$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa File: d61aefde-15db-4326-8486-f4cd98992cbc.roa (raw, json) Hash identifier: xwUJS5BLMxh/ho03DanaQBLaiUFMHcEOW6bf36XmxAA= Subject key identifier: B6:43:3C:EE:FC:47:FF:AF:3F:36:1F:50:E1:BF:1A:94:14:3C:01:42 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 53B255375DF1434A73D3AE814BDFD04F32EC7737 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa Signing time: Wed 29 Oct 2025 00:20:05 +0000 ROA not before: Wed 29 Oct 2025 00:20:05 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:b2:55:37:5d:f1:43:4a:73:d3:ae:81:4b:df:d0:4f:32:ec:77:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:20:05 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=df01af296106d8c01a079b19aaabc9c5f60284f552bcef5d140e6a80302bdf9e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:75:70:22:81:39:d6:3c:48:01:43:56:dd:9b: 53:f5:07:96:dd:3b:c1:91:b9:0b:fb:6e:16:8a:89: 9b:f6:0b:8d:42:3b:1e:33:b5:d3:46:5e:e1:e8:f2: ae:2d:d4:0d:a6:60:1e:fa:5f:e8:21:f7:27:70:3d: 9a:cd:d6:7f:80:e3:9c:c0:14:00:ba:bd:d7:66:55: 59:a6:37:4f:91:18:d7:46:5e:9d:48:77:1a:2a:c0: 0e:ae:a9:b3:2d:dc:42:2e:28:54:9d:17:30:d0:5a: 7c:4a:96:db:9c:89:de:ce:ec:20:88:c2:70:27:5f: 8b:46:cf:ce:e0:cd:f6:1a:6d:0f:bf:26:56:9e:e1: da:e5:ee:db:d4:f2:b7:23:76:d0:80:4d:95:4a:65: 73:86:d8:d9:42:72:1a:06:58:b3:b9:ae:d9:1e:ea: 29:73:e0:64:22:e9:fa:11:72:4c:49:1c:ff:de:d0: 81:c4:b2:c6:67:57:f2:19:2d:16:31:48:9e:f7:3e: fb:4a:91:43:4c:a1:e1:c1:d4:fa:c6:ee:a0:c2:59: c5:5f:6b:0d:4d:b8:70:c3:c4:57:10:c8:92:c2:b7: 8d:a4:1f:75:f1:17:50:de:c6:30:39:33:2c:8e:70: 53:0a:dd:00:b9:a0:db:09:97:03:98:be:16:44:19: 9d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:43:3C:EE:FC:47:FF:AF:3F:36:1F:50:E1:BF:1A:94:14:3C:01:42 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/d61aefde-15db-4326-8486-f4cd98992cbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.223.0/24 Signature Algorithm: sha256WithRSAEncryption 38:ea:54:05:97:96:76:e2:39:50:86:de:a9:5f:1c:0e:a6:de: b2:b5:60:f5:ba:0d:ff:67:db:9f:13:2a:f9:b0:55:1c:e1:16: d8:f5:50:b2:02:18:7a:b9:f5:a1:8f:bd:36:f2:9f:56:7f:9b: 8e:09:b5:70:de:71:f4:b0:af:55:08:b4:bd:5e:79:b2:94:b3: 6e:eb:fa:8c:4f:ed:0d:ef:1d:69:a3:9e:65:3e:68:e6:78:62: 6c:20:24:cd:ed:a1:1b:1b:7e:d7:78:33:1d:15:5e:ee:b2:7b: 5f:9f:02:03:d3:2a:7c:48:b5:8f:2f:94:f3:99:5e:3d:30:f8: 0f:b9:9f:01:f1:12:37:10:19:02:64:89:b4:a5:4f:77:d4:d0: c2:c7:25:b0:21:2d:9f:c5:02:d2:56:74:a7:31:6d:a7:6b:2a: 61:7c:36:e8:b1:f0:b5:fe:11:4b:0b:ff:f9:68:bf:a2:9a:db: 0a:dd:a6:03:a8:ec:c6:65:74:82:9f:56:83:ab:03:00:0e:6c: 8b:30:a4:b6:dd:0c:f7:b1:32:d4:7f:f9:80:47:c2:69:67:80: 89:20:f7:4a:c6:88:31:83:26:2b:9c:7d:06:31:29:5b:fd:24: 4e:84:a5:62:16:eb:60:ea:f1:53:72:e0:e4:6c:ee:96:74:42: 52:8f:2b:35 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU7JVN13xQ0pz066BS9/QTzLsdzcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAyMDA1WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjAxYWYyOTYxMDZkOGMwMWEwNzliMTlhYWFiYzljNWY2 MDI4NGY1NTJiY2VmNWQxNDBlNmE4MDMwMmJkZjllMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYdXAigTnWPEgBQ1bdm1P1B5bdO8GRuQv7bhaKiZv2C41C Ox4ztdNGXuHo8q4t1A2mYB76X+gh9ydwPZrN1n+A45zAFAC6vddmVVmmN0+RGNdG Xp1IdxoqwA6uqbMt3EIuKFSdFzDQWnxKltucid7O7CCIwnAnX4tGz87gzfYabQ+/ Jlae4drl7tvU8rcjdtCATZVKZXOG2NlCchoGWLO5rtke6ilz4GQi6foRckxJHP/e 0IHEssZnV/IZLRYxSJ73PvtKkUNMoeHB1PrG7qDCWcVfaw1NuHDDxFcQyJLCt42k H3XxF1DexjA5MyyOcFMK3QC5oNsJlwOYvhZEGZ2BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtkM87vxH/68/Nh9Q4b8alBQ8AUIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Q2MWFlZmRlLTE1ZGItNDMyNi04NDg2LWY0Y2Q5ODk5MmNiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+d8wDQYJKoZIhvcNAQELBQADggEBADjqVAWXlnbiOVCG3qlfHA6m3rK1 YPW6Df9n258TKvmwVRzhFtj1ULICGHq59aGPvTbyn1Z/m44JtXDecfSwr1UItL1e ebKUs27r+oxP7Q3vHWmjnmU+aOZ4YmwgJM3toRsbftd4Mx0VXu6ye1+fAgPTKnxI tY8vlPOZXj0w+A+5nwHxEjcQGQJkibSlT3fU0MLHJbAhLZ/FAtJWdKcxbadrKmF8 Nuix8LX+EUsL//lov6Ka2wrdpgOo7MZldIKfVoOrAwAObIswpLbdDPexMtR/+YBH wmlngIkg90rGiDGDJiucfQYxKVv9JE6EpWIW62Dq8VNy4ORs7pZ0QlKPKzU= -----END CERTIFICATE-----Generated at Wed Nov 5 09:33:33 2025 by rpki-client