$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa File: cff2aad7-f173-47b6-ad48-6f279ff321d1.roa (raw, json) Hash identifier: BJr3vDuC9IL8BU50Jrqm6ttHxpvsewphBFsCn6KYgkk= Subject key identifier: B1:16:09:5F:8F:E5:06:41:73:CE:1B:D8:2F:04:F8:DD:44:61:CB:57 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 07009C7C055EA7EC44C42595888FF5CC50503F41 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa Signing time: Sat 04 Oct 2025 00:20:53 +0000 ROA not before: Sat 04 Oct 2025 00:20:53 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 24 Oct 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:00:9c:7c:05:5e:a7:ec:44:c4:25:95:88:8f:f5:cc:50:50:3f:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:53 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=e67113684a4a948e0f6faf05732648e84929cb3a6ee7cde2529b7f72e19d96b7, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:bb:35:a7:48:0e:f2:71:64:40:60:85:0f:d5: 8a:d5:84:05:12:ce:47:f7:3f:47:63:c9:22:d4:6b: 61:70:3a:9c:b9:b5:ba:51:ce:21:2f:2c:d5:a2:3e: 07:f6:2f:d4:d6:8f:91:cb:20:76:65:dc:c9:12:12: 7a:70:b7:c8:5e:ee:0e:ea:01:0f:14:4b:4e:12:6c: 5c:d5:ae:dc:29:d2:56:bf:a2:30:53:f2:a5:17:9e: 53:32:e6:89:b8:02:4d:db:88:81:24:41:fe:a0:69: a5:5b:19:24:52:1e:a1:b9:db:4a:c4:9c:f8:b8:c1: 4a:a6:ed:a0:1d:98:68:b8:83:d3:9a:a1:5f:1d:8e: 8c:d1:b6:6c:87:26:c1:80:b9:aa:57:de:b2:43:fc: 9e:71:b4:9c:a0:53:99:aa:e5:43:86:2c:bd:d4:42: 9b:2e:74:ff:43:8b:62:22:e3:f9:49:19:90:10:dd: a1:84:62:28:6d:d1:8c:8c:83:7b:7d:54:e0:fc:cf: 39:07:92:05:f2:03:96:85:62:ca:f7:64:b6:be:ea: 04:87:22:e3:19:65:6c:d6:cb:c1:8e:e3:d4:0d:ee: 07:d1:92:2b:8b:77:aa:53:d9:af:3b:4d:a3:3c:4c: a3:db:32:d2:59:aa:a3:25:7c:d5:9f:bd:26:9e:b4: 21:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:16:09:5F:8F:E5:06:41:73:CE:1B:D8:2F:04:F8:DD:44:61:CB:57 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.212.0/24 Signature Algorithm: sha256WithRSAEncryption 18:ba:7d:40:c4:86:c4:bb:b5:61:c6:29:25:37:9e:7f:1d:75: e8:ac:e2:bd:13:da:22:bc:03:03:7a:a5:79:87:5b:b7:3a:c3: b8:91:83:65:db:b2:74:09:3d:76:e8:30:b7:35:55:a3:0d:9d: 4d:14:a6:49:f5:bf:07:6e:5c:c4:01:ca:7e:b1:fa:2f:bd:f8: c0:b5:a3:ef:1b:69:72:94:e1:58:08:a9:2d:df:58:c1:f3:7f: c4:60:dd:8b:e5:9b:01:53:c1:1b:06:c0:79:57:4d:bf:31:8e: de:e8:bf:2d:cf:00:3b:0b:3d:09:02:92:ab:e8:9c:37:01:f4: e5:7a:66:49:9e:35:80:b4:1a:41:08:f0:c4:b5:a0:cf:d7:22: 70:a2:03:e6:7b:f1:f6:94:b8:53:6b:f5:db:61:da:5a:80:8b: d3:b4:33:f1:e9:19:30:15:02:76:17:32:dd:5b:31:68:db:9c: 24:5f:01:44:02:9b:12:ee:6b:87:66:e1:23:d0:16:64:53:d0: df:27:63:34:45:84:ca:6e:21:ce:96:66:18:45:2a:e7:84:67: c2:e2:a5:08:92:85:42:70:4f:27:5a:9d:a5:39:46:b5:aa:f2: b4:82:63:e6:2a:b0:80:37:b1:bd:b0:55:6b:ad:91:12:12:df: 09:f1:5e:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBwCcfAVep+xExCWViI/1zFBQP0EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDUzWhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNjcxMTM2ODRhNGE5NDhlMGY2ZmFmMDU3MzI2NDhlODQ5 MjljYjNhNmVlN2NkZTI1MjliN2Y3MmUxOWQ5NmI3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDguzWnSA7ycWRAYIUP1YrVhAUSzkf3P0djySLUa2FwOpy5 tbpRziEvLNWiPgf2L9TWj5HLIHZl3MkSEnpwt8he7g7qAQ8US04SbFzVrtwp0la/ ojBT8qUXnlMy5om4Ak3biIEkQf6gaaVbGSRSHqG520rEnPi4wUqm7aAdmGi4g9Oa oV8djozRtmyHJsGAuapX3rJD/J5xtJygU5mq5UOGLL3UQpsudP9Di2Ii4/lJGZAQ 3aGEYiht0YyMg3t9VOD8zzkHkgXyA5aFYsr3ZLa+6gSHIuMZZWzWy8GO49QN7gfR kiuLd6pT2a87TaM8TKPbMtJZqqMlfNWfvSaetCGpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsRYJX4/lBkFzzhvYLwT43URhy1cwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NmZjJhYWQ3LWYxNzMtNDdiNi1hZDQ4LTZmMjc5ZmYzMjFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dQwDQYJKoZIhvcNAQELBQADggEBABi6fUDEhsS7tWHGKSU3nn8ddeis 4r0T2iK8AwN6pXmHW7c6w7iRg2XbsnQJPXboMLc1VaMNnU0Upkn1vwduXMQByn6x +i+9+MC1o+8baXKU4VgIqS3fWMHzf8Rg3YvlmwFTwRsGwHlXTb8xjt7ovy3PADsL PQkCkqvonDcB9OV6ZkmeNYC0GkEI8MS1oM/XInCiA+Z78faUuFNr9dth2lqAi9O0 M/HpGTAVAnYXMt1bMWjbnCRfAUQCmxLua4dm4SPQFmRT0N8nYzRFhMpuIc6WZhhF KueEZ8LipQiShUJwTydanaU5RrWq8rSCY+YqsIA3sb2wVWutkRIS3wnxXgE= -----END CERTIFICATE-----Generated at Thu Oct 23 16:09:45 2025 by rpki-client