$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa File: 498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa (raw, json) Hash identifier: JiiogxxuFyk8DNtpuiKw7NP4OYFaeg1SAyIEV1pJ9d4= Subject key identifier: 41:62:5B:08:4E:8D:56:13:8F:51:19:9C:BA:00:D4:54:41:B3:85:36 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0B3475CAFB592E4B8DC4075419EC5416359E45FF Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa Signing time: Tue 09 Sep 2025 00:20:08 +0000 ROA not before: Tue 09 Sep 2025 00:20:08 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:34:75:ca:fb:59:2e:4b:8d:c4:07:54:19:ec:54:16:35:9e:45:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:20:08 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=89b8ceba0168d2597ca2d710cde042a67f0ca45d560b14fd215ade60de175838, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:41:a6:c7:d5:c8:34:67:7d:24:01:d5:ad:7d: d7:4b:2f:5e:b3:f6:78:27:58:14:e6:d6:10:9c:5b: f2:ad:7d:33:d2:8b:1b:8d:26:60:52:42:b2:d6:7e: df:4d:6a:c0:d7:ec:20:5b:c0:29:c9:cb:60:03:60: 36:1d:82:ef:7b:49:d9:aa:05:02:3a:09:78:55:ea: 1e:b1:40:6c:3c:73:84:b4:6f:76:4c:f7:5c:69:51: 5a:e5:58:38:07:c1:97:14:12:b9:4c:3b:1b:45:32: 4e:f2:e0:90:ba:fa:22:08:14:21:31:07:e3:06:8c: d2:cf:10:b7:11:07:af:57:f1:4e:4d:73:42:2a:bc: 58:04:81:0e:1a:7d:17:ff:d7:28:4e:ab:52:37:e4: af:07:6b:99:df:b3:bc:d6:7e:28:77:bf:0a:9f:ce: 6d:14:85:b1:d5:4f:ab:02:e5:0d:05:69:e8:17:30: 08:3e:1f:c6:e9:14:44:84:52:a0:fa:c8:64:87:f3: 58:fb:b8:6c:8f:33:a7:d6:32:ff:ef:f6:21:78:d4: ab:86:ac:61:4f:58:23:e3:83:5f:16:4b:ae:9d:51: 04:06:80:5f:e8:78:31:12:12:cd:97:74:91:8c:df: ba:5e:04:b3:93:62:9a:75:a3:62:37:04:58:de:99: cc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:62:5B:08:4E:8D:56:13:8F:51:19:9C:BA:00:D4:54:41:B3:85:36 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.186.0/24 Signature Algorithm: sha256WithRSAEncryption 67:87:d2:0d:fa:52:e4:05:cd:6c:34:b8:5c:16:76:4a:fc:e5: 4a:86:8c:0b:56:85:e6:54:16:f1:b9:77:a5:44:d6:96:c7:7e: 6b:35:fc:3a:11:8b:24:1c:b3:b8:e6:24:06:ff:1b:41:62:91: e7:d2:92:48:1e:ab:08:63:65:bb:41:a7:ca:e7:79:43:af:ef: 86:ab:52:60:0a:54:45:8b:c7:d4:9e:44:a9:af:55:8a:5a:7a: f8:a8:15:cf:83:6e:ec:22:74:a7:2f:15:a8:40:54:4c:bd:02: d9:d2:e6:13:5d:d1:4a:52:e0:0b:31:5e:52:12:14:3a:49:0b: 69:60:2d:31:e6:30:0b:ee:21:4c:fa:72:79:f1:1e:04:02:d7: c0:db:0e:a4:2c:e9:57:fb:f4:0c:48:e9:3b:35:10:2f:f2:e4: df:0d:03:4f:88:54:88:fd:3c:b0:77:99:c6:a4:42:c2:82:a1: 46:61:45:5a:35:ea:81:10:80:f4:23:1d:c6:41:5e:2f:e6:b8: f1:8e:1c:5c:57:bf:c6:84:a0:53:72:8a:1d:74:0e:ba:0f:65: 93:1e:62:74:1e:16:55:6e:a0:a5:3c:5d:89:20:9c:10:ff:6b: 3c:7e:fc:55:55:a4:e2:84:5b:12:27:30:ce:a6:b6:78:23:d8: 6e:ca:fa:35 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCzR1yvtZLkuNxAdUGexUFjWeRf8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwOTA5MDAyMDA4WhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWI4Y2ViYTAxNjhkMjU5N2NhMmQ3MTBjZGUwNDJhNjdm MGNhNDVkNTYwYjE0ZmQyMTVhZGU2MGRlMTc1ODM4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1QabH1cg0Z30kAdWtfddLL16z9ngnWBTm1hCcW/KtfTPS ixuNJmBSQrLWft9NasDX7CBbwCnJy2ADYDYdgu97SdmqBQI6CXhV6h6xQGw8c4S0 b3ZM91xpUVrlWDgHwZcUErlMOxtFMk7y4JC6+iIIFCExB+MGjNLPELcRB69X8U5N c0IqvFgEgQ4afRf/1yhOq1I35K8Ha5nfs7zWfih3vwqfzm0UhbHVT6sC5Q0FaegX MAg+H8bpFESEUqD6yGSH81j7uGyPM6fWMv/v9iF41KuGrGFPWCPjg18WS66dUQQG gF/oeDESEs2XdJGM37peBLOTYpp1o2I3BFjemczZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQWJbCE6NVhOPURmcugDUVEGzhTYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzQ5OGYzMzRlLTRkYzgtNDExOC1iMWExLTRjOWExNWQxNGI5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37owDQYJKoZIhvcNAQELBQADggEBAGeH0g36UuQFzWw0uFwWdkr85UqG jAtWheZUFvG5d6VE1pbHfms1/DoRiyQcs7jmJAb/G0FikefSkkgeqwhjZbtBp8rn eUOv74arUmAKVEWLx9SeRKmvVYpaevioFc+DbuwidKcvFahAVEy9AtnS5hNd0UpS 4AsxXlISFDpJC2lgLTHmMAvuIUz6cnnxHgQC18DbDqQs6Vf79AxI6Ts1EC/y5N8N A0+IVIj9PLB3mcakQsKCoUZhRVo16oEQgPQjHcZBXi/muPGOHFxXv8aEoFNyih10 DroPZZMeYnQeFlVuoKU8XYkgnBD/azx+/FVVpOKEWxInMM6mtngj2G7K+jU= -----END CERTIFICATE-----Generated at Wed Sep 17 20:35:03 2025 by rpki-client