$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa File: 69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa (raw, json) Hash identifier: nugMye+FuHN0WNIWjtVUwcnYAbzCYXCpv4eSPYnNx3k= Subject key identifier: 1B:62:62:95:71:4E:95:CC:EE:12:46:56:75:49:B7:43:84:50:0B:B4 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2607FD227F0B1D43773D54E9F2D4A17621EED319 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa Signing time: Wed 29 Oct 2025 00:20:07 +0000 ROA not before: Wed 29 Oct 2025 00:20:07 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:07:fd:22:7f:0b:1d:43:77:3d:54:e9:f2:d4:a1:76:21:ee:d3:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:20:07 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=4495a6ae4783aa9b8fadd6b821e910d70558c8f919740ed814e66ce16d789b2f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:70:4d:4f:80:4f:25:ed:9f:ca:ea:dc:7f:9e: c9:f4:bb:f0:07:4d:55:86:6c:9e:8f:16:8b:29:7e: 83:8e:30:d1:1f:cc:df:34:5f:e7:19:33:14:47:05: aa:80:b7:ab:70:f7:65:23:77:a3:5e:34:0f:b6:62: 0f:55:67:2f:01:51:50:41:a2:49:92:77:75:42:b4: ac:49:b4:b3:69:20:da:6b:6b:f3:45:b1:89:27:36: 72:48:16:f7:4f:f8:9f:2e:ca:d9:83:82:72:46:b6: 6a:39:50:1a:31:ad:66:0b:f0:e1:2d:7e:b1:b7:bc: 8d:1e:01:86:ce:0a:dd:fb:76:1d:82:b8:76:cb:a3: de:36:fa:3e:b3:c8:a7:dd:67:0e:a5:ef:96:f5:e2: ba:a3:21:44:86:e8:e5:66:37:ee:80:e7:72:da:41: 2e:7a:f5:89:6c:3b:86:03:2d:fa:82:7e:e7:e6:5f: c5:a8:6d:f1:86:17:13:14:56:2f:9a:e4:a5:7c:e9: b9:2b:0a:8f:d2:9e:82:aa:83:1f:05:f3:4d:be:05: e5:98:a5:f1:be:78:25:a7:49:dc:fe:cc:fb:ff:2e: b9:0a:8d:0e:52:1a:d0:d4:58:d7:c6:23:00:e7:31: 7d:2c:3e:8f:a0:f4:19:57:1f:78:60:7c:37:8f:b4: 32:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:62:62:95:71:4E:95:CC:EE:12:46:56:75:49:B7:43:84:50:0B:B4 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/69808968-e51a-4b2b-8f4b-0add7a4dda5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.176.0/24 Signature Algorithm: sha256WithRSAEncryption 91:62:4a:b5:fe:b5:99:c1:fd:b0:44:fe:79:7e:44:7c:44:71: fb:88:0a:69:51:15:bd:e5:c6:31:b8:e6:2a:f2:57:4a:d8:8b: cf:32:ad:54:6f:95:45:88:94:41:1c:b0:ae:a3:b4:b9:07:14: 1c:0c:58:2b:09:c7:8f:51:1b:4f:79:8d:25:be:e6:a6:14:5c: 68:f4:eb:32:01:2e:d4:95:94:51:90:8e:9a:9f:2d:bc:92:e1: 30:af:d2:a9:b2:1d:71:e5:70:61:06:7c:50:2d:44:e5:53:9c: 0b:6e:8b:24:27:90:fa:77:a2:de:58:18:29:9b:f2:b6:c8:ff: ec:ba:b0:6b:1f:fa:4f:91:cd:4b:f4:b0:a3:0f:d9:34:93:08: 06:75:5c:9f:de:97:8c:d2:0a:d6:1f:ce:0f:4e:02:55:26:d6: 3a:a0:50:4a:be:46:32:08:1e:37:3c:08:fa:4b:29:03:2f:b8: a1:df:11:7e:17:12:cc:ab:e5:7f:67:d1:d4:08:3a:51:03:dc: 3c:dd:c1:43:7c:17:e1:36:91:83:b5:dc:f2:78:19:8b:b0:3d: 33:ce:ad:47:11:fa:a7:12:14:88:3a:19:27:00:ed:6c:bb:cf: 22:1f:e7:7d:43:56:f9:88:5d:5f:5b:d2:16:01:9e:df:71:af: 90:09:af:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJgf9In8LHUN3PVTp8tShdiHu0xkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAyMDA3WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDk1YTZhZTQ3ODNhYTliOGZhZGQ2YjgyMWU5MTBkNzA1 NThjOGY5MTk3NDBlZDgxNGU2NmNlMTZkNzg5YjJmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKcE1PgE8l7Z/K6tx/nsn0u/AHTVWGbJ6PFospfoOOMNEf zN80X+cZMxRHBaqAt6tw92Ujd6NeNA+2Yg9VZy8BUVBBokmSd3VCtKxJtLNpINpr a/NFsYknNnJIFvdP+J8uytmDgnJGtmo5UBoxrWYL8OEtfrG3vI0eAYbOCt37dh2C uHbLo942+j6zyKfdZw6l75b14rqjIUSG6OVmN+6A53LaQS569YlsO4YDLfqCfufm X8WobfGGFxMUVi+a5KV86bkrCo/SnoKqgx8F802+BeWYpfG+eCWnSdz+zPv/LrkK jQ5SGtDUWNfGIwDnMX0sPo+g9BlXH3hgfDePtDL9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG2JilXFOlczuEkZWdUm3Q4RQC7QwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzY5ODA4OTY4LWU1MWEtNGIyYi04ZjRiLTBhZGQ3YTRkZGE1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM37AwDQYJKoZIhvcNAQELBQADggEBAJFiSrX+tZnB/bBE/nl+RHxEcfuI CmlRFb3lxjG45iryV0rYi88yrVRvlUWIlEEcsK6jtLkHFBwMWCsJx49RG095jSW+ 5qYUXGj06zIBLtSVlFGQjpqfLbyS4TCv0qmyHXHlcGEGfFAtROVTnAtuiyQnkPp3 ot5YGCmb8rbI/+y6sGsf+k+RzUv0sKMP2TSTCAZ1XJ/el4zSCtYfzg9OAlUm1jqg UEq+RjIIHjc8CPpLKQMvuKHfEX4XEsyr5X9n0dQIOlED3DzdwUN8F+E2kYO13PJ4 GYuwPTPOrUcR+qcSFIg6GScA7Wy7zyIf531DVvmIXV9b0hYBnt9xr5AJrwM= -----END CERTIFICATE-----Generated at Wed Nov 5 05:41:37 2025 by rpki-client