$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d5bcdba4-b39f-49d7-81da-145442d6f180.roa File: d5bcdba4-b39f-49d7-81da-145442d6f180.roa (raw, json) Hash identifier: XhP8m0mzWctVPBKSCdCWdp9SxiL+Bbwgl4ylGaCBP40= Subject key identifier: 0F:A7:5E:9C:FB:55:AB:9B:4E:CC:F3:4C:E2:6C:3B:C9:1E:0D:91:3A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 373B485E04EFA44918CCCEAFC8A1324EF80F2394 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d5bcdba4-b39f-49d7-81da-145442d6f180.roa Signing time: Fri 15 Aug 2025 00:21:37 +0000 ROA not before: Fri 15 Aug 2025 00:21:37 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:3b:48:5e:04:ef:a4:49:18:cc:ce:af:c8:a1:32:4e:f8:0f:23:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:21:37 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=7322bd3e47cd609bc81c67c3a5ff69108eac84bbda298300fb3d25571aea5e60, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4e:ed:8c:e2:66:bd:ce:e4:2e:f7:e9:b7:a7: 20:8c:5f:99:e9:8e:e2:75:2a:25:0b:1a:4d:95:36: 4b:14:31:86:4b:04:32:b1:67:e6:b2:3b:7e:68:45: db:a7:1a:4b:ed:d4:a0:e4:25:2a:b8:26:56:d2:33: 8c:68:7c:f1:70:5b:80:65:1d:29:7e:d7:66:46:4b: 30:52:9a:5c:88:c8:82:c3:9f:23:d1:fe:f9:8d:fb: 68:fa:ca:c8:5d:2a:b0:5d:d6:5e:d9:3a:0c:89:00: 25:aa:24:fd:b5:2c:df:db:13:af:b3:de:29:9f:6e: f3:5e:c1:2f:c4:cc:40:08:08:86:56:fb:49:81:e4: 53:9a:fa:7e:3f:ca:f2:5a:e7:9b:d9:1a:15:f4:af: da:b3:35:90:8c:b7:8d:c3:ba:91:6d:22:4c:9e:71: 2a:d5:c7:2f:1f:08:18:4c:2f:67:18:d3:23:fd:c2: 9b:b3:92:0d:49:a0:a7:69:6f:3e:da:e4:17:6d:1c: 25:5b:0a:c3:b0:a3:9a:e6:bf:bc:21:00:55:08:40: a2:6a:b3:a5:63:78:4c:62:d9:c0:c9:49:f3:a4:ee: 25:63:49:e2:46:61:bd:d6:6e:e2:44:51:96:9d:f0: c2:b5:41:db:7b:ec:58:7e:8d:9b:52:6a:32:0a:7c: 8e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:A7:5E:9C:FB:55:AB:9B:4E:CC:F3:4C:E2:6C:3B:C9:1E:0D:91:3A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d5bcdba4-b39f-49d7-81da-145442d6f180.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.177.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:48:9d:43:7d:0c:02:a4:b1:61:e1:c3:c5:65:5d:aa:bc:63: de:6f:1a:59:58:16:04:8e:11:31:82:77:c3:79:c7:85:a3:1d: 93:8b:4f:6b:b4:3d:c7:59:84:47:d3:e0:12:18:f0:e0:ed:93: 02:06:5a:be:44:32:b5:d7:e0:f2:c6:f2:c4:3e:a6:f9:16:8e: 55:de:db:6e:dc:92:fe:d4:16:bb:7d:76:5a:fc:de:c2:f0:88: 42:9a:5c:eb:26:3a:16:c4:f5:cb:46:e7:64:a4:66:dd:92:3c: 78:98:b4:e9:2f:b7:22:99:25:1d:03:85:ae:20:1d:4a:2e:28: 71:59:29:a5:33:3f:74:73:f1:be:05:67:6d:62:09:67:81:f6: 74:07:47:74:74:04:a1:17:83:24:b8:9f:10:78:63:da:93:ab: b3:27:98:a4:75:1b:75:4f:7e:6d:6e:e3:67:bc:1f:d9:e2:1c: a6:49:ab:56:c3:d8:0b:c0:55:f9:c6:e5:e3:bf:e9:02:45:22: a1:94:d1:78:30:28:1e:b8:7b:08:c6:92:5c:a9:3c:89:13:6d: 84:7d:50:38:0c:3d:b8:6e:b2:73:03:be:b0:c9:8e:15:9b:8c: 1e:0c:a4:7c:ef:ce:9e:1a:29:81:0e:e5:59:13:1a:5c:51:f8: 04:c9:d3:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNztIXgTvpEkYzM6vyKEyTvgPI5QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMTM3WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzIyYmQzZTQ3Y2Q2MDliYzgxYzY3YzNhNWZmNjkxMDhl YWM4NGJiZGEyOTgzMDBmYjNkMjU1NzFhZWE1ZTYwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTTu2M4ma9zuQu9+m3pyCMX5npjuJ1KiULGk2VNksUMYZL BDKxZ+ayO35oRdunGkvt1KDkJSq4JlbSM4xofPFwW4BlHSl+12ZGSzBSmlyIyILD nyPR/vmN+2j6yshdKrBd1l7ZOgyJACWqJP21LN/bE6+z3imfbvNewS/EzEAICIZW +0mB5FOa+n4/yvJa55vZGhX0r9qzNZCMt43DupFtIkyecSrVxy8fCBhML2cY0yP9 wpuzkg1JoKdpbz7a5BdtHCVbCsOwo5rmv7whAFUIQKJqs6VjeExi2cDJSfOk7iVj SeJGYb3WbuJEUZad8MK1Qdt77Fh+jZtSajIKfI6bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUD6denPtVq5tOzPNM4mw7yR4NkTowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Q1YmNkYmE0LWIzOWYtNDlkNy04MWRhLTE0NTQ0MmQ2ZjE4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37EwDQYJKoZIhvcNAQELBQADggEBAE5InUN9DAKksWHhw8VlXaq8Y95v GllYFgSOETGCd8N5x4WjHZOLT2u0PcdZhEfT4BIY8ODtkwIGWr5EMrXX4PLG8sQ+ pvkWjlXe227ckv7UFrt9dlr83sLwiEKaXOsmOhbE9ctG52SkZt2SPHiYtOkvtyKZ JR0Dha4gHUouKHFZKaUzP3Rz8b4FZ21iCWeB9nQHR3R0BKEXgyS4nxB4Y9qTq7Mn mKR1G3VPfm1u42e8H9niHKZJq1bD2AvAVfnG5eO/6QJFIqGU0XgwKB64ewjGklyp PIkTbYR9UDgMPbhusnMDvrDJjhWbjB4MpHzvzp4aKYEO5VkTGlxR+ATJ08E= -----END CERTIFICATE-----Generated at Sat Aug 23 12:14:32 2025 by rpki-client