$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa File: cb088b4a-420f-4b13-84d1-b160e021b919.roa (raw, json) Hash identifier: 7Audpm+CfdTxvejVL/S4Vf7zPp53Knpg4m5CNFC1Wns= Subject key identifier: 1A:C3:94:34:1D:F2:D6:E5:05:E5:06:E8:E8:46:D3:4F:5F:D5:8B:82 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2ADEC153547E63C336EA67B96B6B0287601DE6BC Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa Signing time: Wed 29 Oct 2025 00:10:10 +0000 ROA not before: Wed 29 Oct 2025 00:10:10 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:de:c1:53:54:7e:63:c3:36:ea:67:b9:6b:6b:02:87:60:1d:e6:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:10:10 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=e5b86eb2b1061359ee63d96cc23167c29c43165ed6a412d9c6dc07e549b55189, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:21:cd:9f:fc:57:fe:4d:cb:44:79:58:d2:df: 26:21:a8:9d:cd:0c:10:d0:3f:15:50:5a:c2:5e:ad: 99:5f:8e:bc:18:31:83:46:e1:a6:6f:72:fd:22:81: 6b:0a:72:dc:41:d1:19:9d:1c:cf:cd:d9:91:6c:b6: c2:f5:ba:48:f3:db:2d:75:b2:85:bc:21:06:57:ec: 8f:be:5f:f9:f6:0f:4b:61:bf:d8:be:0d:8e:0f:0f: f5:22:7a:5f:10:21:57:87:f1:5f:98:57:a8:9e:fe: 28:67:e1:e2:90:bf:aa:3b:a4:dd:6f:8e:eb:ee:d0: 27:f6:ed:6c:a8:b7:62:c0:4f:49:32:a8:9f:86:8c: ec:88:27:6d:cf:8e:c6:49:74:ad:f2:53:cd:f4:62: 8f:59:34:6f:17:02:a5:fa:dd:6d:e4:6f:3e:f8:79: 8e:1a:0e:38:37:0d:55:4f:f5:67:b7:54:a1:d1:a6: fa:ca:f6:99:aa:01:33:1c:ae:1e:14:e7:62:b0:48: 92:6a:41:95:25:b1:40:58:27:db:69:d9:09:b8:75: ec:fb:65:5f:27:50:af:5f:f5:26:eb:54:0a:f8:8b: b0:d4:91:22:2d:f0:eb:12:a4:eb:af:a7:e4:e6:5a: 51:52:59:82:bb:52:c3:38:60:a9:b4:b9:58:99:df: cf:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C3:94:34:1D:F2:D6:E5:05:E5:06:E8:E8:46:D3:4F:5F:D5:8B:82 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cb088b4a-420f-4b13-84d1-b160e021b919.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.227.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:63:58:7d:3f:eb:ed:c3:4b:46:e6:59:9e:cb:c3:40:cd:3a: 2a:4d:94:83:7d:19:51:b9:60:12:7a:79:16:d2:c7:00:b0:cd: cb:1b:3e:b1:b5:e2:01:83:81:9f:02:6c:1f:33:ef:65:aa:64: 61:13:06:f3:9f:af:e2:ea:22:e8:0c:88:0f:11:96:25:62:60: d4:58:46:f4:d5:c3:ae:8f:ed:e5:34:d4:a8:d9:2c:fe:08:93: bd:41:f2:da:17:5e:6f:fa:a3:3b:ee:ef:4c:df:02:91:0c:37: bd:71:72:5d:59:b7:f4:e8:1a:79:80:23:04:b8:ab:02:f1:b7: 74:27:75:1e:88:93:d0:cc:39:82:57:46:6b:89:e4:40:33:bf: 42:e9:51:ce:d7:69:6c:9e:15:72:69:20:21:5f:6e:d8:92:d1: 3a:6b:41:44:8a:ef:3a:ea:b4:e5:a4:db:91:06:58:b4:1f:e4: c3:f7:03:35:58:78:b3:53:d4:25:54:d2:86:3f:1d:ea:9f:4c: a8:2b:dd:dd:55:d5:71:a3:ab:93:4f:ca:ce:3e:8f:af:a1:bb: 62:c6:68:39:51:82:62:39:e3:a2:35:cc:2a:4f:10:44:2b:29: 7d:1c:40:b4:85:85:e4:94:8a:a3:94:7d:f4:e0:8b:24:03:1b: ee:f1:0f:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKt7BU1R+Y8M26me5a2sCh2Ad5rwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAxMDEwWhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWI4NmViMmIxMDYxMzU5ZWU2M2Q5NmNjMjMxNjdjMjlj NDMxNjVlZDZhNDEyZDljNmRjMDdlNTQ5YjU1MTg5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLIc2f/Ff+TctEeVjS3yYhqJ3NDBDQPxVQWsJerZlfjrwY MYNG4aZvcv0igWsKctxB0RmdHM/N2ZFstsL1ukjz2y11soW8IQZX7I++X/n2D0th v9i+DY4PD/Uiel8QIVeH8V+YV6ie/ihn4eKQv6o7pN1vjuvu0Cf27Wyot2LAT0ky qJ+GjOyIJ23PjsZJdK3yU830Yo9ZNG8XAqX63W3kbz74eY4aDjg3DVVP9We3VKHR pvrK9pmqATMcrh4U52KwSJJqQZUlsUBYJ9tp2Qm4dez7ZV8nUK9f9SbrVAr4i7DU kSIt8OsSpOuvp+TmWlFSWYK7UsM4YKm0uViZ38+9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGsOUNB3y1uUF5Qbo6EbTT1/Vi4IwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NiMDg4YjRhLTQyMGYtNGIxMy04NGQxLWIxNjBlMDIxYjkxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeMwDQYJKoZIhvcNAQELBQADggEBAC1jWH0/6+3DS0bmWZ7Lw0DNOipN lIN9GVG5YBJ6eRbSxwCwzcsbPrG14gGDgZ8CbB8z72WqZGETBvOfr+LqIugMiA8R liViYNRYRvTVw66P7eU01KjZLP4Ik71B8toXXm/6ozvu70zfApEMN71xcl1Zt/To GnmAIwS4qwLxt3QndR6Ik9DMOYJXRmuJ5EAzv0LpUc7XaWyeFXJpICFfbtiS0Tpr QUSK7zrqtOWk25EGWLQf5MP3AzVYeLNT1CVU0oY/HeqfTKgr3d1V1XGjq5NPys4+ j6+hu2LGaDlRgmI546I1zCpPEEQrKX0cQLSFheSUiqOUffTgiyQDG+7xD6M= -----END CERTIFICATE-----Generated at Wed Nov 5 07:59:38 2025 by rpki-client