$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5b719c48-5ad8-440e-87e5-abf7ba604b9c.roa File: 5b719c48-5ad8-440e-87e5-abf7ba604b9c.roa (raw, json) Hash identifier: KG21QpTlSKQDnOOwTV9rnKCWkiJVMWP91pmapnG6EYU= Subject key identifier: DF:66:99:A9:DE:BA:24:D1:4D:ED:AB:46:8B:7E:4F:1E:96:A4:67:26 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 337FE0337A99E4A9C424EEAE2A7DEACEF84BF1ED Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5b719c48-5ad8-440e-87e5-abf7ba604b9c.roa Signing time: Sat 18 Oct 2025 00:00:11 +0000 ROA not before: Sat 18 Oct 2025 00:00:11 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 199.255.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:7f:e0:33:7a:99:e4:a9:c4:24:ee:ae:2a:7d:ea:ce:f8:4b:f1:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 18 00:00:11 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=5f6e817800ec361c7f33d9b5d6ccf62c6af642bb5fd9a2282afaae1ae7a652be, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ad:3c:44:3b:07:9d:79:15:e5:bc:69:8c:ea: dc:d9:f5:2c:1a:5c:0b:cb:ba:cb:64:62:a9:eb:bd: b9:01:02:a9:24:6e:ec:50:17:b9:89:8a:52:52:a9: 1e:90:a2:76:c0:f8:b1:67:3d:b9:3f:86:f1:b5:c7: c5:2c:61:94:d0:c2:20:fb:b2:12:48:dd:25:4f:08: af:b2:9c:4e:e2:f1:19:1a:29:c5:c5:01:c9:e9:1c: e2:b0:be:10:dd:2f:6e:67:b2:26:b2:90:de:60:42: f8:b4:3a:d6:b6:34:c5:43:39:8b:32:00:1f:2b:cd: 22:17:65:89:e9:5d:c2:d7:b7:7d:94:40:e4:5c:9c: 0f:15:e2:f5:24:9e:1f:1e:bd:7d:81:a1:8b:4a:0c: 7a:23:ce:94:b7:c2:e8:ba:1c:6b:e2:09:bd:74:7b: 19:1d:da:e3:1a:f3:b9:12:b8:86:cb:31:15:13:26: ec:89:af:d3:68:f9:dd:99:33:df:88:bd:20:71:38: 95:e2:42:49:6b:d8:0a:22:8d:4b:81:2d:40:eb:c6: 13:b7:e0:e5:8e:ca:76:10:95:ca:5e:b4:2e:48:5a: 62:81:2f:ce:9b:b5:68:3c:e4:eb:b5:49:87:e5:24: c6:f7:e2:fa:f8:ed:8c:2c:2d:df:a1:18:67:3b:f3: 3d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:66:99:A9:DE:BA:24:D1:4D:ED:AB:46:8B:7E:4F:1E:96:A4:67:26 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5b719c48-5ad8-440e-87e5-abf7ba604b9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.255.192.0/22 Signature Algorithm: sha256WithRSAEncryption 76:44:fb:f0:67:e2:b3:f1:16:d3:50:6f:c2:2a:10:e6:c6:99: 63:e1:1c:77:1a:bf:8c:a4:03:71:43:f1:3b:f2:8f:07:a5:07: b7:ca:11:a6:28:0b:2e:a9:2e:eb:6b:13:71:ff:00:0a:2d:d5: 44:7b:7d:fa:0f:4c:3c:7f:9f:12:5c:bd:d2:b8:aa:e2:21:e0: 43:ae:2f:bb:d4:01:a6:7a:4b:5c:0e:91:03:c9:f9:fa:8f:a9: 84:7b:b7:10:ee:58:a8:76:d8:50:e2:77:39:b3:be:1c:b3:00: 55:ca:1d:aa:a8:6c:19:f6:4b:e2:ac:98:98:ba:87:d0:82:39: 99:6b:fa:5c:56:fa:41:63:14:8d:64:75:08:f6:a5:5b:a2:35: 3c:55:e9:6a:9a:c4:e1:af:a3:de:57:cb:96:25:1b:0c:3b:d1: 11:c5:36:76:41:7a:0f:7a:5f:a3:cc:1b:68:7b:84:86:61:d5: 97:74:e5:17:aa:81:f8:e2:8a:b5:ab:d3:1b:dd:6b:9d:1f:57: fe:34:49:37:93:d9:f6:80:10:11:db:2b:75:1e:dd:19:65:b5: 8f:13:9d:a4:3c:de:44:a1:c1:10:d7:13:e3:1c:19:32:88:ca: aa:10:32:78:f6:47:7f:85:19:52:a1:d2:76:4f:72:ea:fc:a5: 65:b8:51:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM3/gM3qZ5KnEJO6uKn3qzvhL8e0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDE4MDAwMDExWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjZlODE3ODAwZWMzNjFjN2YzM2Q5YjVkNmNjZjYyYzZh ZjY0MmJiNWZkOWEyMjgyYWZhYWUxYWU3YTY1MmJlMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqrTxEOwedeRXlvGmM6tzZ9SwaXAvLustkYqnrvbkBAqkk buxQF7mJilJSqR6QonbA+LFnPbk/hvG1x8UsYZTQwiD7shJI3SVPCK+ynE7i8Rka KcXFAcnpHOKwvhDdL25nsiaykN5gQvi0Ota2NMVDOYsyAB8rzSIXZYnpXcLXt32U QORcnA8V4vUknh8evX2BoYtKDHojzpS3wui6HGviCb10exkd2uMa87kSuIbLMRUT JuyJr9No+d2ZM9+IvSBxOJXiQklr2AoijUuBLUDrxhO34OWOynYQlcpetC5IWmKB L86btWg85Ou1SYflJMb34vr47YwsLd+hGGc78z1PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU32aZqd66JNFN7atGi35PHpakZyYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzViNzE5YzQ4LTVhZDgtNDQwZS04N2U1LWFiZjdiYTYwNGI5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALH/8AwDQYJKoZIhvcNAQELBQADggEBAHZE+/Bn4rPxFtNQb8IqEObGmWPh HHcav4ykA3FD8TvyjwelB7fKEaYoCy6pLutrE3H/AAot1UR7ffoPTDx/nxJcvdK4 quIh4EOuL7vUAaZ6S1wOkQPJ+fqPqYR7txDuWKh22FDidzmzvhyzAFXKHaqobBn2 S+KsmJi6h9CCOZlr+lxW+kFjFI1kdQj2pVuiNTxV6WqaxOGvo95Xy5YlGww70RHF NnZBeg96X6PMG2h7hIZh1Zd05ReqgfjiirWr0xvda50fV/40STeT2faAEBHbK3Ue 3RlltY8TnaQ83kShwRDXE+McGTKIyqoQMnj2R3+FGVKh0nZPcur8pWW4Ucg= -----END CERTIFICATE-----Generated at Sun Oct 19 23:05:55 2025 by rpki-client