$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa File: 84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa (raw, json) Hash identifier: cbO9O1/sXstZM9P/NoxcPHK2W0aCjJqyHBi3uaoSIpU= Subject key identifier: E5:55:21:4A:02:AE:0E:DB:3F:60:73:56:D3:67:D3:35:CD:A1:60:9A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 23F270E85A988FCCF81C31B73B4248655B0BE698 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa Signing time: Sat 04 Oct 2025 00:21:01 +0000 ROA not before: Sat 04 Oct 2025 00:21:01 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:f2:70:e8:5a:98:8f:cc:f8:1c:31:b7:3b:42:48:65:5b:0b:e6:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:21:01 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=9757923259bcc71504ee3a2f307e512f5f34c72488c51d57d1012fba99e36197, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:27:c5:0f:9d:99:04:76:a1:71:5a:85:5d:a3: f9:83:42:6c:71:61:f0:11:14:f0:9d:af:a1:4d:a2: f1:1a:b7:23:d0:59:04:f7:21:db:f4:17:c0:c5:df: 82:51:a9:8d:2c:29:96:ef:f5:ed:21:94:52:76:58: fb:4d:52:9e:c8:fe:53:e6:b1:68:2d:2e:6b:8f:91: ac:47:f6:80:9d:e7:e1:dc:f8:3e:65:fd:4e:f7:63: 38:e3:26:4a:57:1b:1f:ec:cb:ae:5b:12:e1:51:31: ba:ed:b9:af:9a:aa:93:67:3f:b1:3e:b1:66:2a:74: df:4f:ac:f1:ad:1a:60:c0:47:0f:5f:fb:d5:97:f3: b9:73:75:d7:dc:1c:ce:a4:20:a0:91:91:75:d7:2e: f0:23:71:06:98:9f:d0:86:be:3a:71:82:9b:d2:d0: 35:a6:49:b6:30:1e:95:18:d4:91:0a:3b:09:27:9b: 34:68:1d:ea:7f:5b:53:d8:db:7f:b4:36:80:09:88: 46:13:60:a6:e2:52:c6:ee:4c:02:8a:42:fc:d3:ea: 2b:ba:f9:17:ab:f1:90:e5:64:53:54:c5:61:82:37: 64:a6:11:a5:f4:df:0b:38:ba:47:2d:ab:79:3f:40: 76:e3:16:18:2f:ac:6c:c7:49:97:a3:12:f7:aa:bb: 85:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:55:21:4A:02:AE:0E:DB:3F:60:73:56:D3:67:D3:35:CD:A1:60:9A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/84c038ae-7a5a-414a-bd00-1edb6fbe5ad7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.234.0/24 Signature Algorithm: sha256WithRSAEncryption 19:81:01:76:02:bb:44:7d:96:12:ee:8c:6b:f6:a4:b7:f4:cf: 94:b6:46:ab:89:da:de:71:01:eb:a4:52:ab:40:2b:3c:56:a5: 15:a1:58:33:b2:ae:8b:f1:9c:cc:47:45:45:a1:d8:b2:71:72: ad:ac:cf:17:9b:f2:8b:c3:3b:0f:ba:f8:64:3a:aa:dd:91:7d: 30:e6:7a:23:3a:e8:f9:c6:1e:fc:67:0e:19:62:ac:47:c7:cf: 7a:ef:34:de:d9:39:6c:72:78:f1:3e:9f:58:cc:de:df:46:2f: 51:98:d5:f4:35:33:0c:a6:5e:4c:e1:e5:65:2d:08:5e:9b:ca: 31:2b:e0:f7:7a:5b:c9:cc:40:51:80:2f:64:5f:25:4e:65:bf: 37:40:63:83:cb:f6:a5:2a:1c:4a:ee:d9:2d:b9:a5:66:44:29: 1b:4a:b5:b8:92:25:d1:1f:ef:24:35:86:d7:a1:78:27:04:1b: 47:3d:3c:49:51:29:e4:2c:e0:28:90:ab:c6:36:90:9f:2d:e7: e5:4f:bb:c7:15:18:81:31:1f:3d:91:e6:26:05:b6:e6:2c:1f: af:b9:36:94:7b:74:ad:c1:ac:84:ce:a1:61:95:54:bb:e8:8c: 95:96:52:fb:d7:a1:d0:15:db:ff:71:35:d6:66:69:06:a9:cf: d5:23:4f:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI/Jw6FqYj8z4HDG3O0JIZVsL5pgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMTAxWhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzU3OTIzMjU5YmNjNzE1MDRlZTNhMmYzMDdlNTEyZjVm MzRjNzI0ODhjNTFkNTdkMTAxMmZiYTk5ZTM2MTk3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1J8UPnZkEdqFxWoVdo/mDQmxxYfARFPCdr6FNovEatyPQ WQT3Idv0F8DF34JRqY0sKZbv9e0hlFJ2WPtNUp7I/lPmsWgtLmuPkaxH9oCd5+Hc +D5l/U73YzjjJkpXGx/sy65bEuFRMbrtua+aqpNnP7E+sWYqdN9PrPGtGmDARw9f +9WX87lzddfcHM6kIKCRkXXXLvAjcQaYn9CGvjpxgpvS0DWmSbYwHpUY1JEKOwkn mzRoHep/W1PY23+0NoAJiEYTYKbiUsbuTAKKQvzT6iu6+Rer8ZDlZFNUxWGCN2Sm EaX03ws4ukctq3k/QHbjFhgvrGzHSZejEvequ4WxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5VUhSgKuDts/YHNW02fTNc2hYJowHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg0YzAzOGFlLTdhNWEtNDE0YS1iZDAwLTFlZGI2ZmJlNWFkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++owDQYJKoZIhvcNAQELBQADggEBABmBAXYCu0R9lhLujGv2pLf0z5S2 RquJ2t5xAeukUqtAKzxWpRWhWDOyrovxnMxHRUWh2LJxcq2szxeb8ovDOw+6+GQ6 qt2RfTDmeiM66PnGHvxnDhlirEfHz3rvNN7ZOWxyePE+n1jM3t9GL1GY1fQ1Mwym Xkzh5WUtCF6byjEr4Pd6W8nMQFGAL2RfJU5lvzdAY4PL9qUqHEru2S25pWZEKRtK tbiSJdEf7yQ1hteheCcEG0c9PElRKeQs4CiQq8Y2kJ8t5+VPu8cVGIExHz2R5iYF tuYsH6+5NpR7dK3BrITOoWGVVLvojJWWUvvXodAV2/9xNdZmaQapz9UjT8Q= -----END CERTIFICATE-----Generated at Mon Oct 20 12:56:41 2025 by rpki-client