$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa File: e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa (raw, json) Hash identifier: cpD0zdvjK/yleXoq7C5HjfGcibEgc/lIMCTuZkUhVu4= Subject key identifier: DD:75:8D:C1:57:F4:33:50:48:18:33:79:B6:7D:F9:FD:2D:DE:28:8E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5C7BDA3274ACE8D18C9D1D60679139DDA36DD9A7 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa Signing time: Mon 21 Jul 2025 15:20:09 +0000 ROA not before: Mon 21 Jul 2025 15:20:09 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:7b:da:32:74:ac:e8:d1:8c:9d:1d:60:67:91:39:dd:a3:6d:d9:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:20:09 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=0234076fc043cd4bb5d15e2d405edb37b4c3efdd2428d0e47276cb942972e5fd, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f9:5a:fe:fd:4b:4b:7c:d4:97:8e:f2:db:87: bc:32:88:78:ce:9a:3e:4c:f1:02:bf:02:dc:01:a7: 98:20:7e:66:d4:88:59:9f:f8:7b:d1:9e:69:ae:35: 37:d1:1e:d0:1a:47:93:f4:1b:43:d4:fb:16:9d:c9: ba:bc:6c:28:02:86:81:52:69:d1:23:e1:82:51:42: 11:d2:50:39:da:45:6d:ff:74:d0:99:d8:12:c2:eb: c2:7f:2a:ec:95:56:58:6d:5d:10:79:3c:f5:4c:4b: 46:07:0e:22:f2:aa:b3:55:8d:10:c4:ac:5e:33:b7: ac:c4:e7:ff:05:d8:a4:ab:1a:42:c4:c9:08:0d:73: 4a:24:8a:7c:2f:91:55:c6:24:5f:01:0b:a8:e9:45: e5:77:54:db:4c:95:15:4a:a9:9c:cc:67:45:2c:ee: c3:81:11:3b:fd:5c:dd:68:b0:8e:53:5c:b3:73:5e: dc:d8:3a:d9:ef:5a:65:e1:55:0e:8c:c6:b1:2e:51: 46:2f:e4:6c:ae:b6:12:33:71:44:66:8d:32:f4:21: aa:c3:b9:ef:43:89:6a:5c:a3:1c:73:27:68:e8:f6: c4:62:dd:c5:91:97:ed:46:24:36:c1:00:e2:85:a2: 5a:31:26:6a:24:d3:34:30:d2:58:f3:62:db:e6:10: 9c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:75:8D:C1:57:F4:33:50:48:18:33:79:B6:7D:F9:FD:2D:DE:28:8E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e3b86984-4ebf-4fde-b68c-ca2e3fbf7825.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.190.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:da:c9:f9:61:e5:ff:83:08:49:ae:18:c6:3a:bc:b8:cc:c5: fa:b9:53:dd:f6:1c:e6:ec:a1:da:af:0f:4e:9c:35:bc:da:3a: 5b:fc:d9:44:7d:69:a2:d5:ea:db:89:6e:4b:5f:d4:ba:0a:e6: 23:4b:c6:6c:83:86:19:a5:8b:e3:db:0d:8b:b3:5c:30:af:c7: bb:24:51:61:7c:b5:cd:da:34:92:95:19:72:78:e0:ed:07:5f: ed:4a:0c:96:fb:99:21:0b:00:98:cd:82:80:12:fd:61:ea:9e: dd:d8:c1:7b:68:96:75:ad:ee:de:84:54:64:e5:a3:7f:69:be: cb:a5:3c:da:8b:58:b2:99:58:96:e1:88:54:d0:fd:4e:1a:3d: 99:a3:ed:5d:b6:cc:c8:13:a4:4c:4a:20:fc:fa:b2:3a:e4:01: 20:0d:4f:8c:18:1c:51:5e:60:ff:54:35:51:7a:b7:c5:49:f4: c9:30:de:67:f6:14:be:7a:ef:91:83:a7:f1:5e:2d:4d:d1:55: 1c:bf:7f:ac:f5:b5:45:64:a5:7c:41:10:f6:e4:85:a2:5f:dd: f1:4d:34:3f:8c:bc:24:73:5b:19:32:c5:2c:88:d6:85:e3:ad: 1f:ae:63:2f:03:88:fd:78:d5:d8:a2:09:76:6c:c1:0e:1c:bc: 18:97:8d:d1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXHvaMnSs6NGMnR1gZ5E53aNt2acwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMDA5WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjM0MDc2ZmMwNDNjZDRiYjVkMTVlMmQ0MDVlZGIzN2I0 YzNlZmRkMjQyOGQwZTQ3Mjc2Y2I5NDI5NzJlNWZkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9+Vr+/UtLfNSXjvLbh7wyiHjOmj5M8QK/AtwBp5ggfmbU iFmf+HvRnmmuNTfRHtAaR5P0G0PU+xadybq8bCgChoFSadEj4YJRQhHSUDnaRW3/ dNCZ2BLC68J/KuyVVlhtXRB5PPVMS0YHDiLyqrNVjRDErF4zt6zE5/8F2KSrGkLE yQgNc0okinwvkVXGJF8BC6jpReV3VNtMlRVKqZzMZ0Us7sOBETv9XN1osI5TXLNz XtzYOtnvWmXhVQ6MxrEuUUYv5GyuthIzcURmjTL0IarDue9DiWpcoxxzJ2jo9sRi 3cWRl+1GJDbBAOKFoloxJmok0zQw0ljzYtvmEJz5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3XWNwVf0M1BIGDN5tn35/S3eKI4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2UzYjg2OTg0LTRlYmYtNGZkZS1iNjhjLWNhMmUzZmJmNzgyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM374wDQYJKoZIhvcNAQELBQADggEBABvayflh5f+DCEmuGMY6vLjMxfq5 U932HObsodqvD06cNbzaOlv82UR9aaLV6tuJbktf1LoK5iNLxmyDhhmli+PbDYuz XDCvx7skUWF8tc3aNJKVGXJ44O0HX+1KDJb7mSELAJjNgoAS/WHqnt3YwXtolnWt 7t6EVGTlo39pvsulPNqLWLKZWJbhiFTQ/U4aPZmj7V22zMgTpExKIPz6sjrkASAN T4wYHFFeYP9UNVF6t8VJ9Mkw3mf2FL5675GDp/FeLU3RVRy/f6z1tUVkpXxBEPbk haJf3fFNND+MvCRzWxkyxSyI1oXjrR+uYy8DiP141diiCXZswQ4cvBiXjdE= -----END CERTIFICATE-----Generated at Tue Jul 22 11:48:53 2025 by rpki-client