$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa File: 946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa (raw, json) Hash identifier: VAOjNJGD6Qu1cF29j4px1P0RYeboXRPFOmqOIOkypiE= Subject key identifier: D2:30:BB:FA:CB:21:CC:D8:32:AC:05:75:E6:F7:87:1A:A0:AF:C2:AC Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 3977D50B64A92E91B26F59CFD0D5BE297A6D1FC8 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa Signing time: Sat 04 Oct 2025 00:20:36 +0000 ROA not before: Sat 04 Oct 2025 00:20:36 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:77:d5:0b:64:a9:2e:91:b2:6f:59:cf:d0:d5:be:29:7a:6d:1f:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:36 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=d0e1ca0d5f6028aee0024d5099057e897af6e112d44da6296bf9f98bb53e9217, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:27:d4:36:94:b8:31:ca:9c:7f:1b:69:74:a4: c1:4d:ab:85:7f:3c:e4:df:94:57:39:77:31:f7:90: 4d:7a:63:c3:69:b5:87:8c:b0:d2:88:54:09:c4:a7: cf:b3:aa:6e:87:08:6a:7f:e8:6c:ba:7e:1f:7a:15: 48:73:d0:29:50:1a:18:29:21:10:84:d7:dd:dc:5d: d6:0e:f3:83:c7:b4:28:2a:ea:b1:70:92:32:e0:7c: 99:1a:17:04:5e:54:24:7e:02:f0:34:d3:d0:3b:f4: b2:3c:a8:10:ab:4c:f4:01:89:24:f5:9b:5b:40:ca: d9:9c:42:08:fc:92:d8:56:59:f8:33:8b:2a:84:09: 9a:42:e0:47:38:e2:3d:4c:e5:93:c4:e1:be:c2:7f: 22:65:38:ca:75:52:dc:24:10:aa:1b:1d:68:f0:16: 8a:6b:04:c2:47:b5:1d:6f:92:3e:19:ff:bb:59:ea: a3:83:0c:2f:cb:35:0d:eb:c6:49:48:c1:61:db:5f: d9:5b:8a:72:7d:3a:d2:8c:41:27:61:41:f5:0e:2b: 22:88:ed:53:b3:83:b2:1d:81:da:e6:bd:4b:56:67: 3c:e8:53:23:8e:c6:62:86:47:61:a0:08:b2:ae:b9: 5d:61:52:1b:b2:bc:d7:83:d8:8d:75:3a:62:5c:e8: cd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:30:BB:FA:CB:21:CC:D8:32:AC:05:75:E6:F7:87:1A:A0:AF:C2:AC X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/946aec0a-dddf-49ab-b5bf-ec7281eb1e7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.225.0/24 Signature Algorithm: sha256WithRSAEncryption 85:a0:92:fe:fb:76:8a:85:a2:69:e2:c6:bb:18:a2:66:49:a5: b0:b1:fa:3b:fb:f4:55:1a:a8:8c:ea:c4:f6:71:e9:0e:a7:83: be:5b:97:00:a5:99:21:39:66:f0:7b:18:79:4a:34:d0:5d:8a: ab:9e:3b:c5:99:51:58:54:9a:1c:2d:01:fb:c7:a6:47:cd:25: 98:71:91:17:48:ea:15:61:b6:e0:a4:25:b4:b4:4d:95:f7:9b: 32:a9:e6:78:f3:c1:54:5a:47:73:f4:a0:c9:be:2a:a4:27:4c: a5:e7:4b:09:34:f9:c7:e8:5f:69:d0:bb:12:79:fd:17:dd:04: a4:4f:f3:fd:b1:d3:95:2f:0d:c8:c7:7f:31:41:51:e1:c1:36: 43:53:e7:af:1e:16:8f:3a:00:25:9e:e7:fd:dd:25:59:22:07: c3:7f:53:94:57:10:c1:bc:4b:9e:4e:39:dc:a8:4a:2c:3a:62: 83:3b:fd:18:3d:af:60:c6:b5:ac:1b:0f:05:c6:1b:f7:4c:ea: 4b:79:ab:83:59:0e:8b:38:7e:d1:fd:f1:06:ef:e8:f7:3d:11: 8d:6e:29:a2:dc:ac:5c:82:1a:90:fe:2b:e1:4e:59:80:a4:fe: bc:e2:df:63:d2:14:8c:42:6b:c3:09:7d:5a:ab:cd:77:fb:11: 3d:e3:25:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOXfVC2SpLpGyb1nP0NW+KXptH8gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDM2WhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMGUxY2EwZDVmNjAyOGFlZTAwMjRkNTA5OTA1N2U4OTdh ZjZlMTEyZDQ0ZGE2Mjk2YmY5Zjk4YmI1M2U5MjE3MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuJ9Q2lLgxypx/G2l0pMFNq4V/POTflFc5dzH3kE16Y8Np tYeMsNKIVAnEp8+zqm6HCGp/6Gy6fh96FUhz0ClQGhgpIRCE193cXdYO84PHtCgq 6rFwkjLgfJkaFwReVCR+AvA009A79LI8qBCrTPQBiST1m1tAytmcQgj8kthWWfgz iyqECZpC4Ec44j1M5ZPE4b7CfyJlOMp1UtwkEKobHWjwFoprBMJHtR1vkj4Z/7tZ 6qODDC/LNQ3rxklIwWHbX9lbinJ9OtKMQSdhQfUOKyKI7VOzg7IdgdrmvUtWZzzo UyOOxmKGR2GgCLKuuV1hUhuyvNeD2I11OmJc6M1tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0jC7+sshzNgyrAV15veHGqCvwqwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzk0NmFlYzBhLWRkZGYtNDlhYi1iNWJmLWVjNzI4MWViMWU3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++EwDQYJKoZIhvcNAQELBQADggEBAIWgkv77doqFomnixrsYomZJpbCx +jv79FUaqIzqxPZx6Q6ng75blwClmSE5ZvB7GHlKNNBdiqueO8WZUVhUmhwtAfvH pkfNJZhxkRdI6hVhtuCkJbS0TZX3mzKp5njzwVRaR3P0oMm+KqQnTKXnSwk0+cfo X2nQuxJ5/RfdBKRP8/2x05UvDcjHfzFBUeHBNkNT568eFo86ACWe5/3dJVkiB8N/ U5RXEMG8S55OOdyoSiw6YoM7/Rg9r2DGtawbDwXGG/dM6kt5q4NZDos4ftH98Qbv 6Pc9EY1uKaLcrFyCGpD+K+FOWYCk/rzi32PSFIxCa8MJfVqrzXf7ET3jJas= -----END CERTIFICATE-----Generated at Mon Oct 20 12:55:53 2025 by rpki-client