$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4714ad7b-a768-483a-bdb9-c35a68830b39.roa File: 4714ad7b-a768-483a-bdb9-c35a68830b39.roa (raw, json) Hash identifier: nTVqvUH2ghuNOT5wysqHADFsXijWkeAFL9kpJ4oNnCc= Subject key identifier: EA:20:E1:50:E7:B4:7F:A5:F4:42:E9:8A:8E:BD:0D:09:D0:94:87:53 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7621D01B46EF9B7817FEA661219B981D14A73CC4 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4714ad7b-a768-483a-bdb9-c35a68830b39.roa Signing time: Sat 04 Oct 2025 00:20:56 +0000 ROA not before: Sat 04 Oct 2025 00:20:56 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:21:d0:1b:46:ef:9b:78:17:fe:a6:61:21:9b:98:1d:14:a7:3c:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:56 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=8a1fe2880f657914ffdd1b0bac7e789151e093a41a7a51b46f55cd563dc59e53, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f2:96:5a:66:b6:90:b7:f3:86:02:1c:f5:86: 68:61:71:84:7a:39:2f:54:ce:6b:f9:86:bb:7d:90: 1d:09:f7:2e:b9:20:3f:12:c3:00:cc:4d:88:5b:19: 9c:96:4d:3d:ae:13:03:85:ed:0e:88:a7:84:a0:f3: a0:1c:bd:7a:51:51:56:bc:b7:ff:32:ec:16:2b:8b: b1:fc:3d:fa:14:48:de:e5:0f:76:06:d7:fe:ec:e7: e4:3c:53:78:90:b4:ef:8f:e5:cb:65:27:f7:e0:25: 3f:a6:5a:cc:95:f4:50:f9:d2:d8:d7:8e:45:30:37: 26:de:88:3d:ec:fe:f2:25:12:de:8a:9e:a0:f8:e0: 07:99:2e:0c:9d:fe:83:0d:b9:d3:17:12:1c:ad:4c: d3:30:87:eb:a1:e0:e6:1a:b5:c7:de:70:ac:c7:6c: d5:f6:cc:c0:f4:37:75:04:7e:e2:84:4c:e3:d2:0f: 27:bc:19:fc:61:ba:0f:c7:f8:86:fb:76:89:3b:64: a0:72:e5:5e:29:76:41:d9:d0:79:78:d1:ca:26:59: 15:7f:3a:5b:9d:ae:03:bb:ae:9b:ec:23:e7:dd:6b: 29:24:a5:8f:0a:d4:eb:35:9b:62:b3:a7:b3:fc:bd: 53:a4:ca:83:33:cd:e4:14:04:ab:a9:43:f4:df:ff: f4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:20:E1:50:E7:B4:7F:A5:F4:42:E9:8A:8E:BD:0D:09:D0:94:87:53 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/4714ad7b-a768-483a-bdb9-c35a68830b39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.216.0/24 Signature Algorithm: sha256WithRSAEncryption 31:3b:fd:da:e8:28:a2:25:b7:79:bd:0d:d8:94:90:ef:51:e3: c3:fb:07:dc:30:d4:5f:9f:4d:d6:82:88:86:e1:93:7c:57:b7: cd:2f:ca:a0:9b:10:50:ab:ea:78:0f:6a:f1:50:b0:f6:7e:c4: 53:4a:75:2a:69:3d:d6:13:87:4f:bd:bd:0b:00:b7:d5:43:d9: bc:1b:18:9c:db:b7:64:26:9c:d6:43:28:d8:61:6a:60:06:99: cb:8b:a0:02:09:db:0a:a4:50:74:a4:98:4c:b7:62:56:0f:dd: fe:4c:f1:f7:24:dd:0e:36:0a:af:1a:df:9c:85:ef:dd:41:e6: 49:4d:a9:df:60:cb:46:a9:df:36:43:e7:55:3c:02:7c:98:5c: 7d:f5:ef:73:d4:0f:cb:d9:27:89:df:2f:be:7b:69:9a:5d:f5: 1f:f3:bf:8b:9e:93:3e:ec:64:e8:1d:27:08:f1:d1:39:8a:83: c2:29:8a:b1:50:d4:e4:65:c7:6c:b2:ce:13:92:c7:21:14:00: 60:74:0e:42:59:7e:3b:ca:d2:cd:03:d1:8a:b7:14:22:a5:39: 3c:2e:c3:75:f5:8e:b4:0b:fb:b0:de:d3:49:f7:4d:f3:15:d3: f2:5f:6b:54:3d:b8:ab:16:df:ac:00:0b:7b:1f:d2:da:7f:af: 25:b2:33:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdiHQG0bvm3gX/qZhIZuYHRSnPMQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDU2WhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTFmZTI4ODBmNjU3OTE0ZmZkZDFiMGJhYzdlNzg5MTUx ZTA5M2E0MWE3YTUxYjQ2ZjU1Y2Q1NjNkYzU5ZTUzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDT8pZaZraQt/OGAhz1hmhhcYR6OS9Uzmv5hrt9kB0J9y65 ID8SwwDMTYhbGZyWTT2uEwOF7Q6Ip4Sg86AcvXpRUVa8t/8y7BYri7H8PfoUSN7l D3YG1/7s5+Q8U3iQtO+P5ctlJ/fgJT+mWsyV9FD50tjXjkUwNybeiD3s/vIlEt6K nqD44AeZLgyd/oMNudMXEhytTNMwh+uh4OYatcfecKzHbNX2zMD0N3UEfuKETOPS Dye8Gfxhug/H+Ib7dok7ZKBy5V4pdkHZ0Hl40comWRV/OludrgO7rpvsI+fdaykk pY8K1Os1m2Kzp7P8vVOkyoMzzeQUBKupQ/Tf//QFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6iDhUOe0f6X0QumKjr0NCdCUh1MwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzQ3MTRhZDdiLWE3NjgtNDgzYS1iZGI5LWMzNWE2ODgzMGIzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dgwDQYJKoZIhvcNAQELBQADggEBADE7/droKKIlt3m9DdiUkO9R48P7 B9ww1F+fTdaCiIbhk3xXt80vyqCbEFCr6ngPavFQsPZ+xFNKdSppPdYTh0+9vQsA t9VD2bwbGJzbt2QmnNZDKNhhamAGmcuLoAIJ2wqkUHSkmEy3YlYP3f5M8fck3Q42 Cq8a35yF791B5klNqd9gy0ap3zZD51U8AnyYXH3173PUD8vZJ4nfL757aZpd9R/z v4uekz7sZOgdJwjx0TmKg8IpirFQ1ORlx2yyzhOSxyEUAGB0DkJZfjvK0s0D0Yq3 FCKlOTwuw3X1jrQL+7De00n3TfMV0/Jfa1Q9uKsW36wAC3sf0tp/ryWyM/o= -----END CERTIFICATE-----Generated at Wed Oct 8 19:42:57 2025 by rpki-client