$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a91f26f0-5a1d-4d65-97ce-94a26d6646b8.roa File: a91f26f0-5a1d-4d65-97ce-94a26d6646b8.roa (raw, json) Hash identifier: kEIWldcN0TPGlknbOUyqZxakHazFF7Ne7OvmKxwOxHA= Subject key identifier: 2C:82:DB:64:39:84:79:78:D8:83:F3:FB:3F:E3:C8:30:5B:B3:30:E4 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 43CEF35FE5BD3036CB20D7F710D9783E0F8D42CE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a91f26f0-5a1d-4d65-97ce-94a26d6646b8.roa Signing time: Sat 30 Aug 2025 00:00:02 +0000 ROA not before: Sat 30 Aug 2025 00:00:02 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 216.221.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ce:f3:5f:e5:bd:30:36:cb:20:d7:f7:10:d9:78:3e:0f:8d:42:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 30 00:00:02 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=9cf0da8bd7eff7d013439011f96bde1625c95a916b46bb2d19ded89d8b2f5d22, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:77:3f:af:e5:26:c4:5d:b8:03:a3:5e:04:76: 6b:30:4b:ec:36:63:97:cd:19:77:41:16:ba:1a:fe: 13:27:c2:4e:7e:78:18:d7:f5:c6:ba:28:e8:58:48: c4:16:86:f6:a3:5c:92:9b:85:db:c6:4c:2e:fc:9d: fb:ad:70:d2:07:39:30:f5:6f:ba:1c:22:7f:8d:46: 66:3c:08:a2:d8:91:e8:6a:ab:b6:0b:17:23:57:4a: 6a:ce:72:3e:1c:bf:de:c2:5e:1e:ed:ce:53:2e:cb: ac:c7:36:f3:3a:78:86:09:7a:22:d2:7a:c9:69:b5: fc:e2:fb:92:84:e7:51:b1:20:9f:a0:9d:df:94:7c: 52:23:6c:6e:10:61:19:b9:73:b9:fa:3c:cf:ef:b3: c7:18:da:53:7e:e6:54:38:d4:a5:f1:de:a2:7e:33: 09:24:7f:ef:e3:f6:54:f2:43:e5:53:fe:58:71:22: 8e:02:63:95:61:7f:4b:46:38:3f:e3:b4:d5:cc:14: f9:1f:5b:8d:33:14:03:fa:e9:bb:92:01:9f:63:79: 51:44:14:e7:73:1d:51:9f:25:98:3b:7b:59:2e:c9: be:e2:f0:60:af:82:9e:46:80:6c:20:f1:76:39:95: 88:c6:8c:ee:fe:5f:f2:28:b6:cf:ab:0f:8d:3f:0b: fb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:82:DB:64:39:84:79:78:D8:83:F3:FB:3F:E3:C8:30:5B:B3:30:E4 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/a91f26f0-5a1d-4d65-97ce-94a26d6646b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.163.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:ac:63:0e:e0:d3:d4:cb:b9:a8:d0:ee:e3:82:af:87:64:b2: d3:11:67:af:d1:75:e9:8f:0c:82:92:38:ba:86:4f:c9:26:c6: 8a:71:50:ef:a8:36:3a:f7:30:82:3a:8b:f5:42:92:ee:86:b6: 57:ad:35:46:ac:2d:b1:94:35:14:0a:0b:b9:4a:6b:5d:ee:af: d2:3c:e5:dc:fe:43:5d:92:f1:98:22:e4:8b:89:0e:ba:5a:5e: 6c:64:3e:fb:1d:0d:b0:ec:f4:83:25:f9:39:e5:13:94:f0:d3: 8a:dd:a4:f1:96:c3:ab:2e:f6:f2:5d:9a:31:28:64:ad:04:98: 42:54:10:67:f0:d1:db:93:16:81:5d:8f:03:35:55:a7:8e:22: 54:e4:a9:57:5f:f7:ed:3f:d5:1c:95:cb:6a:94:8b:20:14:d3: e9:e5:cd:23:aa:43:9f:d5:4b:38:7f:42:d9:76:51:ec:80:e7: e0:b8:ad:c3:54:92:76:53:b3:31:29:56:36:02:be:87:8d:bf: c7:46:75:85:2a:84:e4:bb:7a:45:ad:9c:52:f9:fe:c0:78:37: 07:e7:ef:9e:a7:09:8d:75:f3:26:60:cb:a5:2c:dc:50:c8:96: 71:59:b9:de:41:f4:c5:0d:3f:07:30:9c:27:61:a5:5b:74:81: 13:d0:ee:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ87zX+W9MDbLINf3ENl4Pg+NQs4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODMwMDAwMDAyWhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5Y2YwZGE4YmQ3ZWZmN2QwMTM0MzkwMTFmOTZiZGUxNjI1 Yzk1YTkxNmI0NmJiMmQxOWRlZDg5ZDhiMmY1ZDIyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCydz+v5SbEXbgDo14EdmswS+w2Y5fNGXdBFroa/hMnwk5+ eBjX9ca6KOhYSMQWhvajXJKbhdvGTC78nfutcNIHOTD1b7ocIn+NRmY8CKLYkehq q7YLFyNXSmrOcj4cv97CXh7tzlMuy6zHNvM6eIYJeiLSeslptfzi+5KE51GxIJ+g nd+UfFIjbG4QYRm5c7n6PM/vs8cY2lN+5lQ41KXx3qJ+Mwkkf+/j9lTyQ+VT/lhx Io4CY5Vhf0tGOD/jtNXMFPkfW40zFAP66buSAZ9jeVFEFOdzHVGfJZg7e1kuyb7i 8GCvgp5GgGwg8XY5lYjGjO7+X/Iots+rD40/C/v1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULILbZDmEeXjYg/P7P+PIMFuzMOQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2E5MWYyNmYwLTVhMWQtNGQ2NS05N2NlLTk0YTI2ZDY2NDZiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADY3aMwDQYJKoZIhvcNAQELBQADggEBAHysYw7g09TLuajQ7uOCr4dkstMR Z6/RdemPDIKSOLqGT8kmxopxUO+oNjr3MII6i/VCku6GtletNUasLbGUNRQKC7lK a13ur9I85dz+Q12S8Zgi5IuJDrpaXmxkPvsdDbDs9IMl+TnlE5Tw04rdpPGWw6su 9vJdmjEoZK0EmEJUEGfw0duTFoFdjwM1VaeOIlTkqVdf9+0/1RyVy2qUiyAU0+nl zSOqQ5/VSzh/Qtl2UeyA5+C4rcNUknZTszEpVjYCvoeNv8dGdYUqhOS7ekWtnFL5 /sB4Nwfn756nCY118yZgy6Us3FDIlnFZud5B9MUNPwcwnCdhpVt0gRPQ7lo= -----END CERTIFICATE-----Generated at Sun Sep 7 11:25:34 2025 by rpki-client