$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa File: 60789a29-f516-47ec-9154-b2b610f7282e.roa (raw, json) Hash identifier: zKMEAhEuNGoIScJGsgeIsxbFpNg6TX4PR11ncrAsy7M= Subject key identifier: 88:20:D1:01:C2:00:6B:35:39:FB:73:DD:C3:47:3F:19:70:22:03:8C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7733C44D3A4C2DA5E4189691C326E8135B8D36FA Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa Signing time: Fri 03 Oct 2025 00:00:15 +0000 ROA not before: Fri 03 Oct 2025 00:00:15 +0000 ROA not after: Fri 07 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:33:c4:4d:3a:4c:2d:a5:e4:18:96:91:c3:26:e8:13:5b:8d:36:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 3 00:00:15 2025 GMT Not After : Nov 7 23:59:59 2025 GMT Subject: serialNumber=cec70c5fcbe159512e95570eae1218a601419183725aa0b2716dee9ad29c5032, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:57:b4:cd:56:45:8a:e7:93:a1:1e:4b:3a:31: eb:d6:22:4f:1f:0a:9a:0b:45:75:3d:6b:57:e9:c3: 3f:8e:fb:c3:c5:b9:e6:eb:61:e7:3d:6e:0c:dd:09: 0e:35:28:84:2b:41:4e:4d:2e:be:81:4f:9b:a3:09: e6:ee:2a:c0:2e:83:0e:15:de:ee:26:05:e3:fd:f3: 8b:29:c1:e2:78:35:f8:2f:ae:24:6e:cd:93:ea:2e: a6:ad:21:41:f1:89:76:9a:ed:3e:83:ba:05:2c:b8: 07:d2:f5:d3:bb:4a:1e:13:d8:6c:e9:5c:a8:84:99: c9:4a:91:fd:5a:ab:83:18:3b:4e:98:5f:2b:33:51: be:b0:53:07:dd:14:1e:9c:d1:7b:3a:79:0f:ba:88: 9e:da:bf:e2:8e:8c:ad:df:65:a4:b7:41:ea:a8:ec: e9:3d:eb:65:53:1a:ad:73:ae:71:ec:30:48:0a:60: c5:e5:29:27:f4:1b:52:f7:9e:67:be:82:62:4f:6c: 9b:20:0a:fd:85:40:7f:5d:0d:16:40:8a:d2:d9:a4: 39:94:d2:57:13:95:34:e4:ff:c5:12:f6:29:a9:66: 68:03:db:0b:44:36:44:5a:48:e3:65:6b:0b:37:71: 75:0e:e1:e8:fa:67:5a:86:77:59:ab:1b:84:e3:9b: 5a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:20:D1:01:C2:00:6B:35:39:FB:73:DD:C3:47:3F:19:70:22:03:8C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/60789a29-f516-47ec-9154-b2b610f7282e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 72:ce:9c:4d:2a:b4:08:78:6a:bf:3e:c7:13:73:a9:e8:cf:ef: a0:d7:55:94:64:af:b5:30:b7:7e:31:37:29:5a:23:dc:0b:bc: 8b:a8:57:8a:86:2b:c5:50:6c:53:94:03:fc:f7:80:d5:76:22: bd:f6:2b:3c:56:7c:cb:33:c9:8c:97:c0:b1:cc:e7:a3:ee:d6: 0e:78:9b:10:12:22:8a:db:b1:1c:58:8f:08:25:c3:7a:87:31: a3:09:8d:be:0b:e4:41:b5:f1:d7:a6:e5:b3:ed:60:37:1e:b3: 74:ec:05:91:43:6e:d0:8b:1b:12:19:4b:fc:4a:31:bb:33:41: 8b:5d:bd:c5:03:24:73:4f:44:40:9f:4f:85:4f:2d:32:30:d1: 5e:64:31:2e:37:f5:77:e3:c3:29:2a:b0:29:22:5b:73:23:6a: 6b:cb:f8:96:01:74:13:8e:0d:55:2d:f1:88:c1:52:10:b9:7d: 64:dc:f5:2a:a5:08:b1:73:8d:7a:18:6d:96:f0:37:61:ce:00: f5:c3:59:e7:2f:4c:ec:be:ee:73:c7:4a:c5:7b:9e:7d:da:96: 4f:64:ee:b2:d0:70:d6:e1:40:d4:2b:6c:6b:ab:50:5c:6d:08: f5:bf:b6:0e:6d:63:92:bb:b9:44:08:68:9f:08:08:1b:07:dd: cc:3c:fe:89 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdzPETTpMLaXkGJaRwyboE1uNNvowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDAzMDAwMDE1WhcNMjUxMTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWM3MGM1ZmNiZTE1OTUxMmU5NTU3MGVhZTEyMThhNjAx NDE5MTgzNzI1YWEwYjI3MTZkZWU5YWQyOWM1MDMyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKV7TNVkWK55OhHks6MevWIk8fCpoLRXU9a1fpwz+O+8PF uebrYec9bgzdCQ41KIQrQU5NLr6BT5ujCebuKsAugw4V3u4mBeP984spweJ4Nfgv riRuzZPqLqatIUHxiXaa7T6DugUsuAfS9dO7Sh4T2GzpXKiEmclKkf1aq4MYO06Y XyszUb6wUwfdFB6c0Xs6eQ+6iJ7av+KOjK3fZaS3Qeqo7Ok962VTGq1zrnHsMEgK YMXlKSf0G1L3nme+gmJPbJsgCv2FQH9dDRZAitLZpDmU0lcTlTTk/8US9impZmgD 2wtENkRaSONlaws3cXUO4ej6Z1qGd1mrG4Tjm1pZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiCDRAcIAazU5+3Pdw0c/GXAiA4wwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzYwNzg5YTI5LWY1MTYtNDdlYy05MTU0LWIyYjYxMGY3MjgyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBAHLOnE0qtAh4ar8+xxNzqejP76DX VZRkr7Uwt34xNylaI9wLvIuoV4qGK8VQbFOUA/z3gNV2Ir32KzxWfMszyYyXwLHM 56Pu1g54mxASIorbsRxYjwglw3qHMaMJjb4L5EG18dem5bPtYDces3TsBZFDbtCL GxIZS/xKMbszQYtdvcUDJHNPRECfT4VPLTIw0V5kMS439XfjwykqsCkiW3MjamvL +JYBdBOODVUt8YjBUhC5fWTc9SqlCLFzjXoYbZbwN2HOAPXDWecvTOy+7nPHSsV7 nn3alk9k7rLQcNbhQNQrbGurUFxtCPW/tg5tY5K7uUQIaJ8ICBsH3cw8/ok= -----END CERTIFICATE-----Generated at Wed Oct 8 21:19:56 2025 by rpki-client