$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: b2PzJzVEgq4tLnmgxltM2I+lbYqWhJTANUrkc9/SKPQ= Subject key identifier: 62:8D:F4:2A:BF:ED:12:AF:72:EA:FB:EC:FA:F7:73:54:5C:40:BD:B7 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5B4EFA2F155DD380D4102B3AC0605ECEA9F13718 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Fri 03 Oct 2025 00:00:14 +0000 ROA not before: Fri 03 Oct 2025 00:00:14 +0000 ROA not after: Fri 07 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:4e:fa:2f:15:5d:d3:80:d4:10:2b:3a:c0:60:5e:ce:a9:f1:37:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 3 00:00:14 2025 GMT Not After : Nov 7 23:59:59 2025 GMT Subject: serialNumber=1bb97d15b951d926dbe886d703d2e83284539a3e1354ad965ef560f648279880, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:27:aa:4c:67:33:86:74:32:14:e5:e3:e3:8f: 3e:1f:6f:b7:42:64:50:e0:6d:b9:79:7e:74:2d:50: f3:28:e1:05:ea:15:dc:ec:06:3f:1a:34:42:38:4c: be:11:a9:9b:46:62:b5:fc:6b:74:62:8b:c6:1a:a9: 10:6c:05:89:09:8d:1e:fa:d5:8a:21:d0:31:95:a3: c0:b7:a6:ff:a5:73:eb:17:a8:3c:76:56:ac:1d:72: ad:b2:fd:b3:73:2a:83:40:ba:7b:5c:8a:17:48:87: 0e:33:cd:4b:8c:81:12:56:55:b2:8c:70:3f:02:58: 50:43:78:1d:51:7a:9e:8a:9c:ef:d5:db:f2:3e:0d: fa:40:a2:d7:17:07:2a:aa:44:08:81:6d:3e:2d:2a: d3:f6:1e:b2:34:16:d0:96:00:9f:2b:78:37:74:0b: ad:e0:cd:6f:e2:64:5f:d0:a8:24:79:cb:0f:6a:bd: ae:09:db:a4:91:bc:e3:16:ed:5f:50:44:21:68:d5: 4f:11:11:90:28:28:e4:59:2f:1c:e6:e5:b8:dc:b4: e5:08:e5:7c:eb:aa:67:ed:b6:77:5a:07:c7:d7:ce: 07:9a:52:5f:c7:8e:21:f7:21:be:a0:6e:b8:17:28: da:c9:68:ea:f3:34:10:f3:bf:17:d6:6b:8c:1b:a4: 25:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8D:F4:2A:BF:ED:12:AF:72:EA:FB:EC:FA:F7:73:54:5C:40:BD:B7 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:50:9d:56:e8:f0:4a:9d:ec:8f:0b:4a:90:8a:3c:0e:2a:01: ae:15:21:f8:e7:ca:e4:56:50:dc:69:b4:b7:cf:4f:e2:7f:30: d1:0f:94:43:29:2b:7a:43:aa:55:39:0d:c2:6f:bb:e1:ee:7a: 08:8e:1c:0e:7d:75:c7:22:79:f9:a7:ab:9b:d5:d9:e8:c2:4c: 4b:de:c0:11:7c:e6:58:aa:92:ee:a5:53:cc:c5:08:d4:f3:04: 65:9e:c6:6e:58:97:b0:91:a5:33:19:e0:26:8e:e0:ef:7a:17: 69:84:92:2b:e3:78:35:ef:5e:79:0f:46:1f:9a:8d:0b:de:aa: ee:75:fc:a7:cd:bc:b2:dd:35:bf:54:ee:15:8f:52:60:f3:66: 64:62:da:6d:a2:ce:d9:a9:50:00:40:76:4a:c9:9d:52:a9:ba: 4d:7f:30:c1:00:d4:13:1d:34:bd:09:3c:d3:7a:3b:9e:e4:e5: 4e:1c:f1:2d:38:0b:dc:0e:1a:ae:7b:e2:62:e5:38:e1:23:04: 31:13:1a:b4:fb:49:0b:d0:3f:c3:9f:83:41:98:a9:e0:c0:0c: 0a:50:92:71:01:f9:36:c3:7d:94:f3:49:b2:65:da:37:ab:07: 4c:1b:09:72:8b:1d:40:2e:14:ee:eb:45:b0:66:ba:2b:8f:19: af:4b:f3:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW076LxVd04DUECs6wGBezqnxNxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDAzMDAwMDE0WhcNMjUxMTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYmI5N2QxNWI5NTFkOTI2ZGJlODg2ZDcwM2QyZTgzMjg0 NTM5YTNlMTM1NGFkOTY1ZWY1NjBmNjQ4Mjc5ODgwMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYJ6pMZzOGdDIU5ePjjz4fb7dCZFDgbbl5fnQtUPMo4QXq FdzsBj8aNEI4TL4RqZtGYrX8a3Rii8YaqRBsBYkJjR761Yoh0DGVo8C3pv+lc+sX qDx2Vqwdcq2y/bNzKoNAuntcihdIhw4zzUuMgRJWVbKMcD8CWFBDeB1Rep6KnO/V 2/I+DfpAotcXByqqRAiBbT4tKtP2HrI0FtCWAJ8reDd0C63gzW/iZF/QqCR5yw9q va4J26SRvOMW7V9QRCFo1U8REZAoKORZLxzm5bjctOUI5XzrqmfttndaB8fXzgea Ul/HjiH3Ib6gbrgXKNrJaOrzNBDzvxfWa4wbpCXhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYo30Kr/tEq9y6vvs+vdzVFxAvbcwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAEpQnVbo8Eqd7I8LSpCKPA4qAa4V IfjnyuRWUNxptLfPT+J/MNEPlEMpK3pDqlU5DcJvu+HuegiOHA59dcciefmnq5vV 2ejCTEvewBF85liqku6lU8zFCNTzBGWexm5Yl7CRpTMZ4CaO4O96F2mEkivjeDXv XnkPRh+ajQvequ51/KfNvLLdNb9U7hWPUmDzZmRi2m2iztmpUABAdkrJnVKpuk1/ MMEA1BMdNL0JPNN6O57k5U4c8S04C9wOGq574mLlOOEjBDETGrT7SQvQP8Ofg0GY qeDADApQknEB+TbDfZTzSbJl2jerB0wbCXKLHUAuFO7rRbBmuiuPGa9L84o= -----END CERTIFICATE-----Generated at Mon Oct 20 13:10:31 2025 by rpki-client