$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a11f9364-e88a-440b-a95f-a94c5ecdc863.roa File: a11f9364-e88a-440b-a95f-a94c5ecdc863.roa (raw, json) Hash identifier: N7mVmg72CWzo0su3PRIaAB33PCHWDERrMz/cGsFzvJA= Subject key identifier: D6:0B:C7:E1:12:C9:79:79:C8:B2:DC:97:A3:75:51:32:63:27:4E:C2 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6BC4300B773AD3266189D19FEF3B2A0350C3D0DE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a11f9364-e88a-440b-a95f-a94c5ecdc863.roa Signing time: Fri 15 Aug 2025 00:21:07 +0000 ROA not before: Fri 15 Aug 2025 00:21:07 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:c4:30:0b:77:3a:d3:26:61:89:d1:9f:ef:3b:2a:03:50:c3:d0:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:21:07 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=ef5f8bf4c42b9aa803ea32218f6b693ae789c37a438eb8cd8b62d84ff1adbeb2, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1a:41:97:cd:e9:78:da:7b:b5:fd:a2:4d:dc: 17:12:2e:45:69:d3:73:2e:52:99:ee:ba:2e:38:b3: 4c:19:7e:87:fd:42:10:a5:29:45:66:b6:a1:f4:07: 7e:ff:fe:08:f1:15:4c:79:4d:7a:1f:e0:87:90:31: d6:f3:e5:3f:74:4f:17:a7:00:ac:fd:49:39:dd:dc: f5:2e:11:91:5a:65:02:88:8c:9f:14:b6:70:bb:04: d6:2e:0e:b1:c6:06:e0:10:29:e2:f2:94:da:c2:28: 2f:ce:73:34:05:7f:91:bd:e8:8c:b3:8d:f7:d4:56: 1d:48:52:07:09:a5:32:55:33:41:88:90:ad:9b:be: 9f:a4:d0:e3:bc:5b:13:6d:61:1e:d5:0d:d0:16:e6: a6:11:5d:f5:f0:72:e8:79:1f:ec:a1:20:07:ae:53: 3a:58:cb:65:d8:91:f1:2e:3a:8e:89:00:66:e7:22: 00:96:08:a6:81:30:6e:f5:3e:b0:4d:af:d3:15:6f: 85:eb:05:5e:12:b4:44:6e:22:2a:4a:10:01:5d:2b: c1:da:c9:50:3e:22:0f:a6:96:f8:15:49:36:97:ad: 5b:36:6f:07:02:80:1d:81:b6:46:7c:26:99:27:35: f7:17:ea:26:56:f6:5a:1e:8b:11:37:97:69:01:82: f8:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:0B:C7:E1:12:C9:79:79:C8:B2:DC:97:A3:75:51:32:63:27:4E:C2 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a11f9364-e88a-440b-a95f-a94c5ecdc863.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.237.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:30:a2:62:c3:07:68:f4:04:1b:1e:23:f4:ff:15:88:62:5d: 39:ea:54:38:52:f7:88:93:cb:eb:52:bf:1a:78:ff:eb:a2:56: fb:de:dd:87:59:d7:12:c3:82:f4:9a:f3:f7:82:7d:d9:6b:c6: b1:af:70:f9:90:56:40:bf:73:c2:3e:46:6a:9d:0e:2b:37:e9: d7:f3:7a:c8:52:41:84:fb:6e:a5:b8:3e:d9:8c:14:89:a9:3e: 10:e7:15:8d:d4:c8:4e:d1:3b:a3:dd:2e:22:a0:4f:71:26:5a: bb:82:d8:0a:f1:39:b8:c7:95:9e:76:f7:11:27:93:7a:9d:58: fb:1d:dd:77:1f:90:41:e1:44:48:f2:fc:a7:5a:86:22:02:c7: 9f:36:c4:5a:b0:26:90:3c:d3:40:4e:e8:f6:e1:5e:30:41:63: 11:56:d0:83:bb:42:0c:80:1e:9a:a5:04:45:45:e1:24:7c:71: 02:b2:06:cf:22:98:37:45:16:bc:ed:5d:4b:fc:46:c8:8e:19: 7e:fe:c3:95:e0:58:ce:e3:1a:7a:26:70:45:b3:fa:51:4d:11: ce:69:d3:16:05:d9:b7:fb:28:18:aa:72:48:ca:ef:53:e0:bb: c6:35:5b:d3:67:8e:d3:ba:4e:9d:e9:66:30:61:c8:04:63:5f: 40:f8:e9:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa8QwC3c60yZhidGf7zsqA1DD0N4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMTA3WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjVmOGJmNGM0MmI5YWE4MDNlYTMyMjE4ZjZiNjkzYWU3 ODljMzdhNDM4ZWI4Y2Q4YjYyZDg0ZmYxYWRiZWIyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzGkGXzel42nu1/aJN3BcSLkVp03MuUpnuui44s0wZfof9 QhClKUVmtqH0B37//gjxFUx5TXof4IeQMdbz5T90TxenAKz9STnd3PUuEZFaZQKI jJ8UtnC7BNYuDrHGBuAQKeLylNrCKC/OczQFf5G96IyzjffUVh1IUgcJpTJVM0GI kK2bvp+k0OO8WxNtYR7VDdAW5qYRXfXwcuh5H+yhIAeuUzpYy2XYkfEuOo6JAGbn IgCWCKaBMG71PrBNr9MVb4XrBV4StERuIipKEAFdK8HayVA+Ig+mlvgVSTaXrVs2 bwcCgB2BtkZ8JpknNfcX6iZW9loeixE3l2kBgviVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1gvH4RLJeXnIstyXo3VRMmMnTsIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ExMWY5MzY0LWU4OGEtNDQwYi1hOTVmLWE5NGM1ZWNkYzg2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqe0wDQYJKoZIhvcNAQELBQADggEBABswomLDB2j0BBseI/T/FYhiXTnq VDhS94iTy+tSvxp4/+uiVvve3YdZ1xLDgvSa8/eCfdlrxrGvcPmQVkC/c8I+Rmqd Dis36dfzeshSQYT7bqW4PtmMFImpPhDnFY3UyE7RO6PdLiKgT3EmWruC2ArxObjH lZ529xEnk3qdWPsd3XcfkEHhREjy/KdahiICx582xFqwJpA800BO6PbhXjBBYxFW 0IO7QgyAHpqlBEVF4SR8cQKyBs8imDdFFrztXUv8RsiOGX7+w5XgWM7jGnomcEWz +lFNEc5p0xYF2bf7KBiqckjK71Pgu8Y1W9NnjtO6Tp3pZjBhyARjX0D46YM= -----END CERTIFICATE-----Generated at Wed Aug 20 10:39:19 2025 by rpki-client