$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa File: c9752aac-8490-485f-92b7-6a6ba02b76d5.roa (raw, json) Hash identifier: vxzGpMwzc0vf0ZW6XOGZYIcXcUC8CT9yn1tJf0uGAs8= Subject key identifier: 71:62:5C:D9:0F:71:ED:3A:63:21:7A:73:FC:D2:5B:BE:30:98:63:5B Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 74E0A95792028CFD242605A6C5CE55EF05521B02 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa Signing time: Mon 04 Aug 2025 15:10:02 +0000 ROA not before: Mon 04 Aug 2025 15:10:02 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 199.127.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:e0:a9:57:92:02:8c:fd:24:26:05:a6:c5:ce:55:ef:05:52:1b:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 4 15:10:02 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=47a3bc42f937cb33af12b682d9d9bdaa621d5ce8963bb477ff0e43234d6374ee, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b8:aa:ff:6b:fe:eb:24:27:93:1c:50:b0:b1: 8c:58:85:07:9a:3b:c3:3a:00:e2:9d:6b:d6:10:2b: 27:cc:dc:9c:83:de:d2:31:78:67:c9:78:a7:05:40: 6e:bd:81:6f:cf:48:71:c9:86:19:9b:44:4d:27:e3: e7:c4:22:e4:c9:50:41:64:8a:9d:6d:80:0a:2a:46: b3:48:90:42:08:fd:30:e8:d9:d9:62:89:b0:fc:1f: 17:75:fe:b7:2b:fc:eb:cd:ee:37:2b:47:54:7d:90: 89:ec:00:38:b6:87:93:ff:67:66:5a:35:b0:17:c7: 93:00:c4:bb:4f:7c:ff:e1:08:f6:32:a9:de:4b:69: 31:87:32:3f:e9:27:6f:0c:45:ed:e5:ea:a1:78:29: 9b:a1:78:33:a0:45:e3:35:d0:74:5e:58:44:a5:c8: e0:dc:01:a6:2b:56:3b:d5:b5:b7:5a:f6:55:b2:78: 49:fc:fd:6d:1a:74:20:7c:60:38:12:6a:30:ba:e1: 59:cc:3f:ba:bc:c0:c8:63:ea:77:fc:50:77:72:bc: 06:d4:ae:55:85:fc:b5:51:e6:d6:7c:18:85:eb:3c: 15:d6:9e:93:7d:da:05:4e:ef:fc:75:4f:8c:e1:29: 48:95:8c:43:71:87:43:8f:c5:f3:89:d4:29:ae:d3: 10:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:62:5C:D9:0F:71:ED:3A:63:21:7A:73:FC:D2:5B:BE:30:98:63:5B X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c9752aac-8490-485f-92b7-6a6ba02b76d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.127.232.0/22 Signature Algorithm: sha256WithRSAEncryption 77:81:b0:6f:0a:10:34:4e:2f:04:e2:38:8a:7b:d0:4b:d8:a0: a0:48:ab:2a:a4:72:ad:7f:44:78:06:0e:67:65:59:c9:da:0b: 8a:06:3b:26:cd:df:0d:29:19:bd:17:c1:c4:76:48:84:fc:a5: e2:c6:36:36:34:58:a9:41:3c:98:70:35:19:c9:86:67:42:54: a2:85:17:76:9a:0e:7d:43:24:9e:03:52:76:e4:fc:7b:2e:01: 8f:21:ed:98:6d:22:87:7d:ea:8c:a3:82:ab:1b:17:0f:70:b7: 3b:cd:ac:2b:5a:ed:9c:72:1d:46:44:16:2d:b7:b9:f1:6e:04: 8b:1a:f7:70:bc:ba:42:ff:0f:ba:08:c8:73:86:44:ba:b1:b1: a7:db:e0:0e:96:26:37:b6:92:5c:4f:64:e6:e4:28:76:e8:e1: 70:97:da:2b:9e:e8:2f:2c:2b:bf:12:28:61:93:e7:a4:ef:6c: 68:56:e9:c2:05:5b:4b:36:bf:ca:13:c3:b6:4b:13:1b:c3:fe: eb:e4:04:ee:4a:43:a0:1e:cd:89:7e:1c:75:c1:ae:79:f9:b3: 6a:b4:7d:19:1e:32:d6:15:41:a2:bd:bf:e8:b7:22:38:53:e0: 22:31:47:50:26:60:7e:a9:87:ed:3a:01:3b:ea:87:02:2c:81: 10:db:3a:1b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdOCpV5ICjP0kJgWmxc5V7wVSGwIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODA0MTUxMDAyWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2EzYmM0MmY5MzdjYjMzYWYxMmI2ODJkOWQ5YmRhYTYy MWQ1Y2U4OTYzYmI0NzdmZjBlNDMyMzRkNjM3NGVlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpuKr/a/7rJCeTHFCwsYxYhQeaO8M6AOKda9YQKyfM3JyD 3tIxeGfJeKcFQG69gW/PSHHJhhmbRE0n4+fEIuTJUEFkip1tgAoqRrNIkEII/TDo 2dliibD8Hxd1/rcr/OvN7jcrR1R9kInsADi2h5P/Z2ZaNbAXx5MAxLtPfP/hCPYy qd5LaTGHMj/pJ28MRe3l6qF4KZuheDOgReM10HReWESlyODcAaYrVjvVtbda9lWy eEn8/W0adCB8YDgSajC64VnMP7q8wMhj6nf8UHdyvAbUrlWF/LVR5tZ8GIXrPBXW npN92gVO7/x1T4zhKUiVjENxh0OPxfOJ1Cmu0xBPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcWJc2Q9x7TpjIXpz/NJbvjCYY1swHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2M5NzUyYWFjLTg0OTAtNDg1Zi05MmI3LTZhNmJhMDJiNzZkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALHf+gwDQYJKoZIhvcNAQELBQADggEBAHeBsG8KEDROLwTiOIp70EvYoKBI qyqkcq1/RHgGDmdlWcnaC4oGOybN3w0pGb0XwcR2SIT8peLGNjY0WKlBPJhwNRnJ hmdCVKKFF3aaDn1DJJ4DUnbk/HsuAY8h7ZhtIod96oyjgqsbFw9wtzvNrCta7Zxy HUZEFi23ufFuBIsa93C8ukL/D7oIyHOGRLqxsafb4A6WJje2klxPZObkKHbo4XCX 2iue6C8sK78SKGGT56TvbGhW6cIFW0s2v8oTw7ZLExvD/uvkBO5KQ6AezYl+HHXB rnn5s2q0fRkeMtYVQaK9v+i3IjhT4CIxR1AmYH6ph+06ATvqhwIsgRDbOhs= -----END CERTIFICATE-----Generated at Mon Aug 4 19:07:31 2025 by rpki-client