$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/efff1c41-4813-4726-a794-2bd64d641531.roa File: efff1c41-4813-4726-a794-2bd64d641531.roa (raw, json) Hash identifier: XKZHGiFrvDtN0Qv929LxSmWg2YBBhl1c/qkw9ZPYyBk= Subject key identifier: C8:F5:E3:44:55:E1:AE:13:2A:F3:D6:FA:5D:2E:68:DC:D2:23:A6:B2 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 06DC200015B4087E66335601BEC1FBB18EFBBEAC Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/efff1c41-4813-4726-a794-2bd64d641531.roa Signing time: Wed 29 Oct 2025 00:20:19 +0000 ROA not before: Wed 29 Oct 2025 00:20:19 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:dc:20:00:15:b4:08:7e:66:33:56:01:be:c1:fb:b1:8e:fb:be:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:20:19 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=6e5dfabeeec92cbdbdf65cdc9254868bcc56c0a50cfa45357cbf384635713330, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ea:fc:b6:92:fd:44:f0:0d:31:37:ae:cd:e2: b5:92:2f:7b:50:2f:db:13:be:e3:f2:15:0e:a9:01: 26:3a:2b:e0:07:52:57:38:5f:dd:dc:07:64:fe:6d: 0d:9d:86:c7:4a:d1:27:c3:de:3d:1e:ed:e7:6a:09: 1d:42:e6:ba:3f:30:97:20:ab:30:0d:84:bc:ad:4e: 01:51:9d:4e:ee:a7:19:76:92:cd:dd:be:34:e4:04: ad:66:2a:63:43:b3:87:1a:09:ed:d9:03:86:f7:73: ac:02:0a:4c:f2:25:61:e8:af:ee:a8:8e:99:85:ca: 48:6f:73:17:d0:cc:c8:45:1e:c8:72:16:80:0c:a6: 06:91:f8:97:27:9f:5e:fd:cf:ae:55:a3:4a:ba:74: b6:43:56:71:c0:e1:82:18:cb:49:00:3d:16:da:7f: 3e:24:c1:bb:b4:7a:e6:b2:ec:d1:01:05:3f:5e:e3: ba:44:4b:7c:6d:6e:ce:9c:fd:dc:8d:23:67:81:8b: 7c:bc:8e:da:06:0e:96:e8:d7:e2:b2:c4:68:36:75: 98:d0:a5:d2:86:25:f7:58:0e:bc:16:69:cf:e9:0f: ca:6e:cd:87:98:9d:77:7d:13:7b:d2:10:51:80:1a: 0e:49:8a:3f:8a:7b:48:85:6b:aa:27:0d:17:c3:f2: ac:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:F5:E3:44:55:E1:AE:13:2A:F3:D6:FA:5D:2E:68:DC:D2:23:A6:B2 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/efff1c41-4813-4726-a794-2bd64d641531.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.235.0/24 Signature Algorithm: sha256WithRSAEncryption 58:98:3b:ec:d5:ec:03:cd:b4:1b:c0:1d:2e:de:a1:0b:6b:a2: 80:dd:24:db:96:7a:49:82:c7:87:bb:75:e2:53:d8:43:c0:e8: 51:bc:82:d8:50:e6:7d:d8:18:79:8b:58:0a:36:b3:65:05:da: be:89:32:96:43:5d:b8:69:69:04:10:03:99:61:e7:76:83:ff: 20:23:7c:23:e5:84:d6:3a:b8:76:01:bb:34:2a:cd:24:04:ce: 05:72:b5:66:8e:a4:57:a1:74:e5:77:b5:a1:ed:d7:bb:e9:19: 59:11:b1:32:9b:b6:d2:1d:bc:77:ab:81:3d:3f:2f:a1:a0:b4: 30:1c:58:66:6d:e2:21:79:8b:75:7c:87:4a:45:3d:67:30:0f: e0:0d:9b:e0:e1:40:93:4b:a9:cc:fd:1e:e7:9b:4a:47:de:f5: c2:5b:f5:e2:5c:ad:d7:60:d3:a7:ea:2a:84:96:28:d8:4c:43: 79:c7:19:1a:85:7f:a0:87:92:72:b7:49:38:65:13:fe:cb:c7: 40:9b:6d:a1:bb:4c:45:28:a6:5c:97:49:27:00:79:e3:c8:fb: f3:0f:72:36:92:15:db:10:8d:a3:fe:f2:cb:f3:c9:0d:c5:32: 01:64:03:d5:9f:3b:2b:3d:7b:95:63:32:e0:9a:d1:ae:81:87: b3:9c:a2:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBtwgABW0CH5mM1YBvsH7sY77vqwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAyMDE5WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTVkZmFiZWVlYzkyY2JkYmRmNjVjZGM5MjU0ODY4YmNj NTZjMGE1MGNmYTQ1MzU3Y2JmMzg0NjM1NzEzMzMwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR6vy2kv1E8A0xN67N4rWSL3tQL9sTvuPyFQ6pASY6K+AH Ulc4X93cB2T+bQ2dhsdK0SfD3j0e7edqCR1C5ro/MJcgqzANhLytTgFRnU7upxl2 ks3dvjTkBK1mKmNDs4caCe3ZA4b3c6wCCkzyJWHor+6ojpmFykhvcxfQzMhFHshy FoAMpgaR+Jcnn179z65Vo0q6dLZDVnHA4YIYy0kAPRbafz4kwbu0euay7NEBBT9e 47pES3xtbs6c/dyNI2eBi3y8jtoGDpbo1+KyxGg2dZjQpdKGJfdYDrwWac/pD8pu zYeYnXd9E3vSEFGAGg5Jij+Ke0iFa6onDRfD8qyXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyPXjRFXhrhMq89b6XS5o3NIjprIwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2VmZmYxYzQxLTQ4MTMtNDcyNi1hNzk0LTJiZDY0ZDY0MTUzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++swDQYJKoZIhvcNAQELBQADggEBAFiYO+zV7APNtBvAHS7eoQtrooDd JNuWekmCx4e7deJT2EPA6FG8gthQ5n3YGHmLWAo2s2UF2r6JMpZDXbhpaQQQA5lh 53aD/yAjfCPlhNY6uHYBuzQqzSQEzgVytWaOpFehdOV3taHt17vpGVkRsTKbttId vHergT0/L6GgtDAcWGZt4iF5i3V8h0pFPWcwD+ANm+DhQJNLqcz9HuebSkfe9cJb 9eJcrddg06fqKoSWKNhMQ3nHGRqFf6CHknK3SThlE/7Lx0CbbaG7TEUoplyXSScA eePI+/MPcjaSFdsQjaP+8svzyQ3FMgFkA9WfOys9e5VjMuCa0a6Bh7Ocokk= -----END CERTIFICATE-----Generated at Wed Nov 5 05:45:06 2025 by rpki-client