$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa File: f174f360-a3ca-4335-8414-4727cef110a8.roa (raw, json) Hash identifier: UqnR8YEgBRPPvRyhQTM2y/1FjsdN0yyRLXEFMc/y9fw= Subject key identifier: BF:F2:26:98:9F:BC:59:10:24:23:7A:FC:35:C1:8A:9A:4B:2D:C8:E8 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2BA0111DC0C60BA41AABCCFD638D3295113CFEE2 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa Signing time: Wed 29 Oct 2025 00:10:05 +0000 ROA not before: Wed 29 Oct 2025 00:10:05 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:a0:11:1d:c0:c6:0b:a4:1a:ab:cc:fd:63:8d:32:95:11:3c:fe:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:10:05 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=b17213af331dc57903a035dc3512712a81d02c1181c2ca6aab77515b03ec0efe, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bf:20:3e:54:d7:17:c5:c1:40:8c:89:0a:60: d9:43:30:e6:e7:b3:49:05:11:72:dc:41:a1:63:20: 13:55:2a:6e:68:4b:b5:7b:da:59:e3:57:c8:77:75: 62:2b:6d:d9:27:af:85:6d:b3:74:15:c0:36:c4:2c: ab:20:30:11:64:91:82:91:cf:ad:e8:fd:d8:81:60: b6:2f:8b:6f:24:3d:f6:00:85:56:be:34:ee:6c:e8: 1d:95:e2:ee:d0:56:4f:a4:8b:bb:5a:7a:ad:28:5f: 05:19:1d:b6:22:08:47:89:e4:a5:88:5b:f4:91:0d: d1:07:fc:81:5c:b3:3f:3e:39:e3:f6:16:1e:2c:c2: 31:b3:e8:f9:04:a2:89:ef:28:16:54:ab:f9:8b:90: a0:1c:ff:a7:3d:ea:8e:4b:da:fc:ac:fb:ea:be:a4: 74:16:8b:21:3c:63:4d:82:06:99:a9:03:7e:74:a9: a3:a0:6a:28:14:ef:04:f1:fa:94:55:31:22:da:96: 88:73:92:20:e0:16:b5:e6:ce:e2:95:9c:5a:e1:b5: 4b:6c:c4:ec:3c:f4:89:47:f0:74:7e:41:2d:68:9d: 17:41:53:d2:20:f5:74:8c:57:46:97:f1:97:ba:8b: 0b:cc:3e:a1:f1:37:94:a8:07:44:d1:01:3c:7f:cf: 26:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F2:26:98:9F:BC:59:10:24:23:7A:FC:35:C1:8A:9A:4B:2D:C8:E8 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 72:6f:fe:7d:6c:50:a8:3f:fb:b6:e4:fe:8c:b7:60:95:0f:4f: 73:af:13:1b:75:93:0c:f8:88:65:93:fb:78:68:d5:33:d9:be: 71:be:b9:f5:a3:e7:1f:b3:dc:52:fe:f0:ab:0f:a2:38:ed:a1: ea:d0:9d:a2:96:6e:e5:62:39:3c:02:43:dc:c1:57:95:75:1d: f3:38:84:75:4b:95:13:e2:96:db:87:bb:73:65:fb:3f:cb:d7: 57:cd:47:86:10:26:6e:4a:d2:ed:47:11:c8:10:fb:d0:34:19: 1d:3d:62:35:47:d1:0f:65:db:f0:1c:29:a2:8e:f7:37:f2:ce: f1:e5:06:9f:7a:d3:a9:e6:75:e0:16:93:89:57:e5:54:2c:39: cd:05:35:52:54:7b:62:5f:24:5f:e4:4f:2d:3c:e8:cd:49:a4: c1:95:ac:2b:3b:12:a0:5a:bb:4c:b8:37:d2:8e:91:ff:e6:59: 5c:75:d5:d5:2e:f9:3b:06:0e:98:e2:b2:1d:9f:01:d0:f0:50: d3:76:dd:42:b8:b8:95:57:8d:12:43:f5:23:ac:b5:46:98:54: 9a:39:bf:18:92:9e:b9:df:dc:86:a7:ff:bc:8f:f0:e9:55:eb: 94:3a:84:5a:cb:27:91:7d:c6:a7:29:09:48:e0:cb:77:03:2b: 0f:32:40:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK6ARHcDGC6Qaq8z9Y40ylRE8/uIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAxMDA1WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTcyMTNhZjMzMWRjNTc5MDNhMDM1ZGMzNTEyNzEyYTgx ZDAyYzExODFjMmNhNmFhYjc3NTE1YjAzZWMwZWZlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2vyA+VNcXxcFAjIkKYNlDMObns0kFEXLcQaFjIBNVKm5o S7V72lnjV8h3dWIrbdknr4Vts3QVwDbELKsgMBFkkYKRz63o/diBYLYvi28kPfYA hVa+NO5s6B2V4u7QVk+ki7taeq0oXwUZHbYiCEeJ5KWIW/SRDdEH/IFcsz8+OeP2 Fh4swjGz6PkEoonvKBZUq/mLkKAc/6c96o5L2vys++q+pHQWiyE8Y02CBpmpA350 qaOgaigU7wTx+pRVMSLalohzkiDgFrXmzuKVnFrhtUtsxOw89IlH8HR+QS1onRdB U9Ig9XSMV0aX8Ze6iwvMPqHxN5SoB0TRATx/zyZtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUv/ImmJ+8WRAkI3r8NcGKmkstyOgwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2YxNzRmMzYwLWEzY2EtNDMzNS04NDE0LTQ3MjdjZWYxMTBhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBAHJv/n1sUKg/+7bk/oy3YJUPT3Ov Ext1kwz4iGWT+3ho1TPZvnG+ufWj5x+z3FL+8KsPojjtoerQnaKWbuViOTwCQ9zB V5V1HfM4hHVLlRPiltuHu3Nl+z/L11fNR4YQJm5K0u1HEcgQ+9A0GR09YjVH0Q9l 2/AcKaKO9zfyzvHlBp9606nmdeAWk4lX5VQsOc0FNVJUe2JfJF/kTy086M1JpMGV rCs7EqBau0y4N9KOkf/mWVx11dUu+TsGDpjish2fAdDwUNN23UK4uJVXjRJD9SOs tUaYVJo5vxiSnrnf3Ian/7yP8OlV65Q6hFrLJ5F9xqcpCUjgy3cDKw8yQNk= -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:20 2025 by rpki-client