$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa File: 3f672c72-4d5f-408a-8326-7e62adbed891.roa (raw, json) Hash identifier: KvIa0jwdJPdu9e0UTtNMY7PdBuJVzU+g+ps8oShCwqk= Subject key identifier: 6A:E2:E1:DA:96:92:A2:F3:43:6D:E6:EF:83:CE:03:16:FB:FC:A6:5C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 381BC4DB41F28C8B1ED9F37A30AC740CE5808B2F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa Signing time: Wed 29 Oct 2025 00:10:07 +0000 ROA not before: Wed 29 Oct 2025 00:10:07 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:1b:c4:db:41:f2:8c:8b:1e:d9:f3:7a:30:ac:74:0c:e5:80:8b:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:10:07 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=c42a7e07a8434ea069e396c3e4c286e4dbd19922d8e81924358bcfaa8cabc850, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7e:05:8a:6a:44:44:ea:c6:c6:42:03:19:47: 95:04:97:5c:c1:b3:03:a3:eb:90:9b:9c:0e:67:68: 66:ff:91:80:80:dd:57:87:73:e8:28:cb:2b:0d:f0: 18:bc:c1:5a:08:3c:b4:fd:d5:5c:65:50:5e:0c:c3: aa:89:ce:ff:a6:b6:ef:03:dd:e4:c0:3b:af:d1:6f: 21:e2:d8:6c:6b:ca:bf:47:28:b7:73:07:98:2a:cf: 72:ec:67:53:a4:a2:90:ef:ef:f4:d5:8b:c3:f2:b5: f9:6a:70:92:a0:ee:57:c0:6a:8c:af:bf:01:86:6f: 72:a4:61:23:cf:d4:05:2c:15:9f:3b:0c:10:9e:0d: 67:2e:57:0b:fb:e7:4d:15:45:14:2f:36:fa:51:f3: 62:49:7e:f0:f9:25:36:23:ba:34:c4:45:ff:71:1d: b4:f5:7a:0e:d0:05:e0:6a:77:f7:2c:16:4c:a2:dd: 1c:ea:5b:52:f7:4c:9c:c1:ba:64:eb:ca:ec:01:2f: 26:b3:1e:2c:b9:a1:aa:c0:d0:3f:06:2a:86:a2:f6: d1:dc:01:ef:4f:19:5e:61:db:39:bc:ef:6e:f1:9c: 43:b1:cd:f9:15:20:96:f0:c1:9e:44:6d:a2:90:d7: ae:db:00:9d:4c:17:39:17:49:b0:6a:83:18:2e:19: 9a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:E2:E1:DA:96:92:A2:F3:43:6D:E6:EF:83:CE:03:16:FB:FC:A6:5C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3f672c72-4d5f-408a-8326-7e62adbed891.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.221.0/24 Signature Algorithm: sha256WithRSAEncryption 53:3c:72:17:0e:80:12:1e:fe:33:8b:ec:f8:63:d6:bc:31:64: a7:aa:8d:8a:92:7c:fb:78:61:1b:d4:b9:70:36:eb:91:77:f5: 61:96:29:da:af:38:95:9a:a6:4b:8f:9d:ae:7e:28:64:6f:e4: d1:d3:7a:e3:58:83:67:94:74:28:5a:c5:ae:7b:4f:3c:6e:e7: fb:21:31:bd:84:5e:04:8f:c1:b0:4f:68:45:a8:1a:fd:6c:39: 34:3e:17:8b:4b:86:95:f5:eb:2b:74:e1:d1:40:9f:2c:08:6f: 03:19:72:d9:81:4f:99:fb:22:52:21:97:b2:de:75:5a:54:18: af:63:d3:d4:15:c4:db:ee:b0:7a:b7:5a:d8:0b:c1:76:56:e2: f2:8a:03:60:05:10:f3:75:f6:99:7f:bd:64:a4:53:ad:4a:01: 97:e2:e9:ce:22:05:05:b2:48:f9:ae:04:2c:1b:94:02:7f:9b: 5a:23:bb:c5:34:e5:33:14:67:53:93:6c:6f:20:f1:15:34:78: f3:79:98:4e:62:e4:69:27:9f:5c:f0:9d:14:9c:e7:7b:7b:23: 93:ad:fb:3c:82:c8:b3:fe:5b:32:e5:4a:02:6c:3e:f3:51:80: 93:e0:ed:7d:14:49:ec:c4:ec:35:c3:2a:a4:37:f5:fe:7c:4d: 7d:03:d5:de -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOBvE20HyjIse2fN6MKx0DOWAiy8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAxMDA3WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDJhN2UwN2E4NDM0ZWEwNjllMzk2YzNlNGMyODZlNGRi ZDE5OTIyZDhlODE5MjQzNThiY2ZhYThjYWJjODUwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFfgWKakRE6sbGQgMZR5UEl1zBswOj65CbnA5naGb/kYCA 3VeHc+goyysN8Bi8wVoIPLT91VxlUF4Mw6qJzv+mtu8D3eTAO6/RbyHi2Gxryr9H KLdzB5gqz3LsZ1OkopDv7/TVi8PytflqcJKg7lfAaoyvvwGGb3KkYSPP1AUsFZ87 DBCeDWcuVwv7500VRRQvNvpR82JJfvD5JTYjujTERf9xHbT1eg7QBeBqd/csFkyi 3RzqW1L3TJzBumTryuwBLyazHiy5oarA0D8GKoai9tHcAe9PGV5h2zm8727xnEOx zfkVIJbwwZ5EbaKQ167bAJ1MFzkXSbBqgxguGZoXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUauLh2paSovNDbebvg84DFvv8plwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNmNjcyYzcyLTRkNWYtNDA4YS04MzI2LTdlNjJhZGJlZDg5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d0wDQYJKoZIhvcNAQELBQADggEBAFM8chcOgBIe/jOL7Phj1rwxZKeq jYqSfPt4YRvUuXA265F39WGWKdqvOJWapkuPna5+KGRv5NHTeuNYg2eUdChaxa57 Tzxu5/shMb2EXgSPwbBPaEWoGv1sOTQ+F4tLhpX16yt04dFAnywIbwMZctmBT5n7 IlIhl7LedVpUGK9j09QVxNvusHq3WtgLwXZW4vKKA2AFEPN19pl/vWSkU61KAZfi 6c4iBQWySPmuBCwblAJ/m1oju8U05TMUZ1OTbG8g8RU0ePN5mE5i5Gknn1zwnRSc 53t7I5Ot+zyCyLP+WzLlSgJsPvNRgJPg7X0USezE7DXDKqQ39f58TX0D1d4= -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:51 2025 by rpki-client