$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa File: 946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa (raw, json) Hash identifier: dsSG67JP1QXggvO7zu1R96P0UfMBriUYP9zqrXzDpQk= Subject key identifier: DE:E8:AD:F1:D5:0B:EE:F1:DD:8E:26:C2:DC:77:4B:3A:C8:A2:9A:C3 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 79FA2B95CAB3126C61749BE05BED8B047D101A42 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa Signing time: Tue 09 Sep 2025 00:21:11 +0000 ROA not before: Tue 09 Sep 2025 00:21:11 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:fa:2b:95:ca:b3:12:6c:61:74:9b:e0:5b:ed:8b:04:7d:10:1a:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Sep 9 00:21:11 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=bfa1c555e67830579eb4e42ed89f612d6682df179a52d1c653c20c5f68da486e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:34:a0:79:4b:02:df:b9:7f:9e:2c:74:24:2e: 6b:96:56:ad:fc:82:b7:37:b3:c4:dc:48:2b:5f:47: ca:43:39:09:99:33:f7:63:51:9b:ac:53:aa:4d:f8: 22:1c:2e:59:4d:7e:94:96:a1:76:f2:6f:dd:bf:26: 8b:bd:70:10:dc:a1:95:d2:e8:a3:5b:cd:f2:1e:95: 13:8d:e9:bd:fa:80:63:c6:ed:21:87:bd:91:5d:81: 7d:9f:b6:90:27:a7:41:ec:73:be:7c:3d:58:75:9e: 17:73:a7:28:43:a5:8a:e2:5b:f5:e9:27:9c:03:ec: a7:9f:f4:be:ec:46:6b:8c:ec:86:fb:9b:35:97:63: 03:e6:60:64:e8:a7:91:40:75:5e:cf:d9:d8:68:5a: 5a:31:ef:b3:f9:50:0b:d7:44:70:0d:32:a6:a6:c6: b7:47:ee:c6:8f:ef:60:34:ae:89:f8:63:d0:7d:9b: e3:2f:ab:1d:ef:af:29:87:de:a7:cb:8e:58:35:a4: 22:d8:e8:82:8e:a3:2e:c1:05:53:73:c8:b4:ca:8c: 52:1f:97:65:15:b2:c9:20:3c:b9:22:4e:f7:13:41: 79:35:12:a6:4a:fd:b8:4b:61:1c:8d:76:d6:9f:3e: f8:48:9f:ca:5a:36:4e:17:85:44:8a:8d:3f:4c:eb: 3a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E8:AD:F1:D5:0B:EE:F1:DD:8E:26:C2:DC:77:4B:3A:C8:A2:9A:C3 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.225.0/24 Signature Algorithm: sha256WithRSAEncryption 23:4b:e2:c3:38:14:70:6c:2d:91:c3:a3:0c:7e:90:1e:79:b8: 3a:f1:a0:00:17:6f:20:ea:59:9a:68:55:bb:e5:9e:4a:c0:64: b0:e2:95:99:87:c4:43:76:34:d4:10:75:de:3c:50:a3:f4:2b: ec:fe:aa:ce:48:2d:11:ef:0a:60:c5:02:85:7b:44:73:64:70: ef:59:e7:47:78:b2:3c:e2:8a:e9:48:f9:98:c9:18:a3:f8:26: 08:f2:17:ed:db:10:84:02:f3:bb:e4:fe:67:1d:09:12:c4:da: c5:35:c9:1f:56:e6:42:f9:65:21:80:cf:03:bd:c9:d3:43:78: 66:d8:56:e6:b0:9a:b8:24:56:6e:78:77:a2:ff:3a:6f:cf:0d: 63:f5:81:b4:c7:01:84:47:60:cc:ca:ea:b0:73:c8:b3:c5:19: c9:35:8c:c8:f6:5a:e3:0c:b6:35:3c:36:d4:16:2b:8f:bb:4f: a4:9a:a1:fa:b8:b3:05:83:4b:88:ef:22:cb:8f:e8:32:be:92: a9:36:ba:c9:d8:c9:29:b7:6f:40:84:ce:f3:8f:0e:78:0d:1a: a5:c8:6b:ef:28:08:94:25:ed:57:b5:82:91:8a:12:78:da:89: 74:e6:72:b7:96:20:20:74:1b:89:cc:fd:05:b8:6a:88:eb:d9: f5:f7:4d:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeforlcqzEmxhdJvgW+2LBH0QGkIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwOTA5MDAyMTExWhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZmExYzU1NWU2NzgzMDU3OWViNGU0MmVkODlmNjEyZDY2 ODJkZjE3OWE1MmQxYzY1M2MyMGM1ZjY4ZGE0ODZlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDvNKB5SwLfuX+eLHQkLmuWVq38grc3s8TcSCtfR8pDOQmZ M/djUZusU6pN+CIcLllNfpSWoXbyb92/Jou9cBDcoZXS6KNbzfIelRON6b36gGPG 7SGHvZFdgX2ftpAnp0Hsc758PVh1nhdzpyhDpYriW/XpJ5wD7Kef9L7sRmuM7Ib7 mzWXYwPmYGTop5FAdV7P2dhoWlox77P5UAvXRHANMqamxrdH7saP72A0ron4Y9B9 m+Mvqx3vrymH3qfLjlg1pCLY6IKOoy7BBVNzyLTKjFIfl2UVsskgPLkiTvcTQXk1 EqZK/bhLYRyNdtafPvhIn8paNk4XhUSKjT9M6zpbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3uit8dUL7vHdjibC3HdLOsiimsMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk0NmFlYzBhLWRkZGYtNDlhYi1iNWJmLWVjNzI4MWViMWU3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++EwDQYJKoZIhvcNAQELBQADggEBACNL4sM4FHBsLZHDowx+kB55uDrx oAAXbyDqWZpoVbvlnkrAZLDilZmHxEN2NNQQdd48UKP0K+z+qs5ILRHvCmDFAoV7 RHNkcO9Z50d4sjziiulI+ZjJGKP4JgjyF+3bEIQC87vk/mcdCRLE2sU1yR9W5kL5 ZSGAzwO9ydNDeGbYVuawmrgkVm54d6L/Om/PDWP1gbTHAYRHYMzK6rBzyLPFGck1 jMj2WuMMtjU8NtQWK4+7T6Saofq4swWDS4jvIsuP6DK+kqk2usnYySm3b0CEzvOP DngNGqXIa+8oCJQl7Ve1gpGKEnjaiXTmcreWICB0G4nM/QW4aojr2fX3TZE= -----END CERTIFICATE-----Generated at Tue Sep 16 19:48:02 2025 by rpki-client