$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa File: b59643bf-eb80-414a-aca0-653646d46e07.roa (raw, json) Hash identifier: NQg/dVPITiibyd8O7ot4W9SS3kZjPPHNyHvyCKpn8uU= Subject key identifier: 9D:22:48:C6:3D:6A:17:8E:2A:E5:AE:F7:31:DC:8C:64:50:84:20:49 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 7C4880F5F9E1488BA28A4F7114D6DCFA8A049F97 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa Signing time: Sat 18 Oct 2025 00:00:11 +0000 ROA not before: Sat 18 Oct 2025 00:00:11 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.127.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Oct 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:48:80:f5:f9:e1:48:8b:a2:8a:4f:71:14:d6:dc:fa:8a:04:9f:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 18 00:00:11 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=a4294e9f8af2fe27e795582b11359b66947fd343dc2bd7bac5f77af9c999fc8e, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:02:2f:e0:00:e4:46:31:b6:93:9f:3d:d0:00: ef:7f:d2:25:2c:6d:32:e8:f1:be:79:5c:2b:58:27: a3:55:59:cd:8e:0e:9e:2d:09:52:3b:76:bf:40:d3: 80:2c:c6:0e:fd:ac:23:cb:b1:de:c1:aa:24:44:00: 67:40:3c:29:47:9d:c1:86:c9:3a:15:d8:78:ff:ec: 08:b1:c8:b3:5c:f9:ad:27:91:35:d7:5a:d9:b0:b8: ae:0b:d5:5e:91:5b:40:81:ea:8b:7d:49:c4:52:a0: 25:23:90:6c:64:5e:e0:6e:24:b0:77:83:62:02:d3: 5b:37:57:cf:ff:10:35:ff:1b:a8:7d:33:a4:0b:6f: 14:89:a6:8a:e9:8a:eb:21:4e:99:03:2b:c6:9d:95: 7b:27:5c:17:cb:aa:8f:d0:eb:e5:0e:7a:b9:ac:ec: 4d:1f:28:a5:81:d9:a5:2f:d9:81:b2:40:90:84:01: 7e:6f:a3:d7:33:74:e9:b8:44:b4:71:82:dd:01:13: 29:6b:e0:f6:10:01:f8:46:27:37:c7:a7:7a:d4:5c: a6:62:33:b1:b6:fd:4d:56:c4:b9:12:fe:d3:61:fa: f2:b1:a7:54:d6:f7:b4:bf:a6:9d:c3:39:0f:3b:76: 17:5f:ec:c6:62:28:34:d6:10:9a:7c:2f:39:2f:eb: f5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:22:48:C6:3D:6A:17:8E:2A:E5:AE:F7:31:DC:8C:64:50:84:20:49 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b59643bf-eb80-414a-aca0-653646d46e07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.127.232.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:13:cc:51:c4:a8:74:1a:69:4a:28:80:ac:e1:d1:50:f9:0a: 75:6c:37:f2:39:e8:1d:99:fa:db:bf:99:1f:db:36:32:ab:3e: aa:81:8a:c3:3b:d7:d2:f4:06:3e:0b:33:76:fc:79:cc:12:51: 43:e8:17:10:b7:fe:60:01:55:77:09:79:f4:85:3e:41:d6:e6: 09:b5:dc:03:2a:f2:4f:3f:c9:fd:9c:85:e2:dd:1c:ef:0b:7b: 5b:1b:a2:72:c1:26:5e:d1:49:b2:d3:20:b8:77:36:4b:f1:ff: 9e:b2:a6:6b:d7:a6:c3:a4:08:8a:e3:27:77:0c:81:ce:2e:9a: c8:bf:65:40:22:cd:8f:ce:e5:d4:0f:28:b2:6d:16:f3:8d:bc: 89:87:49:bd:c2:3c:cd:47:db:1c:3f:47:76:7c:4c:34:9c:5d: f6:49:0f:28:8c:26:f8:62:ec:c5:86:c6:2b:ef:00:f1:16:34: 34:f8:6b:26:9d:10:8c:46:75:90:9e:f8:ac:fd:88:83:4f:cb: 15:f1:69:e6:a6:7f:dd:c0:ac:33:25:c7:d5:f1:3a:9a:c1:e6: cb:c7:7e:49:ac:d8:be:b2:1c:79:4c:49:f5:cb:31:cc:f2:fa: 0b:7c:a6:3e:37:e4:4c:87:a3:27:fe:1e:f3:e2:41:6f:32:41: 58:f2:1c:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfEiA9fnhSIuiik9xFNbc+ooEn5cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDE4MDAwMDExWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDI5NGU5ZjhhZjJmZTI3ZTc5NTU4MmIxMTM1OWI2Njk0 N2ZkMzQzZGMyYmQ3YmFjNWY3N2FmOWM5OTlmYzhlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5Ai/gAORGMbaTnz3QAO9/0iUsbTLo8b55XCtYJ6NVWc2O Dp4tCVI7dr9A04Asxg79rCPLsd7BqiREAGdAPClHncGGyToV2Hj/7AixyLNc+a0n kTXXWtmwuK4L1V6RW0CB6ot9ScRSoCUjkGxkXuBuJLB3g2IC01s3V8//EDX/G6h9 M6QLbxSJporpiushTpkDK8adlXsnXBfLqo/Q6+UOerms7E0fKKWB2aUv2YGyQJCE AX5vo9czdOm4RLRxgt0BEylr4PYQAfhGJzfHp3rUXKZiM7G2/U1WxLkS/tNh+vKx p1TW97S/pp3DOQ87dhdf7MZiKDTWEJp8Lzkv6/W1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnSJIxj1qF44q5a73MdyMZFCEIEkwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I1OTY0M2JmLWViODAtNDE0YS1hY2EwLTY1MzY0NmQ0NmUwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALHf+gwDQYJKoZIhvcNAQELBQADggEBACwTzFHEqHQaaUoogKzh0VD5CnVs N/I56B2Z+tu/mR/bNjKrPqqBisM719L0Bj4LM3b8ecwSUUPoFxC3/mABVXcJefSF PkHW5gm13AMq8k8/yf2cheLdHO8Le1sbonLBJl7RSbLTILh3Nkvx/56ypmvXpsOk CIrjJ3cMgc4umsi/ZUAizY/O5dQPKLJtFvONvImHSb3CPM1H2xw/R3Z8TDScXfZJ DyiMJvhi7MWGxivvAPEWNDT4ayadEIxGdZCe+Kz9iINPyxXxaeamf93ArDMlx9Xx OprB5svHfkms2L6yHHlMSfXLMczy+gt8pj435EyHoyf+HvPiQW8yQVjyHIA= -----END CERTIFICATE-----Generated at Sun Oct 19 07:32:34 2025 by rpki-client