$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa File: df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa (raw, json) Hash identifier: 11p2Hee+Pz5TqbD6GDLaZrgZEV3mU2hpVPYjM1hW8+Y= Subject key identifier: EB:F4:7A:9C:39:AA:23:60:A9:3E:4E:5E:34:33:62:7D:FD:3D:EC:44 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0ED87373E56092CA7E57A73813B9C5D44F8BE9EE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa Signing time: Wed 29 Oct 2025 00:10:09 +0000 ROA not before: Wed 29 Oct 2025 00:10:09 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d8:73:73:e5:60:92:ca:7e:57:a7:38:13:b9:c5:d4:4f:8b:e9:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:10:09 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=bcecf897aa1dceefe1291cc0dc78bb2d5983019612342dbe24794e72c484c995, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7b:c6:0b:c6:c1:51:b0:c4:af:5d:3e:2e:00: d9:b6:8f:5b:33:b3:64:e4:11:97:65:73:b3:5a:5e: b7:d5:be:b1:ae:b1:bf:3c:e8:dc:29:c5:50:e6:ca: b4:34:9a:fd:6a:ac:0f:74:b6:99:3d:72:82:ec:1d: 00:6a:33:27:b7:57:66:22:b5:f7:85:6d:bb:16:20: 49:6f:38:13:76:00:f6:55:88:a4:26:ac:68:aa:67: 66:2a:31:b7:a0:a2:e2:59:0b:44:41:d5:8b:77:41: 8b:3b:a5:c7:b0:0b:8d:50:bb:9b:0e:8b:d2:81:a8: ad:1e:e3:31:e9:d5:d1:a0:43:50:93:c8:e4:47:9c: f9:9f:cd:b4:bf:8f:41:86:5f:2b:6d:ac:5a:88:79: bd:84:48:aa:e7:73:ca:0f:e2:20:88:f4:f0:f0:8a: cf:76:53:65:5c:df:11:97:b4:de:f5:aa:8c:29:06: 2c:9b:c9:8f:b6:b5:24:b2:b0:d8:4e:3d:a4:b1:fa: 6e:36:4b:53:77:94:54:78:76:80:62:fc:c8:84:ce: 93:02:17:27:a5:65:4c:15:13:9c:fb:36:e2:82:56: 47:ae:20:ff:f1:c4:d7:7c:25:17:73:db:42:3d:9f: 1a:f3:6a:03:33:ba:76:a6:91:5f:6a:c0:cf:91:9c: 34:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F4:7A:9C:39:AA:23:60:A9:3E:4E:5E:34:33:62:7D:FD:3D:EC:44 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/df197ecf-bb9a-42ae-a19a-a4168fe6a3a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.232.0/24 Signature Algorithm: sha256WithRSAEncryption 38:77:37:03:ca:c6:6e:73:de:4f:cd:30:99:a6:75:58:fd:78: 48:5a:f9:46:05:fa:0e:db:fa:94:ce:78:f8:fa:21:94:22:72: e1:44:49:90:80:36:a2:06:a1:04:79:d5:c0:96:27:df:bf:90: 29:68:a1:f5:f7:49:d5:e3:69:3d:33:73:e8:9b:82:e1:64:dc: d4:fb:7a:d6:09:e8:fa:8f:ff:f6:d6:49:2f:02:b7:a6:6c:fa: ba:65:c1:68:66:11:5b:e6:a2:f0:1b:99:00:db:bf:7c:51:f6: 6b:e1:12:88:2d:ad:a5:fe:bb:05:0f:8e:a8:57:b2:64:7e:33: 39:d5:36:e4:b9:55:41:54:95:f6:28:96:7c:72:c9:80:af:25: bd:ab:e1:d4:57:61:6d:fa:79:49:d0:f7:c6:cc:12:3e:c4:b8: 21:c4:ee:43:08:1b:b5:64:9c:7d:67:1d:d7:99:0f:f3:42:d2: 99:59:17:85:d2:99:c4:dc:d3:cc:29:ee:be:1c:9f:69:44:2e: f0:ac:4b:ae:07:55:e8:fa:a5:dc:2c:0a:92:38:53:99:8e:70: 52:fd:a6:6d:c2:f7:0f:7b:f9:68:dc:c5:0f:a7:08:b2:79:21: dd:06:54:bf:ca:0c:c5:0d:de:c4:ba:12:d4:b0:55:cc:28:df: 6d:29:cf:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDthzc+Vgksp+V6c4E7nF1E+L6e4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAxMDA5WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2VjZjg5N2FhMWRjZWVmZTEyOTFjYzBkYzc4YmIyZDU5 ODMwMTk2MTIzNDJkYmUyNDc5NGU3MmM0ODRjOTk1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpe8YLxsFRsMSvXT4uANm2j1szs2TkEZdlc7NaXrfVvrGu sb886NwpxVDmyrQ0mv1qrA90tpk9coLsHQBqMye3V2YitfeFbbsWIElvOBN2APZV iKQmrGiqZ2YqMbegouJZC0RB1Yt3QYs7pcewC41Qu5sOi9KBqK0e4zHp1dGgQ1CT yORHnPmfzbS/j0GGXyttrFqIeb2ESKrnc8oP4iCI9PDwis92U2Vc3xGXtN71qowp BiybyY+2tSSysNhOPaSx+m42S1N3lFR4doBi/MiEzpMCFyelZUwVE5z7NuKCVkeu IP/xxNd8JRdz20I9nxrzagMzunamkV9qwM+RnDQ9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6/R6nDmqI2CpPk5eNDNiff097EQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2RmMTk3ZWNmLWJiOWEtNDJhZS1hMTlhLWE0MTY4ZmU2YTNhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++gwDQYJKoZIhvcNAQELBQADggEBADh3NwPKxm5z3k/NMJmmdVj9eEha +UYF+g7b+pTOePj6IZQicuFESZCANqIGoQR51cCWJ9+/kCloofX3SdXjaT0zc+ib guFk3NT7etYJ6PqP//bWSS8Ct6Zs+rplwWhmEVvmovAbmQDbv3xR9mvhEogtraX+ uwUPjqhXsmR+MznVNuS5VUFUlfYolnxyyYCvJb2r4dRXYW36eUnQ98bMEj7EuCHE 7kMIG7VknH1nHdeZD/NC0plZF4XSmcTc08wp7r4cn2lELvCsS64HVej6pdwsCpI4 U5mOcFL9pm3C9w97+WjcxQ+nCLJ5Id0GVL/KDMUN3sS6EtSwVcwo320pz20= -----END CERTIFICATE-----Generated at Wed Nov 5 12:37:13 2025 by rpki-client