$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/74dc84b0-0790-46ab-ab33-022f86c2512c.roa File: 74dc84b0-0790-46ab-ab33-022f86c2512c.roa (raw, json) Hash identifier: 51yEdcHZqXGR7SMOmOwEKTI2XM2nJfDKWRsnHZt0NxU= Subject key identifier: 78:0B:7C:39:A2:78:6D:DB:C9:27:E5:5E:47:95:27:27:DD:7D:C8:0E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 49C8EC7FC64A3EF58330956993FC82F62C91B62E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/74dc84b0-0790-46ab-ab33-022f86c2512c.roa Signing time: Tue 09 Sep 2025 00:21:12 +0000 ROA not before: Tue 09 Sep 2025 00:21:12 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:c8:ec:7f:c6:4a:3e:f5:83:30:95:69:93:fc:82:f6:2c:91:b6:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:21:12 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=1780aeb2fff767583abf3b94814f73a354c36144881c09abb4600b044d2e6350, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:11:10:43:79:e5:68:c8:1b:0d:28:49:39:80: d4:e8:88:86:7c:cd:fe:2f:ed:da:2e:62:5b:3c:07: 49:bd:f8:df:70:c0:5c:9f:26:3b:b0:60:0e:c0:73: e4:6e:7f:ce:51:16:d1:49:cd:64:bc:7b:a0:63:c1: 59:66:c0:aa:b2:f5:ae:02:36:09:8a:c0:d8:25:97: f4:bd:31:2c:f1:a5:fa:91:46:f2:5e:66:cc:65:ee: 63:00:ff:70:00:04:07:8c:8e:b9:10:7b:ff:71:a7: 41:9a:0e:5a:12:ec:1b:02:1a:34:2f:d1:7a:31:b9: f2:f2:80:e3:9c:8d:89:47:7f:d2:08:42:be:e5:2c: 7c:de:60:e8:db:8a:db:71:c5:13:8d:58:5c:b3:23: ac:90:46:db:52:49:ed:bc:f3:13:a0:b1:30:dc:59: ef:91:40:02:32:cc:67:f4:08:3e:70:53:6d:31:2d: 98:d0:a1:1b:af:1b:d5:21:2f:0a:99:09:b9:f5:da: 6d:02:d9:27:98:db:86:30:f4:35:ca:aa:1d:9d:a7: 04:32:27:49:25:4e:5f:c5:5d:78:b8:ed:16:0c:56: 93:92:f3:19:0a:6e:f0:39:e5:2f:47:04:60:4b:d1: 8c:69:2a:00:8d:b5:7b:1a:63:59:da:a3:f4:cf:94: 7d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:0B:7C:39:A2:78:6D:DB:C9:27:E5:5E:47:95:27:27:DD:7D:C8:0E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/74dc84b0-0790-46ab-ab33-022f86c2512c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.226.0/24 Signature Algorithm: sha256WithRSAEncryption 73:42:c7:05:85:45:8e:e0:7b:10:d4:0e:2e:0e:12:56:64:e6: 8e:f1:ac:6a:e5:77:34:91:13:67:c4:a4:0b:05:42:e2:3b:16: 50:a5:7b:66:ab:2a:b2:78:37:a2:7e:7d:e6:2c:85:be:88:28: fd:3c:d9:ba:f5:6d:cd:7c:c6:36:76:87:9d:d4:3f:f1:ad:37: 1c:fa:39:a9:5d:a4:77:df:ea:22:f3:b5:0e:01:33:dd:82:55: 4b:8b:f4:20:2d:e9:71:9e:8c:61:80:f8:eb:c4:e5:a0:fd:5d: 74:77:5d:6b:f1:86:6e:9a:bf:83:e1:b1:f3:30:d4:af:12:98: e7:95:30:c0:a2:58:87:6a:b2:f2:97:66:e5:17:f2:74:f0:82: 44:45:94:68:32:c9:77:87:cd:f1:6e:9c:1d:04:3b:07:0a:f2: 84:38:8f:88:1b:45:12:25:07:ab:5e:bc:a6:0b:5c:a1:04:0d: 1b:96:ab:db:ea:d8:90:03:32:4d:e0:3e:72:b2:09:93:b0:34: 56:76:f2:d6:8b:98:3e:67:31:2d:5e:f3:10:53:25:04:a3:4e: 61:e0:fd:4b:0f:91:c2:fc:82:6b:77:42:11:40:d3:a6:3b:f2: 71:af:f0:57:ed:e6:aa:03:c5:ef:00:94:dd:55:5f:47:79:87: d7:93:c8:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUScjsf8ZKPvWDMJVpk/yC9iyRti4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwOTA5MDAyMTEyWhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzgwYWViMmZmZjc2NzU4M2FiZjNiOTQ4MTRmNzNhMzU0 YzM2MTQ0ODgxYzA5YWJiNDYwMGIwNDRkMmU2MzUwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNERBDeeVoyBsNKEk5gNToiIZ8zf4v7douYls8B0m9+N9w wFyfJjuwYA7Ac+Ruf85RFtFJzWS8e6BjwVlmwKqy9a4CNgmKwNgll/S9MSzxpfqR RvJeZsxl7mMA/3AABAeMjrkQe/9xp0GaDloS7BsCGjQv0XoxufLygOOcjYlHf9II Qr7lLHzeYOjbittxxRONWFyzI6yQRttSSe288xOgsTDcWe+RQAIyzGf0CD5wU20x LZjQoRuvG9UhLwqZCbn12m0C2SeY24Yw9DXKqh2dpwQyJ0klTl/FXXi47RYMVpOS 8xkKbvA55S9HBGBL0YxpKgCNtXsaY1nao/TPlH1XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeAt8OaJ4bdvJJ+VeR5UnJ919yA4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzc0ZGM4NGIwLTA3OTAtNDZhYi1hYjMzLTAyMmY4NmMyNTEyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++IwDQYJKoZIhvcNAQELBQADggEBAHNCxwWFRY7gexDUDi4OElZk5o7x rGrldzSRE2fEpAsFQuI7FlCle2arKrJ4N6J+feYshb6IKP082br1bc18xjZ2h53U P/GtNxz6OaldpHff6iLztQ4BM92CVUuL9CAt6XGejGGA+OvE5aD9XXR3XWvxhm6a v4PhsfMw1K8SmOeVMMCiWIdqsvKXZuUX8nTwgkRFlGgyyXeHzfFunB0EOwcK8oQ4 j4gbRRIlB6tevKYLXKEEDRuWq9vq2JADMk3gPnKyCZOwNFZ28taLmD5nMS1e8xBT JQSjTmHg/UsPkcL8gmt3QhFA06Y78nGv8Fft5qoDxe8AlN1VX0d5h9eTyOs= -----END CERTIFICATE-----Generated at Tue Sep 16 04:18:03 2025 by rpki-client