$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/639621c0-050e-4e66-b3a2-1dd129de2c24.roa File: 639621c0-050e-4e66-b3a2-1dd129de2c24.roa (raw, json) Hash identifier: 1PLl95lA772ceii238aBRFRhhPuZmk579LpIE8Sdfa4= Subject key identifier: 7A:2F:2B:AA:D8:E8:4D:3F:D3:82:2B:1E:91:FA:9D:A0:90:8A:64:2A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 42C3603B018BAEAAEB94855B87220D698F9EFE3D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/639621c0-050e-4e66-b3a2-1dd129de2c24.roa Signing time: Fri 15 Aug 2025 00:21:41 +0000 ROA not before: Fri 15 Aug 2025 00:21:41 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:c3:60:3b:01:8b:ae:aa:eb:94:85:5b:87:22:0d:69:8f:9e:fe:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:21:41 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=5edb5993ef0c3717773cda5cef678a5db7b73565795a1c1c4d14fe6c4954ae48, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8c:b8:5c:5e:ed:e5:89:a3:c7:32:09:d4:ac: 49:b9:e0:c6:03:88:b5:5b:b2:4b:e4:e8:11:c3:ec: 05:e6:3f:55:9a:2a:9b:b4:ac:c9:4b:d2:82:52:1f: 4b:d8:a9:26:c6:14:aa:2c:01:39:48:18:60:84:e4: 77:e1:62:37:14:df:fb:3f:03:37:07:ed:d9:b8:b0: a9:9f:46:40:93:f9:fe:bd:cd:50:f2:c6:ae:51:38: dc:5f:b9:3d:c3:bc:2a:b0:57:72:5e:6d:0f:fe:80: 04:d2:df:01:ef:b5:92:ab:fd:87:c9:73:a3:93:2f: 79:5c:8d:96:22:60:53:53:61:cc:a2:44:a2:49:4f: 3e:0d:c4:e7:98:ab:54:7e:73:c2:51:a8:af:0b:ca: af:25:b7:f0:03:e0:02:a4:35:6e:70:87:6e:df:62: fa:32:1c:5b:ba:d1:5b:3e:d8:79:06:63:ad:19:96: 43:c2:c0:2c:a7:41:b7:1a:5d:61:60:49:10:93:34: ea:72:2b:89:a7:75:1c:c4:2c:d9:3d:20:ac:39:c5: c6:98:21:3c:df:a4:7a:42:06:57:67:7d:2a:0e:22: 3c:79:35:55:8c:96:c1:78:d8:a3:b4:75:2c:a9:f5: c1:fc:e9:77:1a:41:fd:ef:d8:0e:42:f7:56:e4:9e: 31:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:2F:2B:AA:D8:E8:4D:3F:D3:82:2B:1E:91:FA:9D:A0:90:8A:64:2A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/639621c0-050e-4e66-b3a2-1dd129de2c24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.182.0/24 Signature Algorithm: sha256WithRSAEncryption 84:a9:00:67:72:cb:e9:4f:c7:68:8e:ad:c2:57:f2:35:2a:64: 59:ab:9c:57:fa:81:c5:b4:b7:a6:66:be:e4:1f:ab:b7:5e:80: af:6f:65:a1:30:50:14:44:e9:b8:ce:1d:02:23:13:da:f4:55: 44:51:c4:14:39:1f:56:a8:23:c8:c2:8a:f2:d6:7c:f3:ad:74: 43:ef:da:13:ae:bd:9b:03:36:d8:23:de:2a:47:2a:79:32:3f: 6b:eb:b8:a5:4b:d5:ca:be:fd:0c:ca:0b:e5:a9:4e:df:8f:d1: 65:d3:bb:a4:83:86:61:9c:7c:b5:23:1d:04:27:62:bf:11:61: 32:d1:ea:c9:5b:f9:b2:3a:2e:c1:a5:23:85:d2:37:7a:a4:52: 36:9d:36:0c:e1:2c:ef:9c:71:73:a5:bc:15:84:03:bd:13:0e: d1:97:6f:be:b2:18:da:58:09:49:62:a6:01:23:34:cf:bb:d0: 66:66:cd:64:98:d5:82:b1:60:34:59:29:3d:48:e0:c8:9f:0d: 93:60:25:55:8a:13:b2:ae:e9:dd:0f:f9:ea:9f:42:00:c8:dc: 63:d9:63:92:2b:f9:58:1d:d7:99:37:61:b3:16:95:ff:7c:09: 09:6f:fc:f6:4b:3d:ab:f6:f1:81:58:dc:03:46:75:e7:54:e0: f3:b5:cc:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQsNgOwGLrqrrlIVbhyINaY+e/j0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMTQxWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZWRiNTk5M2VmMGMzNzE3NzczY2RhNWNlZjY3OGE1ZGI3 YjczNTY1Nzk1YTFjMWM0ZDE0ZmU2YzQ5NTRhZTQ4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKjLhcXu3liaPHMgnUrEm54MYDiLVbskvk6BHD7AXmP1Wa Kpu0rMlL0oJSH0vYqSbGFKosATlIGGCE5HfhYjcU3/s/AzcH7dm4sKmfRkCT+f69 zVDyxq5RONxfuT3DvCqwV3JebQ/+gATS3wHvtZKr/YfJc6OTL3lcjZYiYFNTYcyi RKJJTz4NxOeYq1R+c8JRqK8Lyq8lt/AD4AKkNW5wh27fYvoyHFu60Vs+2HkGY60Z lkPCwCynQbcaXWFgSRCTNOpyK4mndRzELNk9IKw5xcaYITzfpHpCBldnfSoOIjx5 NVWMlsF42KO0dSyp9cH86XcaQf3v2A5C91bknjEvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUei8rqtjoTT/TgisekfqdoJCKZCowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzYzOTYyMWMwLTA1MGUtNGU2Ni1iM2EyLTFkZDEyOWRlMmMyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37YwDQYJKoZIhvcNAQELBQADggEBAISpAGdyy+lPx2iOrcJX8jUqZFmr nFf6gcW0t6ZmvuQfq7degK9vZaEwUBRE6bjOHQIjE9r0VURRxBQ5H1aoI8jCivLW fPOtdEPv2hOuvZsDNtgj3ipHKnkyP2vruKVL1cq+/QzKC+WpTt+P0WXTu6SDhmGc fLUjHQQnYr8RYTLR6slb+bI6LsGlI4XSN3qkUjadNgzhLO+ccXOlvBWEA70TDtGX b76yGNpYCUlipgEjNM+70GZmzWSY1YKxYDRZKT1I4MifDZNgJVWKE7Ku6d0P+eqf QgDI3GPZY5Ir+Vgd15k3YbMWlf98CQlv/PZLPav28YFY3ANGdedU4PO1zMU= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:49 2025 by rpki-client