$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa File: 946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa (raw, json) Hash identifier: V/IxvtQQJzUzUr4UUZ7AMJ1eu+KNo1eaD/XrPkmvnxs= Subject key identifier: 28:60:7B:B4:FB:4E:13:A6:FA:F3:B7:CF:44:1A:E0:C0:46:5D:37:52 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 162273835B6CC42822B736A5C5713492EFEEE75F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa Signing time: Wed 29 Oct 2025 00:20:18 +0000 ROA not before: Wed 29 Oct 2025 00:20:18 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:22:73:83:5b:6c:c4:28:22:b7:36:a5:c5:71:34:92:ef:ee:e7:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:20:18 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=deef82e16dcca0767bcb50c3594b5d56150dfda9c200057a57b8dedcb07e440e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ba:e2:e0:d5:a5:92:f8:56:a6:da:e8:e1:ff: b2:54:9c:9b:d1:dc:06:84:43:75:be:6c:f5:37:9e: d8:4f:57:0b:91:18:da:89:da:39:a8:20:65:9b:9e: ce:bd:9a:13:24:a2:31:61:db:d8:9a:ce:7c:ce:fb: b1:d4:99:04:ce:66:72:c3:94:6e:36:35:33:23:cc: ce:d0:8b:20:37:2e:36:68:c0:6c:6a:a3:21:08:84: 7b:c3:49:27:49:e6:1f:38:25:da:c2:05:32:94:30: 15:79:87:c0:35:5b:0a:f4:d0:80:47:22:5e:59:e2: 04:e8:ad:77:76:eb:18:ae:32:e5:bd:ce:d2:d7:da: 5c:4b:9b:7e:82:f6:c6:20:06:09:39:e7:cd:26:03: 18:5c:f4:04:ae:f7:18:12:3d:74:4c:27:1a:64:57: 63:4d:c7:e5:22:56:76:cb:ee:f9:b0:ae:3c:61:5f: 4e:b9:da:2c:c0:66:a8:14:5a:49:8a:3b:02:85:69: 1d:6a:13:d4:ae:da:c9:42:e3:a3:cb:bc:1b:52:31: a3:22:95:11:7a:fb:d6:e5:85:81:93:c8:32:13:bf: 3e:7c:48:85:87:d5:ba:48:88:b0:88:a2:fd:fd:39: 56:67:5a:9d:9f:40:67:3b:28:a2:b9:d6:d8:aa:b7: 49:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:60:7B:B4:FB:4E:13:A6:FA:F3:B7:CF:44:1A:E0:C0:46:5D:37:52 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.225.0/24 Signature Algorithm: sha256WithRSAEncryption 54:dd:81:c8:82:1c:e3:ed:57:cb:c2:ce:ef:3a:6b:13:cc:8a: 57:ff:0b:8f:d7:3f:4f:a2:38:20:f8:72:b5:9c:5f:26:fe:79: e3:aa:ba:fa:9d:04:8e:c6:6a:78:72:03:09:a4:c2:b9:65:f0: d1:af:65:6e:e0:8b:4a:4f:d1:c4:c9:a2:00:04:bb:8a:a8:5a: 4c:7d:2e:b4:9f:99:d2:5d:da:dd:74:87:e6:40:f0:4b:4d:ac: 42:a4:ec:6b:4b:7d:0a:f6:40:73:45:a2:5a:1e:1f:c2:51:34: 9d:18:ec:fb:0a:0b:7f:85:a0:7f:1f:33:30:3e:bd:30:90:03: 8c:9a:17:b2:21:80:df:7c:f8:e4:74:38:ff:11:12:49:0f:cf: 18:11:76:68:48:1c:a3:3c:72:18:99:27:25:04:af:4b:1c:52: 37:eb:15:3a:7e:d9:d3:ad:a0:b4:13:60:b8:1a:b0:7d:67:e9: 31:fb:d1:f4:c2:fc:95:8d:3f:ed:41:fc:35:da:7e:d1:cd:c0: a5:cb:49:3c:c2:18:28:f6:e6:c1:2a:9e:08:e5:48:bd:7b:8b: 11:c0:f0:cd:e6:1e:8d:b4:b4:82:ac:64:16:82:4f:e8:b1:61: 84:42:a3:5d:ed:d0:17:8e:74:5c:d2:b7:05:70:c1:ff:7d:81: 5a:a7:dc:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFiJzg1tsxCgitzalxXE0ku/u518wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAyMDE4WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWVmODJlMTZkY2NhMDc2N2JjYjUwYzM1OTRiNWQ1NjE1 MGRmZGE5YzIwMDA1N2E1N2I4ZGVkY2IwN2U0NDBlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSuuLg1aWS+Fam2ujh/7JUnJvR3AaEQ3W+bPU3nthPVwuR GNqJ2jmoIGWbns69mhMkojFh29iaznzO+7HUmQTOZnLDlG42NTMjzM7QiyA3LjZo wGxqoyEIhHvDSSdJ5h84JdrCBTKUMBV5h8A1Wwr00IBHIl5Z4gTorXd26xiuMuW9 ztLX2lxLm36C9sYgBgk5580mAxhc9ASu9xgSPXRMJxpkV2NNx+UiVnbL7vmwrjxh X0652izAZqgUWkmKOwKFaR1qE9Su2slC46PLvBtSMaMilRF6+9blhYGTyDITvz58 SIWH1bpIiLCIov39OVZnWp2fQGc7KKK51tiqt0mFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKGB7tPtOE6b687fPRBrgwEZdN1IwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk0NmFlYzBhLWRkZGYtNDlhYi1iNWJmLWVjNzI4MWViMWU3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++EwDQYJKoZIhvcNAQELBQADggEBAFTdgciCHOPtV8vCzu86axPMilf/ C4/XP0+iOCD4crWcXyb+eeOquvqdBI7GanhyAwmkwrll8NGvZW7gi0pP0cTJogAE u4qoWkx9LrSfmdJd2t10h+ZA8EtNrEKk7GtLfQr2QHNFoloeH8JRNJ0Y7PsKC3+F oH8fMzA+vTCQA4yaF7IhgN98+OR0OP8REkkPzxgRdmhIHKM8chiZJyUEr0scUjfr FTp+2dOtoLQTYLgasH1n6TH70fTC/JWNP+1B/DXaftHNwKXLSTzCGCj25sEqngjl SL17ixHA8M3mHo20tIKsZBaCT+ixYYRCo13t0BeOdFzStwVwwf99gVqn3Fk= -----END CERTIFICATE-----Generated at Wed Nov 5 11:06:25 2025 by rpki-client