$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d5bcdba4-b39f-49d7-81da-145442d6f180.roa File: d5bcdba4-b39f-49d7-81da-145442d6f180.roa (raw, json) Hash identifier: ie0W1bLS/IHuVYTRIugYUsdTzRAphPW+qVzbpV1IpE0= Subject key identifier: FD:0C:83:9E:02:FE:C6:8D:2F:DA:D0:7A:DE:37:E6:60:70:20:4A:8B Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 732F46D6CF2B98E84E35DC2F0BA2AB0F66D017C6 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d5bcdba4-b39f-49d7-81da-145442d6f180.roa Signing time: Mon 21 Jul 2025 15:20:13 +0000 ROA not before: Mon 21 Jul 2025 15:20:13 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:2f:46:d6:cf:2b:98:e8:4e:35:dc:2f:0b:a2:ab:0f:66:d0:17:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:20:13 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=22e9f92358cf972eeadf0f971443664e8dbaa2f3ff740f6215053ff8bad7a00f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:40:f1:7f:d1:39:fd:51:b6:8f:45:01:b8:e2: 20:3a:a1:d3:27:3e:8c:3f:81:c7:cd:9c:26:c3:50: 99:05:a4:4d:e8:b8:7a:89:d5:89:a8:4d:7c:7a:9a: ee:d4:33:63:2d:92:8c:68:d3:a3:dc:86:e2:ff:75: 21:6b:58:17:05:83:bf:64:30:32:29:d6:16:d8:29: 03:3a:d6:d0:3c:c7:e7:0a:56:9b:cc:a2:9c:13:0d: f5:9d:d3:00:cd:c7:5a:aa:a9:be:bd:a5:80:82:c3: 85:2e:8e:69:b5:e3:50:34:27:3d:5e:05:26:05:87: 4a:28:d5:d5:c4:9a:8f:79:2e:79:98:9d:cc:66:13: f5:90:b9:1a:2a:27:f2:9f:ac:43:7f:56:ac:ec:05: 62:20:10:98:9f:1e:67:d5:5e:2b:78:0c:1a:9d:a8: 27:7d:43:1d:bc:50:a9:2f:4e:6a:90:2f:cf:4d:da: 1a:bc:06:b7:d7:fc:4d:b3:19:f0:8d:b1:01:ba:98: 4a:3f:7d:b2:31:1d:40:8e:ab:1d:65:d5:a6:5e:b8: ed:8e:39:ac:e9:e8:93:7e:1b:f8:f1:31:17:16:b7: 5c:a5:fe:a5:ac:83:3b:a1:a3:05:6d:f6:c3:cf:79: 28:ec:1b:0e:cc:09:7f:a5:44:89:2f:ca:48:57:f9: 88:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:0C:83:9E:02:FE:C6:8D:2F:DA:D0:7A:DE:37:E6:60:70:20:4A:8B X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d5bcdba4-b39f-49d7-81da-145442d6f180.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.177.0/24 Signature Algorithm: sha256WithRSAEncryption 79:a6:42:ea:26:02:25:e3:39:3e:13:20:75:fc:f4:e5:a7:51: 15:02:9e:d3:c4:95:6e:78:5d:ce:da:66:f0:c7:a7:c3:6d:d3: 5e:2f:da:e1:f7:66:38:9e:79:68:e3:21:50:a7:bd:70:ef:62: 2e:f9:28:f8:af:a5:23:1c:f1:1d:5e:77:fc:4a:14:f2:50:1a: 2d:a6:d2:61:24:64:4b:a3:2d:97:8d:d5:65:f4:9c:51:73:d5: 5c:de:0e:a3:ab:2e:b6:3c:73:ef:f1:18:75:c3:33:a6:09:5e: 98:3e:c5:3d:32:ff:e4:df:37:d9:da:6c:30:ea:1d:41:f1:b4: c9:e7:1c:d7:3c:25:43:36:fd:df:33:bf:81:ba:36:c8:18:e6: 69:b6:62:67:c8:7d:6f:9e:5b:8e:75:b9:90:04:8d:cf:61:ba: 7d:3f:bf:95:74:66:fd:e3:5a:ec:ca:08:93:67:41:64:b6:8f: 36:20:95:6e:8f:a9:83:72:47:e9:49:1b:82:73:80:de:91:f2: ac:74:69:c7:3d:b3:d2:ab:46:f0:43:bb:a0:cc:4e:51:c9:9a: b5:31:5a:7f:e4:24:00:b3:f0:4a:82:db:e2:dd:6f:6a:1d:f7: 47:9e:d3:5d:bf:5c:64:f9:1d:63:c9:ac:54:9b:c9:a1:ab:6e: 97:d4:2c:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcy9G1s8rmOhONdwvC6KrD2bQF8YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMDEzWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmU5ZjkyMzU4Y2Y5NzJlZWFkZjBmOTcxNDQzNjY0ZThk YmFhMmYzZmY3NDBmNjIxNTA1M2ZmOGJhZDdhMDBmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnQPF/0Tn9UbaPRQG44iA6odMnPow/gcfNnCbDUJkFpE3o uHqJ1YmoTXx6mu7UM2Mtkoxo06PchuL/dSFrWBcFg79kMDIp1hbYKQM61tA8x+cK VpvMopwTDfWd0wDNx1qqqb69pYCCw4Uujmm141A0Jz1eBSYFh0oo1dXEmo95LnmY ncxmE/WQuRoqJ/KfrEN/VqzsBWIgEJifHmfVXit4DBqdqCd9Qx28UKkvTmqQL89N 2hq8BrfX/E2zGfCNsQG6mEo/fbIxHUCOqx1l1aZeuO2OOazp6JN+G/jxMRcWt1yl /qWsgzuhowVt9sPPeSjsGw7MCX+lRIkvykhX+YgRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/QyDngL+xo0v2tB63jfmYHAgSoswHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Q1YmNkYmE0LWIzOWYtNDlkNy04MWRhLTE0NTQ0MmQ2ZjE4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37EwDQYJKoZIhvcNAQELBQADggEBAHmmQuomAiXjOT4TIHX89OWnURUC ntPElW54Xc7aZvDHp8Nt014v2uH3ZjieeWjjIVCnvXDvYi75KPivpSMc8R1ed/xK FPJQGi2m0mEkZEujLZeN1WX0nFFz1VzeDqOrLrY8c+/xGHXDM6YJXpg+xT0y/+Tf N9nabDDqHUHxtMnnHNc8JUM2/d8zv4G6NsgY5mm2YmfIfW+eW451uZAEjc9hun0/ v5V0Zv3jWuzKCJNnQWS2jzYglW6PqYNyR+lJG4JzgN6R8qx0acc9s9KrRvBDu6DM TlHJmrUxWn/kJACz8EqC2+Ldb2od90ee012/XGT5HWPJrFSbyaGrbpfULFA= -----END CERTIFICATE-----Generated at Tue Jul 22 11:49:45 2025 by rpki-client