$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa File: f67538ee-cd29-4883-9251-086023a50dc3.roa (raw, json) Hash identifier: A9c5Z6ychVMEDQ6ElLZjwmKTdf1R4PW8+WMMvCgGRSI= Subject key identifier: 89:6E:33:6F:57:8C:D4:17:B2:C3:27:F6:90:38:38:66:FE:FC:D5:0D Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 15C388E99ED60DC3B31906C91F25152BA1DE19F2 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa Signing time: Wed 29 Oct 2025 00:10:08 +0000 ROA not before: Wed 29 Oct 2025 00:10:08 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c3:88:e9:9e:d6:0d:c3:b3:19:06:c9:1f:25:15:2b:a1:de:19:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:10:08 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=2ee6747de626da7df228ee2cb37f39395d3880a548eb26d8240904070e6eb01b, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:d2:3a:86:bb:35:7e:7c:96:2c:ae:22:42:a2: 98:00:cb:ff:53:25:b9:0c:15:7c:cd:cb:d4:9a:c4: bf:ba:0c:08:3a:7b:d0:ad:05:00:d1:cd:1d:59:bf: 9e:68:1d:f0:d3:8a:a6:d5:50:59:ee:9a:38:d8:71: 96:5a:4a:65:85:cf:80:89:b6:29:a4:80:49:0c:8f: b8:99:a0:ae:0c:79:a5:18:2d:78:df:ad:52:b0:e9: 92:94:4e:ca:31:f8:57:a7:07:2c:17:e4:f7:ae:9a: 8f:95:b7:13:83:8c:b3:89:03:fb:41:22:4d:f4:fa: 4d:04:02:dc:6e:f4:60:cc:8c:61:04:1a:5d:f2:2f: e1:65:e1:61:4e:6e:8f:c8:0f:9d:2e:c5:29:f8:d5: 39:35:e4:00:7f:61:9f:6f:ac:85:1a:58:4b:d5:fd: c6:2f:05:75:a7:69:2c:6f:cf:5f:d8:6b:ed:6d:6d: 97:8c:cc:31:33:b5:52:7b:00:ce:06:9f:01:ad:50: 9d:4e:1e:67:d0:14:1a:4e:68:3c:65:03:b6:7b:6b: 7f:98:8b:94:8f:18:f4:34:20:49:89:de:72:68:73: 64:aa:78:69:8c:da:2e:9f:cc:3b:0a:cb:bb:2f:1d: 97:d3:5f:0a:bc:1a:d0:c1:71:3d:7f:32:90:fa:11: 3f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6E:33:6F:57:8C:D4:17:B2:C3:27:F6:90:38:38:66:FE:FC:D5:0D X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f67538ee-cd29-4883-9251-086023a50dc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.227.0/24 Signature Algorithm: sha256WithRSAEncryption 03:13:18:88:c2:0d:f4:9a:66:ad:d6:87:2d:e7:3e:66:ce:00: 62:2e:0c:fe:43:55:67:f9:da:d6:d2:8a:0f:aa:8d:7d:81:7d: 0a:d9:b2:fc:a1:31:1d:df:3e:ed:1e:f4:97:1b:ba:47:1b:aa: 66:52:a7:ee:ad:aa:d3:52:77:98:a0:b1:65:8d:5d:e7:30:9c: 73:d9:a0:9d:09:20:c2:f1:d5:6d:f5:46:1c:61:55:50:ee:73: 58:31:b5:42:51:b1:00:05:56:6e:ba:df:85:e8:76:aa:1e:c9: db:2f:c2:a2:df:a6:fc:46:7d:1e:c6:df:42:59:51:09:97:fc: a1:32:c7:13:1f:0d:cf:ab:67:cd:43:91:04:93:f9:e0:99:0d: 47:30:be:a8:cd:11:e9:1c:f5:fa:e7:a2:60:32:f3:41:f6:1e: 44:ae:79:57:b9:39:06:8e:7d:2c:64:8a:40:61:dc:9d:02:ca: c2:9c:a3:fe:3a:00:51:78:98:55:e7:59:99:bb:6c:87:84:93: 22:4d:8d:d6:9e:17:91:83:91:38:f0:15:72:d6:f7:c3:3c:94: ee:b3:3c:58:55:14:61:5d:11:79:3e:6f:8b:5f:f1:c0:d1:49: 2d:65:04:1d:5a:43:d4:76:9f:b6:9c:9e:fc:b1:a0:f2:15:b8: 12:e6:20:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFcOI6Z7WDcOzGQbJHyUVK6HeGfIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAxMDA4WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZWU2NzQ3ZGU2MjZkYTdkZjIyOGVlMmNiMzdmMzkzOTVk Mzg4MGE1NDhlYjI2ZDgyNDA5MDQwNzBlNmViMDFiMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD60jqGuzV+fJYsriJCopgAy/9TJbkMFXzNy9SaxL+6DAg6 e9CtBQDRzR1Zv55oHfDTiqbVUFnumjjYcZZaSmWFz4CJtimkgEkMj7iZoK4MeaUY LXjfrVKw6ZKUTsox+FenBywX5Peumo+VtxODjLOJA/tBIk30+k0EAtxu9GDMjGEE Gl3yL+Fl4WFObo/ID50uxSn41Tk15AB/YZ9vrIUaWEvV/cYvBXWnaSxvz1/Ya+1t bZeMzDEztVJ7AM4GnwGtUJ1OHmfQFBpOaDxlA7Z7a3+Yi5SPGPQ0IEmJ3nJoc2Sq eGmM2i6fzDsKy7svHZfTXwq8GtDBcT1/MpD6ET9vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiW4zb1eM1Beywyf2kDg4Zv781Q0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y2NzUzOGVlLWNkMjktNDg4My05MjUxLTA4NjAyM2E1MGRjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++MwDQYJKoZIhvcNAQELBQADggEBAAMTGIjCDfSaZq3Why3nPmbOAGIu DP5DVWf52tbSig+qjX2BfQrZsvyhMR3fPu0e9JcbukcbqmZSp+6tqtNSd5igsWWN XecwnHPZoJ0JIMLx1W31RhxhVVDuc1gxtUJRsQAFVm6634XodqoeydsvwqLfpvxG fR7G30JZUQmX/KEyxxMfDc+rZ81DkQST+eCZDUcwvqjNEekc9frnomAy80H2HkSu eVe5OQaOfSxkikBh3J0CysKco/46AFF4mFXnWZm7bIeEkyJNjdaeF5GDkTjwFXLW 98M8lO6zPFhVFGFdEXk+b4tf8cDRSS1lBB1aQ9R2n7acnvyxoPIVuBLmIKM= -----END CERTIFICATE-----Generated at Wed Nov 5 10:01:51 2025 by rpki-client