$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa File: 16b57026-c673-4ef1-bc38-7596daa2e043.roa (raw, json) Hash identifier: CrvdfvX1deXZKa+nC0F0m+oj+52GCFHK704X1z2rEo0= Subject key identifier: E2:A8:50:51:63:CA:65:82:E1:4C:35:2F:B5:85:91:FD:07:ED:A9:D6 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 240B853ED36DAC7FB579E25AC9D827BFD31361F6 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa Signing time: Wed 29 Oct 2025 00:20:21 +0000 ROA not before: Wed 29 Oct 2025 00:20:21 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:0b:85:3e:d3:6d:ac:7f:b5:79:e2:5a:c9:d8:27:bf:d3:13:61:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:20:21 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=c7f36280032871b41cfc69cda843b5c99840dc5ce6d819ed87cbc689c4cac53c, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2f:98:d2:e3:04:29:36:14:a5:ad:76:f5:7a: e4:a6:59:3b:a1:7d:da:59:5f:0d:a2:32:af:02:fb: 55:f6:39:3d:79:11:03:58:00:b2:fe:84:83:09:88: 96:11:3b:6c:3a:e2:c3:4e:e1:fc:50:5f:1e:8e:9e: 37:03:11:55:06:34:01:fe:18:0a:75:01:d4:3a:fc: 4d:46:e8:22:04:9d:79:6d:02:93:c5:f5:9c:bc:02: 04:3f:1d:af:e8:af:7f:3b:97:d4:14:34:58:9d:9a: 23:81:5a:2a:79:f5:06:f7:a4:5c:f0:1b:64:db:f0: c0:b6:52:80:57:ab:0d:ec:81:10:c1:10:80:c5:47: 41:d9:fa:b9:d3:09:09:d0:16:b9:ef:ae:c1:65:67: 6e:f3:28:65:5a:a1:a0:f3:54:68:d4:48:2a:f6:69: b1:95:10:b6:2c:d4:8f:a8:15:44:6f:38:75:c4:3c: 31:e6:6c:14:e2:4b:2c:5a:54:af:d6:49:0b:64:c2: 51:1e:40:1c:a4:fa:8f:88:df:ab:3d:df:2e:8a:ac: 8f:49:e5:a8:95:60:3c:e9:46:d4:04:00:a4:7b:10: 48:01:a0:32:37:25:b0:42:f0:00:e4:e2:ba:c8:1c: 63:6e:ea:6a:f2:af:86:8d:13:e6:bd:29:67:8f:ad: 28:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A8:50:51:63:CA:65:82:E1:4C:35:2F:B5:85:91:FD:07:ED:A9:D6 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/16b57026-c673-4ef1-bc38-7596daa2e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.226.0/24 Signature Algorithm: sha256WithRSAEncryption 03:3c:4b:c5:a6:74:96:e2:4a:79:52:78:76:c6:3f:a0:18:da: f3:d8:18:b9:d7:98:50:f5:69:e3:b7:f6:9b:c0:11:df:9f:4f: 5a:f7:ae:7f:f3:d3:d6:37:95:89:2c:e5:e4:8e:96:21:8c:07: b7:35:e9:51:4d:29:57:e4:99:e9:ca:15:88:e2:0f:c7:ef:6e: e2:74:ba:41:43:df:fe:55:4d:48:fe:54:fe:06:b6:d7:ba:a5: bc:d1:75:21:ec:a0:5f:aa:f1:a5:df:2b:c9:71:00:03:9f:fe: 75:e9:62:07:7f:8b:7f:d3:0f:fa:03:e6:8e:bd:f4:c6:79:37: fe:a6:bd:fa:cf:75:69:7c:41:ea:76:68:03:5a:f8:95:04:08: 2a:40:e0:07:51:4e:85:53:8c:54:ae:11:06:5d:10:cb:b7:f8: 9f:20:b5:f5:84:0b:f8:c1:aa:a3:fa:37:21:4e:2d:51:d1:bc: 3f:10:ba:06:4e:2c:69:7b:57:42:73:f7:46:ea:f1:a1:d0:17: 06:8a:6a:e8:1e:75:e0:9c:32:39:79:7d:db:9d:c2:5c:75:98: 10:00:3a:b2:be:09:87:c6:f5:97:42:f4:a4:77:01:e0:1e:53: 83:48:83:86:fb:47:86:f3:f1:c9:0d:35:36:fc:3f:aa:40:f2: 5e:93:f0:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJAuFPtNtrH+1eeJaydgnv9MTYfYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAyMDIxWhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2YzNjI4MDAzMjg3MWI0MWNmYzY5Y2RhODQzYjVjOTk4 NDBkYzVjZTZkODE5ZWQ4N2NiYzY4OWM0Y2FjNTNjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUL5jS4wQpNhSlrXb1euSmWTuhfdpZXw2iMq8C+1X2OT15 EQNYALL+hIMJiJYRO2w64sNO4fxQXx6OnjcDEVUGNAH+GAp1AdQ6/E1G6CIEnXlt ApPF9Zy8AgQ/Ha/or387l9QUNFidmiOBWip59Qb3pFzwG2Tb8MC2UoBXqw3sgRDB EIDFR0HZ+rnTCQnQFrnvrsFlZ27zKGVaoaDzVGjUSCr2abGVELYs1I+oFURvOHXE PDHmbBTiSyxaVK/WSQtkwlEeQByk+o+I36s93y6KrI9J5aiVYDzpRtQEAKR7EEgB oDI3JbBC8ADk4rrIHGNu6mryr4aNE+a9KWePrSi9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4qhQUWPKZYLhTDUvtYWR/QftqdYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzE2YjU3MDI2LWM2NzMtNGVmMS1iYzM4LTc1OTZkYWEyZTA0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeIwDQYJKoZIhvcNAQELBQADggEBAAM8S8WmdJbiSnlSeHbGP6AY2vPY GLnXmFD1aeO39pvAEd+fT1r3rn/z09Y3lYks5eSOliGMB7c16VFNKVfkmenKFYji D8fvbuJ0ukFD3/5VTUj+VP4Gtte6pbzRdSHsoF+q8aXfK8lxAAOf/nXpYgd/i3/T D/oD5o699MZ5N/6mvfrPdWl8Qep2aANa+JUECCpA4AdRToVTjFSuEQZdEMu3+J8g tfWEC/jBqqP6NyFOLVHRvD8QugZOLGl7V0Jz90bq8aHQFwaKaugedeCcMjl5fdud wlx1mBAAOrK+CYfG9ZdC9KR3AeAeU4NIg4b7R4bz8ckNNTb8P6pA8l6T8Mg= -----END CERTIFICATE-----Generated at Wed Nov 5 17:00:54 2025 by rpki-client