$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa File: f99236be-03a7-4f91-be31-5366989c9d7b.roa (raw, json) Hash identifier: zEqZf2gskGxlqUdAHeW/+jaJvOkrx59xIqlv7fxH0F8= Subject key identifier: 9D:30:8A:B7:58:59:01:C6:0D:8C:E0:77:F4:26:72:85:3D:BE:41:50 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0DA332D7379EBBFB9DEE9E11FB87621A2959F374 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa Signing time: Fri 29 Aug 2025 00:10:06 +0000 ROA not before: Fri 29 Aug 2025 00:10:06 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.255.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:a3:32:d7:37:9e:bb:fb:9d:ee:9e:11:fb:87:62:1a:29:59:f3:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 29 00:10:06 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=76ae9ed85ccd5a68d60c18b58cb4c312b6a82fc32724d12405c21a20caba5f7e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9d:1c:2c:51:d9:da:a7:7b:42:96:a7:56:00: 5a:21:0e:a0:12:08:de:17:f7:bb:b3:e1:a6:15:9a: a6:1b:60:59:bf:f7:32:27:80:8a:bb:ae:20:66:fb: 57:0c:8d:f7:f0:5c:97:9f:b5:7e:bb:4a:2f:fd:df: 29:0a:f4:af:00:d5:c1:d7:39:8d:6d:b9:f3:dd:af: 6d:18:e0:c7:c5:de:f4:8e:a8:3d:e1:11:c3:3e:c2: 19:58:26:ce:84:59:a3:f8:44:d2:87:59:ca:08:5e: 64:96:ca:92:e8:b7:b0:45:d0:71:d2:1d:29:12:13: 6e:d3:f6:63:fb:16:e6:57:47:a5:f6:b1:1f:19:c5: c8:27:9a:45:86:7a:c6:9c:0d:c4:04:bc:27:d1:00: 3a:c8:be:17:d1:4a:1a:ee:20:f1:2d:bb:4a:aa:f4: f0:7e:1b:de:3d:18:d3:33:92:da:b2:2e:00:5a:fa: a1:66:9b:d9:ad:52:76:93:ed:a6:50:21:2a:85:68: aa:fe:87:62:a8:1f:a2:d7:7f:f2:8a:1c:f3:e3:21: 97:ce:51:ea:d6:ff:c1:b5:87:14:98:c8:ef:f4:97: a8:41:9d:e4:ce:4b:15:dc:b0:4e:1b:8e:6c:d1:ff: 1e:70:c3:f8:60:b3:03:82:39:0a:e7:12:03:f9:57: e7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:30:8A:B7:58:59:01:C6:0D:8C:E0:77:F4:26:72:85:3D:BE:41:50 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.255.192.0/22 Signature Algorithm: sha256WithRSAEncryption 75:e2:1b:7e:36:26:a2:2d:01:18:c1:20:b6:db:6a:26:53:9f: 22:96:4e:bd:b0:bd:d1:ad:e4:62:b5:a0:3d:3b:f3:61:80:10: e6:aa:8a:59:be:c8:d6:44:02:1b:89:a4:54:de:f3:97:e4:f4: 15:3f:fb:b4:17:62:dc:46:e5:fc:d0:5b:9a:ba:f4:f2:62:84: e3:f7:71:c4:1b:be:39:0c:9d:85:01:2d:3a:08:3f:1f:fa:58: 67:b9:d7:51:41:e2:9d:d2:7a:f2:16:73:1a:ae:5d:f9:f9:11: 5f:fb:78:35:57:3c:fa:22:9c:e6:b1:e8:ea:88:fc:36:a6:08: 99:67:de:f0:50:dd:62:b5:83:11:e6:84:e8:08:88:9e:da:ab: 14:dc:92:4f:0d:2c:14:aa:e0:87:04:16:67:5b:80:7a:ef:2e: a5:5f:dd:32:64:77:d4:a9:a9:1b:f6:83:53:25:d2:19:a8:7f: b1:6e:6a:a6:30:95:33:9e:01:43:08:d1:58:86:2a:7a:88:79: f4:cf:88:4b:54:a5:f2:2f:c5:1e:1c:b0:3c:f3:26:17:cd:49: b3:d7:a9:fe:ad:c8:4a:a1:39:74:6d:9a:53:87:98:e5:c2:87: 44:91:91:e7:b8:50:63:a2:67:44:41:67:dc:b6:71:c6:92:cd: 96:21:4a:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDaMy1zeeu/ud7p4R+4diGilZ83QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODI5MDAxMDA2WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmFlOWVkODVjY2Q1YTY4ZDYwYzE4YjU4Y2I0YzMxMmI2 YTgyZmMzMjcyNGQxMjQwNWMyMWEyMGNhYmE1ZjdlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCknRwsUdnap3tClqdWAFohDqASCN4X97uz4aYVmqYbYFm/ 9zIngIq7riBm+1cMjffwXJeftX67Si/93ykK9K8A1cHXOY1tufPdr20Y4MfF3vSO qD3hEcM+whlYJs6EWaP4RNKHWcoIXmSWypLot7BF0HHSHSkSE27T9mP7FuZXR6X2 sR8ZxcgnmkWGesacDcQEvCfRADrIvhfRShruIPEtu0qq9PB+G949GNMzktqyLgBa +qFmm9mtUnaT7aZQISqFaKr+h2KoH6LXf/KKHPPjIZfOUerW/8G1hxSYyO/0l6hB neTOSxXcsE4bjmzR/x5ww/hgswOCOQrnEgP5V+flAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnTCKt1hZAcYNjOB39CZyhT2+QVAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y5OTIzNmJlLTAzYTctNGY5MS1iZTMxLTUzNjY5ODljOWQ3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALH/8AwDQYJKoZIhvcNAQELBQADggEBAHXiG342JqItARjBILbbaiZTnyKW Tr2wvdGt5GK1oD0782GAEOaqilm+yNZEAhuJpFTe85fk9BU/+7QXYtxG5fzQW5q6 9PJihOP3ccQbvjkMnYUBLToIPx/6WGe511FB4p3SevIWcxquXfn5EV/7eDVXPPoi nOax6OqI/DamCJln3vBQ3WK1gxHmhOgIiJ7aqxTckk8NLBSq4IcEFmdbgHrvLqVf 3TJkd9SpqRv2g1Ml0hmof7FuaqYwlTOeAUMI0ViGKnqIefTPiEtUpfIvxR4csDzz JhfNSbPXqf6tyEqhOXRtmlOHmOXCh0SRkee4UGOiZ0RBZ9y2ccaSzZYhSpE= -----END CERTIFICATE-----Generated at Tue Sep 16 14:52:52 2025 by rpki-client