$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa File: e41ada77-fa4f-4da3-a532-14382438f575.roa (raw, json) Hash identifier: QFHBSujLHnCpqr+sOTD+PlidVUBE93Bv6V6ULYzQhck= Subject key identifier: 98:8D:0C:BC:B1:38:D7:72:41:5B:CF:E1:30:9D:DF:59:06:7F:66:26 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 43864290A3BC0C6B1CFC660A2AD73E700DA516C6 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa Signing time: Wed 29 Oct 2025 00:20:23 +0000 ROA not before: Wed 29 Oct 2025 00:20:23 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 76.223.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:86:42:90:a3:bc:0c:6b:1c:fc:66:0a:2a:d7:3e:70:0d:a5:16:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:20:23 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=4028105016d3c3b40d9b00e8bda859868f62450e56daff7e5241df04f2065cca, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fc:4c:0f:f3:d1:c3:b4:a4:1c:7e:cf:c2:25: 5c:0c:49:b6:ce:c8:94:47:fa:da:f1:7a:00:cb:65: d3:94:6e:c7:58:94:f2:df:7e:41:e1:64:15:c1:56: 69:16:f0:14:87:e6:13:4d:71:5c:f6:3b:38:e9:16: db:3b:8d:a3:36:80:bb:33:e5:4a:8b:cf:ac:00:91: 4d:43:e4:17:be:85:c1:b8:bb:ab:70:98:58:cf:01: 39:9e:a8:62:19:e2:68:c3:29:ee:a6:e4:ce:6e:e9: 1f:63:51:54:4e:b8:ff:cd:db:69:ac:cd:d2:a4:c4: 53:33:88:77:13:fc:e6:0f:1d:77:28:f9:8b:00:82: 82:39:8f:16:bf:42:09:e1:e0:9f:a9:b6:28:17:fd: df:c8:ed:87:fe:ba:79:40:46:0c:27:58:02:2e:be: 96:40:d4:a7:7a:cd:09:cb:57:6d:d3:db:f3:05:b5: 4e:a9:07:6d:ab:77:0f:3c:27:b1:95:0d:77:42:2e: 0a:f0:77:cd:98:1a:0e:60:48:7c:2f:46:33:ca:e6: 43:de:4f:43:f6:21:fc:3e:91:34:9d:22:ee:08:aa: ad:d9:29:ec:fa:b7:e1:05:94:87:e4:6c:96:5b:44: 4d:45:d3:f1:5f:3e:aa:61:dc:65:60:03:57:1e:e4: 94:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:8D:0C:BC:B1:38:D7:72:41:5B:CF:E1:30:9D:DF:59:06:7F:66:26 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/e41ada77-fa4f-4da3-a532-14382438f575.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.191.0/24 Signature Algorithm: sha256WithRSAEncryption 19:d5:6b:74:18:98:8c:00:9b:55:f0:78:c8:5a:8e:2c:83:b1: 0d:d9:a9:a6:6c:f8:c5:2e:e7:34:53:17:b7:26:30:87:54:b7: 7c:d5:50:cb:51:c5:d3:66:ba:da:ed:75:b0:e6:04:0d:c4:58: 8d:9b:81:d8:ef:d0:dd:63:e8:06:1b:80:6d:09:05:a0:1d:0a: 80:8d:3d:f2:ee:0f:7e:d4:04:5c:6a:b8:ca:50:c7:b7:25:b8: cc:0c:2f:18:b9:20:d3:aa:12:33:2d:48:2a:b5:cc:92:e3:4b: 00:65:ac:c2:7c:8f:f3:70:c3:2f:5f:b9:76:75:ec:ba:86:7b: 67:1f:8a:cb:12:47:44:fb:98:7f:b3:31:09:98:99:e2:67:a4: 74:17:57:2e:c6:bf:fe:76:7b:b3:9b:68:00:85:c4:c3:c4:3d: 3a:2f:2a:3f:cc:59:99:16:1b:11:94:7a:fd:c1:59:d0:d4:68: de:e0:c1:6d:a3:f5:4a:86:c8:a3:74:c3:30:5a:b3:e6:c5:53: 13:84:23:fa:ef:9f:bc:c4:00:29:e3:46:22:c4:09:43:b3:77: 00:03:d3:92:b2:38:72:58:15:d3:6b:82:6d:79:99:6c:ed:9d: 63:9a:73:b0:22:cc:ef:ad:fe:4f:38:39:98:e4:e6:7d:cb:d1: 8d:0c:43:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ4ZCkKO8DGsc/GYKKtc+cA2lFsYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAyMDIzWhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDI4MTA1MDE2ZDNjM2I0MGQ5YjAwZThiZGE4NTk4Njhm NjI0NTBlNTZkYWZmN2U1MjQxZGYwNGYyMDY1Y2NhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ/EwP89HDtKQcfs/CJVwMSbbOyJRH+trxegDLZdOUbsdY lPLffkHhZBXBVmkW8BSH5hNNcVz2OzjpFts7jaM2gLsz5UqLz6wAkU1D5Be+hcG4 u6twmFjPATmeqGIZ4mjDKe6m5M5u6R9jUVROuP/N22mszdKkxFMziHcT/OYPHXco +YsAgoI5jxa/Qgnh4J+ptigX/d/I7Yf+unlARgwnWAIuvpZA1Kd6zQnLV23T2/MF tU6pB22rdw88J7GVDXdCLgrwd82YGg5gSHwvRjPK5kPeT0P2Ifw+kTSdIu4Iqq3Z Kez6t+EFlIfkbJZbRE1F0/FfPqph3GVgA1ce5JRjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmI0MvLE413JBW8/hMJ3fWQZ/ZiYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2U0MWFkYTc3LWZhNGYtNGRhMy1hNTMyLTE0MzgyNDM4ZjU3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM378wDQYJKoZIhvcNAQELBQADggEBABnVa3QYmIwAm1XweMhajiyDsQ3Z qaZs+MUu5zRTF7cmMIdUt3zVUMtRxdNmutrtdbDmBA3EWI2bgdjv0N1j6AYbgG0J BaAdCoCNPfLuD37UBFxquMpQx7cluMwMLxi5INOqEjMtSCq1zJLjSwBlrMJ8j/Nw wy9fuXZ17LqGe2cfissSR0T7mH+zMQmYmeJnpHQXVy7Gv/52e7ObaACFxMPEPTov Kj/MWZkWGxGUev3BWdDUaN7gwW2j9UqGyKN0wzBas+bFUxOEI/rvn7zEACnjRiLE CUOzdwAD05KyOHJYFdNrgm15mWztnWOac7AizO+t/k84OZjk5n3L0Y0MQ3s= -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:26 2025 by rpki-client