$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa File: 5569e911-3188-427d-83a0-0e8a45b335d3.roa (raw, json) Hash identifier: f8xjpYwB+ISq+4jXxzoNRP6lVl4670A+soE+Ei5RH8s= Subject key identifier: BC:ED:0F:AD:4B:7D:75:6C:E0:F8:2B:AD:E5:4F:CB:F7:32:A0:9E:03 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 149948F5E628B5533D853AE582C25C9FD01D018A Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa Signing time: Sat 04 Oct 2025 00:20:10 +0000 ROA not before: Sat 04 Oct 2025 00:20:10 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:99:48:f5:e6:28:b5:53:3d:85:3a:e5:82:c2:5c:9f:d0:1d:01:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:10 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=cad77e0e3dab332eb56f3ab2d4120cd7466048ce965be419ddfb14157bcdab29, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a7:7f:30:7f:bd:a7:e3:c7:f3:d6:19:0c:38: 3f:ec:cf:ba:98:eb:47:fd:94:95:59:b0:a5:a4:b4: 6b:07:44:11:70:d7:93:7f:b1:8a:d3:63:da:28:0e: f3:95:d3:64:22:b5:31:d4:05:ec:d4:ce:ab:cd:58: 27:bb:03:ff:09:c2:7a:52:fe:14:bd:dc:58:d2:c1: c4:84:32:4b:4e:22:a7:30:bc:82:ef:77:22:3a:f7: 59:d6:cb:b3:47:32:69:2f:af:d4:de:32:65:82:cb: 11:41:12:7a:00:85:eb:bc:8c:9b:d5:79:64:bc:de: dc:39:7a:19:dd:ea:cf:a7:6a:1d:7e:40:4b:ae:7f: 66:56:04:d2:68:ea:10:80:f9:e3:85:b9:a2:78:53: f4:7b:c5:9b:ed:18:3b:24:73:a6:d3:20:53:19:45: 3e:98:18:f8:63:71:47:2a:27:17:ea:15:5f:89:d0: 03:b5:9c:c9:93:30:22:6e:6a:82:76:49:c3:b6:10: c6:ec:8b:bb:73:1c:61:3b:6a:4c:f3:bc:48:7c:82: ad:24:34:51:66:a4:b3:3d:9c:aa:ed:16:fc:83:70: 25:d9:d1:98:98:de:db:df:40:ad:e6:2b:b2:a6:a4: 94:9a:28:45:c8:92:f2:a6:11:58:76:c1:53:e2:89: a9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:ED:0F:AD:4B:7D:75:6C:E0:F8:2B:AD:E5:4F:CB:F7:32:A0:9E:03 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5569e911-3188-427d-83a0-0e8a45b335d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.183.0/24 Signature Algorithm: sha256WithRSAEncryption 02:03:c8:c1:53:d2:3c:b0:d9:6f:b3:0b:5d:50:07:31:e2:37: 54:20:a7:67:6c:41:6d:24:73:c5:a3:cd:25:4d:c5:0f:29:cd: 2e:71:4e:80:50:56:0b:d5:e9:4f:40:7a:54:02:6d:8f:8b:e9: 09:5e:a3:38:46:16:5f:6a:35:d3:94:92:2d:16:26:da:c8:04: 40:ca:6f:32:d4:f9:0f:e8:4f:32:e6:4a:aa:d3:93:83:e5:a2: 4c:b1:cf:ce:b3:db:87:f7:04:ae:3a:7c:67:fe:24:c1:6b:3d: ea:4b:9e:87:36:64:62:74:fa:4f:d2:a6:ad:f0:42:de:a4:74: 6e:09:42:bf:3a:c0:15:a0:13:e4:ad:9d:1f:48:4d:62:87:55: b3:b5:2f:cd:1d:e1:29:4e:f1:15:4b:d5:0a:c1:4a:52:3e:61: c5:0c:d3:85:81:87:90:78:8e:c8:3f:d2:61:93:3f:dc:5b:7e: ca:93:94:b8:79:71:40:30:be:f7:ef:0c:24:98:d8:3b:18:f2: 86:a4:37:dc:5d:d9:d5:3a:91:9a:3c:7a:25:ce:dd:d5:b3:5f: f4:7c:ca:7d:be:39:61:b2:c9:51:7b:a7:8a:db:e0:d7:5c:00: d9:c8:5c:65:a8:3c:81:e3:e5:a7:b0:dc:32:51:9e:ab:e9:bc: cc:40:62:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFJlI9eYotVM9hTrlgsJcn9AdAYowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDEwWhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWQ3N2UwZTNkYWIzMzJlYjU2ZjNhYjJkNDEyMGNkNzQ2 NjA0OGNlOTY1YmU0MTlkZGZiMTQxNTdiY2RhYjI5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxp38wf72n48fz1hkMOD/sz7qY60f9lJVZsKWktGsHRBFw 15N/sYrTY9ooDvOV02QitTHUBezUzqvNWCe7A/8JwnpS/hS93FjSwcSEMktOIqcw vILvdyI691nWy7NHMmkvr9TeMmWCyxFBEnoAheu8jJvVeWS83tw5ehnd6s+nah1+ QEuuf2ZWBNJo6hCA+eOFuaJ4U/R7xZvtGDskc6bTIFMZRT6YGPhjcUcqJxfqFV+J 0AO1nMmTMCJuaoJ2ScO2EMbsi7tzHGE7akzzvEh8gq0kNFFmpLM9nKrtFvyDcCXZ 0ZiY3tvfQK3mK7KmpJSaKEXIkvKmEVh2wVPiiamXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvO0PrUt9dWzg+Cut5U/L9zKgngMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU1NjllOTExLTMxODgtNDI3ZC04M2EwLTBlOGE0NWIzMzVkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37cwDQYJKoZIhvcNAQELBQADggEBAAIDyMFT0jyw2W+zC11QBzHiN1Qg p2dsQW0kc8WjzSVNxQ8pzS5xToBQVgvV6U9AelQCbY+L6QleozhGFl9qNdOUki0W JtrIBEDKbzLU+Q/oTzLmSqrTk4Plokyxz86z24f3BK46fGf+JMFrPepLnoc2ZGJ0 +k/Spq3wQt6kdG4JQr86wBWgE+StnR9ITWKHVbO1L80d4SlO8RVL1QrBSlI+YcUM 04WBh5B4jsg/0mGTP9xbfsqTlLh5cUAwvvfvDCSY2DsY8oakN9xd2dU6kZo8eiXO 3dWzX/R8yn2+OWGyyVF7p4rb4NdcANnIXGWoPIHj5aew3DJRnqvpvMxAYtQ= -----END CERTIFICATE-----Generated at Mon Oct 20 13:06:54 2025 by rpki-client