$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa File: b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa (raw, json) Hash identifier: OfXlaG6RVhN2ZbYCaFRR0x29sZIOTVZ/rgou4qg6y3I= Subject key identifier: 71:D9:38:B7:BD:FC:09:E0:D1:BD:FA:80:B4:0A:19:1B:93:7B:CC:10 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2C405803588C2E537B4A6000E4F7852EFA06EC2F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa Signing time: Wed 29 Oct 2025 00:20:06 +0000 ROA not before: Wed 29 Oct 2025 00:20:06 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.251.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:40:58:03:58:8c:2e:53:7b:4a:60:00:e4:f7:85:2e:fa:06:ec:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:20:06 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=b71603e7a52d04dd37b4b5e9d813ac53cd0d3f6d304ba1065d6d558edbd25fc6, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ab:c8:18:c6:d4:3b:e3:0e:81:ec:33:0b:64: 27:e9:91:a1:cf:f9:1f:9a:60:81:0c:cb:67:30:69: 33:6c:65:0e:67:19:29:8e:28:98:90:24:a2:bf:ff: 1a:6a:78:0e:2d:c5:82:8b:f4:55:da:47:11:9a:16: f3:1d:37:d9:42:51:b9:18:12:3b:a5:16:e1:ee:f9: 6f:cc:62:56:fb:2c:e7:e8:7e:db:53:24:67:12:ba: 7e:da:1d:b3:d2:8a:9e:57:d6:c9:83:de:0f:18:4d: ae:84:65:5e:51:cb:3d:74:48:fc:41:44:1d:46:53: c9:b7:bf:bb:77:c1:d3:70:c2:2f:48:b7:b3:ee:4d: 0b:71:b5:d5:5b:f2:41:08:13:0d:3b:22:c8:02:85: d5:0c:4a:b9:10:88:6e:99:12:e8:32:20:92:b3:4a: aa:71:37:c6:f9:ef:72:13:b8:2f:f0:c2:16:33:d1: 72:ec:84:70:21:4d:1d:68:60:3c:7d:81:04:26:a5: 8d:fa:c6:44:43:b2:b7:03:ca:d3:b9:af:b6:93:5f: 04:fc:7a:d5:0a:ba:b9:7f:fa:99:01:bb:ce:f9:c0: f1:fa:fb:02:da:07:5a:44:b1:28:37:a5:f7:ad:6b: 03:9c:78:40:1a:a4:65:76:05:a3:e4:fc:af:d6:a8: a2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D9:38:B7:BD:FC:09:E0:D1:BD:FA:80:B4:0A:19:1B:93:7B:CC:10 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5cc85b6-fdc1-4a8f-b266-611d77cebf5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.252.0/22 Signature Algorithm: sha256WithRSAEncryption 38:39:47:da:92:09:da:c7:06:a9:e8:7f:70:96:96:52:c9:bd: b6:0d:43:6b:41:ad:7a:8a:43:3d:bd:e8:1f:3d:03:30:a4:42: fd:d6:11:cc:d0:d2:3b:78:2f:e8:0f:d7:85:1d:12:bf:78:9c: 8c:97:ff:a1:ac:0d:31:b6:65:4d:f4:56:67:1a:07:56:38:eb: 46:e2:3e:fb:4a:44:d0:9b:2d:a4:ca:7e:9a:e0:4e:d0:3d:31: e3:ad:2a:f5:c5:11:c3:05:b2:f2:50:31:5c:f7:4c:69:97:5f: 46:5b:b8:86:3c:74:65:f6:e0:a0:61:62:a5:97:0b:b8:ea:8c: 0f:47:6a:d7:78:da:88:ea:e0:ee:8f:29:40:77:35:d7:26:3c: 16:2b:e6:ee:f8:0f:3c:99:6b:d1:47:fd:0e:c5:b4:c3:1f:2c: 9b:81:d7:8c:fd:63:58:f4:fd:06:15:58:86:11:44:23:7d:b4: 1f:4d:86:3b:75:dc:6c:02:15:d0:52:24:1d:f0:16:3c:5f:7d: 05:86:d4:1b:1a:69:99:99:2d:f2:a0:be:b1:7d:4b:11:9a:77: d4:44:04:42:78:2f:4e:e8:fa:bd:27:c3:04:24:59:e6:6c:37: 82:e5:d6:b8:6e:ac:2e:f9:0f:e1:38:89:93:f5:42:7e:54:f3: 64:b2:53:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULEBYA1iMLlN7SmAA5PeFLvoG7C8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAyMDA2WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzE2MDNlN2E1MmQwNGRkMzdiNGI1ZTlkODEzYWM1M2Nk MGQzZjZkMzA0YmExMDY1ZDZkNTU4ZWRiZDI1ZmM2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRq8gYxtQ74w6B7DMLZCfpkaHP+R+aYIEMy2cwaTNsZQ5n GSmOKJiQJKK//xpqeA4txYKL9FXaRxGaFvMdN9lCUbkYEjulFuHu+W/MYlb7LOfo fttTJGcSun7aHbPSip5X1smD3g8YTa6EZV5Ryz10SPxBRB1GU8m3v7t3wdNwwi9I t7PuTQtxtdVb8kEIEw07IsgChdUMSrkQiG6ZEugyIJKzSqpxN8b573ITuC/wwhYz 0XLshHAhTR1oYDx9gQQmpY36xkRDsrcDytO5r7aTXwT8etUKurl/+pkBu875wPH6 +wLaB1pEsSg3pfetawOceEAapGV2BaPk/K/WqKL5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcdk4t738CeDRvfqAtAoZG5N7zBAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1Y2M4NWI2LWZkYzEtNGE4Zi1iMjY2LTYxMWQ3N2NlYmY1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX+/wwDQYJKoZIhvcNAQELBQADggEBADg5R9qSCdrHBqnof3CWllLJvbYN Q2tBrXqKQz296B89AzCkQv3WEczQ0jt4L+gP14UdEr94nIyX/6GsDTG2ZU30Vmca B1Y460biPvtKRNCbLaTKfprgTtA9MeOtKvXFEcMFsvJQMVz3TGmXX0ZbuIY8dGX2 4KBhYqWXC7jqjA9Hatd42ojq4O6PKUB3NdcmPBYr5u74DzyZa9FH/Q7FtMMfLJuB 14z9Y1j0/QYVWIYRRCN9tB9Nhjt13GwCFdBSJB3wFjxffQWG1BsaaZmZLfKgvrF9 SxGad9REBEJ4L07o+r0nwwQkWeZsN4Ll1rhurC75D+E4iZP1Qn5U82SyUx0= -----END CERTIFICATE-----Generated at Wed Nov 5 14:06:02 2025 by rpki-client