:2c:44:35:1a:4a:fb:c5: 7b:89:17:55:c8:19:f8:50:f9:ad:dd:d4:e5:bb:0e:53:7a:e2: da:d0:78:d7:0a:fa:19:b4:cf:d8:d9:7d:03:f3:cd:33:b2:39: 49:10:19:28:d7:4e:49:3d:48:3a:60:5b:06:a8:20:66:38:d7: ff:cb:57:c3:27:c4:6e:6d:44:d8:05:b1:48:6b:55:26:11:b9: 77:be:12:57:4b:61:f5:9a:ac:b5:0c:2f:70:7d:64:dd:c0:6d: 20:80:e5:0d:98:a0:a2:2c:f5:0c:37:3d:cd:ce:57:d2:58:0e: 3d:e6:28:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfhIlV9IGv9ue/3uBlz85tywVbc0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODI3MDAxMDI1WhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkM2ZhM2Y1MWQ4NjkzMWUwZGFjZjFjMDNhNGE3ZjZhNzE1 YWYxMmFlYzE5ZWZhOWRkYmE3NDFmYjUyZGIzNTE0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCc7RXFVsti+GKdezpUo2+LQWNdQjdyaM1PtwROniapZ7X5 srjODpfGVkMAwrVs234fOqbriuDHzb3EDU4usvFBo3hrgbq/72KTFjKCsmexfAvk xA8w+D3SFK0n3oiBS85SVCI+P0AN0pGlrrMng6SWPRG80K0fHK7sboWC/2l1Jozf mx4KbtvuQrx6j9+Qc6Mtz6Y6YZuxotr5aZYke5cNso9pIAVI1Ic1ETcpolhcZ+JM nixDikjgfncYjiBMECIpnVO2GNwIchTA1p58v8RxUSrhzIdNGfa8AmgXxvTchPlV bNiXNnH4JugTEMJJFXVmFVVPyQpkh9IyAczbhyr9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbgk8ZcxThSLMwRyJkUxmEKq5j+EwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkOTlhNDU2LTZjOTktNDhhZS1iZjNhLTE0OTU4NWQ2MWQ2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJFqegwDQYJKoZIhvcNAQELBQADggEBADdXRXMIE1CWf2x0Ol5M3B26lGQC 6+POlxa3oPr+LyzTM+bmrX8o8Srn1x4xuhnyW+WxjaYXnDYh53FZMiB9XsNLuUod P44getBr+js4dhMVhEdmscL+7a0+IhPWIZmqmIQjWDLKhuGAej6i65vt6pyWGkI9 wmukG9QbsaoPCtdtWnkWn3v8bIxkLEQ1Gkr7xXuJF1XIGfhQ+a3d1OW7DlN64trQ eNcK+hm0z9jZfQPzzTOyOUkQGSjXTkk9SDpgWwaoIGY41//LV8MnxG5tRNgFsUhr VSYRuXe+EldLYfWarLUML3B9ZN3AbSCA5Q2YoKIs9Qw3Pc3OV9JYDj3mKOk= -----END CERTIFICATE-----Generated at Sun Sep 7 16:24:42 2025 by rpki-client