$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/10196782-1a70-44e1-b387-1f5ab43817e8.roa File: 10196782-1a70-44e1-b387-1f5ab43817e8.roa (raw, json) Hash identifier: t09+zk0IlYGw7IyvtevXDByB1c1esYdEEIVRiNFhpsM= Subject key identifier: F6:6F:14:EE:71:03:47:83:7F:3C:3A:9B:1D:EA:AB:AF:0F:D6:38:EA Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 10087D0E57B307295A679F89245F6F15BEF2122E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/10196782-1a70-44e1-b387-1f5ab43817e8.roa Signing time: Thu 09 Oct 2025 14:21:52 +0000 ROA not before: Thu 09 Oct 2025 14:21:52 +0000 ROA not after: Thu 13 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.77.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:08:7d:0e:57:b3:07:29:5a:67:9f:89:24:5f:6f:15:be:f2:12:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 9 14:21:52 2025 GMT Not After : Nov 13 23:59:59 2025 GMT Subject: serialNumber=1462cfb6edd9d8ae3bf7474c4d449641d6a4f03e2be8538c5395356722242b2b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6d:32:85:88:38:97:d9:6e:93:da:54:16:d6: 3d:fe:a4:d6:bf:c4:10:ab:0f:66:6b:43:77:57:d7: 6b:17:3d:fd:2c:7f:14:f9:7c:3b:44:ab:11:94:ad: 41:76:a6:d3:3a:c6:ac:3b:18:14:61:6a:16:14:27: d3:35:29:6e:28:8f:c7:bf:f6:fa:27:29:35:50:18: d2:c9:76:fa:12:52:6d:18:2a:12:a6:fa:67:3a:88: e2:cb:b0:eb:ab:f7:a4:70:45:37:d3:22:68:7c:86: 36:a9:ee:ea:87:40:0d:a0:8d:24:d1:00:0d:03:28: da:c8:0f:21:10:b1:ab:b1:a1:65:97:18:f5:71:32: 85:c7:c7:66:76:46:14:5e:c5:20:49:9f:4f:69:f9: 8a:c3:7b:55:b8:2b:72:14:06:f8:c5:26:b6:90:6f: d5:1b:be:b9:ca:92:46:ac:3e:9f:13:8e:8e:41:84: b7:48:f4:83:9d:01:3d:74:28:7e:fd:8e:ae:0c:f8: c6:52:e1:9a:a4:dd:aa:6b:f2:90:05:11:0d:cf:cd: 35:64:c3:df:19:58:3a:b8:69:8d:b9:06:e8:61:7e: 66:d4:42:4e:c6:88:48:5b:22:d2:b1:47:67:a3:2a: 3c:aa:0c:f0:92:fc:89:00:97:0e:be:f4:6d:02:09: b9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:6F:14:EE:71:03:47:83:7F:3C:3A:9B:1D:EA:AB:AF:0F:D6:38:EA X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/10196782-1a70-44e1-b387-1f5ab43817e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.77.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:89:7e:6f:3b:1a:5a:2c:c9:5b:31:d6:63:68:43:9e:ad:02: cb:00:30:54:70:ac:24:39:f6:04:15:7a:19:d7:49:60:28:5e: 79:29:bf:e9:68:69:84:a8:45:3e:62:99:d6:28:d5:8e:a2:22: 59:c7:e5:76:ab:f4:8a:15:bb:e8:b2:fa:78:2e:5a:31:e3:f8: b2:0b:fd:31:ea:47:bd:ce:11:57:56:34:05:93:68:0a:1d:fb: cd:75:95:88:b8:88:a8:75:d0:67:3d:2c:cb:9f:3d:1d:c6:31: 1a:d0:79:b0:64:17:a9:54:db:42:98:1e:b9:04:19:fe:6c:ef: f4:2d:f6:92:a7:6b:3f:d6:2a:42:09:e8:c4:e0:62:8c:71:b8: 05:42:9f:c4:d6:56:85:49:5a:ae:a7:00:fe:a2:28:9a:c0:bf: 25:d1:f0:8a:15:3b:cd:27:70:15:2e:01:9e:9d:23:89:ba:57: 8d:14:f3:20:a0:5b:a0:d8:d2:8d:73:8e:8c:fb:aa:65:9c:2a: de:d4:88:34:d4:a0:33:ec:cb:e3:50:f1:de:9a:48:45:eb:4e: ae:e4:d3:ee:6a:f3:3b:b1:50:43:ca:63:10:a9:5d:8e:a5:d2: 01:72:7a:c7:92:5e:16:3e:e0:10:16:86:ea:c9:84:4f:6b:55: fd:c3:19:bc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEAh9DlezBylaZ5+JJF9vFb7yEi4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA5MTQyMTUyWhcNMjUxMTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDYyY2ZiNmVkZDlkOGFlM2JmNzQ3NGM0ZDQ0OTY0MWQ2 YTRmMDNlMmJlODUzOGM1Mzk1MzU2NzIyMjQyYjJiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMbTKFiDiX2W6T2lQW1j3+pNa/xBCrD2ZrQ3dX12sXPf0s fxT5fDtEqxGUrUF2ptM6xqw7GBRhahYUJ9M1KW4oj8e/9vonKTVQGNLJdvoSUm0Y KhKm+mc6iOLLsOur96RwRTfTImh8hjap7uqHQA2gjSTRAA0DKNrIDyEQsauxoWWX GPVxMoXHx2Z2RhRexSBJn09p+YrDe1W4K3IUBvjFJraQb9UbvrnKkkasPp8Tjo5B hLdI9IOdAT10KH79jq4M+MZS4Zqk3apr8pAFEQ3PzTVkw98ZWDq4aY25BuhhfmbU Qk7GiEhbItKxR2ejKjyqDPCS/IkAlw6+9G0CCbntAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9m8U7nEDR4N/PDqbHeqrrw/WOOowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzEwMTk2NzgyLTFhNzAtNDRlMS1iMzg3LTFmNWFiNDM4MTdlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBiTTANBgkqhkiG9w0BAQsFAAOCAQEAYYl+bzsaWizJWzHWY2hDnq0CywAw VHCsJDn2BBV6GddJYCheeSm/6WhphKhFPmKZ1ijVjqIiWcfldqv0ihW76LL6eC5a MeP4sgv9MepHvc4RV1Y0BZNoCh37zXWViLiIqHXQZz0sy589HcYxGtB5sGQXqVTb QpgeuQQZ/mzv9C32kqdrP9YqQgnoxOBijHG4BUKfxNZWhUlarqcA/qIomsC/JdHw ihU7zSdwFS4Bnp0jibpXjRTzIKBboNjSjXOOjPuqZZwq3tSINNSgM+zL41Dx3ppI RetOruTT7mrzO7FQQ8pjEKldjqXSAXJ6x5JeFj7gEBaG6smET2tV/cMZvA== -----END CERTIFICATE-----Generated at Mon Oct 20 15:30:21 2025 by rpki-client