$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa File: 5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa (raw, json) Hash identifier: FrxEM9Ewx3WBwIIwlUxarpZiPy5ftP8fnLw01xsBDvs= Subject key identifier: 6A:6E:A7:2D:AF:58:3D:7E:63:58:1F:B0:3B:53:8E:8B:89:35:88:DC Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 53D4FEC7565675EAFE6BABD25720CABBBD2BB365 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa Signing time: Wed 29 Oct 2025 00:20:03 +0000 ROA not before: Wed 29 Oct 2025 00:20:03 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d4:fe:c7:56:56:75:ea:fe:6b:ab:d2:57:20:ca:bb:bd:2b:b3:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:20:03 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=90c51a7e334001bc327346014f9d7a7afd6605745dd000f18037799b0dc41976, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:66:7c:b7:ad:c2:e7:de:3b:66:a2:2e:88:55: 9a:1c:91:a8:57:b2:e7:66:df:83:cc:06:85:9f:21: ad:43:27:d2:f4:87:ba:b6:0c:11:66:ce:bb:9a:ed: 0b:a3:ea:d3:7b:6e:70:8d:c0:07:5a:f8:31:03:ce: 66:cd:68:29:7f:1b:6c:0e:2f:a0:5a:ce:d4:13:23: fb:06:ec:fe:02:47:db:d1:7a:59:cf:a2:79:93:32: d6:0c:3c:fb:00:43:72:39:86:2a:d8:53:49:c4:2f: ed:61:65:e4:e2:97:69:b8:6a:a8:b0:9b:2e:6d:94: 97:87:df:08:fb:5f:0a:9d:8e:07:c5:9c:7d:2f:24: 2c:fb:3d:ea:57:57:43:f3:37:a6:f0:17:c0:07:a6: c3:21:29:a3:bf:87:90:21:12:63:f9:18:6c:e7:34: ae:65:38:cc:07:b6:c7:31:7d:bd:c7:3c:cb:7b:a9: 0a:39:4d:bd:f7:d4:01:7f:d9:5c:26:30:50:74:37: 4e:ae:5d:f0:c8:2d:72:69:27:fc:01:2b:39:8b:3a: 77:f9:b6:81:56:73:98:4d:61:bd:0c:97:34:97:09: d4:cc:eb:4c:aa:74:62:29:de:0a:76:ba:75:fd:01: 2a:ef:73:3f:8d:c3:3c:a7:5f:4b:6f:fe:c6:44:f0: 8a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:6E:A7:2D:AF:58:3D:7E:63:58:1F:B0:3B:53:8E:8B:89:35:88:DC X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5ff4b44a-41c9-4bc0-b77e-520fd1d7927e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.214.0/24 Signature Algorithm: sha256WithRSAEncryption 19:22:ac:11:05:e7:7b:14:40:be:1b:93:6f:99:27:69:27:b4: 31:b4:d3:ae:a0:b3:45:3a:b8:6b:82:29:ef:5e:c4:3e:d1:e4: 5b:ff:d9:b7:4d:b3:6a:f3:47:1e:c7:67:79:02:6f:a0:57:c1: be:e3:3c:85:ba:4e:ed:60:da:89:5c:69:29:e2:17:36:0b:e6: 7f:19:4b:d9:01:09:07:e8:b6:99:3d:8b:90:c9:0e:00:6d:4d: 6e:37:a3:e6:b1:12:18:6d:71:51:b3:bb:9a:09:52:17:f1:5d: 21:22:f0:84:fb:8b:15:78:eb:45:11:57:b8:12:2e:d5:bb:22: 08:b4:d2:cb:78:c0:6e:88:c9:bd:0d:b6:e9:23:a7:7f:9c:d1: 64:25:bc:36:2b:b4:bc:20:dd:89:2f:90:1c:b7:4a:54:d4:33: 20:93:55:f7:64:86:f9:80:a2:7b:d8:bf:57:0a:1b:45:a7:1f: 97:0c:ae:94:ad:7b:c1:f0:fc:60:81:d1:59:b2:72:73:80:c2: 58:ea:df:5f:e3:fb:6f:dd:04:3e:2e:d9:5b:fd:58:26:61:ef: 75:dc:6e:62:3e:62:9a:aa:33:fc:42:f0:68:f4:bd:d9:3c:17: c6:28:fa:b7:e8:a3:39:04:25:a2:d0:c9:bd:4a:0b:75:43:80: 58:99:b7:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU9T+x1ZWder+a6vSVyDKu70rs2UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAyMDAzWhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MGM1MWE3ZTMzNDAwMWJjMzI3MzQ2MDE0ZjlkN2E3YWZk NjYwNTc0NWRkMDAwZjE4MDM3Nzk5YjBkYzQxOTc2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsZny3rcLn3jtmoi6IVZockahXsudm34PMBoWfIa1DJ9L0 h7q2DBFmzrua7Quj6tN7bnCNwAda+DEDzmbNaCl/G2wOL6BaztQTI/sG7P4CR9vR elnPonmTMtYMPPsAQ3I5hirYU0nEL+1hZeTil2m4aqiwmy5tlJeH3wj7XwqdjgfF nH0vJCz7PepXV0PzN6bwF8AHpsMhKaO/h5AhEmP5GGznNK5lOMwHtscxfb3HPMt7 qQo5Tb331AF/2VwmMFB0N06uXfDILXJpJ/wBKzmLOnf5toFWc5hNYb0MlzSXCdTM 60yqdGIp3gp2unX9ASrvcz+NwzynX0tv/sZE8IoPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUam6nLa9YPX5jWB+wO1OOi4k1iNwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVmZjRiNDRhLTQxYzktNGJjMC1iNzdlLTUyMGZkMWQ3OTI3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dYwDQYJKoZIhvcNAQELBQADggEBABkirBEF53sUQL4bk2+ZJ2kntDG0 066gs0U6uGuCKe9exD7R5Fv/2bdNs2rzRx7HZ3kCb6BXwb7jPIW6Tu1g2olcaSni FzYL5n8ZS9kBCQfotpk9i5DJDgBtTW43o+axEhhtcVGzu5oJUhfxXSEi8IT7ixV4 60URV7gSLtW7Igi00st4wG6Iyb0Ntukjp3+c0WQlvDYrtLwg3YkvkBy3SlTUMyCT VfdkhvmAonvYv1cKG0WnH5cMrpSte8Hw/GCB0VmycnOAwljq31/j+2/dBD4u2Vv9 WCZh73XcbmI+YpqqM/xC8Gj0vdk8F8Yo+rfoozkEJaLQyb1KC3VDgFiZt+8= -----END CERTIFICATE-----Generated at Wed Nov 5 03:31:24 2025 by rpki-client