$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa File: 271f0380-5b52-472a-bc37-cdbbdcd650e9.roa (raw, json) Hash identifier: guAJbIZy7fKcQ/JZbhcapdB/H06a8z6gOpOAVbLDByU= Subject key identifier: 7F:9E:44:52:B1:A8:B3:69:F7:CB:75:62:9A:41:B9:D7:FB:67:CF:87 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5BF1788D44256FB23CDF43FFBCB20394494FA076 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa Signing time: Sat 04 Oct 2025 00:20:55 +0000 ROA not before: Sat 04 Oct 2025 00:20:55 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:f1:78:8d:44:25:6f:b2:3c:df:43:ff:bc:b2:03:94:49:4f:a0:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:55 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=f0ded8c38f11d32947e52cb0a9739a8039fa00bfe06d3d85dcebd1a6eea0fc26, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b4:9b:78:58:fd:86:15:dc:5d:f9:bd:d8:1f: c4:89:c8:e5:78:50:93:0c:83:cc:2d:09:db:28:cd: 09:63:92:e4:07:56:2a:1f:d9:f1:a8:ec:08:13:0a: ba:ad:de:21:f4:80:eb:7f:2c:f2:a4:34:05:83:a5: 2e:5d:87:62:ed:1e:16:d8:15:a4:8d:7c:da:f9:df: b5:9d:4a:8f:42:5a:36:9b:cd:71:46:0b:18:32:d9: fa:e0:72:ef:93:6d:05:2d:ba:6f:36:ad:77:68:51: 54:33:42:a7:fa:d5:30:f2:0f:2a:77:c6:fa:57:fe: db:30:51:18:83:c0:a0:b5:ea:c7:e2:99:40:85:15: e9:dd:be:68:8a:3f:8e:4f:89:4f:f8:5a:7b:91:05: cd:e5:2d:9c:77:cf:f5:a8:f4:d5:ea:66:5a:54:ff: b3:63:99:6f:5f:ce:53:6b:f2:a9:54:25:19:6f:d4: b0:80:41:9f:d8:db:49:fe:b5:02:ac:a5:99:01:ba: 9a:35:1b:3f:01:40:7d:28:69:c8:5c:c0:d2:28:3a: 1e:5d:ac:03:96:e0:b3:b7:b0:40:af:a4:9e:db:1b: eb:69:30:43:b2:da:c7:a0:35:45:73:dd:74:3e:99: b8:42:39:6a:f8:6c:4f:aa:fb:cc:6e:53:ca:8c:af: 03:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:9E:44:52:B1:A8:B3:69:F7:CB:75:62:9A:41:B9:D7:FB:67:CF:87 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/271f0380-5b52-472a-bc37-cdbbdcd650e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.217.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:fb:76:cf:e7:d8:27:fc:90:8c:f4:57:4a:a8:be:75:a0:75: 4e:a6:dc:40:70:97:cb:34:1b:29:40:c5:5d:1d:36:c4:40:2b: d6:87:ee:ce:67:a5:54:36:dd:cc:5d:d5:89:04:12:6f:95:72: 3f:e6:c2:b7:32:52:e3:3e:8e:91:92:ab:72:6b:09:87:d5:d1: 61:8c:1e:c5:65:d8:21:41:5a:1d:28:c2:d9:f5:ce:0c:f8:0c: 2d:54:d1:8a:9c:41:68:2c:15:a7:a5:1b:20:48:6c:1e:48:af: 30:1a:51:23:c4:3c:7e:ce:4c:69:3a:6d:6a:f9:bb:93:69:3b: 8d:0c:24:ef:ca:8d:4e:5b:88:84:a2:d0:54:83:fa:c9:b7:ea: c2:6c:70:b6:c1:59:c5:76:02:b6:a3:9f:38:ae:8a:23:35:8e: be:79:4e:09:cd:6b:71:df:11:a3:04:88:13:8b:94:8a:5f:5e: 2d:ce:e3:41:1c:23:5c:17:cc:56:e3:16:1f:f9:a5:39:5f:f3: 64:74:e1:25:97:f1:86:67:88:0f:db:60:08:95:07:cf:c8:87: 82:d9:ea:12:93:fd:5a:33:21:f5:e0:c4:b9:f0:4e:52:a2:55: 38:64:a9:ff:4c:5b:00:1d:16:c8:03:c7:80:ce:d7:7c:c7:42: 36:4a:95:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW/F4jUQlb7I830P/vLIDlElPoHYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDU1WhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMGRlZDhjMzhmMTFkMzI5NDdlNTJjYjBhOTczOWE4MDM5 ZmEwMGJmZTA2ZDNkODVkY2ViZDFhNmVlYTBmYzI2MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHtJt4WP2GFdxd+b3YH8SJyOV4UJMMg8wtCdsozQljkuQH Viof2fGo7AgTCrqt3iH0gOt/LPKkNAWDpS5dh2LtHhbYFaSNfNr537WdSo9CWjab zXFGCxgy2frgcu+TbQUtum82rXdoUVQzQqf61TDyDyp3xvpX/tswURiDwKC16sfi mUCFFendvmiKP45PiU/4WnuRBc3lLZx3z/Wo9NXqZlpU/7NjmW9fzlNr8qlUJRlv 1LCAQZ/Y20n+tQKspZkBupo1Gz8BQH0oachcwNIoOh5drAOW4LO3sECvpJ7bG+tp MEOy2segNUVz3XQ+mbhCOWr4bE+q+8xuU8qMrwObAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf55EUrGos2n3y3VimkG51/tnz4cwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzI3MWYwMzgwLTViNTItNDcyYS1iYzM3LWNkYmJkY2Q2NTBlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dkwDQYJKoZIhvcNAQELBQADggEBADz7ds/n2Cf8kIz0V0qovnWgdU6m 3EBwl8s0GylAxV0dNsRAK9aH7s5npVQ23cxd1YkEEm+Vcj/mwrcyUuM+jpGSq3Jr CYfV0WGMHsVl2CFBWh0owtn1zgz4DC1U0YqcQWgsFaelGyBIbB5IrzAaUSPEPH7O TGk6bWr5u5NpO40MJO/KjU5biISi0FSD+sm36sJscLbBWcV2ArajnziuiiM1jr55 TgnNa3HfEaMEiBOLlIpfXi3O40EcI1wXzFbjFh/5pTlf82R04SWX8YZniA/bYAiV B8/Ih4LZ6hKT/VozIfXgxLnwTlKiVThkqf9MWwAdFsgDx4DO13zHQjZKlXo= -----END CERTIFICATE-----Generated at Mon Oct 20 17:00:49 2025 by rpki-client