$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3b19a945-7e26-4d66-a93d-c43be9220dc3.roa File: 3b19a945-7e26-4d66-a93d-c43be9220dc3.roa (raw, json) Hash identifier: ROCWxMlldyb2UBvZGrWS3bGLkYFUScp8RQ95jEUNhF8= Subject key identifier: E0:90:3D:68:B9:7E:78:C5:4A:A2:2A:BE:3A:EF:82:63:16:B4:BE:F3 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0963B122A74A33666409BB6DEFE3449E23227E3B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3b19a945-7e26-4d66-a93d-c43be9220dc3.roa Signing time: Mon 06 Oct 2025 15:20:05 +0000 ROA not before: Mon 06 Oct 2025 15:20:05 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 24.110.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:63:b1:22:a7:4a:33:66:64:09:bb:6d:ef:e3:44:9e:23:22:7e:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 6 15:20:05 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=25d537cf6ad076b851348af8fa099edf039d57448cd9a9eaee4afb72bb212b02, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ed:ca:aa:15:3f:b9:cd:92:5a:72:7c:3e:33: 13:6b:c1:2e:05:41:15:1f:a1:b9:10:bf:d7:d5:65: 66:1d:37:f5:c3:1c:8c:72:11:7c:ee:6c:18:c2:15: 21:1b:c1:98:25:77:cb:fa:9a:c8:9a:3f:64:7f:4e: c0:5d:c1:47:2c:ae:d8:80:4c:6b:f0:5f:03:5d:ba: b3:02:cd:6b:66:5f:0a:59:ba:9a:62:78:b1:89:b6: 17:23:ab:18:75:07:09:7d:af:58:17:3d:dd:25:93: be:4e:7a:aa:3e:77:30:0d:e4:d8:06:9e:32:75:78: e7:08:54:71:c5:e4:c1:88:bc:f2:f5:ee:83:c4:67: f3:7a:2e:03:95:bd:d3:fd:de:b6:2d:3d:b7:d2:0c: 08:3f:93:de:82:5b:92:01:ed:1e:76:5c:a9:40:60: b2:d6:42:9d:b4:98:4f:db:24:ca:9e:0b:66:2f:cf: a6:2c:cc:d0:6d:78:ee:89:a0:30:72:0d:5b:4c:e9: da:ab:17:b6:ba:ff:cd:32:2f:3c:d5:4d:a9:2c:e5: ec:94:87:9b:c9:2a:1d:88:0e:f8:5d:0a:48:ba:e5: b8:e3:ae:2d:b1:c7:79:0a:dd:3c:9a:6f:30:27:c9: ee:fd:64:2e:bb:2b:29:3e:9e:80:89:52:11:f2:51: 9b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:90:3D:68:B9:7E:78:C5:4A:A2:2A:BE:3A:EF:82:63:16:B4:BE:F3 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3b19a945-7e26-4d66-a93d-c43be9220dc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.64.0/18 Signature Algorithm: sha256WithRSAEncryption 63:67:6e:a0:c7:ed:a2:80:6e:a6:49:6a:a2:60:e7:a1:00:88: 0c:6c:ad:4f:41:f3:7d:f9:02:2e:55:fc:f3:00:1c:9f:ba:ba: 0f:d2:27:62:7d:20:26:ef:3e:6f:22:1a:33:de:e5:c1:84:a1: e8:f3:51:62:f4:fc:74:f9:37:0a:60:24:e8:09:72:ae:5d:80: 18:c6:79:3e:de:8a:ed:9d:a1:13:1f:2a:fd:d7:de:6a:e5:70: 45:27:ba:03:ff:9d:10:97:d9:4b:5c:a9:82:5a:b4:ac:91:01: 4e:ae:37:86:4d:6f:90:6a:2c:89:2c:2b:4b:b7:06:16:4e:b8: f1:bb:96:c0:63:38:d9:0b:b3:84:18:90:62:53:aa:f6:43:cb: 85:51:d5:ca:43:f4:1c:20:97:15:3f:c9:cf:71:2d:28:0f:c4: 78:a0:27:02:02:04:cb:e4:d7:1c:8a:41:e8:97:4b:72:d0:b5: cd:3a:bc:ec:55:68:9e:5d:a8:bb:e0:7e:57:19:a5:62:a4:33: 91:d3:04:6b:c5:e4:c2:a1:8d:dc:e7:bf:d7:bb:8b:ee:14:b5: b7:19:68:52:86:31:66:5b:76:7f:26:a7:53:78:f1:92:44:bf: 0c:8d:e4:3a:f7:10:96:7e:24:b7:16:83:f7:d8:eb:f3:df:51: 25:bd:c1:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCWOxIqdKM2ZkCbtt7+NEniMifjswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA2MTUyMDA1WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWQ1MzdjZjZhZDA3NmI4NTEzNDhhZjhmYTA5OWVkZjAz OWQ1NzQ0OGNkOWE5ZWFlZTRhZmI3MmJiMjEyYjAyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDc7cqqFT+5zZJacnw+MxNrwS4FQRUfobkQv9fVZWYdN/XD HIxyEXzubBjCFSEbwZgld8v6msiaP2R/TsBdwUcsrtiATGvwXwNdurMCzWtmXwpZ uppieLGJthcjqxh1Bwl9r1gXPd0lk75Oeqo+dzAN5NgGnjJ1eOcIVHHF5MGIvPL1 7oPEZ/N6LgOVvdP93rYtPbfSDAg/k96CW5IB7R52XKlAYLLWQp20mE/bJMqeC2Yv z6YszNBteO6JoDByDVtM6dqrF7a6/80yLzzVTaks5eyUh5vJKh2IDvhdCki65bjj ri2xx3kK3TyabzAnye79ZC67Kyk+noCJUhHyUZuBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4JA9aLl+eMVKoiq+Ou+CYxa0vvMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNiMTlhOTQ1LTdlMjYtNGQ2Ni1hOTNkLWM0M2JlOTIyMGRjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYYbkAwDQYJKoZIhvcNAQELBQADggEBAGNnbqDH7aKAbqZJaqJg56EAiAxs rU9B8335Ai5V/PMAHJ+6ug/SJ2J9ICbvPm8iGjPe5cGEoejzUWL0/HT5NwpgJOgJ cq5dgBjGeT7eiu2doRMfKv3X3mrlcEUnugP/nRCX2UtcqYJatKyRAU6uN4ZNb5Bq LIksK0u3BhZOuPG7lsBjONkLs4QYkGJTqvZDy4VR1cpD9BwglxU/yc9xLSgPxHig JwICBMvk1xyKQeiXS3LQtc06vOxVaJ5dqLvgflcZpWKkM5HTBGvF5MKhjdznv9e7 i+4UtbcZaFKGMWZbdn8mp1N48ZJEvwyN5Dr3EJZ+JLcWg/fY6/PfUSW9wYo= -----END CERTIFICATE-----Generated at Wed Oct 8 22:58:42 2025 by rpki-client