$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa File: c9752aac-8490-485f-92b7-6a6ba02b76d5.roa (raw, json) Hash identifier: S3hg+EU4oWXLNZmGAV4Od7noAB9Wlcv/xs0Iu4XoMok= Subject key identifier: 6E:DB:1E:8A:AE:61:F6:7D:ED:E6:18:BD:7E:9B:59:AB:02:0D:44:EA Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 22F9355FF719E2B0B1AB3D485783F97FF839BE81 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa Signing time: Fri 29 Aug 2025 00:10:02 +0000 ROA not before: Fri 29 Aug 2025 00:10:02 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 199.127.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 09 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:f9:35:5f:f7:19:e2:b0:b1:ab:3d:48:57:83:f9:7f:f8:39:be:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 29 00:10:02 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=ea145215faf5c3b3a13fa2dfd4c27f6581d042cf113abe7d53fd841a88b8d777, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:47:22:31:2f:25:5b:e4:8e:fc:cb:4e:60:ff: 99:40:ea:39:17:24:e6:4e:04:54:28:28:ce:9c:6e: 83:5b:f3:a6:91:fc:8e:4a:41:87:34:08:4c:b4:83: 08:7d:ee:45:f5:23:b7:d6:fb:3f:49:22:2f:ac:b3: 33:d6:8c:59:75:84:51:e1:7b:e0:72:98:9f:72:00: 01:5e:05:10:91:ae:a5:31:67:75:98:34:0c:ac:37: 90:56:0c:71:18:95:d5:0a:9e:f8:4a:d5:bf:c0:2e: e9:63:07:f3:ee:ed:ea:8b:96:2f:34:c4:56:88:ad: cc:ca:19:09:a1:44:70:56:1f:74:89:81:70:6f:fe: 5f:d5:9d:77:17:3f:bd:26:a7:92:7a:23:b8:fb:8b: c7:20:66:36:7b:f1:e3:ed:4c:70:e3:01:e1:bc:0c: 23:01:fb:d7:18:3c:fb:53:89:1d:ce:fa:e5:71:95: ec:e7:54:d9:4a:a2:11:90:bc:7f:31:e3:57:6d:6f: 39:72:c6:f8:15:96:07:3c:ff:1d:f1:d8:41:e9:f2: a8:d4:f3:2d:6f:0d:c2:63:cb:99:c6:24:3f:a2:f7: ae:23:52:bc:6f:10:05:48:c5:6f:bd:0f:77:77:83: 65:7e:9b:1b:0c:87:cd:3e:df:1c:74:5c:6b:1e:b8: a4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:DB:1E:8A:AE:61:F6:7D:ED:E6:18:BD:7E:9B:59:AB:02:0D:44:EA X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.127.232.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:bc:c6:85:79:ac:a9:75:22:4b:f7:ee:bb:67:10:0a:95:32: 47:eb:dd:fd:61:aa:32:08:8e:84:95:f4:89:5a:c9:78:b3:ef: 04:48:52:1c:a6:99:19:ac:41:7b:61:ed:30:ca:b9:62:0c:e8: 72:69:91:1e:33:8b:e1:34:a5:4d:20:ad:d1:b5:5a:68:6e:63: 66:c5:f3:24:47:ec:07:40:9e:21:48:19:02:52:33:b8:ea:89: 2e:f2:c4:de:d0:c2:e5:69:a5:2f:62:87:d8:dc:e6:8e:0f:9e: d2:af:89:c4:a7:52:ad:82:a6:66:e5:32:07:19:d8:60:93:0d: 04:4f:12:34:86:4b:2c:07:bf:77:ea:e9:33:fc:74:02:f6:35: 22:67:17:1e:c5:26:d6:e1:25:2c:08:2c:91:41:7d:80:51:ef: f2:bd:ba:ef:c6:94:57:2a:a5:c5:08:4f:6f:14:6d:b8:6b:14: 74:cd:68:0e:9b:79:2f:ba:73:6f:06:66:64:3d:76:84:ca:c0: 43:26:6f:12:4d:e9:db:be:30:ad:69:6b:a4:42:8b:8a:fa:0f: de:61:f9:3e:12:d2:8f:9b:f1:74:6f:ca:22:30:81:33:fc:d1: 1d:ce:71:96:10:f9:1d:20:41:b3:d4:a4:ea:84:8b:f2:79:24: d2:f1:01:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIvk1X/cZ4rCxqz1IV4P5f/g5voEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODI5MDAxMDAyWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTE0NTIxNWZhZjVjM2IzYTEzZmEyZGZkNGMyN2Y2NTgx ZDA0MmNmMTEzYWJlN2Q1M2ZkODQxYTg4YjhkNzc3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhRyIxLyVb5I78y05g/5lA6jkXJOZOBFQoKM6cboNb86aR /I5KQYc0CEy0gwh97kX1I7fW+z9JIi+sszPWjFl1hFHhe+BymJ9yAAFeBRCRrqUx Z3WYNAysN5BWDHEYldUKnvhK1b/ALuljB/Pu7eqLli80xFaIrczKGQmhRHBWH3SJ gXBv/l/VnXcXP70mp5J6I7j7i8cgZjZ78ePtTHDjAeG8DCMB+9cYPPtTiR3O+uVx leznVNlKohGQvH8x41dtbzlyxvgVlgc8/x3x2EHp8qjU8y1vDcJjy5nGJD+i964j UrxvEAVIxW+9D3d3g2V+mxsMh80+3xx0XGseuKSjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbtseiq5h9n3t5hi9fptZqwINROowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2M5NzUyYWFjLTg0OTAtNDg1Zi05MmI3LTZhNmJhMDJiNzZkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALHf+gwDQYJKoZIhvcNAQELBQADggEBAI+8xoV5rKl1Ikv37rtnEAqVMkfr 3f1hqjIIjoSV9IlayXiz7wRIUhymmRmsQXth7TDKuWIM6HJpkR4zi+E0pU0grdG1 WmhuY2bF8yRH7AdAniFIGQJSM7jqiS7yxN7QwuVppS9ih9jc5o4PntKvicSnUq2C pmblMgcZ2GCTDQRPEjSGSywHv3fq6TP8dAL2NSJnFx7FJtbhJSwILJFBfYBR7/K9 uu/GlFcqpcUIT28UbbhrFHTNaA6beS+6c28GZmQ9doTKwEMmbxJN6du+MK1pa6RC i4r6D95h+T4S0o+b8XRvyiIwgTP80R3OcZYQ+R0gQbPUpOqEi/J5JNLxAbM= -----END CERTIFICATE-----Generated at Sun Sep 7 16:15:33 2025 by rpki-client