$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa File: cb088b4a-420f-4b13-84d1-b160e021b919.roa (raw, json) Hash identifier: lLsBEq8lZyRjVkzPUigGtws7M95HABqWBP+fsOja0PI= Subject key identifier: 5A:D6:73:65:3B:E4:EF:BD:B2:76:4D:1C:0E:DF:C1:8F:94:22:B2:8B Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1B83560391AAE4F12D4EFD340A7F489F9FA5BD6B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa Signing time: Fri 15 Aug 2025 00:21:04 +0000 ROA not before: Fri 15 Aug 2025 00:21:04 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:83:56:03:91:aa:e4:f1:2d:4e:fd:34:0a:7f:48:9f:9f:a5:bd:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:21:04 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=aec1a41dda0873e181ba02c370f976b56ab665cb89c6f77b6f80dbaf152b204d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1a:51:03:9e:e2:67:43:5e:79:f7:83:b2:f0: 6c:2c:db:48:15:00:20:cb:2a:6b:71:eb:91:55:c2: 53:36:fc:a9:09:4e:89:14:5e:d7:a2:b6:15:12:e3: b3:84:e5:fd:b6:ac:80:47:69:3c:4e:b1:37:fa:cb: 22:1f:71:2e:94:b3:0a:0e:74:9b:58:90:dd:70:d2: 55:e4:64:d9:f3:76:5f:6a:0a:05:35:f3:e8:ff:e3: 52:b9:a2:2d:34:41:b3:11:2a:f4:75:69:3e:d8:b5: 20:19:8e:a6:21:e7:e5:d6:8b:d4:7b:37:22:bd:29: 48:da:1d:75:e6:a7:23:1d:6f:65:7c:29:bf:58:e3: 4f:13:d0:5d:58:f9:dd:19:d7:68:1d:ec:ea:6a:fc: 8e:96:b9:66:26:73:c3:4e:d9:9c:9a:1c:b4:6f:8c: ba:b3:cc:8f:db:68:1f:cc:8b:19:cc:41:97:af:9b: e4:dd:a2:b6:be:35:ce:ca:c3:4f:a0:c2:13:72:60: aa:91:c5:6e:53:47:85:ea:2a:6c:a3:96:62:49:84: ec:10:ec:6c:5f:15:7e:f0:42:98:b9:6a:1d:58:04: 3e:47:1f:cc:bb:9e:a6:86:1e:31:82:47:dc:40:7f: 58:3f:79:7a:1e:f3:75:59:88:90:c3:f2:5a:82:72: 06:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D6:73:65:3B:E4:EF:BD:B2:76:4D:1C:0E:DF:C1:8F:94:22:B2:8B X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.227.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:a9:ec:58:2f:f8:20:2e:97:15:25:78:c8:40:07:91:ab:31: 79:ee:33:94:b8:5b:e5:82:44:62:41:22:db:b2:91:ae:43:ec: 50:bb:7c:03:37:87:f8:1e:1a:1f:6b:dd:ff:47:e5:32:a6:d3: f5:38:47:2b:69:c6:40:d8:fd:b3:4b:9a:ee:bf:c8:be:00:94: 5a:77:0f:43:12:8f:68:f1:21:10:dc:21:88:66:55:b2:a8:10: 73:81:77:e6:2b:e2:97:de:4d:ac:32:06:54:f0:47:f4:09:55: c9:a2:a4:f6:73:ea:d0:09:09:7c:dc:a7:c5:03:87:0b:40:e6: a6:3b:1b:f6:5b:73:dc:7e:bc:95:84:b7:25:6f:d4:a5:33:90: f0:b5:d5:c0:22:35:19:66:81:58:18:1d:de:07:37:7f:83:19: 27:ea:42:6f:7b:90:25:25:40:25:b5:b0:c2:e0:0a:93:99:66: a7:0e:1a:34:b5:4a:e5:46:96:da:3c:48:51:d9:28:1c:47:64: 2e:0a:a8:c0:51:41:8e:ff:21:0b:17:97:1b:c4:3b:f4:04:87: 8b:56:99:fe:5d:06:a4:15:6f:2f:aa:5c:b7:4f:71:c8:c2:e0: 83:3a:25:c8:72:29:50:de:39:9a:53:9c:f6:8b:b7:f3:67:21: 66:52:a6:2b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG4NWA5Gq5PEtTv00Cn9In5+lvWswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMTA0WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZWMxYTQxZGRhMDg3M2UxODFiYTAyYzM3MGY5NzZiNTZh YjY2NWNiODljNmY3N2I2ZjgwZGJhZjE1MmIyMDRkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvGlEDnuJnQ15594Oy8Gws20gVACDLKmtx65FVwlM2/KkJ TokUXteithUS47OE5f22rIBHaTxOsTf6yyIfcS6UswoOdJtYkN1w0lXkZNnzdl9q CgU18+j/41K5oi00QbMRKvR1aT7YtSAZjqYh5+XWi9R7NyK9KUjaHXXmpyMdb2V8 Kb9Y408T0F1Y+d0Z12gd7Opq/I6WuWYmc8NO2ZyaHLRvjLqzzI/baB/MixnMQZev m+Tdora+Nc7Kw0+gwhNyYKqRxW5TR4XqKmyjlmJJhOwQ7GxfFX7wQpi5ah1YBD5H H8y7nqaGHjGCR9xAf1g/eXoe83VZiJDD8lqCcgaLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWtZzZTvk772ydk0cDt/Bj5QisoswHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NiMDg4YjRhLTQyMGYtNGIxMy04NGQxLWIxNjBlMDIxYjkxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeMwDQYJKoZIhvcNAQELBQADggEBAC+p7Fgv+CAulxUleMhAB5GrMXnu M5S4W+WCRGJBItuyka5D7FC7fAM3h/geGh9r3f9H5TKm0/U4RytpxkDY/bNLmu6/ yL4AlFp3D0MSj2jxIRDcIYhmVbKoEHOBd+Yr4pfeTawyBlTwR/QJVcmipPZz6tAJ CXzcp8UDhwtA5qY7G/Zbc9x+vJWEtyVv1KUzkPC11cAiNRlmgVgYHd4HN3+DGSfq Qm97kCUlQCW1sMLgCpOZZqcOGjS1SuVGlto8SFHZKBxHZC4KqMBRQY7/IQsXlxvE O/QEh4tWmf5dBqQVby+qXLdPccjC4IM6JchyKVDeOZpTnPaLt/NnIWZSpis= -----END CERTIFICATE-----Generated at Wed Aug 20 10:50:01 2025 by rpki-client