$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa File: 3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa (raw, json) Hash identifier: SZDLKb2XLp9kNAqOz2w4OyN5pRLA9BJna9tfynR3+mk= Subject key identifier: 58:83:F0:11:C0:EC:D4:13:FB:B7:17:CE:92:A8:65:0F:B8:7F:13:61 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 45E3DFAB29CF3D19A451C3EBB1A8FE9A9FD0C7A8 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa Signing time: Wed 29 Oct 2025 00:20:18 +0000 ROA not before: Wed 29 Oct 2025 00:20:18 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:e3:df:ab:29:cf:3d:19:a4:51:c3:eb:b1:a8:fe:9a:9f:d0:c7:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:20:18 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=b46e179e9558a9a99b3caaa04d2e8683d16b51eb744e54384503efbf3f19171c, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b8:0c:a3:57:3c:66:5d:9a:d9:ad:fd:71:a5: 99:e7:f8:15:6b:f4:9e:3f:bf:25:56:c7:b1:0e:a2: 22:74:d0:2f:9d:82:a1:a7:68:6d:18:d4:17:8e:7a: 36:a4:b1:fb:ad:2a:cb:00:a9:c1:0c:83:d0:25:e6: a5:09:b2:c2:ac:0c:13:a6:77:13:a7:2e:3e:ce:49: 73:5c:4d:71:0a:f2:a6:3b:5c:cd:de:8d:ab:ae:9d: a6:84:66:42:17:f0:20:4c:9a:5b:d6:fd:6f:c1:94: 79:df:54:a5:91:7f:e1:e3:ed:16:ba:c7:bd:90:ef: 99:eb:54:6c:77:19:6b:d8:90:f3:9c:a6:9a:be:3c: 03:43:2c:98:3f:b9:e3:04:fe:3b:85:de:67:78:6e: fb:10:c8:1f:d4:ac:38:ce:42:23:1f:14:24:a3:9d: 66:d8:58:9f:d6:25:45:3d:23:37:05:18:94:c0:f7: 12:4a:c1:ca:5f:d6:7e:37:c6:57:a4:8b:1c:8d:b1: 5e:ed:6f:8e:e7:ee:c6:17:49:30:86:9a:fa:b0:c3: 6e:c3:be:b3:e6:9b:9b:2d:25:0f:58:df:f5:c5:4a: d1:c0:2f:09:4f:e0:c9:6c:ca:e3:65:2d:0d:3c:54: 9e:1f:cb:78:e6:16:70:88:e4:93:5f:0c:11:e7:11: cd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:83:F0:11:C0:EC:D4:13:FB:B7:17:CE:92:A8:65:0F:B8:7F:13:61 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.224.0/24 Signature Algorithm: sha256WithRSAEncryption 52:a8:cc:0a:62:04:c4:15:aa:06:2c:2f:5a:17:4f:0a:9b:92: 51:d9:bc:92:38:2c:a8:85:96:b0:75:51:b6:24:6e:9a:56:22: 81:1b:99:52:cd:dd:8a:78:1c:56:c0:11:38:0c:cf:77:da:39: 63:3b:c5:3c:82:ae:b1:65:d3:62:3b:11:a5:e9:6a:3f:a3:94: a6:1a:21:ff:08:95:9b:ea:74:ac:d6:ee:31:94:53:ab:b5:6d: 7e:35:58:23:e1:b3:88:2a:79:7b:c9:d2:ff:fc:5d:ef:d7:0e: 55:21:29:46:70:34:de:ed:3b:60:4c:13:cd:86:47:91:68:af: f9:f2:ef:12:91:0e:e8:92:a1:84:78:d1:8e:d6:2c:94:87:a9: 18:69:be:0a:ae:07:a4:be:02:b0:72:dd:49:1b:35:e8:df:94: e8:79:8f:8c:c6:7e:0e:f7:9f:49:e1:b4:8b:86:df:cb:4a:0f: da:c6:d0:01:69:9e:c0:6e:04:dd:cc:de:30:ac:71:f6:34:d2: 64:24:66:13:9d:58:7a:49:3d:1f:aa:e7:ba:3b:7e:d9:4e:84: 3a:4a:1e:e1:57:e0:b7:5d:f8:03:d4:a6:0e:38:80:5d:f4:b2: c7:3b:3a:ba:b9:bc:15:f4:1d:01:b1:02:9a:f3:44:8a:45:5b: df:d5:b8:c6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURePfqynPPRmkUcPrsaj+mp/Qx6gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAyMDE4WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDZlMTc5ZTk1NThhOWE5OWIzY2FhYTA0ZDJlODY4M2Qx NmI1MWViNzQ0ZTU0Mzg0NTAzZWZiZjNmMTkxNzFjMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRuAyjVzxmXZrZrf1xpZnn+BVr9J4/vyVWx7EOoiJ00C+d gqGnaG0Y1BeOejaksfutKssAqcEMg9Al5qUJssKsDBOmdxOnLj7OSXNcTXEK8qY7 XM3ejauunaaEZkIX8CBMmlvW/W/BlHnfVKWRf+Hj7Ra6x72Q75nrVGx3GWvYkPOc ppq+PANDLJg/ueME/juF3md4bvsQyB/UrDjOQiMfFCSjnWbYWJ/WJUU9IzcFGJTA 9xJKwcpf1n43xlekixyNsV7tb47n7sYXSTCGmvqww27DvrPmm5stJQ9Y3/XFStHA LwlP4MlsyuNlLQ08VJ4fy3jmFnCI5JNfDBHnEc2/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWIPwEcDs1BP7txfOkqhlD7h/E2EwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNhZDJhZTljLWQ1MDUtNGI1My04YTAzLWMwMDM0NjAyZDQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++AwDQYJKoZIhvcNAQELBQADggEBAFKozApiBMQVqgYsL1oXTwqbklHZ vJI4LKiFlrB1UbYkbppWIoEbmVLN3Yp4HFbAETgMz3faOWM7xTyCrrFl02I7EaXp aj+jlKYaIf8IlZvqdKzW7jGUU6u1bX41WCPhs4gqeXvJ0v/8Xe/XDlUhKUZwNN7t O2BME82GR5For/ny7xKRDuiSoYR40Y7WLJSHqRhpvgquB6S+ArBy3UkbNejflOh5 j4zGfg73n0nhtIuG38tKD9rG0AFpnsBuBN3M3jCscfY00mQkZhOdWHpJPR+q57o7 ftlOhDpKHuFX4Ldd+APUpg44gF30ssc7Orq5vBX0HQGxAprzRIpFW9/VuMY= -----END CERTIFICATE-----Generated at Mon Nov 3 03:08:15 2025 by rpki-client