$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa File: b5e0d86e-0f74-41d8-a413-497ad79e414d.roa (raw, json) Hash identifier: eDiyM41jjeRwy/q1RPh8Fw3X4XKqzyS+RFOWWimf78Q= Subject key identifier: 85:D8:6B:82:3E:10:C4:8D:BF:AE:86:B8:C7:0D:71:F7:0B:FF:96:90 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 120324FC641D4E73ABEAFD535EFA8670265EEC57 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa Signing time: Tue 28 Oct 2025 00:00:06 +0000 ROA not before: Tue 28 Oct 2025 00:00:06 +0000 ROA not after: Tue 02 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:03:24:fc:64:1d:4e:73:ab:ea:fd:53:5e:fa:86:70:26:5e:ec:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 28 00:00:06 2025 GMT Not After : Dec 2 23:59:59 2025 GMT Subject: serialNumber=f8e6c68f8e06221fb38f78fca05608edaeebe829293fb89d6becc25c3664c244, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:5a:48:10:7a:71:14:35:5a:a2:26:8a:d4:d2: fa:83:df:15:40:10:b5:24:17:d5:b5:96:96:c7:20: 48:42:e4:77:3e:cc:12:ad:fc:aa:1b:e1:30:df:b7: 54:11:51:23:6a:3a:c4:88:4f:30:e2:b4:a6:ae:15: 79:7b:3b:49:41:c3:52:72:91:04:c2:49:b0:4d:39: a7:03:0a:1d:8e:b8:08:04:51:47:f5:6f:4f:fb:85: b9:32:1b:15:95:11:54:9e:e4:34:b0:64:cd:22:7e: ca:e8:cf:14:cf:cd:5a:b2:9e:8f:1e:64:df:ee:74: 75:41:7c:36:b3:3f:e0:4a:6f:7d:ea:f8:71:6b:64: 12:0c:71:9b:c3:b4:fc:8b:cd:d1:50:09:db:db:a3: 60:b4:fa:69:d8:d8:ca:bf:0b:4e:f3:e9:d1:96:42: f9:ed:5d:7f:3b:65:80:2b:b0:a0:5e:77:3d:71:ae: ad:45:f8:b1:8b:cf:42:98:88:fc:0a:62:84:dc:6f: ca:d0:11:03:2f:e7:f4:52:d0:70:e4:17:97:2e:43: d7:43:92:04:ca:53:42:7b:39:45:e9:29:a4:56:73: fd:39:2c:c8:d2:c7:f6:8a:31:20:5a:16:e4:9e:d3: 0f:df:22:30:b5:08:40:8d:65:e8:19:66:e3:8c:97: 7b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D8:6B:82:3E:10:C4:8D:BF:AE:86:B8:C7:0D:71:F7:0B:FF:96:90 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b5e0d86e-0f74-41d8-a413-497ad79e414d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.160.0/19 Signature Algorithm: sha256WithRSAEncryption 83:b9:92:73:8b:00:a4:fc:6b:2a:dc:63:9b:87:eb:44:b9:54: d5:6e:69:f9:8f:00:30:43:24:42:df:82:e5:38:97:d9:77:c9: 38:80:c5:e3:ad:82:ff:27:a9:e0:d6:bf:ea:54:5b:09:66:26: ec:e0:7a:31:e3:bd:f6:7d:d3:4a:bd:ec:01:5f:df:18:6d:9c: 9b:9d:92:1a:01:52:1f:a5:97:cd:e5:51:20:2d:5a:b4:2d:cc: 52:a5:c5:a2:0c:1e:15:a3:fb:d0:c2:22:f3:5d:cc:bf:7a:cb: 1c:dc:29:01:2e:37:8b:b6:09:9d:ef:d6:bc:3f:b8:0f:03:13: 5c:00:ed:ba:e4:a6:53:a9:92:bb:2f:19:2d:3e:4a:1b:9c:1f: a6:4b:38:ff:e3:1f:c2:19:c5:e0:12:4a:8d:34:1e:ac:6f:e2: 25:ab:1f:59:57:40:09:d7:3b:f4:03:f1:52:65:36:d1:7a:9a: 76:f9:e9:8f:94:87:00:6a:8f:35:d5:74:82:f5:b3:0d:c3:ef: 50:20:ec:4c:7c:88:c2:4e:98:24:ab:67:ca:f9:1b:39:ad:77: 95:22:cf:47:85:ec:49:af:6b:82:b3:65:52:d7:34:dd:1d:86: 6c:00:71:d8:20:15:23:65:52:e2:79:14:91:fc:54:cf:29:cb: d0:cd:b2:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEgMk/GQdTnOr6v1TXvqGcCZe7FcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI4MDAwMDA2WhcNMjUxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOGU2YzY4ZjhlMDYyMjFmYjM4Zjc4ZmNhMDU2MDhlZGFl ZWJlODI5MjkzZmI4OWQ2YmVjYzI1YzM2NjRjMjQ0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDzWkgQenEUNVqiJorU0vqD3xVAELUkF9W1lpbHIEhC5Hc+ zBKt/Kob4TDft1QRUSNqOsSITzDitKauFXl7O0lBw1JykQTCSbBNOacDCh2OuAgE UUf1b0/7hbkyGxWVEVSe5DSwZM0ifsrozxTPzVqyno8eZN/udHVBfDazP+BKb33q +HFrZBIMcZvDtPyLzdFQCdvbo2C0+mnY2Mq/C07z6dGWQvntXX87ZYArsKBedz1x rq1F+LGLz0KYiPwKYoTcb8rQEQMv5/RS0HDkF5cuQ9dDkgTKU0J7OUXpKaRWc/05 LMjSx/aKMSBaFuSe0w/fIjC1CECNZegZZuOMl3sLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhdhrgj4QxI2/roa4xw1x9wv/lpAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1ZTBkODZlLTBmNzQtNDFkOC1hNDEzLTQ5N2FkNzllNDE0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXY3aAwDQYJKoZIhvcNAQELBQADggEBAIO5knOLAKT8ayrcY5uH60S5VNVu afmPADBDJELfguU4l9l3yTiAxeOtgv8nqeDWv+pUWwlmJuzgejHjvfZ900q97AFf 3xhtnJudkhoBUh+ll83lUSAtWrQtzFKlxaIMHhWj+9DCIvNdzL96yxzcKQEuN4u2 CZ3v1rw/uA8DE1wA7brkplOpkrsvGS0+ShucH6ZLOP/jH8IZxeASSo00Hqxv4iWr H1lXQAnXO/QD8VJlNtF6mnb56Y+UhwBqjzXVdIL1sw3D71Ag7Ex8iMJOmCSrZ8r5 Gzmtd5Uiz0eF7Emva4KzZVLXNN0dhmwAcdggFSNlUuJ5FJH8VM8py9DNsuI= -----END CERTIFICATE-----Generated at Wed Nov 5 05:42:06 2025 by rpki-client