$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa File: b09c0df5-29e8-430d-b994-fadbc1050235.roa (raw, json) Hash identifier: kS9Xu2IX6pEYQyR3EJz4qXSdU8Rwmhp91sX2ZftCHnw= Subject key identifier: 63:A3:28:A8:ED:18:AA:40:4E:55:5A:E2:9D:62:43:E1:32:03:D2:E7 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 569E1C15EF4CE1C792BF2F3FBC62DF9B94525030 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa Signing time: Sat 04 Oct 2025 00:20:59 +0000 ROA not before: Sat 04 Oct 2025 00:20:59 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:9e:1c:15:ef:4c:e1:c7:92:bf:2f:3f:bc:62:df:9b:94:52:50:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:59 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=7df41b6423eb3c99979e0799c52de0f836f34bb404c1ffd00bf28344f902124f, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7e:0a:85:49:85:f6:9b:07:ca:3f:5d:8a:5f: 4d:cf:2d:bd:e7:bc:ec:7d:a2:fb:4f:8e:ac:31:15: e7:2f:4e:ef:1a:3b:c4:5c:fb:5f:64:78:d4:74:67: 6a:40:a7:d6:c0:4d:12:30:69:8c:9b:f9:91:2f:5c: 69:0b:86:39:bc:0c:57:fb:e7:39:bc:bb:b7:4a:8d: 19:2d:d2:66:51:1e:a0:09:f3:7c:11:e7:a3:88:bd: c3:7c:16:84:5d:a6:44:89:41:8a:35:40:6f:50:28: 3b:a2:e6:c6:39:56:2d:61:e8:49:21:b2:ce:a1:87: d3:7b:79:ed:0c:27:ce:40:23:c0:85:17:9e:d5:26: 73:51:85:2e:b3:52:12:f2:0d:b6:db:46:e0:0a:85: 90:ee:6b:f5:f5:27:fd:0b:07:92:fc:1e:8f:93:d8: f2:be:ef:f8:39:71:54:68:77:88:e2:1a:88:07:f6: ca:08:28:77:ca:8a:88:67:71:dd:cc:49:ba:60:65: b4:02:6f:7e:d6:ce:71:8b:94:d2:e5:85:f4:15:7b: 15:28:5e:e5:89:13:11:9e:9d:a1:e4:4d:7a:ca:cf: 1a:27:92:3c:0a:fd:e2:55:9a:00:8d:b6:33:23:df: b9:fc:ae:b4:b6:f8:87:c6:52:ce:c1:58:f3:c5:99: 52:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A3:28:A8:ED:18:AA:40:4E:55:5A:E2:9D:62:43:E1:32:03:D2:E7 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b09c0df5-29e8-430d-b994-fadbc1050235.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.214.0/24 Signature Algorithm: sha256WithRSAEncryption 15:0e:2d:a8:58:43:4d:e3:1f:4b:dd:24:b0:42:7a:32:2c:46: 90:98:dd:2c:d7:b6:53:6e:b7:42:10:e5:d1:4e:4b:5e:f1:f4: 5a:d3:be:88:3d:ce:d3:5b:3d:ed:9e:4b:22:d5:b7:3b:e2:e4: bc:1e:ad:c3:cc:71:26:8f:2a:df:b9:bb:dc:d8:34:c0:17:af: 7c:19:b3:a7:7b:a7:ac:b8:d5:4c:08:69:6f:8d:37:47:14:ab: f4:f8:a0:45:90:23:68:c4:aa:fa:65:f4:3d:d0:7e:8a:5e:cd: 00:a0:f7:af:ba:ed:99:77:b4:91:ef:1e:d7:c8:ea:73:07:53: ea:2e:be:16:a1:97:73:5f:4b:52:db:d6:e8:98:d0:55:0f:d7: 25:d5:74:42:8c:58:a5:31:0f:12:b9:81:53:56:eb:00:79:73: 49:1b:1d:d3:cd:94:6f:bf:69:8e:b8:a7:a7:94:b5:8e:21:30: 1c:ef:62:ae:0a:3b:08:d4:c0:01:d7:f7:da:a7:d3:95:48:41: 0d:4b:b8:12:4b:b3:7b:84:66:75:81:9e:dc:fb:ac:a4:51:32: 0b:e1:bf:03:54:90:a6:2d:95:a4:73:86:04:2c:73:85:2c:f1: db:4f:00:91:fb:38:56:79:e5:00:3e:9e:74:be:a4:26:3d:df: 3f:5b:ee:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVp4cFe9M4ceSvy8/vGLfm5RSUDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDU5WhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZGY0MWI2NDIzZWIzYzk5OTc5ZTA3OTljNTJkZTBmODM2 ZjM0YmI0MDRjMWZmZDAwYmYyODM0NGY5MDIxMjRmMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsfgqFSYX2mwfKP12KX03PLb3nvOx9ovtPjqwxFecvTu8a O8Rc+19keNR0Z2pAp9bATRIwaYyb+ZEvXGkLhjm8DFf75zm8u7dKjRkt0mZRHqAJ 83wR56OIvcN8FoRdpkSJQYo1QG9QKDui5sY5Vi1h6Ekhss6hh9N7ee0MJ85AI8CF F57VJnNRhS6zUhLyDbbbRuAKhZDua/X1J/0LB5L8Ho+T2PK+7/g5cVRod4jiGogH 9soIKHfKiohncd3MSbpgZbQCb37WznGLlNLlhfQVexUoXuWJExGenaHkTXrKzxon kjwK/eJVmgCNtjMj37n8rrS2+IfGUs7BWPPFmVIFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY6MoqO0YqkBOVVrinWJD4TID0ucwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2IwOWMwZGY1LTI5ZTgtNDMwZC1iOTk0LWZhZGJjMTA1MDIzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dYwDQYJKoZIhvcNAQELBQADggEBABUOLahYQ03jH0vdJLBCejIsRpCY 3SzXtlNut0IQ5dFOS17x9FrTvog9ztNbPe2eSyLVtzvi5LwercPMcSaPKt+5u9zY NMAXr3wZs6d7p6y41UwIaW+NN0cUq/T4oEWQI2jEqvpl9D3QfopezQCg96+67Zl3 tJHvHtfI6nMHU+ouvhahl3NfS1Lb1uiY0FUP1yXVdEKMWKUxDxK5gVNW6wB5c0kb HdPNlG+/aY64p6eUtY4hMBzvYq4KOwjUwAHX99qn05VIQQ1LuBJLs3uEZnWBntz7 rKRRMgvhvwNUkKYtlaRzhgQsc4Us8dtPAJH7OFZ55QA+nnS+pCY93z9b7rY= -----END CERTIFICATE-----Generated at Mon Oct 20 13:10:18 2025 by rpki-client