$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa File: 3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa (raw, json) Hash identifier: q6c1GwfRw5LWzo3Fjch2thOX6RIK9lg/0eIJ2aJElnY= Subject key identifier: 5B:93:08:7A:04:64:7B:AD:79:42:73:95:D9:F5:3E:AF:A2:00:B6:11 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 645D6A2586C7FA233A5717CF0816177D09BE8283 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa Signing time: Fri 03 Oct 2025 00:00:15 +0000 ROA not before: Fri 03 Oct 2025 00:00:15 +0000 ROA not after: Fri 07 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:5d:6a:25:86:c7:fa:23:3a:57:17:cf:08:16:17:7d:09:be:82:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 3 00:00:15 2025 GMT Not After : Nov 7 23:59:59 2025 GMT Subject: serialNumber=ebcfae7d0e33f0b9f13f42ac0fe10b313d3f52d1ffe8d06eb66bfb73503e68c3, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:55:30:94:8c:a4:51:6a:0a:8b:ff:2c:26:21: 92:7f:ec:7a:6f:2a:1a:bd:d6:0c:d5:6d:df:32:86: 21:89:1f:8e:dc:78:32:ef:20:43:4c:69:44:95:7a: 18:ba:b8:6d:82:b9:0a:94:e2:64:14:83:9e:2a:f9: fd:8d:a2:fb:2f:5f:d9:60:3f:4c:37:d4:21:52:0c: 9b:e7:67:65:ec:e8:44:50:67:38:5f:14:73:05:b2: b9:c2:6f:0d:3f:a0:91:fd:47:9c:f0:5b:cc:b1:16: 90:88:a1:0e:de:0f:6e:f4:d6:87:b1:2d:a2:26:b2: 83:d8:b8:d6:2b:b4:98:da:3a:48:79:e7:3a:0d:63: 90:27:2a:f4:52:af:ef:14:fa:69:54:4d:29:46:ca: fa:c1:c6:df:ea:9e:2f:55:a5:95:82:4b:bc:c8:cc: e4:3d:41:41:ea:b6:d8:3c:ee:f9:0f:7c:1a:96:46: af:44:df:15:8f:98:d2:b3:dc:23:28:8c:48:b1:2b: 21:8e:51:24:ed:68:dd:45:6e:9f:85:25:fd:28:fb: f4:3c:dc:50:1f:51:a0:71:cb:56:c7:05:f3:53:1c: 85:70:fe:a7:cb:79:e4:69:e5:65:42:34:ba:a2:5a: 2f:d5:47:1c:08:7c:ee:93:25:ba:29:59:5c:dc:b2: 82:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:93:08:7A:04:64:7B:AD:79:42:73:95:D9:F5:3E:AF:A2:00:B6:11 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 09:55:dc:01:7c:1d:15:f9:b4:e3:43:61:92:7f:e2:b0:52:1b: 7d:1e:4d:76:e1:13:59:b2:18:a8:85:31:cd:f8:f2:d7:94:37: b7:1e:72:42:63:2a:04:f8:0e:84:95:39:f3:f3:bd:c0:37:30: 38:fd:04:0e:1c:71:b4:e6:54:ce:83:18:51:97:17:9e:02:1e: 1f:57:05:06:1a:88:90:bf:a2:97:e5:a7:3d:71:03:a5:52:06: c9:e5:2e:9e:c8:53:e1:9c:98:ed:c4:04:13:94:45:29:86:bc: 01:d3:ed:1b:d1:b4:db:c6:43:6b:ac:d3:54:30:c1:e1:98:49: 38:e9:84:69:47:72:e1:05:7d:1d:16:47:3c:02:8c:74:c3:a9: fe:7e:68:95:c7:fc:62:16:22:c7:e5:79:0c:56:9c:2d:78:1b: dc:5a:eb:37:7c:5e:1d:20:b4:ed:d1:7b:cd:d5:55:91:48:fc: ea:70:3e:01:2d:25:8c:77:6b:3e:bd:16:ad:82:6f:c1:c4:91: f8:88:c3:b2:3e:8f:e9:fc:d3:8e:ec:ea:e9:eb:09:d4:02:d4: 27:4c:25:a8:eb:4e:5e:23:15:a6:bb:ff:32:6e:0b:b4:21:3e: b8:fe:b7:ef:b4:30:ef:3f:1c:0f:95:5f:35:94:04:25:6b:51: ce:d2:6d:26 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZF1qJYbH+iM6VxfPCBYXfQm+goMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDAzMDAwMDE1WhcNMjUxMTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmNmYWU3ZDBlMzNmMGI5ZjEzZjQyYWMwZmUxMGIzMTNk M2Y1MmQxZmZlOGQwNmViNjZiZmI3MzUwM2U2OGMzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWVTCUjKRRagqL/ywmIZJ/7HpvKhq91gzVbd8yhiGJH47c eDLvIENMaUSVehi6uG2CuQqU4mQUg54q+f2NovsvX9lgP0w31CFSDJvnZ2Xs6ERQ ZzhfFHMFsrnCbw0/oJH9R5zwW8yxFpCIoQ7eD2701oexLaImsoPYuNYrtJjaOkh5 5zoNY5AnKvRSr+8U+mlUTSlGyvrBxt/qni9VpZWCS7zIzOQ9QUHqttg87vkPfBqW Rq9E3xWPmNKz3CMojEixKyGOUSTtaN1Fbp+FJf0o+/Q83FAfUaBxy1bHBfNTHIVw /qfLeeRp5WVCNLqiWi/VRxwIfO6TJbopWVzcsoKPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUW5MIegRke615QnOV2fU+r6IAthEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNlMGRhY2UzLTBlMmEtNDI1Mi04YzkyLTRjN2VlYzRjMzU4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBAAlV3AF8HRX5tONDYZJ/4rBSG30e TXbhE1myGKiFMc348teUN7ceckJjKgT4DoSVOfPzvcA3MDj9BA4ccbTmVM6DGFGX F54CHh9XBQYaiJC/opflpz1xA6VSBsnlLp7IU+GcmO3EBBOURSmGvAHT7RvRtNvG Q2us01QwweGYSTjphGlHcuEFfR0WRzwCjHTDqf5+aJXH/GIWIsfleQxWnC14G9xa 6zd8Xh0gtO3Re83VVZFI/OpwPgEtJYx3az69Fq2Cb8HEkfiIw7I+j+n8047s6unr CdQC1CdMJajrTl4jFaa7/zJuC7QhPrj+t++0MO8/HA+VXzWUBCVrUc7SbSY= -----END CERTIFICATE-----Generated at Mon Oct 20 13:03:42 2025 by rpki-client