$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa File: 69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa (raw, json) Hash identifier: cC8IWNHLu1BYRAEey8zjbzPMiyukLbEQeQGYZznHZsk= Subject key identifier: EE:0B:49:9A:EA:1F:F0:16:BC:44:BE:04:E2:52:B6:2A:7D:30:A6:2F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 56F8FAC8F9D89126B610507D5997828CF1323664 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa Signing time: Mon 21 Jul 2025 15:20:15 +0000 ROA not before: Mon 21 Jul 2025 15:20:15 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f8:fa:c8:f9:d8:91:26:b6:10:50:7d:59:97:82:8c:f1:32:36:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:20:15 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=2a220746d190f45f71ca4bebabec2e500c2b042d275e858ffceae3012e65530b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e9:7a:04:08:a4:88:f5:a4:37:0e:76:49:2f: 21:da:04:08:9f:10:28:e7:01:a9:71:e8:18:67:9f: a1:05:1d:55:37:58:7b:eb:54:cf:17:a8:6f:22:0c: b6:b6:94:88:96:22:e5:24:04:f1:37:54:c5:22:cf: 96:69:8f:9e:4b:90:d0:fe:8b:c6:8d:84:51:96:2b: 9f:5a:39:fb:9e:83:3a:d3:30:cf:1c:d4:d2:e5:2f: 37:2e:06:d7:21:c5:c1:58:5a:c7:4e:3e:4d:3e:ae: 56:32:42:15:29:74:b7:43:8d:be:ee:8c:c4:02:82: 84:57:64:a5:61:18:ae:fa:c9:3b:97:f9:b8:d9:9d: 0e:72:c6:16:ee:7d:64:47:c3:a7:c1:ec:13:fa:0a: 72:0d:62:0f:61:c3:58:d3:ec:0f:bf:8c:9e:a8:8d: 68:62:1a:38:b0:27:d6:8f:4c:f3:1a:05:57:62:c1: 41:88:c9:ea:6f:f8:86:2a:fd:ae:d8:41:c4:5b:35: df:cf:40:1f:ab:92:6b:30:c3:c8:32:d6:e0:d9:be: b9:ab:c6:ad:3e:e4:98:94:ff:97:7a:6e:e7:6a:a1: e3:07:2a:19:c2:f2:1c:b0:2b:6c:e9:f5:5f:53:d9: a9:ad:64:1f:85:51:59:9d:18:ff:6d:bd:9b:0a:4e: 56:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:0B:49:9A:EA:1F:F0:16:BC:44:BE:04:E2:52:B6:2A:7D:30:A6:2F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.176.0/24 Signature Algorithm: sha256WithRSAEncryption 93:ad:72:b7:c6:d7:10:91:0c:a3:48:1f:16:02:7d:3c:44:c4: db:78:81:ce:1e:9a:84:6f:40:29:43:da:d8:0b:18:74:e0:aa: 42:16:33:cc:28:60:78:91:37:49:c3:f7:9f:07:15:82:3e:ac: 34:da:20:5a:72:7c:c0:cf:4c:e9:a5:35:fb:dc:43:be:00:b8: 3f:47:71:0f:a5:cc:4f:ab:0f:7b:c8:ff:3b:9b:3e:64:7f:51: 3d:83:29:fb:15:b6:12:cf:5d:1c:36:b3:4b:99:d5:30:bc:33: ea:22:28:f0:40:12:0e:31:59:92:7f:76:f2:6c:8e:a8:7f:4a: 48:84:6a:c2:f1:5d:e9:b4:34:c6:31:ca:39:66:b8:ec:21:91: 5a:6c:84:12:0a:75:95:e1:22:1a:a3:15:b1:10:8e:8e:4a:5b: d4:46:37:51:65:66:49:9b:d8:0a:4b:ff:91:56:c0:32:96:a3: cc:03:92:b2:a0:8c:bd:12:06:4f:33:9e:ce:c6:2c:1e:00:0c: 4a:c5:e1:9b:53:7b:e8:55:61:c2:f7:1a:6f:f4:cf:d3:d4:73: 1a:c6:41:c8:8a:c5:1d:92:bc:c0:ca:7c:71:7f:66:8a:b7:a0: 05:b6:b2:17:99:66:17:03:7e:a4:a9:19:74:eb:04:37:0c:d0: 98:3b:1a:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVvj6yPnYkSa2EFB9WZeCjPEyNmQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMDE1WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTIyMDc0NmQxOTBmNDVmNzFjYTRiZWJhYmVjMmU1MDBj MmIwNDJkMjc1ZTg1OGZmY2VhZTMwMTJlNjU1MzBiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT6XoECKSI9aQ3DnZJLyHaBAifECjnAalx6Bhnn6EFHVU3 WHvrVM8XqG8iDLa2lIiWIuUkBPE3VMUiz5Zpj55LkND+i8aNhFGWK59aOfuegzrT MM8c1NLlLzcuBtchxcFYWsdOPk0+rlYyQhUpdLdDjb7ujMQCgoRXZKVhGK76yTuX +bjZnQ5yxhbufWRHw6fB7BP6CnINYg9hw1jT7A+/jJ6ojWhiGjiwJ9aPTPMaBVdi wUGIyepv+IYq/a7YQcRbNd/PQB+rkmsww8gy1uDZvrmrxq0+5JiU/5d6budqoeMH KhnC8hywK2zp9V9T2amtZB+FUVmdGP9tvZsKTlYDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7gtJmuof8Ba8RL4E4lK2Kn0wpi8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzY5ODA4OTY4LWU1MWEtNGIyYi04ZjRiLTBhZGQ3YTRkZGE1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37AwDQYJKoZIhvcNAQELBQADggEBAJOtcrfG1xCRDKNIHxYCfTxExNt4 gc4emoRvQClD2tgLGHTgqkIWM8woYHiRN0nD958HFYI+rDTaIFpyfMDPTOmlNfvc Q74AuD9HcQ+lzE+rD3vI/zubPmR/UT2DKfsVthLPXRw2s0uZ1TC8M+oiKPBAEg4x WZJ/dvJsjqh/SkiEasLxXem0NMYxyjlmuOwhkVpshBIKdZXhIhqjFbEQjo5KW9RG N1FlZkmb2ApL/5FWwDKWo8wDkrKgjL0SBk8zns7GLB4ADErF4ZtTe+hVYcL3Gm/0 z9PUcxrGQciKxR2SvMDKfHF/Zoq3oAW2sheZZhcDfqSpGXTrBDcM0Jg7GgA= -----END CERTIFICATE-----Generated at Tue Aug 5 16:47:35 2025 by rpki-client