$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d99a456-6c99-48ae-bf3a-149585d61d61.roa File: 5d99a456-6c99-48ae-bf3a-149585d61d61.roa (raw, json) Hash identifier: RBdJfyrVnzIRAFtibfWY26cDnmsMAZZh2gXKgsfC2AM= Subject key identifier: 9A:67:FD:71:95:6F:E3:DF:06:20:DC:B3:5B:66:61:31:4F:A2:3C:B9 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1FF1B9857FACF90D7A0BFF9D845E323D8947D099 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d99a456-6c99-48ae-bf3a-149585d61d61.roa Signing time: Mon 19 May 2025 15:10:33 +0000 ROA not before: Mon 19 May 2025 15:10:33 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f1:b9:85:7f:ac:f9:0d:7a:0b:ff:9d:84:5e:32:3d:89:47:d0:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 19 15:10:33 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=47b7f982096aa14906dfc6e981eabe3ce28ec37f2aa03448b090de338637c6fe, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:17:db:01:37:b0:73:66:5f:7f:c0:a1:32:21: 9b:0e:24:6c:38:b7:d4:49:52:72:49:25:96:ec:b7: 01:37:4c:82:c0:f2:25:6f:3e:54:a2:41:69:ea:f5: 71:65:80:c4:d8:ad:c6:b9:4a:67:96:2c:bd:67:28: dd:69:f5:9f:6d:99:22:65:cd:02:2f:8c:a3:11:f1: 2e:86:41:88:66:1b:a3:ed:a9:62:3d:e2:e4:80:c8: 66:b3:ae:5c:1e:26:14:f4:c1:5f:31:a2:9f:c3:b8: 1a:e6:83:a3:eb:de:be:40:6f:80:65:0d:f2:dc:6c: cb:08:80:34:47:56:03:5c:b9:92:c6:95:a2:c5:85: 5d:f4:72:8b:12:a9:db:b2:2e:2c:c4:9c:08:bb:f3: 50:4b:cd:4f:d2:84:16:cb:2f:ce:87:77:4d:4a:10: 4b:0e:3a:c3:8e:c8:db:64:12:1e:4b:08:81:9f:6a: 75:3f:14:45:a1:9b:ee:ac:f4:71:b1:b9:52:25:8c: ca:dd:90:09:d7:23:71:47:bf:a9:01:cb:91:16:4f: 06:e6:79:8c:73:f5:38:44:82:ec:63:37:a2:e1:f7: 1b:b8:5b:87:81:60:51:25:a2:eb:e8:0f:f6:f7:64: 3a:0b:e3:68:05:6a:34:4a:b1:6f:52:6b:8d:ad:ea: e1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:67:FD:71:95:6F:E3:DF:06:20:DC:B3:5B:66:61:31:4F:A2:3C:B9 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d99a456-6c99-48ae-bf3a-149585d61d61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.232.0/22 Signature Algorithm: sha256WithRSAEncryption 36:0c:33:2c:79:37:e3:4e:70:cd:35:26:1b:07:66:ea:2c:67: 20:18:64:de:36:b1:19:ea:98:e4:dc:68:05:16:2c:6b:61:26: 1d:93:b6:f3:38:61:81:04:ed:e3:9e:ce:a0:c8:ca:e1:97:63: 0c:c4:9a:80:e2:7b:bb:35:78:39:fa:86:97:d9:dc:58:49:7c: 57:43:24:18:b6:4b:93:43:66:f3:fe:91:ed:89:01:16:a0:2a: 9d:e4:6d:8a:6a:50:b7:94:01:52:1c:41:41:7d:5c:47:c3:b0: 60:6f:ec:c7:3d:90:1b:c5:a9:87:2b:f4:f6:fb:b9:e7:4a:e0: e0:d2:51:de:0d:62:fd:47:4d:0b:88:90:4c:a0:80:a6:c2:d6: f0:2d:73:50:dd:04:be:7a:2c:c3:58:58:50:7c:a2:b5:87:35: 29:13:90:da:b4:6c:34:8a:fc:9a:95:f4:0d:be:5e:b7:9b:d3: 72:49:e8:5a:70:10:47:50:75:ed:f9:d6:1d:6e:42:11:69:f3: df:14:12:13:b1:8b:fc:4f:99:08:97:05:3e:72:11:f2:e7:3a: 4d:51:48:12:7e:1e:dd:0a:23:bc:eb:69:d9:ec:86:30:f3:18: 7a:69:07:54:ca:15:d4:4d:a9:30:66:0e:fe:1f:94:fb:2e:e7: 00:2d:af:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH/G5hX+s+Q16C/+dhF4yPYlH0JkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNTE5MTUxMDMzWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2I3Zjk4MjA5NmFhMTQ5MDZkZmM2ZTk4MWVhYmUzY2Uy OGVjMzdmMmFhMDM0NDhiMDkwZGUzMzg2MzdjNmZlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpF9sBN7BzZl9/wKEyIZsOJGw4t9RJUnJJJZbstwE3TILA 8iVvPlSiQWnq9XFlgMTYrca5SmeWLL1nKN1p9Z9tmSJlzQIvjKMR8S6GQYhmG6Pt qWI94uSAyGazrlweJhT0wV8xop/DuBrmg6Pr3r5Ab4BlDfLcbMsIgDRHVgNcuZLG laLFhV30cosSqduyLizEnAi781BLzU/ShBbLL86Hd01KEEsOOsOOyNtkEh5LCIGf anU/FEWhm+6s9HGxuVIljMrdkAnXI3FHv6kBy5EWTwbmeYxz9ThEguxjN6Lh9xu4 W4eBYFElouvoD/b3ZDoL42gFajRKsW9Sa42t6uETAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmmf9cZVv498GINyzW2ZhMU+iPLkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkOTlhNDU2LTZjOTktNDhhZS1iZjNhLTE0OTU4NWQ2MWQ2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJFqegwDQYJKoZIhvcNAQELBQADggEBADYMMyx5N+NOcM01JhsHZuosZyAY ZN42sRnqmOTcaAUWLGthJh2TtvM4YYEE7eOezqDIyuGXYwzEmoDie7s1eDn6hpfZ 3FhJfFdDJBi2S5NDZvP+ke2JARagKp3kbYpqULeUAVIcQUF9XEfDsGBv7Mc9kBvF qYcr9Pb7uedK4ODSUd4NYv1HTQuIkEyggKbC1vAtc1DdBL56LMNYWFB8orWHNSkT kNq0bDSK/JqV9A2+Xreb03JJ6FpwEEdQde351h1uQhFp898UEhOxi/xPmQiXBT5y EfLnOk1RSBJ+Ht0KI7zradnshjDzGHppB1TKFdRNqTBmDv4flPsu5wAtr6s= -----END CERTIFICATE-----Generated at Sat Jun 7 11:54:03 2025 by rpki-client