$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a11f9364-e88a-440b-a95f-a94c5ecdc863.roa File: a11f9364-e88a-440b-a95f-a94c5ecdc863.roa (raw, json) Hash identifier: cikZK/sS320mLjQn8WCcCt06Vo7chJby9lrP3A3Bn0U= Subject key identifier: C0:0B:BC:6E:5D:1F:0A:C9:25:2E:95:6F:E6:64:7C:FE:26:DB:8D:78 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 11161346458DC6AB4343BEFC1F6636086F9ED0CB Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a11f9364-e88a-440b-a95f-a94c5ecdc863.roa Signing time: Tue 09 Sep 2025 00:21:22 +0000 ROA not before: Tue 09 Sep 2025 00:21:22 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:16:13:46:45:8d:c6:ab:43:43:be:fc:1f:66:36:08:6f:9e:d0:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:21:22 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=6927fa975bd11a88643b3909a5eb207fcdf176f43d5b091c2fcd97efd6ae8f45, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cb:9c:26:ac:ec:c6:0c:e7:72:5e:d0:f8:87: 5c:f7:6d:90:f7:83:e0:5a:e8:5b:1c:fb:0a:0a:85: d6:95:cf:6f:ff:3c:3f:53:b6:ab:ed:dc:66:94:02: 8a:8a:23:2b:56:ff:b1:19:98:68:bf:20:a5:ea:07: 36:69:fc:47:e2:2a:ca:b9:81:a7:26:cd:37:42:51: 78:d3:06:1a:de:4a:8d:0d:27:ce:24:4c:19:0d:b5: dc:d7:0c:b3:ec:db:38:0e:4b:68:9c:dc:42:3f:3b: a7:fa:6e:74:cb:c0:b2:c1:46:51:c9:20:69:b4:07: a9:66:42:8a:a8:ff:09:19:fd:2d:f3:7f:16:11:10: 98:5f:3a:53:d3:f9:ce:05:56:b6:eb:58:d7:e3:36: be:e6:83:70:c8:5d:63:1c:81:50:c8:76:73:1c:d1: c4:d8:24:b5:27:e4:2e:23:56:3f:0c:78:f8:c6:ec: 4d:5c:c0:da:4f:46:59:be:b4:c0:ed:33:00:d0:b4: 13:cc:d1:58:17:48:f1:42:55:5f:f0:9d:66:12:d1: 77:fd:65:8d:a7:31:f3:69:50:ff:7a:b2:ea:e3:8a: 33:5f:80:87:44:ad:d3:1f:ea:35:9f:b0:43:cf:ae: fa:1d:2c:67:6e:55:28:d2:c4:a5:60:19:40:8b:01: cb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:0B:BC:6E:5D:1F:0A:C9:25:2E:95:6F:E6:64:7C:FE:26:DB:8D:78 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a11f9364-e88a-440b-a95f-a94c5ecdc863.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.237.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:ee:ff:f2:18:d6:d6:90:ea:7c:05:bc:96:45:30:fe:63:ff: e3:0b:46:8b:23:9c:55:62:8a:ed:31:43:cc:e4:f2:e3:fc:41: a3:f1:93:e2:4e:27:bc:5b:1d:b6:38:69:94:b1:77:26:0e:21: e3:43:f7:4a:ef:83:bd:13:03:dc:86:d6:a4:6d:47:b4:33:22: 2c:0e:be:da:e2:75:07:a1:20:a7:ea:10:c5:82:19:3f:1b:9d: 7a:b3:1b:5f:d3:bd:80:fc:71:ad:49:23:29:08:8c:1d:ba:1d: d9:54:aa:22:be:d0:ec:d9:df:20:ba:7c:d8:f3:ed:2e:bd:b5: 1a:f2:44:1d:a6:80:88:9f:85:b7:c1:9e:a7:78:08:2a:10:01: 1f:3a:9a:17:e9:07:29:f3:e0:c7:02:55:eb:48:8c:4f:19:e0: d9:2c:b5:fd:17:38:ba:de:ea:78:38:48:4c:62:84:f2:7e:a2: 73:12:9d:60:78:e1:c3:a1:cf:f9:38:ef:6f:04:dd:2f:96:79: ee:7b:dc:c4:39:10:db:bb:e2:7c:d9:30:ed:a3:d0:c8:36:34: 8e:9d:ad:91:99:25:40:44:33:52:82:14:73:1d:5f:49:0f:0d: ff:be:ac:63:3b:7b:02:fc:24:03:eb:d2:a5:71:dd:16:25:37: 55:d4:25:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUERYTRkWNxqtDQ778H2Y2CG+e0MswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwOTA5MDAyMTIyWhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTI3ZmE5NzViZDExYTg4NjQzYjM5MDlhNWViMjA3ZmNk ZjE3NmY0M2Q1YjA5MWMyZmNkOTdlZmQ2YWU4ZjQ1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMy5wmrOzGDOdyXtD4h1z3bZD3g+Ba6Fsc+woKhdaVz2// PD9Ttqvt3GaUAoqKIytW/7EZmGi/IKXqBzZp/EfiKsq5gacmzTdCUXjTBhreSo0N J84kTBkNtdzXDLPs2zgOS2ic3EI/O6f6bnTLwLLBRlHJIGm0B6lmQoqo/wkZ/S3z fxYREJhfOlPT+c4FVrbrWNfjNr7mg3DIXWMcgVDIdnMc0cTYJLUn5C4jVj8MePjG 7E1cwNpPRlm+tMDtMwDQtBPM0VgXSPFCVV/wnWYS0Xf9ZY2nMfNpUP96surjijNf gIdErdMf6jWfsEPPrvodLGduVSjSxKVgGUCLAcsvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwAu8bl0fCsklLpVv5mR8/ibbjXgwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ExMWY5MzY0LWU4OGEtNDQwYi1hOTVmLWE5NGM1ZWNkYzg2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqe0wDQYJKoZIhvcNAQELBQADggEBAE3u//IY1taQ6nwFvJZFMP5j/+ML RosjnFViiu0xQ8zk8uP8QaPxk+JOJ7xbHbY4aZSxdyYOIeND90rvg70TA9yG1qRt R7QzIiwOvtridQehIKfqEMWCGT8bnXqzG1/TvYD8ca1JIykIjB26HdlUqiK+0OzZ 3yC6fNjz7S69tRryRB2mgIifhbfBnqd4CCoQAR86mhfpBynz4McCVetIjE8Z4Nks tf0XOLre6ng4SExihPJ+onMSnWB44cOhz/k4728E3S+Wee573MQ5ENu74nzZMO2j 0Mg2NI6drZGZJUBEM1KCFHMdX0kPDf++rGM7ewL8JAPr0qVx3RYlN1XUJdI= -----END CERTIFICATE-----Generated at Fri Sep 19 01:11:44 2025 by rpki-client