$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa File: 59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa (raw, json) Hash identifier: JJyY9gtOuUqP+zMWL4qx6/0mcGWHQGxIdNVFifHQbkM= Subject key identifier: 57:3D:EB:4C:4F:26:A0:5D:DD:A3:78:98:2D:FB:C5:D5:E5:1B:EC:7F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2C1126D5DA6C2BA7029CD94FC1FDF615DC6FC78E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa Signing time: Sat 04 Oct 2025 00:20:57 +0000 ROA not before: Sat 04 Oct 2025 00:20:57 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:11:26:d5:da:6c:2b:a7:02:9c:d9:4f:c1:fd:f6:15:dc:6f:c7:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:57 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=6921a02b2351da54603064d071b301c2cc314974d871ddb9daef4eec6c60049d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:aa:b8:4a:8f:28:7f:bc:30:8e:35:69:34:30: bb:62:d4:34:48:6a:72:00:1b:99:46:f8:ce:ba:0f: fb:a8:85:d2:d8:19:5a:f2:7c:d8:89:3c:7f:b8:d3: f2:ba:e7:14:b7:6c:b9:58:85:df:0c:e6:31:07:dc: 3b:ad:58:db:25:67:24:10:d2:ca:a2:a9:e3:29:8c: 27:23:f6:2a:e2:f3:28:46:4f:6d:05:7d:cc:9a:2c: 5c:cf:24:83:1b:0d:aa:9e:e4:69:0e:55:d7:fe:85: 9c:be:fd:8d:f6:ec:8c:a7:ee:d3:0c:50:41:ca:6f: 31:94:55:0c:a1:29:1d:d9:e3:9e:5e:9a:f0:cb:13: c7:e5:68:de:7d:73:52:93:07:25:4c:67:f0:24:25: bb:6f:15:00:d4:2e:24:46:8d:07:9e:cb:99:d4:ff: 83:0c:29:d1:d3:61:2e:91:47:d4:e2:dc:23:91:82: bc:f7:a4:04:e9:dd:4e:21:4c:05:69:6b:05:ee:1e: e7:e4:05:8e:b4:0b:fd:99:ee:9c:86:0d:31:bf:73: ef:ab:2a:d1:62:4c:ef:c6:b8:79:2c:a5:58:bb:80: ab:b9:d2:b7:ba:06:b0:cd:4c:20:63:49:a8:dc:c8: ef:85:3f:de:8b:46:99:e9:9c:a7:3b:6f:2e:cd:25: 1d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:3D:EB:4C:4F:26:A0:5D:DD:A3:78:98:2D:FB:C5:D5:E5:1B:EC:7F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.220.0/24 Signature Algorithm: sha256WithRSAEncryption 61:64:d5:85:8c:66:d4:42:7c:7e:ea:df:15:67:11:20:30:a6: f5:d6:98:7d:21:a1:08:73:c7:34:36:38:c8:b3:58:f6:d1:ae: a3:1b:57:11:db:2a:ab:05:03:56:be:15:97:1a:47:0a:4a:36: cd:e3:97:bb:ae:85:99:53:dd:00:b6:a9:ae:c4:04:e3:5e:36: e6:55:df:58:32:d8:9c:9a:63:c5:12:96:53:36:e3:91:86:ec: cb:94:03:5b:95:0a:e7:99:00:60:ab:52:e2:90:ff:96:5c:da: 50:d3:02:2c:34:58:5f:71:3f:a7:44:11:6a:e2:1c:06:c6:1b: 64:81:67:06:2c:0e:1b:84:53:c3:6f:b8:53:64:7a:dc:bf:49: 7c:d7:08:d5:2c:87:05:18:63:b8:de:a9:d1:40:45:07:15:25: 7d:fd:6a:43:8f:77:9e:58:12:b4:ec:49:53:71:05:83:50:04: c3:67:ee:ca:24:f7:87:2d:f6:c0:ac:29:38:7b:d6:29:c8:e4: 1f:9d:d7:50:36:73:bc:85:3f:b5:78:cc:5b:c6:f0:12:f3:99: 4d:d6:d7:d9:16:c8:e9:da:9d:ba:59:57:9a:51:7f:2b:18:c3: 72:c4:b8:33:f8:95:59:81:e8:5a:ab:ea:29:b0:ab:e4:28:72: 94:6f:7c:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULBEm1dpsK6cCnNlPwf32Fdxvx44wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDU3WhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTIxYTAyYjIzNTFkYTU0NjAzMDY0ZDA3MWIzMDFjMmNj MzE0OTc0ZDg3MWRkYjlkYWVmNGVlYzZjNjAwNDlkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMqrhKjyh/vDCONWk0MLti1DRIanIAG5lG+M66D/uohdLY GVryfNiJPH+40/K65xS3bLlYhd8M5jEH3DutWNslZyQQ0sqiqeMpjCcj9iri8yhG T20FfcyaLFzPJIMbDaqe5GkOVdf+hZy+/Y327Iyn7tMMUEHKbzGUVQyhKR3Z455e mvDLE8flaN59c1KTByVMZ/AkJbtvFQDULiRGjQeey5nU/4MMKdHTYS6RR9Ti3COR grz3pATp3U4hTAVpawXuHufkBY60C/2Z7pyGDTG/c++rKtFiTO/GuHkspVi7gKu5 0re6BrDNTCBjSajcyO+FP96LRpnpnKc7by7NJR1/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVz3rTE8moF3do3iYLfvF1eUb7H8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU5YWIyNjRlLTI4NGYtNGUzMC1iMmYwLWQ4NWZhNzNiNjJiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dwwDQYJKoZIhvcNAQELBQADggEBAGFk1YWMZtRCfH7q3xVnESAwpvXW mH0hoQhzxzQ2OMizWPbRrqMbVxHbKqsFA1a+FZcaRwpKNs3jl7uuhZlT3QC2qa7E BONeNuZV31gy2JyaY8USllM245GG7MuUA1uVCueZAGCrUuKQ/5Zc2lDTAiw0WF9x P6dEEWriHAbGG2SBZwYsDhuEU8NvuFNkety/SXzXCNUshwUYY7jeqdFARQcVJX39 akOPd55YErTsSVNxBYNQBMNn7sok94ct9sCsKTh71inI5B+d11A2c7yFP7V4zFvG 8BLzmU3W19kWyOnanbpZV5pRfysYw3LEuDP4lVmB6Fqr6imwq+QocpRvfHs= -----END CERTIFICATE-----Generated at Mon Oct 20 18:19:41 2025 by rpki-client