$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c09e0f25-1200-46ec-b6a7-aa4a9764d8c9.roa File: c09e0f25-1200-46ec-b6a7-aa4a9764d8c9.roa (raw, json) Hash identifier: oDyTKuQ3ksUHa8LlYuTQDq67mgYxVcqAkpunVlthKmE= Subject key identifier: 23:30:71:A5:8C:B0:08:CF:1F:D4:69:23:67:A3:25:14:9B:5D:4C:E3 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0BB8A632FC61B85803F7CA072AC30D59B9664010 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c09e0f25-1200-46ec-b6a7-aa4a9764d8c9.roa Signing time: Wed 29 Oct 2025 00:20:16 +0000 ROA not before: Wed 29 Oct 2025 00:20:16 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b8:a6:32:fc:61:b8:58:03:f7:ca:07:2a:c3:0d:59:b9:66:40:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:20:16 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=bd486cdc5eef8abf3e096bb3595852422bd0a9e350a8219afc0bb267706bf72a, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:aa:30:59:59:15:4f:26:74:33:79:50:af:50: 95:36:91:63:74:fe:70:cc:bc:4e:5d:22:9a:91:83: fa:c5:d8:77:62:c3:67:ca:f9:b0:70:9e:e7:a2:90: 42:c4:d7:bf:f5:11:2b:5b:e5:a4:fe:6e:e0:b5:dc: 56:f8:dd:ee:3f:7b:07:51:a9:c5:23:8b:b9:e6:eb: 1b:83:9e:28:0d:32:08:52:ef:a6:93:d2:e6:a3:48: 0c:83:72:4a:89:3c:19:2e:cf:21:d3:d4:86:af:cb: 92:ea:5c:7a:52:a1:31:f1:d2:aa:32:a7:b2:be:ab: 86:8c:cb:6f:07:20:4b:4f:58:0a:19:02:92:66:5a: 5a:cf:59:d5:6d:ef:2c:c4:d9:c5:b5:95:db:15:61: ad:95:f9:46:b1:9f:be:d7:09:c3:a9:7b:29:bb:4d: 27:e5:d0:1a:0f:98:1e:9c:1f:a8:c3:b3:1e:7a:33: ea:04:ce:1a:e3:30:a8:79:95:f3:2d:95:c4:e2:28: d5:8c:2c:74:f1:6e:97:58:73:ea:91:5c:ac:14:55: 21:fb:15:54:ac:78:8c:02:ac:da:e6:f2:f1:45:82: cc:5e:c4:1b:80:f0:18:f6:4e:bd:ae:c5:a6:32:ec: 6d:f5:cb:6d:f3:60:66:fe:3e:1c:57:85:7a:b5:d0: b5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:30:71:A5:8C:B0:08:CF:1F:D4:69:23:67:A3:25:14:9B:5D:4C:E3 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/c09e0f25-1200-46ec-b6a7-aa4a9764d8c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.215.0/24 Signature Algorithm: sha256WithRSAEncryption 82:7b:64:0f:fb:a2:98:29:b2:94:56:10:1b:97:ee:28:5b:87: a3:5c:fa:42:e9:f2:f8:fa:eb:76:79:61:e3:57:a1:ca:7e:1a: 09:46:64:22:c7:f3:da:f7:ab:ac:ae:23:0c:f9:77:cf:04:09: 3c:81:61:82:24:28:63:dc:f4:c4:83:5e:ef:47:6c:72:1e:a5: 8b:8c:42:15:50:c1:6d:ec:ae:2e:88:cf:07:19:c2:e7:f7:9f: 88:ec:1b:63:eb:c7:e9:61:15:3e:ec:23:f0:c8:a0:5a:2b:03: b2:70:e0:f6:78:79:02:d4:da:34:69:b3:85:cb:4f:5b:04:33: 63:4b:e4:0c:e0:e6:a0:be:c2:c7:71:e0:68:d7:25:67:09:81: 69:66:8c:1b:b6:b6:63:21:65:6c:a6:a8:c6:b2:15:cc:b0:08: 76:98:81:ae:2c:af:25:6a:91:d5:fb:d6:3c:be:c9:15:b1:b0: e6:a8:65:7a:3e:d6:72:d9:6d:a8:f5:2e:50:da:fa:d0:b4:e8: 1e:f1:a2:81:3b:a7:03:07:6e:fd:c7:d9:91:13:e6:51:9f:96: b2:a3:5d:3d:57:e0:5e:5a:52:3c:51:fc:45:7d:ec:00:5d:28: 31:99:bd:91:f9:88:8a:00:17:09:d7:20:d2:95:9f:4c:34:74: ab:c9:37:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC7imMvxhuFgD98oHKsMNWblmQBAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAyMDE2WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDQ4NmNkYzVlZWY4YWJmM2UwOTZiYjM1OTU4NTI0MjJi ZDBhOWUzNTBhODIxOWFmYzBiYjI2NzcwNmJmNzJhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFqjBZWRVPJnQzeVCvUJU2kWN0/nDMvE5dIpqRg/rF2Hdi w2fK+bBwnueikELE17/1EStb5aT+buC13Fb43e4/ewdRqcUji7nm6xuDnigNMghS 76aT0uajSAyDckqJPBkuzyHT1Iavy5LqXHpSoTHx0qoyp7K+q4aMy28HIEtPWAoZ ApJmWlrPWdVt7yzE2cW1ldsVYa2V+Uaxn77XCcOpeym7TSfl0BoPmB6cH6jDsx56 M+oEzhrjMKh5lfMtlcTiKNWMLHTxbpdYc+qRXKwUVSH7FVSseIwCrNrm8vFFgsxe xBuA8Bj2Tr2uxaYy7G31y23zYGb+PhxXhXq10LV/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIzBxpYywCM8f1GkjZ6MlFJtdTOMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2MwOWUwZjI1LTEyMDAtNDZlYy1iNmE3LWFhNGE5NzY0ZDhjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dcwDQYJKoZIhvcNAQELBQADggEBAIJ7ZA/7opgpspRWEBuX7ihbh6Nc +kLp8vj663Z5YeNXocp+GglGZCLH89r3q6yuIwz5d88ECTyBYYIkKGPc9MSDXu9H bHIepYuMQhVQwW3sri6IzwcZwuf3n4jsG2Prx+lhFT7sI/DIoForA7Jw4PZ4eQLU 2jRps4XLT1sEM2NL5Azg5qC+wsdx4GjXJWcJgWlmjBu2tmMhZWymqMayFcywCHaY ga4sryVqkdX71jy+yRWxsOaoZXo+1nLZbaj1LlDa+tC06B7xooE7pwMHbv3H2ZET 5lGflrKjXT1X4F5aUjxR/EV97ABdKDGZvZH5iIoAFwnXINKVn0w0dKvJN6o= -----END CERTIFICATE-----Generated at Wed Nov 5 17:52:03 2025 by rpki-client