$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa File: 498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa (raw, json) Hash identifier: BYB+mZj6tZ9mvlrCldLpTQ46ACNNVGgL4zhlNVbGpHE= Subject key identifier: 4B:02:2F:C4:39:C4:AE:F6:13:3F:9F:B9:24:EA:30:05:41:76:D1:F4 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 642240801DF0E2389BDB948846AAC55172339DE0 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa Signing time: Fri 15 Aug 2025 00:21:32 +0000 ROA not before: Fri 15 Aug 2025 00:21:32 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:22:40:80:1d:f0:e2:38:9b:db:94:88:46:aa:c5:51:72:33:9d:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:21:32 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=ada2ab62f2149149e2436c61960b3f70c8c248291811bd940b7684d3d60624a7, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:5e:c9:e5:fd:9e:2f:f0:72:e0:a4:0a:53:2d: 44:ed:19:e0:bb:b2:70:8a:d5:07:66:b1:63:76:2a: ae:0d:bc:0b:05:6b:84:aa:11:24:63:d4:28:6a:56: db:e6:c6:42:23:65:1f:39:9f:3c:65:79:f3:91:09: ab:12:00:b0:f4:24:9e:82:ac:6f:e6:23:2b:75:8f: 60:19:8f:5b:87:26:f7:8b:5c:c8:13:74:c5:1e:eb: 72:09:c0:6f:f0:db:d1:db:f0:7a:25:ef:1a:92:e3: 13:87:c9:1d:6d:9b:14:8f:5a:c5:c6:e2:68:9f:84: 3e:64:82:a4:6a:e8:88:00:20:f2:55:0f:4a:2e:ed: cd:3d:2d:bf:1e:c0:b5:ea:de:e3:27:39:5d:92:2d: 7b:3e:6e:1e:92:1d:df:d4:1b:c7:f2:9c:27:67:b0: a2:47:e5:2c:ca:3c:27:5d:87:fa:59:71:92:08:a1: 4f:93:a3:eb:de:81:7a:25:80:39:7f:18:ef:24:db: 4a:7b:b6:c5:18:36:12:b1:f0:48:b6:99:60:bb:d4: 29:71:c9:be:8d:56:28:87:1d:ee:5a:93:16:34:73: 29:6b:aa:95:2f:e8:63:87:61:1b:1e:c0:6a:7d:c6: c1:b1:05:51:6b:32:53:fe:1f:16:41:81:cc:f1:15: 4e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:02:2F:C4:39:C4:AE:F6:13:3F:9F:B9:24:EA:30:05:41:76:D1:F4 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/498f334e-4dc8-4118-b1a1-4c9a15d14b92.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.186.0/24 Signature Algorithm: sha256WithRSAEncryption 93:1a:e9:7e:66:7a:4e:74:dc:98:99:6f:b3:e4:f2:6f:8e:96: f3:56:f8:b4:a5:d7:05:4a:20:4a:b8:37:97:87:23:20:25:be: 57:ac:92:2a:23:62:2c:e3:ca:5a:18:94:d0:1f:0e:b4:72:16: 41:af:1d:2c:62:1a:99:36:9b:b4:17:64:12:ae:e4:57:be:70: f3:46:af:4b:ad:49:32:98:d8:3c:b7:7a:26:9b:5b:14:9b:1e: 38:6a:45:dc:be:9b:91:f3:b2:76:07:4d:98:e0:dc:f9:31:6b: 33:25:be:1a:81:13:10:62:77:15:00:1d:69:c8:ef:89:8b:8d: b7:af:51:91:b7:81:18:d9:7f:4a:d9:cf:9e:a7:6d:cb:04:48: 12:83:47:61:ff:80:87:1e:94:22:b7:84:8d:aa:96:d3:cc:93: 78:c9:aa:7d:98:ab:d2:71:8e:51:05:ff:47:d0:ae:b4:e0:82: aa:ae:f4:39:4f:8e:0a:bc:70:e9:e6:4d:1d:bc:29:fc:52:e7: 0c:d0:82:83:cd:03:1f:ea:9b:32:82:63:27:87:93:dd:4b:5e: 9e:84:fc:95:8c:bc:11:e4:2d:d5:a4:2e:fe:39:44:05:49:9d: 4c:b4:4c:6d:6a:02:03:e0:b1:64:53:fd:b5:f4:94:84:9b:ee: d5:ef:55:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZCJAgB3w4jib25SIRqrFUXIzneAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMTMyWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZGEyYWI2MmYyMTQ5MTQ5ZTI0MzZjNjE5NjBiM2Y3MGM4 YzI0ODI5MTgxMWJkOTQwYjc2ODRkM2Q2MDYyNGE3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0Xsnl/Z4v8HLgpApTLUTtGeC7snCK1QdmsWN2Kq4NvAsF a4SqESRj1ChqVtvmxkIjZR85nzxlefORCasSALD0JJ6CrG/mIyt1j2AZj1uHJveL XMgTdMUe63IJwG/w29Hb8Hol7xqS4xOHyR1tmxSPWsXG4mifhD5kgqRq6IgAIPJV D0ou7c09Lb8ewLXq3uMnOV2SLXs+bh6SHd/UG8fynCdnsKJH5SzKPCddh/pZcZII oU+To+vegXolgDl/GO8k20p7tsUYNhKx8Ei2mWC71Clxyb6NViiHHe5akxY0cylr qpUv6GOHYRsewGp9xsGxBVFrMlP+HxZBgczxFU6VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSwIvxDnErvYTP5+5JOowBUF20fQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzQ5OGYzMzRlLTRkYzgtNDExOC1iMWExLTRjOWExNWQxNGI5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37owDQYJKoZIhvcNAQELBQADggEBAJMa6X5mek503JiZb7Pk8m+OlvNW +LSl1wVKIEq4N5eHIyAlvleskiojYizjyloYlNAfDrRyFkGvHSxiGpk2m7QXZBKu 5Fe+cPNGr0utSTKY2Dy3eiabWxSbHjhqRdy+m5HzsnYHTZjg3PkxazMlvhqBExBi dxUAHWnI74mLjbevUZG3gRjZf0rZz56nbcsESBKDR2H/gIcelCK3hI2qltPMk3jJ qn2Yq9JxjlEF/0fQrrTggqqu9DlPjgq8cOnmTR28KfxS5wzQgoPNAx/qmzKCYyeH k91LXp6E/JWMvBHkLdWkLv45RAVJnUy0TG1qAgPgsWRT/bX0lISb7tXvVWk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:38 2025 by rpki-client