$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa File: b59643bf-eb80-414a-aca0-653646d46e07.roa (raw, json) Hash identifier: F252ckUbn1xfeE8wsFV/B6mMkYuDW7n3TKrQ6C0cLAY= Subject key identifier: D9:D6:C5:C7:46:A2:80:87:30:35:4C:A2:60:09:09:29:9E:B8:1B:CE Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: FF95E1A0F9342FC5F52FB2FF433231F3956266 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa Signing time: Mon 04 Aug 2025 15:10:03 +0000 ROA not before: Mon 04 Aug 2025 15:10:03 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.127.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: ff:95:e1:a0:f9:34:2f:c5:f5:2f:b2:ff:43:32:31:f3:95:62:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 4 15:10:03 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=f45293a547852a8ea31b98657ea15a801dd3b7b8e707c69f9c103d1410bb7dd1, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:40:78:cf:5a:e4:84:27:7f:0c:c2:f6:8c:0d: e3:62:e8:36:e7:8f:f2:de:6c:63:91:dd:31:54:57: d8:17:e6:1b:a5:3d:40:69:fa:5d:3c:6f:98:29:56: ce:dd:f2:72:02:75:72:f7:35:0d:26:d3:7c:c8:b8: 9e:88:a0:c2:cc:53:ff:e2:2a:78:19:d2:7a:cf:29: 46:bd:8b:f3:97:fc:a1:26:3a:f0:09:15:d7:0a:c4: a2:ce:68:7c:dd:e9:44:89:98:fe:3d:31:f1:e2:9d: c0:79:bf:30:3b:c2:d5:67:57:d4:94:31:fc:79:39: a6:c8:7b:60:e7:4c:89:c1:99:6a:e4:21:76:2c:b1: 15:f8:da:df:36:fb:6e:76:31:3d:d9:e3:10:97:8c: e2:57:1f:1b:fc:c0:a1:05:5d:45:e4:55:35:22:2a: 18:9f:89:27:82:c1:ba:8c:23:52:9c:4c:69:f7:99: ae:eb:32:d6:09:b8:07:95:0c:df:09:ed:d6:99:cc: 9b:9a:b4:56:c0:04:9f:dd:8d:92:cd:76:23:5b:cb: 71:a7:cc:4a:42:a8:47:00:c7:d1:bb:ab:30:7c:f5: 50:6d:8b:e2:52:12:6c:bc:a7:7f:cd:a0:10:5f:0b: 1d:90:20:c0:f7:78:49:09:74:6f:5a:e4:61:a5:90: ac:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D6:C5:C7:46:A2:80:87:30:35:4C:A2:60:09:09:29:9E:B8:1B:CE X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.127.232.0/22 Signature Algorithm: sha256WithRSAEncryption 23:73:8f:95:56:79:72:fa:26:40:5b:c3:7e:04:f9:db:af:24: 08:e2:36:c9:a2:21:d1:bd:81:33:81:2c:b1:b2:c6:9c:64:b1: 30:53:da:73:43:f2:67:e2:0e:61:77:a8:f5:bd:ab:d6:b5:37: ed:10:39:38:92:53:e6:66:13:59:cb:5d:4b:af:b4:a8:a7:0a: b5:9c:50:e4:66:89:9f:f1:cc:3c:10:c9:c4:7b:4d:46:14:1b: b0:c6:3d:7e:b2:7a:2c:29:de:40:6a:c8:25:83:2e:a7:a4:58: d3:fb:e4:62:8b:98:a2:35:a7:aa:d4:4d:77:23:13:ed:87:12: 44:99:7c:2f:31:09:57:42:a3:35:18:fd:a6:53:66:d1:3c:b9: be:6e:92:c2:5f:31:ea:8f:6b:a6:da:75:b5:08:a6:36:77:1e: 14:c5:bc:62:4b:bc:10:7b:d7:c2:67:07:be:6f:5e:23:c4:bb: 69:f7:ce:7c:a6:ce:4f:cd:5a:45:b4:13:9b:9c:a8:6e:a3:bb: f6:00:77:3c:67:3f:d3:b6:6d:80:9a:58:26:f6:3b:a5:01:a3: e6:f1:b2:9e:2c:bb:86:d4:27:5a:ba:7a:1b:27:7a:1d:cb:2c: 50:47:c1:59:56:82:55:5d:ae:d3:7b:46:ea:ed:32:48:15:e3: 8f:c5:ad:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAP+V4aD5NC/F9S+y/0MyMfOVYmYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODA0MTUxMDAzWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDUyOTNhNTQ3ODUyYThlYTMxYjk4NjU3ZWExNWE4MDFk ZDNiN2I4ZTcwN2M2OWY5YzEwM2QxNDEwYmI3ZGQxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClQHjPWuSEJ38MwvaMDeNi6Dbnj/LebGOR3TFUV9gX5hul PUBp+l08b5gpVs7d8nICdXL3NQ0m03zIuJ6IoMLMU//iKngZ0nrPKUa9i/OX/KEm OvAJFdcKxKLOaHzd6USJmP49MfHincB5vzA7wtVnV9SUMfx5OabIe2DnTInBmWrk IXYssRX42t82+252MT3Z4xCXjOJXHxv8wKEFXUXkVTUiKhifiSeCwbqMI1KcTGn3 ma7rMtYJuAeVDN8J7daZzJuatFbABJ/djZLNdiNby3GnzEpCqEcAx9G7qzB89VBt i+JSEmy8p3/NoBBfCx2QIMD3eEkJdG9a5GGlkKzLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2dbFx0aigIcwNUyiYAkJKZ64G84wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1OTY0M2JmLWViODAtNDE0YS1hY2EwLTY1MzY0NmQ0NmUwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALHf+gwDQYJKoZIhvcNAQELBQADggEBACNzj5VWeXL6JkBbw34E+duvJAji NsmiIdG9gTOBLLGyxpxksTBT2nND8mfiDmF3qPW9q9a1N+0QOTiSU+ZmE1nLXUuv tKinCrWcUORmiZ/xzDwQycR7TUYUG7DGPX6yeiwp3kBqyCWDLqekWNP75GKLmKI1 p6rUTXcjE+2HEkSZfC8xCVdCozUY/aZTZtE8ub5uksJfMeqPa6badbUIpjZ3HhTF vGJLvBB718JnB75vXiPEu2n3znymzk/NWkW0E5ucqG6ju/YAdzxnP9O2bYCaWCb2 O6UBo+bxsp4su4bUJ1q6ehsneh3LLFBHwVlWglVdrtN7RurtMkgV44/Frc8= -----END CERTIFICATE-----Generated at Sat Aug 9 02:47:32 2025 by rpki-client