$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa File: b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa (raw, json) Hash identifier: fUtchiWSAGmwrm840PdvKBBp1KBEw3aKLsqoI+gGhyA= Subject key identifier: E6:0F:85:30:E2:9F:43:4B:01:BB:D8:40:7F:71:DF:EC:D2:29:3A:2F Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 64A9BF97A3348F1804458C1CEA879870BC800843 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa Signing time: Sat 04 Oct 2025 00:20:37 +0000 ROA not before: Sat 04 Oct 2025 00:20:37 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.251.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:a9:bf:97:a3:34:8f:18:04:45:8c:1c:ea:87:98:70:bc:80:08:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:37 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=cfe911d8055c2b1b855de5ab95960e50f1bb7ac783f67cc6da9af8af6142a43d, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9d:a5:b9:a7:c2:d5:ca:12:5f:90:3c:f5:9f: 37:f1:a3:6a:56:29:5c:3c:54:12:a3:c2:0c:a2:28: 3b:06:c6:2d:68:cb:a4:1a:97:e4:87:de:9b:33:07: 40:e9:47:ef:62:fe:b5:01:c3:77:6f:2c:bc:f8:e8: 91:e3:5b:b5:30:2a:ae:06:be:e9:60:74:91:c9:35: f4:58:97:18:41:f1:69:1c:33:ee:53:a3:cb:59:64: 91:4b:71:fd:bd:11:6e:9a:1d:2b:f2:81:c1:f2:4f: 7b:ba:49:83:2a:ed:5b:fb:9c:ab:c1:ce:f5:1e:b1: a4:eb:85:ef:6a:60:ef:f1:64:37:56:14:4c:76:82: b0:c1:20:d6:4b:00:4b:44:84:13:04:7e:0f:cc:c9: e6:9e:86:b8:5e:1a:3e:e7:6d:2d:97:95:0c:09:b8: c4:32:c3:8e:bf:32:0f:fa:b7:7c:b1:87:53:e0:4b: 16:fc:dc:72:dc:57:18:58:e7:05:44:77:96:38:e0: 4c:74:00:0f:76:72:88:e5:1b:b3:de:2b:f4:2c:3c: f5:8e:4a:5b:d3:1b:e0:52:43:b0:ce:07:ea:6c:48: 75:4e:b8:cd:79:95:76:b4:72:06:b8:18:7e:30:4b: 4c:6b:43:a2:ef:00:32:d1:67:b0:79:b0:b2:7f:fa: d6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0F:85:30:E2:9F:43:4B:01:BB:D8:40:7F:71:DF:EC:D2:29:3A:2F X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/b6ee93d8-d7a7-41ad-8de1-90a055bc197c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.228.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:b8:a7:2d:81:d1:d9:b8:67:08:77:ae:33:71:c8:2e:5d:36: 1d:ca:99:08:91:23:20:7e:11:5b:2e:7b:2e:97:51:39:d6:94: 1b:5f:6f:e4:47:95:f5:16:7b:d5:d6:12:d1:6a:a8:4e:01:d5: 48:12:ea:59:b0:00:82:48:12:bc:9d:d1:ca:0e:04:47:39:23: 6a:e7:af:23:74:9d:1f:3d:ee:dc:66:61:bb:31:4e:92:8f:eb: 48:48:f0:1e:52:70:47:cc:99:a7:f0:a5:a4:70:de:e8:53:25: 5a:b9:16:16:47:22:a2:38:49:74:37:3f:e3:a6:5f:b4:3e:67: 9c:f5:a7:5f:a9:0a:ca:98:81:4b:83:8f:c4:b8:a8:cb:70:58: c2:0a:f0:0a:0d:96:43:12:b1:7a:66:75:40:e1:23:84:aa:9a: 28:a8:c5:f0:91:35:53:02:fb:12:cc:7c:9b:79:cf:a6:ce:72: 74:10:29:3d:72:96:d2:54:91:1c:51:5e:55:bf:81:71:fc:ed: 3a:1a:ac:30:b4:a0:c3:dd:e5:df:cb:c6:ae:b2:e4:35:90:c8: 65:d5:6c:2f:d5:e8:10:a8:bd:ba:10:67:c0:c2:e6:49:e7:57: bb:ca:24:e7:b4:e4:38:10:3b:db:ab:d6:9f:95:b3:2d:28:b5: 35:27:0b:2b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZKm/l6M0jxgERYwc6oeYcLyACEMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDM3WhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmU5MTFkODA1NWMyYjFiODU1ZGU1YWI5NTk2MGU1MGYx YmI3YWM3ODNmNjdjYzZkYTlhZjhhZjYxNDJhNDNkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2naW5p8LVyhJfkDz1nzfxo2pWKVw8VBKjwgyiKDsGxi1o y6Qal+SH3pszB0DpR+9i/rUBw3dvLLz46JHjW7UwKq4GvulgdJHJNfRYlxhB8Wkc M+5To8tZZJFLcf29EW6aHSvygcHyT3u6SYMq7Vv7nKvBzvUesaTrhe9qYO/xZDdW FEx2grDBINZLAEtEhBMEfg/MyeaehrheGj7nbS2XlQwJuMQyw46/Mg/6t3yxh1Pg Sxb83HLcVxhY5wVEd5Y44Ex0AA92cojlG7PeK/QsPPWOSlvTG+BSQ7DOB+psSHVO uM15lXa0cga4GH4wS0xrQ6LvADLRZ7B5sLJ/+tbhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5g+FMOKfQ0sBu9hAf3Hf7NIpOi8wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2I2ZWU5M2Q4LWQ3YTctNDFhZC04ZGUxLTkwYTA1NWJjMTk3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX++QwDQYJKoZIhvcNAQELBQADggEBAG+4py2B0dm4Zwh3rjNxyC5dNh3K mQiRIyB+EVsuey6XUTnWlBtfb+RHlfUWe9XWEtFqqE4B1UgS6lmwAIJIEryd0coO BEc5I2rnryN0nR897txmYbsxTpKP60hI8B5ScEfMmafwpaRw3uhTJVq5FhZHIqI4 SXQ3P+OmX7Q+Z5z1p1+pCsqYgUuDj8S4qMtwWMIK8AoNlkMSsXpmdUDhI4Sqmiio xfCRNVMC+xLMfJt5z6bOcnQQKT1yltJUkRxRXlW/gXH87ToarDC0oMPd5d/Lxq6y 5DWQyGXVbC/V6BCovboQZ8DC5knnV7vKJOe05DgQO9ur1p+Vsy0otTUnCys= -----END CERTIFICATE-----Generated at Mon Oct 20 04:04:15 2025 by rpki-client