$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa File: 3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa (raw, json) Hash identifier: OKPox/ciRhxoVisq1eT/kKqEqDf/jl+Htz7OY/32NTM= Subject key identifier: 0C:82:D7:BD:1F:51:89:74:89:78:04:EF:4B:3B:FF:8A:A7:77:DA:20 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 6026FCC59C04B11314FF7B10A77C9D9F605F9165 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa Signing time: Sat 04 Oct 2025 00:20:34 +0000 ROA not before: Sat 04 Oct 2025 00:20:34 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:26:fc:c5:9c:04:b1:13:14:ff:7b:10:a7:7c:9d:9f:60:5f:91:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:34 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=ed9f0dde82a1dccf224a63fd6cbb06061bb4779f820ff3158d7646adaac6d508, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9c:8d:eb:34:8e:a4:a6:97:ec:c1:b8:4d:bf: ad:03:2d:8f:36:df:b8:a4:7e:b6:90:70:50:cf:01: fe:66:5a:2b:66:3f:b2:2e:d5:b9:30:82:15:bb:e9: fa:0a:43:fb:d8:16:1a:59:75:68:41:6e:70:0e:1c: 4b:c5:12:ff:5c:cd:bb:1d:d6:16:38:d5:38:39:cb: 61:04:b1:67:5f:67:25:9b:f4:38:8e:03:a5:19:e4: 9e:3a:d7:45:95:ac:dc:eb:21:44:e2:a9:71:b3:04: c5:8e:ef:cc:b7:00:dd:91:33:0c:52:fa:18:40:3e: 7a:c7:1e:6a:80:ab:13:6f:2d:d5:e1:ad:d8:f2:f1: 0a:d9:b1:80:1c:4d:c2:28:fc:14:8c:50:5b:68:f5: ba:8e:bd:f1:11:ec:7c:70:4b:1e:65:b0:e7:49:c6: 9a:43:9a:78:e5:b2:5c:0e:56:32:a9:b7:c9:22:5e: fc:e8:14:4d:27:f0:09:85:f4:52:5e:18:9a:bd:d5: 3c:10:a8:cd:fc:64:5a:11:f6:cd:90:7b:76:ae:75: cc:d4:b9:36:3f:1f:ee:1b:8e:f6:76:39:f6:a2:34: 63:21:c7:d6:55:0f:9e:37:57:99:1a:17:bd:0f:03: 8b:32:dd:13:a4:f1:6b:ab:39:ce:a5:4d:51:04:6b: 1f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:82:D7:BD:1F:51:89:74:89:78:04:EF:4B:3B:FF:8A:A7:77:DA:20 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.224.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:5b:79:b1:9e:f7:1c:08:88:b9:f8:37:ec:16:4b:f4:1d:e7: 95:f1:2e:65:7b:81:5e:ed:ec:01:14:5a:66:f3:c6:c2:71:67: b7:95:e4:22:79:92:81:86:6a:51:a7:3a:96:53:20:c2:09:5e: 31:eb:53:b0:ff:7c:09:a4:af:de:4b:6b:28:48:b2:10:bb:5d: 1b:05:4f:5c:0b:f2:0f:5f:58:42:5d:00:3f:77:ba:53:81:e5: 38:bc:9c:e9:16:cd:27:f6:27:59:7b:ce:27:d5:20:34:6e:ee: 2e:db:2b:b9:e0:25:5f:37:d9:c0:80:23:ba:90:08:d3:d6:e7: 0d:21:dd:75:7e:20:8e:3f:01:f4:01:fd:20:5f:60:f9:80:a4: 03:17:3c:b7:e9:31:5f:bd:bc:7d:ef:04:a6:2b:89:be:2c:53: 4f:30:94:cd:cf:dd:c4:db:aa:40:34:ec:91:67:5a:2c:25:11: ba:7d:64:3c:35:28:a9:02:77:df:a6:8b:82:6f:cd:4d:cd:0f: 8a:01:1f:27:02:fd:7f:52:5a:4c:95:d4:4a:71:9f:d4:3c:e5: 1e:ab:c1:37:58:3e:4f:14:3a:ba:a7:53:82:e6:99:a3:6f:57: 32:6b:91:20:3e:10:02:34:12:74:67:ab:2c:d0:9e:e5:83:03: 7f:e0:67:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYCb8xZwEsRMU/3sQp3ydn2BfkWUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDM0WhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDlmMGRkZTgyYTFkY2NmMjI0YTYzZmQ2Y2JiMDYwNjFi YjQ3NzlmODIwZmYzMTU4ZDc2NDZhZGFhYzZkNTA4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYnI3rNI6kppfswbhNv60DLY8237ikfraQcFDPAf5mWitm P7Iu1bkwghW76foKQ/vYFhpZdWhBbnAOHEvFEv9czbsd1hY41Tg5y2EEsWdfZyWb 9DiOA6UZ5J4610WVrNzrIUTiqXGzBMWO78y3AN2RMwxS+hhAPnrHHmqAqxNvLdXh rdjy8QrZsYAcTcIo/BSMUFto9bqOvfER7HxwSx5lsOdJxppDmnjlslwOVjKpt8ki XvzoFE0n8AmF9FJeGJq91TwQqM38ZFoR9s2Qe3audczUuTY/H+4bjvZ2OfaiNGMh x9ZVD543V5kaF70PA4sy3ROk8WurOc6lTVEEax/5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDILXvR9RiXSJeATvSzv/iqd32iAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNhZDJhZTljLWQ1MDUtNGI1My04YTAzLWMwMDM0NjAyZDQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++AwDQYJKoZIhvcNAQELBQADggEBAIxbebGe9xwIiLn4N+wWS/Qd55Xx LmV7gV7t7AEUWmbzxsJxZ7eV5CJ5koGGalGnOpZTIMIJXjHrU7D/fAmkr95LayhI shC7XRsFT1wL8g9fWEJdAD93ulOB5Ti8nOkWzSf2J1l7zifVIDRu7i7bK7ngJV83 2cCAI7qQCNPW5w0h3XV+II4/AfQB/SBfYPmApAMXPLfpMV+9vH3vBKYrib4sU08w lM3P3cTbqkA07JFnWiwlEbp9ZDw1KKkCd9+mi4JvzU3ND4oBHycC/X9SWkyV1Epx n9Q85R6rwTdYPk8UOrqnU4LmmaNvVzJrkSA+EAI0EnRnqyzQnuWDA3/gZ9w= -----END CERTIFICATE-----Generated at Sun Oct 19 16:42:53 2025 by rpki-client