$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa File: e41ada77-fa4f-4da3-a532-14382438f575.roa (raw, json) Hash identifier: c8tLfhcrVy67qVj2bJrp5Wju0gdDpYLVwhLsbYMOpBw= Subject key identifier: 30:D2:34:7F:61:CC:01:C4:66:82:C1:B0:97:AD:43:F8:F3:14:DF:DB Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 17F52342DC190A6994168A6FA917AECDCA414DF3 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa Signing time: Fri 15 Aug 2025 00:21:34 +0000 ROA not before: Fri 15 Aug 2025 00:21:34 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 76.223.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:f5:23:42:dc:19:0a:69:94:16:8a:6f:a9:17:ae:cd:ca:41:4d:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 15 00:21:34 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=5d8142b0770264bd31f609450f5aa4f067545a5e5a70bd18332e190665874d7f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c4:0c:c9:d6:5a:22:d1:0b:c5:62:21:9f:34: d6:6a:ab:93:bc:ed:da:51:0f:86:49:8f:01:2e:d5: 55:da:05:d1:02:72:5d:ea:11:89:e4:c0:a5:7f:ae: c4:e8:5d:c0:f0:fd:55:53:dc:37:d0:e4:b0:35:57: f3:9c:ad:71:ba:6b:1a:e1:64:c9:a1:20:66:5d:37: a1:de:64:39:50:a9:bd:c5:27:dd:66:50:f2:bb:d8: d0:2e:76:55:93:77:50:82:94:3b:76:4e:b0:68:e0: f3:77:ce:11:db:57:e5:0b:d9:a9:f4:5c:13:dc:e5: c0:54:b5:00:c1:09:00:30:c3:f9:fc:b7:d4:c7:00: 3a:77:76:4b:ef:ac:b6:6e:b0:da:54:30:d8:13:4b: bc:49:bd:4f:94:51:c2:e7:23:e8:46:19:ac:90:a1: b8:d9:1c:eb:4d:48:96:05:b1:98:e8:98:d0:09:1f: 81:3b:f0:a1:7d:94:91:3b:0d:81:58:87:7a:52:ed: 30:af:e1:b1:a1:70:c4:04:16:96:e0:76:94:41:4c: ed:a8:87:25:1c:a9:ed:1b:34:fe:3a:32:9e:2f:8c: f4:37:2e:0b:2d:a7:2d:c0:b9:03:11:e7:b6:01:ed: 09:53:5a:9a:5d:71:a7:4a:1b:f7:56:69:0c:36:cf: 33:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D2:34:7F:61:CC:01:C4:66:82:C1:B0:97:AD:43:F8:F3:14:DF:DB X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.191.0/24 Signature Algorithm: sha256WithRSAEncryption 91:c1:db:81:7b:bb:1c:f0:58:42:d9:c8:15:1d:b1:54:86:96: 62:2d:f8:73:3b:d1:47:b0:b8:28:56:44:00:59:26:c2:05:6d: ed:65:70:a1:6a:99:b2:46:15:d8:5e:f8:de:0b:0a:37:bf:55: 3f:f0:35:92:d1:e6:4b:c0:b5:ee:54:5a:93:1f:cc:4f:73:ed: ea:63:f2:bf:cb:a9:32:ab:95:d6:5d:d1:86:1d:5f:3b:bd:6c: 9d:cf:74:55:71:b9:88:8c:df:14:8a:9b:dd:16:ac:3d:3c:c6: 65:86:56:11:5c:4f:61:24:28:ea:74:4d:e8:2c:b5:5f:e9:47: 1c:71:34:9e:73:42:bb:c6:d4:b0:a6:0a:e4:b6:6f:90:a4:f6: 20:bc:fd:f6:ad:4b:dd:8b:c1:bd:cb:f1:c9:3b:e9:83:e6:c0: 2d:1f:c6:b8:aa:b5:17:a2:69:f6:2e:01:40:7b:b9:94:7f:8f: 4a:82:a6:87:96:c2:21:12:a0:4e:f5:45:13:f5:8e:b2:51:da: 3a:ca:bb:2d:5b:96:9d:21:db:4b:06:f8:b2:d2:dd:88:48:51: d8:eb:4b:ff:fd:8d:e9:5f:17:60:48:2c:01:b4:b4:3c:8c:18: 47:9a:23:5e:62:16:35:f4:59:93:d9:c5:56:c1:de:a6:d7:45: 18:ad:d5:17 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF/UjQtwZCmmUFopvqReuzcpBTfMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODE1MDAyMTM0WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDgxNDJiMDc3MDI2NGJkMzFmNjA5NDUwZjVhYTRmMDY3 NTQ1YTVlNWE3MGJkMTgzMzJlMTkwNjY1ODc0ZDdmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgxAzJ1loi0QvFYiGfNNZqq5O87dpRD4ZJjwEu1VXaBdEC cl3qEYnkwKV/rsToXcDw/VVT3DfQ5LA1V/OcrXG6axrhZMmhIGZdN6HeZDlQqb3F J91mUPK72NAudlWTd1CClDt2TrBo4PN3zhHbV+UL2an0XBPc5cBUtQDBCQAww/n8 t9THADp3dkvvrLZusNpUMNgTS7xJvU+UUcLnI+hGGayQobjZHOtNSJYFsZjomNAJ H4E78KF9lJE7DYFYh3pS7TCv4bGhcMQEFpbgdpRBTO2ohyUcqe0bNP46Mp4vjPQ3 Lgstpy3AuQMR57YB7QlTWppdcadKG/dWaQw2zzNVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMNI0f2HMAcRmgsGwl61D+PMU39swHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2U0MWFkYTc3LWZhNGYtNGRhMy1hNTMyLTE0MzgyNDM4ZjU3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM378wDQYJKoZIhvcNAQELBQADggEBAJHB24F7uxzwWELZyBUdsVSGlmIt +HM70UewuChWRABZJsIFbe1lcKFqmbJGFdhe+N4LCje/VT/wNZLR5kvAte5UWpMf zE9z7epj8r/LqTKrldZd0YYdXzu9bJ3PdFVxuYiM3xSKm90WrD08xmWGVhFcT2Ek KOp0TegstV/pRxxxNJ5zQrvG1LCmCuS2b5Ck9iC8/fatS92Lwb3L8ck76YPmwC0f xriqtReiafYuAUB7uZR/j0qCpoeWwiESoE71RRP1jrJR2jrKuy1blp0h20sG+LLS 3YhIUdjrS//9jelfF2BILAG0tDyMGEeaI15iFjX0WZPZxVbB3qbXRRit1Rc= -----END CERTIFICATE-----Generated at Sat Aug 23 06:47:11 2025 by rpki-client