$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa File: 5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa (raw, json) Hash identifier: wxdAN5Q2uLBr9xpoWDY/ZukgiGWgvNPtbqImROh6b00= Subject key identifier: 40:97:73:20:6C:BE:CE:9A:9A:7C:19:11:5C:E1:F8:B5:BC:6B:EE:9F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 08F064A3518ECEE69E43CE43EC1B07BA04E2E532 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa Signing time: Wed 29 Oct 2025 00:20:19 +0000 ROA not before: Wed 29 Oct 2025 00:20:19 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:f0:64:a3:51:8e:ce:e6:9e:43:ce:43:ec:1b:07:ba:04:e2:e5:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 29 00:20:19 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=2b4a4c2b892a77b084a2c6efcb0752d2b06677304928f97db9c9f05cdbc45e91, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:56:78:cb:90:fd:2e:e4:c8:87:69:08:f1:e2: fd:f0:1e:88:55:56:06:25:59:f3:51:c6:91:ee:ac: 65:d9:38:9d:64:79:52:39:94:db:3b:db:32:86:d6: e9:d5:24:6b:e7:83:b8:a4:90:98:80:4c:4c:26:8c: ac:fb:61:1b:b5:be:d0:a7:20:8b:d1:99:d7:60:a6: ee:d3:ab:cc:81:cc:92:eb:95:ca:82:14:33:99:f1: 66:48:3a:c6:a2:34:5a:92:e8:72:18:30:f9:09:7a: 75:12:6d:49:97:92:68:98:0e:5e:8b:de:03:28:f7: 8d:7b:7f:31:ce:f7:c7:c9:7f:ce:69:c6:f7:e0:2c: 9b:ee:29:60:b0:23:fb:e8:ff:24:4a:af:2c:61:10: e1:eb:8a:7c:35:61:b5:f2:1e:e9:b8:b8:f3:45:5a: a7:e6:12:93:28:29:fe:59:38:a4:f2:b3:c3:53:34: b9:ce:4d:70:d0:2e:90:01:60:cc:5e:d2:e1:e6:6a: 35:20:9e:f5:98:23:f9:97:3a:a1:fe:5a:e3:f1:0e: 7f:cd:9a:b5:49:fb:e1:cd:7f:ef:46:ea:cb:a6:f4: eb:2e:76:e8:ce:19:62:a8:1d:76:2e:e5:ce:9a:7a: 2c:25:72:c5:1d:64:c6:a3:51:1c:d1:e4:b3:1a:9b: ad:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:97:73:20:6C:BE:CE:9A:9A:7C:19:11:5C:E1:F8:B5:BC:6B:EE:9F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5d34f797-6d16-498a-b66d-8c7d0fcac77f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.233.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:68:3c:27:50:75:8a:fd:c0:aa:e6:05:2a:d2:0e:60:ea:f9: fb:09:6a:5d:a1:a6:8d:f9:73:30:49:20:a5:f3:ac:23:3b:20: fa:f5:88:20:3b:d8:d0:13:fd:a4:cd:c0:53:0c:a5:f7:31:48: 68:ec:34:d7:dd:16:6c:64:fd:78:46:6a:6c:27:e3:93:03:a1: bb:5c:2c:a7:cb:12:9a:5b:56:0b:3c:5a:75:42:05:f0:2e:65: de:f8:d0:d5:bc:de:4f:73:49:4d:df:89:38:cc:4b:86:5c:22: 1d:fa:32:d6:51:1a:59:ba:20:89:54:67:79:d1:c4:f6:d9:aa: 0e:93:a1:ba:95:d8:ff:be:87:67:43:cc:c7:5d:6b:b6:e0:6a: b0:e3:f4:0f:f0:49:93:f9:5b:80:8a:f6:d3:e8:2a:98:f1:5d: e2:d9:a3:d5:14:53:6a:f4:61:59:46:6a:cb:4e:f3:48:56:f5: d1:aa:41:68:f9:e7:63:22:40:fd:63:b9:b1:ce:55:85:50:69: 85:90:1e:70:44:03:59:73:c5:a1:e0:83:3c:0b:b3:5c:d5:9f: 2a:1f:a4:16:aa:f3:a1:a0:91:65:38:43:82:98:fb:eb:3d:4d: 37:e8:f9:7b:fd:ce:a4:54:f2:b1:aa:8d:30:eb:c9:9c:22:67: 6b:7a:ab:f5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCPBko1GOzuaeQ85D7BsHugTi5TIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI5MDAyMDE5WhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjRhNGMyYjg5MmE3N2IwODRhMmM2ZWZjYjA3NTJkMmIw NjY3NzMwNDkyOGY5N2RiOWM5ZjA1Y2RiYzQ1ZTkxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxVnjLkP0u5MiHaQjx4v3wHohVVgYlWfNRxpHurGXZOJ1k eVI5lNs72zKG1unVJGvng7ikkJiATEwmjKz7YRu1vtCnIIvRmddgpu7Tq8yBzJLr lcqCFDOZ8WZIOsaiNFqS6HIYMPkJenUSbUmXkmiYDl6L3gMo9417fzHO98fJf85p xvfgLJvuKWCwI/vo/yRKryxhEOHrinw1YbXyHum4uPNFWqfmEpMoKf5ZOKTys8NT NLnOTXDQLpABYMxe0uHmajUgnvWYI/mXOqH+WuPxDn/NmrVJ++HNf+9G6sum9Osu dujOGWKoHXYu5c6aeiwlcsUdZMajURzR5LMam61fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQJdzIGy+zpqafBkRXOH4tbxr7p8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkMzRmNzk3LTZkMTYtNDk4YS1iNjZkLThjN2QwZmNhYzc3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++kwDQYJKoZIhvcNAQELBQADggEBAD1oPCdQdYr9wKrmBSrSDmDq+fsJ al2hpo35czBJIKXzrCM7IPr1iCA72NAT/aTNwFMMpfcxSGjsNNfdFmxk/XhGamwn 45MDobtcLKfLEppbVgs8WnVCBfAuZd740NW83k9zSU3fiTjMS4ZcIh36MtZRGlm6 IIlUZ3nRxPbZqg6TobqV2P++h2dDzMdda7bgarDj9A/wSZP5W4CK9tPoKpjxXeLZ o9UUU2r0YVlGastO80hW9dGqQWj552MiQP1jubHOVYVQaYWQHnBEA1lzxaHggzwL s1zVnyofpBaq86GgkWU4Q4KY++s9TTfo+Xv9zqRU8rGqjTDryZwiZ2t6q/U= -----END CERTIFICATE-----Generated at Tue Nov 4 09:58:46 2025 by rpki-client