$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/80051317-81e4-416b-892a-affc2e301f81.roa File: 80051317-81e4-416b-892a-affc2e301f81.roa (raw, json) Hash identifier: 4/iy/g+2h4s1EmizVH7zbvugyzvacCx8UlysulG8Aco= Subject key identifier: DB:43:F1:18:41:1D:A4:34:C8:EF:52:50:0F:35:26:B9:65:BC:F5:23 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7267E46F8B43A598E4FF524CEB91B63EAFB8FCE7 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/80051317-81e4-416b-892a-affc2e301f81.roa Signing time: Tue 08 Jul 2025 00:10:03 +0000 ROA not before: Tue 08 Jul 2025 00:10:03 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:67:e4:6f:8b:43:a5:98:e4:ff:52:4c:eb:91:b6:3e:af:b8:fc:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 8 00:10:03 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=2b44b74e626ca15b42b7466654c0682fc0b261ed753477e7fa258ee7352f23bf, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:86:ff:67:11:7d:bb:b6:52:ac:34:92:f2:b2: 30:d0:00:d0:de:31:ef:62:26:21:48:10:67:86:05: b8:aa:84:95:00:1e:7e:eb:c4:9e:76:b7:ef:24:34: f0:c7:3b:c4:75:0a:75:44:fc:55:d2:73:62:63:c2: ab:1c:1a:cc:33:b6:e4:fe:f7:d3:17:d3:37:e8:8c: 57:df:8b:a1:1f:20:d3:30:1e:8a:f6:0f:19:8d:89: 22:6d:e6:d3:d5:19:a0:9f:66:cd:c9:bc:32:f9:e0: 3f:7b:07:9c:43:d0:5e:81:24:a0:08:7a:3b:09:83: e0:c3:f0:86:a1:c2:f3:a3:85:ed:bd:6e:be:46:b3: 49:8f:35:a6:4c:01:bf:b8:b6:ed:7e:fa:a7:11:38: 54:26:e9:c8:7d:68:ae:34:d5:06:a6:dd:31:00:2a: 6b:f2:89:f7:4b:d1:7d:90:d8:ac:1e:82:48:84:d2: 88:68:31:38:2f:01:83:09:c1:e1:ba:ec:20:47:a8: a5:eb:f3:f8:7c:5b:e4:f3:01:ef:38:00:c0:c1:48: cc:76:46:ce:99:15:59:53:e2:60:13:3f:46:f9:1e: 35:e9:b8:03:5b:1e:e6:e4:0c:4c:0e:52:95:cd:b9: e2:19:ad:e1:5e:36:c3:ed:43:1b:fc:d9:c4:f8:a1: a9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:43:F1:18:41:1D:A4:34:C8:EF:52:50:0F:35:26:B9:65:BC:F5:23 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/80051317-81e4-416b-892a-affc2e301f81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.178.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:2d:97:db:d2:7e:d6:6c:46:07:36:85:9c:3d:8b:e5:54:9b: 18:4b:90:3a:ee:12:1f:67:a0:b0:f8:f7:33:88:35:fa:25:a3: 9a:36:ab:a7:16:19:59:2c:b7:d3:63:44:12:55:04:6a:8c:58: 28:14:92:54:29:23:17:37:48:66:45:ec:9f:f1:59:fe:3b:f2: b7:ba:69:c4:e5:b1:08:c1:b1:d9:14:e6:ca:20:ff:c1:f6:7b: 50:46:0d:3e:f7:44:82:d4:17:5e:eb:46:13:bd:82:cd:8b:c8: 8b:2d:8e:4d:47:29:e9:4f:bd:ea:1b:d4:ce:42:38:7f:fd:17: d1:a2:b6:af:31:4d:e7:25:eb:d7:35:34:31:91:9a:de:da:54: a7:bf:b0:1d:89:58:0c:28:66:56:7a:57:4b:69:25:18:a4:e3: 9f:a1:c0:c1:b5:62:65:7d:35:70:d7:03:64:fd:5f:57:04:a1: 62:c4:54:aa:e6:fd:ab:85:88:82:b9:42:96:66:11:c4:e3:91: 0d:2a:87:18:df:cd:8a:14:97:2a:0a:b3:83:84:33:18:cd:2f: b7:ab:58:bd:5f:70:b7:4d:96:18:0d:b7:e0:cf:70:71:d0:77: 04:a6:87:b4:87:f1:9a:36:c1:ad:8d:a3:a8:b2:cd:9e:f1:40: 32:ec:36:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcmfkb4tDpZjk/1JM65G2Pq+4/OcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzA4MDAxMDAzWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjQ0Yjc0ZTYyNmNhMTViNDJiNzQ2NjY1NGMwNjgyZmMw YjI2MWVkNzUzNDc3ZTdmYTI1OGVlNzM1MmYyM2JmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0hv9nEX27tlKsNJLysjDQANDeMe9iJiFIEGeGBbiqhJUA Hn7rxJ52t+8kNPDHO8R1CnVE/FXSc2JjwqscGswztuT+99MX0zfojFffi6EfINMw Hor2DxmNiSJt5tPVGaCfZs3JvDL54D97B5xD0F6BJKAIejsJg+DD8IahwvOjhe29 br5Gs0mPNaZMAb+4tu1++qcROFQm6ch9aK401Qam3TEAKmvyifdL0X2Q2KwegkiE 0ohoMTgvAYMJweG67CBHqKXr8/h8W+TzAe84AMDBSMx2Rs6ZFVlT4mATP0b5HjXp uANbHubkDEwOUpXNueIZreFeNsPtQxv82cT4oamxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU20PxGEEdpDTI71JQDzUmuWW89SMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzgwMDUxMzE3LTgxZTQtNDE2Yi04OTJhLWFmZmMyZTMwMWY4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFM37IwDQYJKoZIhvcNAQELBQADggEBAE8tl9vSftZsRgc2hZw9i+VUmxhL kDruEh9noLD49zOINfolo5o2q6cWGVkst9NjRBJVBGqMWCgUklQpIxc3SGZF7J/x Wf478re6acTlsQjBsdkU5sog/8H2e1BGDT73RILUF17rRhO9gs2LyIstjk1HKelP veob1M5COH/9F9Gitq8xTecl69c1NDGRmt7aVKe/sB2JWAwoZlZ6V0tpJRik45+h wMG1YmV9NXDXA2T9X1cEoWLEVKrm/auFiIK5QpZmEcTjkQ0qhxjfzYoUlyoKs4OE MxjNL7erWL1fcLdNlhgNt+DPcHHQdwSmh7SH8Zo2wa2No6iyzZ7xQDLsNtA= -----END CERTIFICATE-----Generated at Wed Jul 23 12:14:41 2025 by rpki-client