$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/10196782-1a70-44e1-b387-1f5ab43817e8.roa File: 10196782-1a70-44e1-b387-1f5ab43817e8.roa (raw, json) Hash identifier: HVIYK7bfCMcjdtRzQkM5rgF27tlGMEhFIGat5hu9uf8= Subject key identifier: 6B:C4:78:17:1A:5F:E8:C8:F7:3D:7E:97:88:E0:A4:E2:E2:7F:74:60 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6D377B821061EC2E81DB9D2891E164E3FB445473 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/10196782-1a70-44e1-b387-1f5ab43817e8.roa Signing time: Mon 03 Nov 2025 00:00:02 +0000 ROA not before: Mon 03 Nov 2025 00:00:02 +0000 ROA not after: Mon 08 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.77.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:37:7b:82:10:61:ec:2e:81:db:9d:28:91:e1:64:e3:fb:44:54:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 3 00:00:02 2025 GMT Not After : Dec 8 23:59:59 2025 GMT Subject: serialNumber=91201cacd80f34b79d77c634970523e2f9ed87cb2c76610dc5e76e50aecbd55b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:da:83:d3:6e:02:2f:57:b7:b7:97:5c:29:61: 7f:4b:46:5e:7c:0e:0a:26:a7:20:51:96:db:5f:01: 39:6a:d8:39:5d:0d:01:7a:26:ab:4b:0c:0b:7c:d1: 94:5e:ea:ae:6d:04:5a:bd:ef:28:85:46:8b:76:58: 81:69:f7:e1:a7:98:7d:de:ce:d7:c4:11:f6:18:fb: 59:eb:2e:62:0c:af:76:00:74:a9:97:4a:16:e9:e2: 7f:10:6d:21:cb:b4:0b:66:8a:0c:c9:c2:40:3c:6f: 50:13:42:89:d5:de:05:39:f3:0a:65:4b:8d:de:86: a9:d2:2a:23:14:82:08:b1:52:ce:0e:35:37:29:2b: 34:24:f7:ec:2d:c5:6c:06:21:fd:20:06:c2:19:45: ee:30:62:2d:5b:03:60:8a:4d:26:a0:42:d8:20:97: c9:2e:2d:1c:ed:28:3d:33:aa:c4:3b:7c:61:b0:fd: 44:f4:c2:5f:47:50:2e:f0:53:ef:cc:2b:42:2d:94: 57:20:11:15:0d:e6:b4:f4:b1:83:6a:6c:33:05:2a: 1f:74:be:bc:a7:a3:63:47:27:a5:98:b6:ca:38:54: 82:5f:d5:b9:8a:2b:09:ae:70:5c:63:3e:01:88:38: 0c:4b:2f:33:5b:9d:dc:a4:63:9f:f4:cc:22:43:ac: 65:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C4:78:17:1A:5F:E8:C8:F7:3D:7E:97:88:E0:A4:E2:E2:7F:74:60 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/10196782-1a70-44e1-b387-1f5ab43817e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.77.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7b:53:b5:1d:5f:ea:8a:02:f7:22:3f:4e:e7:e4:2d:89:46:01: a0:89:96:a8:fb:ba:cd:ba:d8:e0:58:5b:57:5b:bf:51:f4:1d: 77:9a:1f:61:fa:4a:51:30:4b:27:f0:4d:f3:f7:67:3e:2b:ed: 2b:58:91:dd:0b:b8:59:6d:18:33:28:bd:d0:97:ce:f7:e0:61: 4d:11:2c:79:03:ca:2a:1b:3b:de:a6:e1:c9:dd:94:8a:94:a5: 15:80:98:50:3f:0f:67:cc:db:ca:09:7c:bf:7c:4a:b6:db:ed: 19:5f:c5:36:45:7f:11:fa:63:c7:cc:55:55:02:9b:9c:1f:77: 98:82:0f:fc:f0:34:cb:bc:a3:61:d4:2f:dd:d6:e3:97:9d:c2: 20:1a:d8:0a:79:2c:2b:f1:a3:c2:57:f2:e8:f1:91:b5:7f:af: 8e:5c:1c:ce:1f:14:ea:00:a2:98:8c:89:c8:20:31:4a:d3:09: 29:12:d2:62:c1:f8:9a:7c:4f:a6:88:c9:b0:4c:28:92:db:1b: b7:be:52:3a:5a:70:2a:ca:2c:d6:88:45:16:12:03:cf:01:21: 13:08:0e:08:f2:68:56:c8:7d:bd:e0:8c:46:60:0f:73:43:b3: a8:82:fc:b2:20:38:e9:0c:c2:42:da:9a:99:06:3a:09:81:67: d7:d1:68:7c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbTd7ghBh7C6B250okeFk4/tEVHMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMTAzMDAwMDAyWhcNMjUxMjA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTIwMWNhY2Q4MGYzNGI3OWQ3N2M2MzQ5NzA1MjNlMmY5 ZWQ4N2NiMmM3NjYxMGRjNWU3NmU1MGFlY2JkNTViMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC32oPTbgIvV7e3l1wpYX9LRl58DgompyBRlttfATlq2Dld DQF6JqtLDAt80ZRe6q5tBFq97yiFRot2WIFp9+GnmH3eztfEEfYY+1nrLmIMr3YA dKmXShbp4n8QbSHLtAtmigzJwkA8b1ATQonV3gU58wplS43ehqnSKiMUggixUs4O NTcpKzQk9+wtxWwGIf0gBsIZRe4wYi1bA2CKTSagQtggl8kuLRztKD0zqsQ7fGGw /UT0wl9HUC7wU+/MK0ItlFcgERUN5rT0sYNqbDMFKh90vryno2NHJ6WYtso4VIJf 1bmKKwmucFxjPgGIOAxLLzNbndykY5/0zCJDrGX9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUa8R4Fxpf6Mj3PX6XiOCk4uJ/dGAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzEwMTk2NzgyLTFhNzAtNDRlMS1iMzg3LTFmNWFiNDM4MTdlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBiTTANBgkqhkiG9w0BAQsFAAOCAQEAe1O1HV/qigL3Ij9O5+QtiUYBoImW qPu6zbrY4FhbV1u/UfQdd5ofYfpKUTBLJ/BN8/dnPivtK1iR3Qu4WW0YMyi90JfO 9+BhTREseQPKKhs73qbhyd2UipSlFYCYUD8PZ8zbygl8v3xKttvtGV/FNkV/Efpj x8xVVQKbnB93mIIP/PA0y7yjYdQv3dbjl53CIBrYCnksK/Gjwlfy6PGRtX+vjlwc zh8U6gCimIyJyCAxStMJKRLSYsH4mnxPpojJsEwoktsbt75SOlpwKsos1ohFFhID zwEhEwgOCPJoVsh9veCMRmAPc0OzqIL8siA46QzCQtqamQY6CYFn19FofA== -----END CERTIFICATE-----Generated at Wed Nov 5 16:56:41 2025 by rpki-client