$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa File: 854367ff-45b7-4925-99a1-97b01f4fabe8.roa (raw, json) Hash identifier: GHnV9I7fkUFNlU5aKDSgfODOv+f37O4ZOUCEKjoujo0= Subject key identifier: EB:43:06:AA:21:C1:79:EB:A0:A7:7B:30:C5:2E:3A:E9:3C:B8:4B:53 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6E5D8D832C3133280348E8613081C2DF76E0F56B Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa Signing time: Wed 13 Aug 2025 00:00:09 +0000 ROA not before: Wed 13 Aug 2025 00:00:09 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:5d:8d:83:2c:31:33:28:03:48:e8:61:30:81:c2:df:76:e0:f5:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 13 00:00:09 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=47f907933069c971e9db756c29606a8959e88042dbc23fa6f728dc04f985bd9b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c9:2d:ba:db:e0:5d:83:d1:7b:55:14:d8:a0: ed:34:b8:3f:f2:71:68:3b:44:24:ad:2f:b3:ee:fe: 6e:c4:d9:53:7b:0c:f9:a2:56:45:64:b3:e4:bf:97: 51:79:3b:87:f5:ad:3f:e7:f1:e2:f1:4c:e5:0f:a2: 5e:6b:1a:4d:ee:6c:27:64:bd:6a:b7:50:f6:48:79: b5:ba:7e:c0:d8:e9:fa:85:0c:50:a2:43:62:be:77: f9:89:9d:61:b4:d8:5a:45:96:70:fe:c2:9d:98:0c: 07:cb:17:fc:f3:0a:e3:19:92:43:30:1e:53:c1:64: 2c:82:d6:c8:23:05:2a:cf:d0:d0:14:e4:cb:4b:a3: 62:f9:ae:46:0c:dc:5a:e4:17:9d:f2:7c:54:36:64: f9:7f:7e:71:a8:6a:e9:34:c9:83:c3:8e:bb:7f:53: 10:99:69:01:0a:99:29:80:54:f4:51:1f:4e:8e:38: 9a:d9:9f:fc:24:65:e8:1b:33:8f:7c:25:7a:e7:45: 21:e2:f1:21:5d:ec:44:3e:30:22:96:36:c8:40:4a: df:a3:80:4e:7a:d1:42:c1:51:70:9b:e9:d8:a5:7f: 37:86:05:45:90:a1:ed:68:83:56:dd:3a:f9:d3:aa: c5:df:30:14:74:8e:52:63:79:74:7a:41:39:c9:91: ab:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:43:06:AA:21:C1:79:EB:A0:A7:7B:30:C5:2E:3A:E9:3C:B8:4B:53 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:d0:22:74:76:21:eb:ab:02:4d:1c:67:b4:8c:ef:5c:81:9f: a1:d5:1b:df:1a:7a:ed:ff:fc:44:c6:b5:11:7a:58:d6:50:20: 6b:c4:93:01:00:ee:46:c5:4f:92:68:b1:87:43:05:10:94:c1: 2b:e7:4e:d0:08:dc:03:b6:42:f5:47:77:23:5c:0d:24:a3:fb: a3:78:88:fc:b5:ff:ec:30:34:9e:1d:cc:e0:25:c8:65:e7:37: 58:d1:97:6f:35:71:3b:a9:75:b3:30:b8:9c:61:cb:18:d7:44: ec:de:6f:30:b3:e1:32:f8:63:b6:a4:66:5c:ec:46:93:2f:3b: 97:84:ac:ff:60:ee:b2:9a:4f:a7:09:82:28:41:2f:58:e0:9c: 5c:5a:0e:92:1f:b4:90:a8:36:2c:9d:34:81:16:3c:98:af:d5: 9d:bc:ad:90:d4:2e:81:b1:af:db:31:39:00:02:60:f7:82:85: 68:f7:48:2b:2d:c0:dc:71:03:d0:e7:32:2d:3d:53:db:53:47: b2:b2:29:67:37:8c:6c:af:0c:85:54:cf:48:65:9a:27:b7:dd: de:64:08:97:b9:8b:20:46:68:52:57:84:a6:a2:71:70:1d:56: 80:62:89:6c:03:b2:6c:c4:d6:20:03:ce:3b:ac:6a:03:18:1c: 74:b6:a2:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbl2NgywxMygDSOhhMIHC33bg9WswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODEzMDAwMDA5WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2Y5MDc5MzMwNjljOTcxZTlkYjc1NmMyOTYwNmE4OTU5 ZTg4MDQyZGJjMjNmYTZmNzI4ZGMwNGY5ODViZDliMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzyS262+Bdg9F7VRTYoO00uD/ycWg7RCStL7Pu/m7E2VN7 DPmiVkVks+S/l1F5O4f1rT/n8eLxTOUPol5rGk3ubCdkvWq3UPZIebW6fsDY6fqF DFCiQ2K+d/mJnWG02FpFlnD+wp2YDAfLF/zzCuMZkkMwHlPBZCyC1sgjBSrP0NAU 5MtLo2L5rkYM3FrkF53yfFQ2ZPl/fnGoauk0yYPDjrt/UxCZaQEKmSmAVPRRH06O OJrZn/wkZegbM498JXrnRSHi8SFd7EQ+MCKWNshASt+jgE560ULBUXCb6dilfzeG BUWQoe1og1bdOvnTqsXfMBR0jlJjeXR6QTnJkavTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU60MGqiHBeeugp3swxS466Ty4S1MwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg1NDM2N2ZmLTQ1YjctNDkyNS05OWExLTk3YjAxZjRmYWJlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAC7QInR2IeurAk0cZ7SM71yBn6HV G98aeu3//ETGtRF6WNZQIGvEkwEA7kbFT5JosYdDBRCUwSvnTtAI3AO2QvVHdyNc DSSj+6N4iPy1/+wwNJ4dzOAlyGXnN1jRl281cTupdbMwuJxhyxjXROzebzCz4TL4 Y7akZlzsRpMvO5eErP9g7rKaT6cJgihBL1jgnFxaDpIftJCoNiydNIEWPJiv1Z28 rZDULoGxr9sxOQACYPeChWj3SCstwNxxA9DnMi09U9tTR7KyKWc3jGyvDIVUz0hl mie33d5kCJe5iyBGaFJXhKaicXAdVoBiiWwDsmzE1iADzjusagMYHHS2onc= -----END CERTIFICATE-----Generated at Sat Aug 23 14:08:33 2025 by rpki-client