$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa File: b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa (raw, json) Hash identifier: FxtIOLTeO93jCFRRRw1iNWYtN8VFiZiQJaCVfL2Yas8= Subject key identifier: 46:9B:F1:58:EE:6D:A7:FD:CB:7F:E4:50:7B:0D:CB:04:FE:AC:E0:5E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7B3D9C96C754F199D4125E95EC240B381AA6E067 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa Signing time: Wed 29 Oct 2025 00:10:08 +0000 ROA not before: Wed 29 Oct 2025 00:10:08 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.251.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:3d:9c:96:c7:54:f1:99:d4:12:5e:95:ec:24:0b:38:1a:a6:e0:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:10:08 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=a4a859f5d76bd083a67191507dd4dedab4263b9caf3746c624530e50a4705bf7, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:49:a5:fc:e5:eb:63:44:50:27:cc:a9:0d: 21:2f:c5:30:60:0a:5f:93:5e:5d:93:46:04:27:31: a1:f9:b5:c0:7b:8b:17:ac:b8:36:4d:59:d6:54:90: db:9a:a5:ae:4f:a5:5b:d0:cf:6a:d1:02:61:d0:f3: 31:58:90:66:95:f9:36:96:c6:4d:52:eb:e4:a2:b0: b5:ef:ad:9b:a4:0e:5b:51:0d:2c:d6:1a:ef:69:a0: 7a:33:42:d2:82:a7:92:af:eb:f2:a9:c5:6b:87:8f: 71:2a:b8:38:bf:f0:3f:87:1d:53:d2:9d:74:32:e8: 10:62:d3:76:bb:be:c9:31:21:7a:2e:91:30:52:f7: 77:a9:83:12:56:06:c5:0f:52:f5:fc:d5:bb:8f:21: b0:13:8a:a4:35:7e:42:5b:b9:99:73:ac:18:96:65: 27:81:a3:44:52:78:0a:5d:a3:e6:ae:0b:cc:3f:d1: c7:c8:0c:29:fe:7d:ac:34:24:8c:f0:56:8f:31:93: 5b:00:a0:6a:24:59:17:0d:f6:3a:85:41:c9:94:4c: 46:45:ca:fc:fe:ee:46:c2:fb:44:b7:39:f9:a6:e5: 23:99:38:f8:38:95:7d:43:a6:b5:4c:a3:7e:c2:1d: 14:ba:d9:11:03:d0:24:6b:85:6b:e6:71:1c:ec:fa: 9e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:9B:F1:58:EE:6D:A7:FD:CB:7F:E4:50:7B:0D:CB:04:FE:AC:E0:5E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.228.0/22 Signature Algorithm: sha256WithRSAEncryption 56:6a:1e:0e:26:51:76:4e:b9:07:ec:11:77:e6:db:17:6b:3d: f2:9c:dc:83:3c:60:3f:4d:9b:ee:3a:5d:7b:28:bd:53:28:ab: 1d:1c:03:8a:29:4a:bb:3f:4c:75:79:6a:c8:cc:43:cc:44:17: c0:8c:78:7c:47:7b:e4:ed:73:67:49:48:89:ae:75:ef:39:f3: 8b:e1:d3:be:a0:87:e1:41:05:30:26:da:a1:b8:28:55:c8:51: f6:5b:af:58:2c:71:f7:da:43:93:c3:93:0a:66:dc:1d:3e:52: 8d:0e:65:6f:0a:cb:ea:a7:04:51:9e:f7:3e:68:23:cf:6e:90: 7c:a6:8d:b4:b7:61:3a:9b:69:40:a9:1c:8a:0e:07:bb:df:6e: 2c:3b:f4:c5:60:d9:40:50:ad:24:c1:dc:e2:4b:bb:6b:a7:91: d2:4d:ee:15:84:af:fe:9a:60:9d:c6:f7:e4:83:98:ac:de:91: 56:ad:c9:7a:ab:0f:46:5b:97:c8:af:4b:96:57:c9:76:70:69: 78:6e:af:84:52:63:d8:b1:e4:80:80:1e:a9:bf:44:8a:8b:61: 43:c6:50:85:dc:6d:2b:a4:93:f6:6b:43:13:fe:3e:1e:15:e7: 9c:9d:18:20:ed:f4:21:e3:77:34:09:b8:ad:54:4d:6e:09:d4: 27:09:78:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUez2clsdU8ZnUEl6V7CQLOBqm4GcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAxMDA4WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGE4NTlmNWQ3NmJkMDgzYTY3MTkxNTA3ZGQ0ZGVkYWI0 MjYzYjljYWYzNzQ2YzYyNDUzMGU1MGE0NzA1YmY3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG1Uml/OXrY0RQJ8ypDSEvxTBgCl+TXl2TRgQnMaH5tcB7 ixesuDZNWdZUkNuapa5PpVvQz2rRAmHQ8zFYkGaV+TaWxk1S6+SisLXvrZukDltR DSzWGu9poHozQtKCp5Kv6/KpxWuHj3EquDi/8D+HHVPSnXQy6BBi03a7vskxIXou kTBS93epgxJWBsUPUvX81buPIbATiqQ1fkJbuZlzrBiWZSeBo0RSeApdo+auC8w/ 0cfIDCn+faw0JIzwVo8xk1sAoGokWRcN9jqFQcmUTEZFyvz+7kbC+0S3Ofmm5SOZ OPg4lX1DprVMo37CHRS62RED0CRrhWvmcRzs+p4nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURpvxWO5tp/3Lf+RQew3LBP6s4F4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2ZWU5M2Q4LWQ3YTctNDFhZC04ZGUxLTkwYTA1NWJjMTk3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX++QwDQYJKoZIhvcNAQELBQADggEBAFZqHg4mUXZOuQfsEXfm2xdrPfKc 3IM8YD9Nm+46XXsovVMoqx0cA4opSrs/THV5asjMQ8xEF8CMeHxHe+Ttc2dJSImu de8584vh076gh+FBBTAm2qG4KFXIUfZbr1gscffaQ5PDkwpm3B0+Uo0OZW8Ky+qn BFGe9z5oI89ukHymjbS3YTqbaUCpHIoOB7vfbiw79MVg2UBQrSTB3OJLu2unkdJN 7hWEr/6aYJ3G9+SDmKzekVatyXqrD0Zbl8ivS5ZXyXZwaXhur4RSY9ix5ICAHqm/ RIqLYUPGUIXcbSukk/ZrQxP+Ph4V55ydGCDt9CHjdzQJuK1UTW4J1CcJeJA= -----END CERTIFICATE-----Generated at Wed Nov 5 12:36:33 2025 by rpki-client