$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa File: 78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa (raw, json) Hash identifier: UB6Wab21JyKQ4prJK6PDvoXRGNp9p1hDgvMVkEKf4L8= Subject key identifier: 2C:4B:05:81:1B:F9:56:71:0D:03:9C:3F:9E:9A:8F:C5:8A:2D:58:11 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 66E122088DC0D85C2E66C4AA3190595B22237354 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa Signing time: Sat 04 Oct 2025 00:20:09 +0000 ROA not before: Sat 04 Oct 2025 00:20:09 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:e1:22:08:8d:c0:d8:5c:2e:66:c4:aa:31:90:59:5b:22:23:73:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:09 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=c1ed1684066539371db2d3c4677227534284250ad0afdf22de4a31ac5bec9f68, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c7:a7:49:3b:41:62:2f:d1:82:13:32:0c:05: 18:17:34:db:df:89:df:7e:95:73:2a:21:42:6f:1e: e5:c8:81:02:f0:aa:2e:90:82:a4:48:47:4e:21:a8: 37:ac:d3:dd:41:f6:6e:16:9e:1b:62:c4:0c:ec:76: cc:ea:05:97:d8:a6:4f:68:b8:12:58:c4:1c:e6:45: 52:77:4e:94:e7:59:78:53:06:f9:d3:d5:99:6c:c0: 52:b9:db:c8:d8:6d:0f:61:8e:86:34:e4:98:d1:a6: 10:83:e6:14:6e:14:9c:7c:83:ad:8b:02:c4:aa:cf: f8:ab:97:0e:e7:c9:2f:a1:c7:f1:ef:bf:6d:51:e8: 0a:53:6b:46:aa:09:54:88:81:d4:be:02:1f:cd:f7: 9d:c1:36:e9:5b:15:01:29:ef:af:b9:2a:83:32:71: 7b:de:cb:7a:14:0c:3a:b6:1c:4d:46:80:2b:42:bb: c5:cc:b2:62:f8:c9:d8:bc:75:ea:ea:b5:27:bb:c0: 6a:46:f5:bb:4f:b5:ec:37:79:67:58:cd:b0:28:54: 82:5a:5e:95:a5:0b:ba:5a:f5:03:a6:e4:cc:85:06: f4:db:e7:c0:f5:8d:7d:b0:cf:5f:68:67:15:6c:d0: 41:5e:3c:80:58:cd:4c:f7:4c:4f:f1:46:02:4f:8c: e0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4B:05:81:1B:F9:56:71:0D:03:9C:3F:9E:9A:8F:C5:8A:2D:58:11 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/78a0cdc2-ea20-466b-be87-e9cd69e17b3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.185.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:85:36:f7:54:8e:c4:41:02:d1:25:74:4f:b7:8d:f7:6b:04: b1:f8:27:5b:8e:a6:eb:f3:74:e5:49:b7:19:7d:e4:15:54:26: f4:93:e7:32:e3:9f:eb:c6:eb:a0:5d:dd:cc:c8:13:0b:54:bd: 6b:0e:97:6e:ec:17:97:4e:74:25:af:f3:f3:22:d1:92:35:c0: b7:81:36:d2:05:4d:06:71:38:5d:be:d7:71:00:b8:76:d3:7f: cf:ac:67:3a:0b:55:54:bf:b2:dc:2c:09:ba:55:ad:09:3f:4f: dd:5f:3f:e0:1e:4a:38:90:d2:8d:a3:16:91:21:16:01:7d:84: 16:d9:8c:c6:d4:50:44:9b:62:ad:48:2b:39:96:ee:8f:a4:e1: 46:c7:db:0f:c5:04:b5:38:c0:32:17:f5:8e:df:fb:60:5c:02: a7:81:7c:37:bb:8d:19:35:cc:ab:ea:3d:b5:64:bf:83:22:f0: 47:2c:74:9d:6c:ba:aa:3e:d8:e6:51:2c:2a:b2:46:71:9c:80: 85:83:88:09:e5:fa:31:80:e9:d4:e0:20:b4:6d:5c:39:d1:65: c9:3d:fc:4c:28:c7:e7:ef:e2:5c:37:5a:d3:af:54:01:ea:e5: f4:6a:c1:c5:17:e9:43:b3:d8:71:53:98:d3:6c:3f:e0:45:cc: 91:58:1c:a9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZuEiCI3A2FwuZsSqMZBZWyIjc1QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDA5WhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWVkMTY4NDA2NjUzOTM3MWRiMmQzYzQ2NzcyMjc1MzQy ODQyNTBhZDBhZmRmMjJkZTRhMzFhYzViZWM5ZjY4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCux6dJO0FiL9GCEzIMBRgXNNvfid9+lXMqIUJvHuXIgQLw qi6QgqRIR04hqDes091B9m4WnhtixAzsdszqBZfYpk9ouBJYxBzmRVJ3TpTnWXhT BvnT1ZlswFK528jYbQ9hjoY05JjRphCD5hRuFJx8g62LAsSqz/irlw7nyS+hx/Hv v21R6ApTa0aqCVSIgdS+Ah/N953BNulbFQEp76+5KoMycXvey3oUDDq2HE1GgCtC u8XMsmL4ydi8derqtSe7wGpG9btPtew3eWdYzbAoVIJaXpWlC7pa9QOm5MyFBvTb 58D1jX2wz19oZxVs0EFePIBYzUz3TE/xRgJPjOAPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULEsFgRv5VnENA5w/npqPxYotWBEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzc4YTBjZGMyLWVhMjAtNDY2Yi1iZTg3LWU5Y2Q2OWUxN2IzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37kwDQYJKoZIhvcNAQELBQADggEBAE+FNvdUjsRBAtEldE+3jfdrBLH4 J1uOpuvzdOVJtxl95BVUJvST5zLjn+vG66Bd3czIEwtUvWsOl27sF5dOdCWv8/Mi 0ZI1wLeBNtIFTQZxOF2+13EAuHbTf8+sZzoLVVS/stwsCbpVrQk/T91fP+AeSjiQ 0o2jFpEhFgF9hBbZjMbUUESbYq1IKzmW7o+k4UbH2w/FBLU4wDIX9Y7f+2BcAqeB fDe7jRk1zKvqPbVkv4Mi8EcsdJ1suqo+2OZRLCqyRnGcgIWDiAnl+jGA6dTgILRt XDnRZck9/Ewox+fv4lw3WtOvVAHq5fRqwcUX6UOz2HFTmNNsP+BFzJFYHKk= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:29 2025 by rpki-client