$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa File: bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa (raw, json) Hash identifier: q7ZP7ddYBqtHrGEIi4yZpDP5IPHyLWXdaUxReik/Apo= Subject key identifier: C9:98:A0:8E:CC:39:84:1F:D6:FC:81:B9:F9:04:FA:8C:27:DD:DA:8E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 588F8668CB55F501B0EF84011861FCB924E9BC82 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa Signing time: Sat 04 Oct 2025 00:20:55 +0000 ROA not before: Sat 04 Oct 2025 00:20:55 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:8f:86:68:cb:55:f5:01:b0:ef:84:01:18:61:fc:b9:24:e9:bc:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:55 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=fee3c5f9f17af023aceb60358e145fa356d8d60a6ae2612e1a13363152250851, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d1:84:1f:da:fb:ab:9e:61:63:71:19:fc:72: 7c:08:db:de:0f:39:63:73:de:c6:e1:ad:6b:ea:85: f4:ce:80:87:5b:0e:62:65:16:04:82:40:a4:d0:df: f4:1e:0f:62:3d:00:f3:83:2b:7e:ef:49:c2:d2:01: 0b:aa:ca:52:6a:29:53:63:ea:d1:91:2c:9d:7f:f6: c4:93:15:4e:de:29:cb:9b:1b:94:56:6c:ce:86:b8: 99:f8:54:b9:6f:da:ae:87:d1:86:ab:60:6e:f0:1b: ce:10:71:e9:68:aa:b4:03:5b:c8:64:99:97:e5:3a: 4c:0f:69:b2:4f:bc:92:ae:46:90:fa:7a:15:a4:db: d9:de:6b:ce:26:11:2b:7a:e1:c7:c1:f0:ef:f1:f0: 15:07:cc:57:60:f0:bf:73:cf:6c:e4:e7:1b:28:1c: 0e:09:77:47:d1:8c:2e:7e:76:a8:24:b0:e7:53:16: 68:b4:a3:d0:37:fa:65:31:bf:e3:36:f3:da:26:5e: 41:05:c4:d0:3d:88:e0:77:ce:f7:de:d5:06:e6:d9: 1b:06:58:12:40:f6:96:4a:f5:0e:2e:69:94:19:d5: 7e:5c:1b:1a:3f:71:17:05:35:32:02:d7:12:c2:47: cc:a3:29:ee:b1:91:f0:10:7d:b9:03:73:d8:56:57: bf:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:98:A0:8E:CC:39:84:1F:D6:FC:81:B9:F9:04:FA:8C:27:DD:DA:8E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 44:29:84:96:08:d9:c5:2b:55:76:34:b7:a6:2d:54:4a:5e:72: 64:46:a1:d9:a8:a9:16:9f:41:c9:32:29:6d:19:1f:83:f3:7a: 93:d7:1e:9b:77:8e:f1:ed:a1:2b:5e:30:74:78:0f:a5:98:e1: 8b:6d:e1:08:c3:c3:5f:13:2e:11:95:4b:3c:dd:47:91:58:c8: 75:fd:8a:93:1b:17:8d:84:e6:5e:30:cb:f4:89:16:39:ef:cc: ae:b4:91:9f:4e:71:7c:12:c6:0a:6b:6a:89:1e:ba:2f:bf:78: 21:6e:1e:9d:f2:e4:b3:28:ba:ce:ce:f1:a7:a1:c4:44:ff:a4: 37:7f:36:b2:59:ad:c3:2e:d6:34:f8:30:3d:1e:f3:0a:ed:08: 9b:0c:e4:2b:3e:c5:0e:22:5a:fa:89:3e:db:bb:c6:d9:54:3a: 01:7e:4c:28:ec:3c:1e:39:5b:7f:8a:4e:96:17:58:e0:6c:12: eb:a5:ee:0f:b3:32:67:6d:cc:a0:d5:a6:82:7d:44:59:34:be: 5a:9f:c6:38:9e:29:67:ce:21:c8:1d:fc:30:21:0d:e3:0a:6c: f3:20:4e:2b:51:ae:51:d0:72:ab:69:7d:58:3d:b0:cd:8e:e4: d5:1a:16:a6:94:f9:d0:61:fd:18:48:52:d4:3e:e3:ab:86:70: 68:87:11:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWI+GaMtV9QGw74QBGGH8uSTpvIIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDU1WhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZWUzYzVmOWYxN2FmMDIzYWNlYjYwMzU4ZTE0NWZhMzU2 ZDhkNjBhNmFlMjYxMmUxYTEzMzYzMTUyMjUwODUxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa0YQf2vurnmFjcRn8cnwI294POWNz3sbhrWvqhfTOgIdb DmJlFgSCQKTQ3/QeD2I9APODK37vScLSAQuqylJqKVNj6tGRLJ1/9sSTFU7eKcub G5RWbM6GuJn4VLlv2q6H0YarYG7wG84QceloqrQDW8hkmZflOkwPabJPvJKuRpD6 ehWk29nea84mESt64cfB8O/x8BUHzFdg8L9zz2zk5xsoHA4Jd0fRjC5+dqgksOdT Fmi0o9A3+mUxv+M289omXkEFxNA9iOB3zvfe1Qbm2RsGWBJA9pZK9Q4uaZQZ1X5c Gxo/cRcFNTIC1xLCR8yjKe6xkfAQfbkDc9hWV7/fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyZigjsw5hB/W/IG5+QT6jCfd2o4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2JmYTUxMGVkLWQ0MGItNDU1Mi1hNGQ4LTViYjRjMzBlNDgyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBAEQphJYI2cUrVXY0t6YtVEpecmRG odmoqRafQckyKW0ZH4PzepPXHpt3jvHtoSteMHR4D6WY4Ytt4QjDw18TLhGVSzzd R5FYyHX9ipMbF42E5l4wy/SJFjnvzK60kZ9OcXwSxgpraokeui+/eCFuHp3y5LMo us7O8aehxET/pDd/NrJZrcMu1jT4MD0e8wrtCJsM5Cs+xQ4iWvqJPtu7xtlUOgF+ TCjsPB45W3+KTpYXWOBsEuul7g+zMmdtzKDVpoJ9RFk0vlqfxjieKWfOIcgd/DAh DeMKbPMgTitRrlHQcqtpfVg9sM2O5NUaFqaU+dBh/RhIUtQ+46uGcGiHEdY= -----END CERTIFICATE-----Generated at Mon Oct 20 12:33:59 2025 by rpki-client