$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa File: f99236be-03a7-4f91-be31-5366989c9d7b.roa (raw, json) Hash identifier: JMeajyfbBmcEimAZaG37raXaTaDENUviafNs77RUaRA= Subject key identifier: B5:9D:E1:79:57:02:5E:00:26:5E:A9:BF:13:0A:B2:31:DA:4B:F3:51 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4D86DA562187141381BEA4FFF6A5729D2FE9B30F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa Signing time: Sat 18 Oct 2025 00:00:12 +0000 ROA not before: Sat 18 Oct 2025 00:00:12 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.255.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:86:da:56:21:87:14:13:81:be:a4:ff:f6:a5:72:9d:2f:e9:b3:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 18 00:00:12 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=3215e92dc210439dcdf7bfcb4f4eba35a9fa5dc972b9be6907f4821c5077c2a8, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:9d:55:4b:04:3b:0e:5b:f9:be:b8:d2:8d:25: 5e:a5:97:d9:ad:73:e3:9a:a2:ac:bf:c1:b7:6c:8c: 1d:c6:9a:bb:2b:43:62:a0:e3:d0:f9:6e:08:87:bf: 98:ed:ae:e3:76:5c:43:d6:7a:16:7a:f3:cc:e7:1e: d3:d2:3e:0d:98:57:9a:60:cb:0e:e5:7c:2e:0b:be: 09:fc:87:26:f5:c6:30:59:3a:7e:16:4f:ad:2b:2b: 0a:f0:43:94:23:7c:d5:89:54:12:61:c0:ed:a0:41: 02:47:2b:36:ca:12:40:3c:16:46:f5:c8:58:2e:e0: 50:e7:0d:2a:d0:02:36:95:b5:bd:ea:a1:af:a8:09: 72:4c:ce:86:5c:16:fd:03:f1:11:c0:fc:40:98:19: 1e:3f:ea:15:92:35:36:65:4b:91:94:58:d1:7b:b8: 6f:da:f3:f7:a8:e4:a1:56:ef:57:2b:d1:c9:34:f4: b0:b8:a2:9a:91:7f:33:8f:58:1f:ab:20:b3:73:41: 36:e0:b0:b4:3f:56:61:e5:93:df:24:1a:0d:bc:84: fb:9e:93:33:b0:03:fc:c5:07:9b:c1:3d:d1:ad:ec: ed:fd:4e:40:14:c5:2c:37:ca:90:7e:f0:85:6c:73: 37:1e:d5:e9:6b:89:23:d9:c6:e3:2a:4b:52:70:b3: 3d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:9D:E1:79:57:02:5E:00:26:5E:A9:BF:13:0A:B2:31:DA:4B:F3:51 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f99236be-03a7-4f91-be31-5366989c9d7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.255.192.0/22 Signature Algorithm: sha256WithRSAEncryption 54:01:b9:59:3c:b8:49:ac:4c:8a:5f:3d:0c:50:a4:21:0c:5a: 71:2d:69:02:99:28:05:2a:30:9e:f0:a8:d1:37:ed:b0:b2:14: a0:0f:15:51:c5:70:46:9a:93:8e:15:f2:c8:64:89:86:e9:1b: fb:1c:48:21:cd:b1:3b:ff:f7:a7:4c:1e:b9:70:c2:51:ce:ab: c2:eb:a6:a7:eb:eb:d5:c1:92:00:65:a6:10:83:3b:fd:76:2e: c8:39:74:31:39:49:da:0f:6f:be:d0:0f:62:88:79:5d:63:7e: 57:7d:4b:47:91:1c:02:bb:ce:de:70:44:17:d0:de:cf:19:1d: 37:01:69:ea:91:de:4c:32:67:29:21:35:aa:38:3b:63:99:06: 89:7b:e6:00:20:b6:bf:1d:e5:01:99:a6:f9:63:4a:99:01:80: 66:9f:6f:c0:f3:1f:8f:6b:d9:3a:32:b3:99:d0:23:ce:14:d7: ed:ba:40:06:60:56:fb:3a:8d:4f:b7:9a:6e:4b:e6:94:82:d4: 6e:f9:bf:e1:88:a8:09:d7:e8:ba:e9:73:37:a9:4e:52:a0:28: b1:a6:95:65:59:88:58:80:e8:9f:9d:0d:d3:61:70:be:ee:28: b2:09:77:2e:7f:3f:c9:cd:1e:34:8a:24:31:a0:f9:f0:bb:9c: 86:bb:7c:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTYbaViGHFBOBvqT/9qVynS/psw8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDE4MDAwMDEyWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjE1ZTkyZGMyMTA0MzlkY2RmN2JmY2I0ZjRlYmEzNWE5 ZmE1ZGM5NzJiOWJlNjkwN2Y0ODIxYzUwNzdjMmE4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXnVVLBDsOW/m+uNKNJV6ll9mtc+Oaoqy/wbdsjB3Gmrsr Q2Kg49D5bgiHv5jtruN2XEPWehZ688znHtPSPg2YV5pgyw7lfC4Lvgn8hyb1xjBZ On4WT60rKwrwQ5QjfNWJVBJhwO2gQQJHKzbKEkA8Fkb1yFgu4FDnDSrQAjaVtb3q oa+oCXJMzoZcFv0D8RHA/ECYGR4/6hWSNTZlS5GUWNF7uG/a8/eo5KFW71cr0ck0 9LC4opqRfzOPWB+rILNzQTbgsLQ/VmHlk98kGg28hPuekzOwA/zFB5vBPdGt7O39 TkAUxSw3ypB+8IVsczce1elriSPZxuMqS1Jwsz0vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtZ3heVcCXgAmXqm/EwqyMdpL81EwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2Y5OTIzNmJlLTAzYTctNGY5MS1iZTMxLTUzNjY5ODljOWQ3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALH/8AwDQYJKoZIhvcNAQELBQADggEBAFQBuVk8uEmsTIpfPQxQpCEMWnEt aQKZKAUqMJ7wqNE37bCyFKAPFVHFcEaak44V8shkiYbpG/scSCHNsTv/96dMHrlw wlHOq8Lrpqfr69XBkgBlphCDO/12Lsg5dDE5SdoPb77QD2KIeV1jfld9S0eRHAK7 zt5wRBfQ3s8ZHTcBaeqR3kwyZykhNao4O2OZBol75gAgtr8d5QGZpvljSpkBgGaf b8DzH49r2Toys5nQI84U1+26QAZgVvs6jU+3mm5L5pSC1G75v+GIqAnX6Lrpczep TlKgKLGmlWVZiFiA6J+dDdNhcL7uKLIJdy5/P8nNHjSKJDGg+fC7nIa7fPk= -----END CERTIFICATE-----Generated at Sat Oct 18 13:49:44 2025 by rpki-client