$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: ZRMEfza+O1xP9BFzbZI98Ut2hwb5OgNuqCbwsaJMi1E= Subject key identifier: DC:A6:2E:25:B1:CF:23:56:30:1C:84:05:80:10:45:81:CD:46:4F:2A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5229D292DCF41948A3C4527031B92F81600C9FF5 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Tue 28 Oct 2025 00:00:07 +0000 ROA not before: Tue 28 Oct 2025 00:00:07 +0000 ROA not after: Tue 02 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:29:d2:92:dc:f4:19:48:a3:c4:52:70:31:b9:2f:81:60:0c:9f:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 28 00:00:07 2025 GMT Not After : Dec 2 23:59:59 2025 GMT Subject: serialNumber=dfdd1d824da4e86b7694f9d6e3f9bd56b15310fccbc669c6aa2fc97e84f3d179, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d5:fb:47:aa:da:8c:8c:d7:32:44:44:f0:2e: d3:72:75:b5:df:38:00:5e:f5:f9:bc:c4:e4:7a:54: 9a:5d:a0:5f:5d:48:ab:25:8c:e2:dc:c7:24:d5:01: 84:7a:37:87:60:7b:48:7b:9a:be:49:51:22:0b:22: 64:da:cb:a2:07:e6:6a:1d:3a:56:64:04:a0:fa:94: 31:cf:49:b5:af:f4:2f:06:15:43:49:47:d0:b6:3b: e8:c6:d2:71:49:9b:1d:91:db:cf:78:c5:cf:f3:55: 32:53:7e:e3:37:64:58:15:0b:e1:c1:11:ad:52:43: 2f:04:d5:f1:a8:8d:36:76:4c:ba:6b:7d:7e:d2:7c: a0:e5:b5:1c:d4:aa:a3:98:cf:14:ef:65:2e:fa:0a: 91:a2:01:23:b9:68:f4:be:a4:b9:99:48:e2:ac:b5: 31:02:d8:04:04:24:15:b3:33:7a:d6:b8:6b:c0:87: e6:29:10:23:b8:a8:0e:bb:5d:b8:57:db:e3:d0:36: 4f:c4:fa:02:40:56:0b:c7:6f:c0:c5:1e:a0:9a:33: 93:ec:17:28:62:d7:19:9f:7b:0a:bf:0a:02:49:a1: ab:ab:15:f2:db:7a:79:6f:f4:e4:9a:b5:ca:43:6c: 43:b9:f1:27:38:fa:a9:d1:28:13:4b:2f:35:ef:93: 74:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A6:2E:25:B1:CF:23:56:30:1C:84:05:80:10:45:81:CD:46:4F:2A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 13:d3:6a:ce:16:fe:2f:6b:32:44:20:a2:3e:39:68:c4:35:da: 6c:05:80:d1:7f:55:2a:54:eb:d7:d1:08:b4:ea:24:8c:8d:1e: 8a:31:73:b0:82:1f:4e:2e:d5:65:cb:f8:15:ae:13:db:ab:57: 7b:b4:f0:6e:77:ab:f7:c8:c8:4e:5e:b2:0c:dd:f8:cf:a3:9d: 91:48:96:2c:99:8a:97:51:63:75:9d:d1:f3:92:14:cd:0c:82: 5d:d0:5f:e2:3d:79:5a:51:66:68:0a:a7:59:9f:c6:6e:5a:0a: a3:02:8f:5e:43:1b:e5:57:1d:ed:44:e1:08:83:03:47:c6:20: 64:d3:2d:de:7c:b0:3c:79:98:c3:56:4b:d9:bb:9f:d5:f8:6b: e5:6d:23:00:bc:19:75:f7:0a:69:bf:58:c3:09:dc:78:7a:44: 8e:82:d0:b3:46:f8:5b:93:24:e0:f0:88:7e:f7:82:71:0d:6b: 30:62:a8:24:e0:3b:10:51:7c:b8:c6:3b:e7:fe:ca:17:bf:37: 1e:94:d6:57:33:00:66:23:8d:11:6e:5b:a5:16:09:ad:fb:e2: f9:1b:42:89:52:b9:48:61:25:e5:3a:d5:83:b8:df:57:b2:91: e5:8e:3d:12:50:66:ee:d5:a0:c5:6f:8f:14:c3:ea:54:fb:f7: bf:b2:3e:1a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUinSktz0GUijxFJwMbkvgWAMn/UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI4MDAwMDA3WhcNMjUxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZmRkMWQ4MjRkYTRlODZiNzY5NGY5ZDZlM2Y5YmQ1NmIx NTMxMGZjY2JjNjY5YzZhYTJmYzk3ZTg0ZjNkMTc5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDl1ftHqtqMjNcyRETwLtNydbXfOABe9fm8xOR6VJpdoF9d SKsljOLcxyTVAYR6N4dge0h7mr5JUSILImTay6IH5modOlZkBKD6lDHPSbWv9C8G FUNJR9C2O+jG0nFJmx2R2894xc/zVTJTfuM3ZFgVC+HBEa1SQy8E1fGojTZ2TLpr fX7SfKDltRzUqqOYzxTvZS76CpGiASO5aPS+pLmZSOKstTEC2AQEJBWzM3rWuGvA h+YpECO4qA67XbhX2+PQNk/E+gJAVgvHb8DFHqCaM5PsFyhi1xmfewq/CgJJoaur FfLbenlv9OSatcpDbEO58Sc4+qnRKBNLLzXvk3RrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3KYuJbHPI1YwHIQFgBBFgc1GTyowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBABPTas4W/i9rMkQgoj45aMQ12mwF gNF/VSpU69fRCLTqJIyNHooxc7CCH04u1WXL+BWuE9urV3u08G53q/fIyE5esgzd +M+jnZFIliyZipdRY3Wd0fOSFM0Mgl3QX+I9eVpRZmgKp1mfxm5aCqMCj15DG+VX He1E4QiDA0fGIGTTLd58sDx5mMNWS9m7n9X4a+VtIwC8GXX3Cmm/WMMJ3Hh6RI6C 0LNG+FuTJODwiH73gnENazBiqCTgOxBRfLjGO+f+yhe/Nx6U1lczAGYjjRFuW6UW Ca374vkbQolSuUhhJeU61YO431eykeWOPRJQZu7VoMVvjxTD6lT797+yPho= -----END CERTIFICATE-----Generated at Wed Nov 5 07:49:39 2025 by rpki-client