$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa File: 93d7471b-56b1-4f53-982e-a84765e52ef3.roa (raw, json) Hash identifier: RiDid8OBkBqyXKedrHOQ5/+Mbp/sfmC3cneIKlY9POw= Subject key identifier: B9:C3:6A:5A:A6:0D:D4:71:A3:2B:1D:B8:D1:B8:14:10:96:9D:35:A6 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 70DCABE0AF6829E8B28EF9AF636712E0C87FD078 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa Signing time: Mon 21 Jul 2025 15:20:08 +0000 ROA not before: Mon 21 Jul 2025 15:20:08 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:dc:ab:e0:af:68:29:e8:b2:8e:f9:af:63:67:12:e0:c8:7f:d0:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Jul 21 15:20:08 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=ddca90e3b94e4f8c00483517240b4664ea889ced66c36c4293c7f58c168a573e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0f:42:8c:c1:96:d3:81:0a:a7:d2:0b:f1:0e: 91:3f:31:cb:33:b0:6d:20:67:ae:02:f3:c1:7c:f6: e1:65:89:36:f7:6e:6d:28:9a:c4:4b:7a:6a:4c:61: de:72:d5:6b:6e:d3:26:ef:6f:b6:32:d3:2c:ce:c7: 50:ed:f9:b0:50:aa:ba:8a:28:91:00:7a:27:44:33: 8e:8d:9a:ca:7f:33:0b:2c:c1:a6:ed:1c:30:ff:8a: 6b:df:61:f7:0b:69:fc:1c:e1:7e:43:e8:cf:4d:a3: 82:ef:df:b9:0e:ea:91:81:95:6c:53:79:7d:6a:32: 7b:23:a1:1c:44:ce:10:54:d7:99:67:aa:5b:36:81: c2:23:22:27:1b:32:f2:0a:cb:45:c9:82:27:ad:47: 85:f5:50:81:12:e6:ac:3a:2d:07:fb:c0:fd:91:41: c7:16:db:8a:40:18:27:a3:94:56:fb:88:07:b3:23: cc:49:7c:bf:99:08:c2:06:96:e4:24:3b:35:e5:71: 8b:27:76:b5:c9:dd:92:77:42:9a:ee:62:46:a5:05: eb:f7:c0:a1:e4:2d:94:2d:c8:82:d1:37:69:ac:3a: d6:f0:6d:21:a8:cc:8e:0b:a1:a1:b9:79:ba:19:b0: dd:c3:6d:ad:7b:e1:3a:b7:e1:37:64:ae:4a:9a:f2: 3c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C3:6A:5A:A6:0D:D4:71:A3:2B:1D:B8:D1:B8:14:10:96:9D:35:A6 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/93d7471b-56b1-4f53-982e-a84765e52ef3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.188.0/24 Signature Algorithm: sha256WithRSAEncryption 12:56:45:8d:1a:f9:23:45:6c:d8:81:71:48:21:28:35:81:d1: a0:e8:89:74:6b:00:6b:5d:01:28:aa:25:fc:47:dd:7a:1e:91: ae:63:71:88:4e:a7:2b:95:f8:5d:7b:00:04:d9:f7:1e:b5:ce: 79:2e:de:0b:c4:d0:75:21:88:97:e6:53:ef:87:c3:f4:98:37: c8:5d:81:83:d6:cf:07:67:71:80:8b:ae:68:c7:ce:5c:15:e4: 93:d8:1b:be:f9:b8:be:89:33:46:47:96:31:19:2f:bb:d0:aa: c3:de:83:5c:11:74:a1:eb:5a:72:ee:70:42:8d:ec:34:eb:6a: 5b:43:aa:cb:02:3e:77:5d:8f:de:ae:a4:b7:ed:8d:f7:bd:37: 00:7f:36:65:c8:6d:c1:c2:ac:0e:dc:98:c6:85:ad:07:26:8d: 27:17:e9:da:0d:20:e4:4f:57:5b:39:5c:02:12:d6:40:87:c1: 57:20:19:01:07:92:f4:b0:66:7c:f2:cd:b1:b9:5e:33:23:26: 64:c6:54:c9:9a:de:5e:5c:f4:f5:52:0d:dd:01:ac:8c:90:15: 70:95:c1:32:9e:64:b2:c5:ba:54:2e:bb:06:36:33:9b:e2:4a: df:78:17:b2:82:49:56:7b:0b:43:f2:94:5c:6e:e1:dc:58:3c: e5:d7:33:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcNyr4K9oKeiyjvmvY2cS4Mh/0HgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNzIxMTUyMDA4WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGNhOTBlM2I5NGU0ZjhjMDA0ODM1MTcyNDBiNDY2NGVh ODg5Y2VkNjZjMzZjNDI5M2M3ZjU4YzE2OGE1NzNlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrD0KMwZbTgQqn0gvxDpE/McszsG0gZ64C88F89uFliTb3 bm0omsRLempMYd5y1Wtu0ybvb7Yy0yzOx1Dt+bBQqrqKKJEAeidEM46Nmsp/Mwss wabtHDD/imvfYfcLafwc4X5D6M9No4Lv37kO6pGBlWxTeX1qMnsjoRxEzhBU15ln qls2gcIjIicbMvIKy0XJgietR4X1UIES5qw6LQf7wP2RQccW24pAGCejlFb7iAez I8xJfL+ZCMIGluQkOzXlcYsndrXJ3ZJ3QpruYkalBev3wKHkLZQtyILRN2msOtbw bSGozI4LoaG5eboZsN3Dba174Tq34Tdkrkqa8jz7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUucNqWqYN1HGjKx240bgUEJadNaYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzkzZDc0NzFiLTU2YjEtNGY1My05ODJlLWE4NDc2NWU1MmVmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37wwDQYJKoZIhvcNAQELBQADggEBABJWRY0a+SNFbNiBcUghKDWB0aDo iXRrAGtdASiqJfxH3Xoeka5jcYhOpyuV+F17AATZ9x61znku3gvE0HUhiJfmU++H w/SYN8hdgYPWzwdncYCLrmjHzlwV5JPYG775uL6JM0ZHljEZL7vQqsPeg1wRdKHr WnLucEKN7DTraltDqssCPnddj96upLftjfe9NwB/NmXIbcHCrA7cmMaFrQcmjScX 6doNIORPV1s5XAIS1kCHwVcgGQEHkvSwZnzyzbG5XjMjJmTGVMma3l5c9PVSDd0B rIyQFXCVwTKeZLLFulQuuwY2M5viSt94F7KCSVZ7C0PylFxu4dxYPOXXM/o= -----END CERTIFICATE-----Generated at Tue Aug 5 17:08:26 2025 by rpki-client