$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa File: 2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa (raw, json) Hash identifier: Ygkwn5r/r/YqAiSQVHNpl8NvRdzCUpx2iBlakEm92i4= Subject key identifier: 4E:F9:75:13:DB:9D:46:F3:A3:D8:E0:06:11:20:D4:EC:16:CF:EE:49 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0E2D1B884B891BDA3B32DF93165EC6061FA2D3A5 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa Signing time: Tue 28 Oct 2025 00:00:04 +0000 ROA not before: Tue 28 Oct 2025 00:00:04 +0000 ROA not after: Tue 02 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.55.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:2d:1b:88:4b:89:1b:da:3b:32:df:93:16:5e:c6:06:1f:a2:d3:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 28 00:00:04 2025 GMT Not After : Dec 2 23:59:59 2025 GMT Subject: serialNumber=cbbfc714dc54bcc4e6c37fb16b7f7d99401d7915f855176bbc47864942ceb5f4, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d5:ce:61:74:b0:f5:d0:ec:3f:7a:c2:29:e1: 66:26:80:f2:c0:83:78:57:97:6b:15:3a:21:1d:3e: ea:ac:9b:0c:75:46:ef:eb:cd:e9:1a:85:36:9a:90: 3b:46:36:7c:b0:e9:0a:d3:1b:23:9d:38:18:ba:b8: d9:86:3d:a3:42:01:7c:11:2b:c8:36:48:8b:e7:ec: 92:6a:e6:70:c8:ce:1a:87:cd:6c:e6:d3:8a:46:56: c9:6b:4d:9b:cb:69:48:21:33:80:e0:1f:6b:30:5b: b4:a4:03:3c:f4:ad:c0:b6:2a:f6:93:0a:e9:2d:6e: 9e:8c:c5:1c:79:ed:c0:ff:56:45:28:f2:ba:d7:ff: 97:93:6f:cb:9d:d4:9b:5a:e7:69:22:06:64:a6:76: e3:57:90:08:a1:ab:33:60:d5:44:ec:6a:72:f6:f8: 52:04:1d:12:4c:ca:85:d6:62:b3:b7:53:02:05:57: 60:4a:a5:3e:9d:35:bb:e9:80:5a:fb:76:25:d8:37: 19:b9:2d:33:13:8c:5b:93:2b:f0:13:da:37:b2:ef: 94:15:3b:4a:c4:b0:25:ce:82:91:7f:57:2b:03:fb: 76:15:d7:f8:2b:d8:90:f1:d1:30:b7:13:b8:ac:ed: fb:e8:c7:ee:db:af:04:04:b8:a0:56:f6:14:01:d8: ce:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F9:75:13:DB:9D:46:F3:A3:D8:E0:06:11:20:D4:EC:16:CF:EE:49 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/2f1243e4-dd56-43c1-90e0-aec73f1a9489.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.55.128.0/19 Signature Algorithm: sha256WithRSAEncryption 13:c2:61:43:11:d1:cb:66:87:9e:76:33:4b:99:b2:6c:c8:67: 4a:48:63:47:35:a9:5d:cb:32:51:2e:60:55:0c:5a:ee:80:fd: fa:ab:d1:79:57:aa:40:30:07:5c:33:37:0c:b6:6d:53:78:2c: bc:1e:43:25:43:aa:56:94:a7:15:80:81:4d:f0:04:2a:c3:76: 9f:5b:33:07:cb:a4:6e:33:0e:38:12:7a:6d:5d:43:dc:f9:9d: 09:67:a4:94:ff:e1:70:ec:0c:32:23:16:55:15:be:47:09:f9: ab:40:a3:60:c1:87:17:ae:91:03:43:6c:ea:7d:65:81:7f:3f: 40:ea:fa:2b:e1:c6:a2:fb:9c:f3:50:f3:7a:88:45:bc:f2:aa: 5b:63:05:65:a3:1b:f6:65:d1:65:89:15:38:fe:48:1d:0f:f9: d2:23:8d:a8:f0:9e:3c:00:5a:b0:44:9d:5f:d3:17:0b:d2:5e: 9c:a9:dd:12:d0:23:d0:35:34:88:16:2e:9f:bf:0d:28:9a:53: 21:20:6b:55:39:13:cf:99:8a:05:75:63:01:1e:14:a9:a7:85: 14:6e:f8:93:a7:1f:b6:f7:18:30:1c:48:0e:5c:e4:33:be:d2: bf:e6:80:73:b3:c9:8d:5b:e9:13:13:2d:51:5e:49:fe:41:ad: b6:1b:f1:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDi0biEuJG9o7Mt+TFl7GBh+i06UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI4MDAwMDA0WhcNMjUxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYmJmYzcxNGRjNTRiY2M0ZTZjMzdmYjE2YjdmN2Q5OTQw MWQ3OTE1Zjg1NTE3NmJiYzQ3ODY0OTQyY2ViNWY0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQ1c5hdLD10Ow/esIp4WYmgPLAg3hXl2sVOiEdPuqsmwx1 Ru/rzekahTaakDtGNnyw6QrTGyOdOBi6uNmGPaNCAXwRK8g2SIvn7JJq5nDIzhqH zWzm04pGVslrTZvLaUghM4DgH2swW7SkAzz0rcC2KvaTCuktbp6MxRx57cD/VkUo 8rrX/5eTb8ud1Jta52kiBmSmduNXkAihqzNg1UTsanL2+FIEHRJMyoXWYrO3UwIF V2BKpT6dNbvpgFr7diXYNxm5LTMTjFuTK/AT2jey75QVO0rEsCXOgpF/VysD+3YV 1/gr2JDx0TC3E7is7fvox+7brwQEuKBW9hQB2M5vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTvl1E9udRvOj2OAGESDU7BbP7kkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzJmMTI0M2U0LWRkNTYtNDNjMS05MGUwLWFlYzczZjFhOTQ4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXON4AwDQYJKoZIhvcNAQELBQADggEBABPCYUMR0ctmh552M0uZsmzIZ0pI Y0c1qV3LMlEuYFUMWu6A/fqr0XlXqkAwB1wzNwy2bVN4LLweQyVDqlaUpxWAgU3w BCrDdp9bMwfLpG4zDjgSem1dQ9z5nQlnpJT/4XDsDDIjFlUVvkcJ+atAo2DBhxeu kQNDbOp9ZYF/P0Dq+ivhxqL7nPNQ83qIRbzyqltjBWWjG/Zl0WWJFTj+SB0P+dIj jajwnjwAWrBEnV/TFwvSXpyp3RLQI9A1NIgWLp+/DSiaUyEga1U5E8+ZigV1YwEe FKmnhRRu+JOnH7b3GDAcSA5c5DO+0r/mgHOzyY1b6RMTLVFeSf5BrbYb8XE= -----END CERTIFICATE-----Generated at Wed Nov 5 05:42:34 2025 by rpki-client