$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9878b3-ff29-492b-8636-e9bfc6a7e3a6.roa File: cc9878b3-ff29-492b-8636-e9bfc6a7e3a6.roa (raw, json) Hash identifier: wriwJfaOMCGPxPdk5xeOENAl69bmwHbrCldWlSMIoWQ= Subject key identifier: 47:48:C9:75:3D:23:F1:7D:84:12:D6:E2:8A:DF:2D:CE:E6:38:20:63 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 791CDEA4839235CE024B1C2425D6F7FC443FDFBC Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9878b3-ff29-492b-8636-e9bfc6a7e3a6.roa Signing time: Tue 02 Sep 2025 14:37:04 +0000 ROA not before: Tue 02 Sep 2025 14:37:04 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 24.110.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 09 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:1c:de:a4:83:92:35:ce:02:4b:1c:24:25:d6:f7:fc:44:3f:df:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 2 14:37:04 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=ed05f3dc3da66cb42cdf936a150a3a19ce8257460ef1e7bebe658e00cb7b9828, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6e:a6:ae:19:52:ff:1e:4f:83:74:3e:03:49: e6:dd:56:90:8d:26:a5:ee:1c:7b:df:ff:8e:8f:85: 7c:dd:a1:cd:53:35:50:22:7e:29:8a:de:c9:b6:bb: 94:51:3c:e8:ca:7c:8f:64:f8:eb:3b:0a:e1:4c:fb: 9e:15:ac:82:40:08:71:88:60:6d:1a:39:25:39:f8: f2:58:fe:0f:d9:fd:57:4e:b3:88:e8:ae:fc:51:cb: 59:b4:77:55:a9:03:9d:50:8f:e7:56:94:71:90:db: e4:bd:3a:0e:20:10:92:7d:cb:05:b9:aa:21:90:5e: ff:3a:46:42:f2:b4:9b:d4:67:eb:f9:65:29:d4:01: ff:71:86:15:54:77:bf:3c:41:06:5c:17:e6:91:85: e2:3b:a6:d5:cc:26:25:df:cc:57:22:65:91:a8:0f: 8a:39:80:b5:d8:b3:06:99:ff:ec:81:04:c0:c0:52: 05:bf:98:6f:cb:90:cb:f9:30:c8:73:b4:49:bb:e2: ec:ae:70:2c:6b:fc:1c:65:05:92:40:05:1b:2d:8c: a2:6d:00:3d:54:b0:1c:55:b8:95:d6:9f:e1:f9:d0: 64:08:a1:9f:7d:25:93:32:bd:44:70:9f:ea:5b:1e: 6e:e0:62:89:5f:b0:a1:b8:55:d7:b6:04:41:fb:7a: 6f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:48:C9:75:3D:23:F1:7D:84:12:D6:E2:8A:DF:2D:CE:E6:38:20:63 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cc9878b3-ff29-492b-8636-e9bfc6a7e3a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.88.0/21 Signature Algorithm: sha256WithRSAEncryption 1d:51:ac:58:23:86:a2:05:d9:05:a3:25:20:be:c9:50:bd:32: b6:fc:cc:3a:4f:98:5f:11:8f:5e:b5:e4:3e:57:8a:80:43:83: 32:e5:e1:88:40:a2:a9:6e:81:7f:48:01:8d:bf:17:07:25:ac: 33:56:10:7e:f2:60:e2:01:e3:b7:df:82:b3:0c:a7:4c:e8:7e: 8a:8c:65:c0:52:b6:60:56:9b:48:97:e0:cf:e2:17:34:3e:4f: ca:6a:ec:46:7d:3e:38:0a:24:30:fa:ef:75:28:a4:b6:8d:15: 63:92:20:77:c1:73:2a:b6:cc:b8:b1:b8:0e:c3:83:e5:1a:5f: e5:5f:91:0b:bb:10:cc:64:dd:77:c1:fd:09:11:92:c3:4e:95: 52:cb:47:dd:5a:3c:b9:83:e4:af:52:f1:b4:4e:35:b4:c7:31: c4:b3:67:e5:93:e0:34:3d:1e:d5:a9:96:35:2f:87:fc:53:81: 20:7f:ae:13:cc:4b:0f:ff:a0:05:97:52:4e:18:99:84:f6:4b: d6:7f:d7:2c:d8:f5:6c:6f:94:bd:94:ee:b7:ab:8e:c1:b1:02: 0f:fe:14:c2:74:6e:8c:9f:bd:b1:48:27:30:61:89:68:ff:d6: 40:30:53:0b:60:55:62:06:9c:ac:a4:05:56:77:55:bb:fc:d5: b0:6e:cc:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeRzepIOSNc4CSxwkJdb3/EQ/37wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwOTAyMTQzNzA0WhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDA1ZjNkYzNkYTY2Y2I0MmNkZjkzNmExNTBhM2ExOWNl ODI1NzQ2MGVmMWU3YmViZTY1OGUwMGNiN2I5ODI4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGbqauGVL/Hk+DdD4DSebdVpCNJqXuHHvf/46PhXzdoc1T NVAifimK3sm2u5RRPOjKfI9k+Os7CuFM+54VrIJACHGIYG0aOSU5+PJY/g/Z/VdO s4jorvxRy1m0d1WpA51Qj+dWlHGQ2+S9Og4gEJJ9ywW5qiGQXv86RkLytJvUZ+v5 ZSnUAf9xhhVUd788QQZcF+aRheI7ptXMJiXfzFciZZGoD4o5gLXYswaZ/+yBBMDA UgW/mG/LkMv5MMhztEm74uyucCxr/BxlBZJABRstjKJtAD1UsBxVuJXWn+H50GQI oZ99JZMyvURwn+pbHm7gYolfsKG4Vde2BEH7em8zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR0jJdT0j8X2EEtbiit8tzuY4IGMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NjOTg3OGIzLWZmMjktNDkyYi04NjM2LWU5YmZjNmE3ZTNhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMYblgwDQYJKoZIhvcNAQELBQADggEBAB1RrFgjhqIF2QWjJSC+yVC9Mrb8 zDpPmF8Rj1615D5XioBDgzLl4YhAoqlugX9IAY2/FwclrDNWEH7yYOIB47ffgrMM p0zofoqMZcBStmBWm0iX4M/iFzQ+T8pq7EZ9PjgKJDD673UopLaNFWOSIHfBcyq2 zLixuA7Dg+UaX+VfkQu7EMxk3XfB/QkRksNOlVLLR91aPLmD5K9S8bRONbTHMcSz Z+WT4DQ9HtWpljUvh/xTgSB/rhPMSw//oAWXUk4YmYT2S9Z/1yzY9WxvlL2U7rer jsGxAg/+FMJ0boyfvbFIJzBhiWj/1kAwUwtgVWIGnKykBVZ3Vbv81bBuzIs= -----END CERTIFICATE-----Generated at Sun Sep 7 16:24:39 2025 by rpki-client