$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ebd968d3-ce48-4118-aed7-b938cd13153f.roa File: ebd968d3-ce48-4118-aed7-b938cd13153f.roa (raw, json) Hash identifier: hAiY5RERgZOwBgsH8f0SZpDYa573JlZYOGpDpkiHnmw= Subject key identifier: 78:4B:25:83:38:D5:A1:A1:AF:D9:73:C6:6D:DF:BD:7B:EC:6B:DA:60 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 66D4331A54E45AB1CD10E7E68648D3D8F42DBE20 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ebd968d3-ce48-4118-aed7-b938cd13153f.roa Signing time: Sat 04 Oct 2025 00:20:41 +0000 ROA not before: Sat 04 Oct 2025 00:20:41 +0000 ROA not after: Sat 08 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.169.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:d4:33:1a:54:e4:5a:b1:cd:10:e7:e6:86:48:d3:d8:f4:2d:be:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 4 00:20:41 2025 GMT Not After : Nov 8 23:59:59 2025 GMT Subject: serialNumber=efb72e1212b5d7cd203859005bd073a87c82f9afe22b38deea33d038e50112a4, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8f:3e:d6:94:e1:17:81:81:5d:c2:20:83:53: 0c:63:0a:68:ab:7c:e4:df:08:cf:5b:d7:df:43:39: de:0c:9a:b7:d1:0e:ac:ec:e9:93:4a:74:7d:72:47: af:51:42:52:d2:ab:86:9e:5e:f8:45:54:43:dc:77: 1a:13:82:2b:e8:c3:a0:f9:95:75:0c:0d:c8:a7:36: c9:15:18:61:1d:94:4e:65:3a:e5:64:52:1a:20:69: c8:fd:3a:a3:fc:e9:3e:c9:30:f1:f7:e4:04:cf:d4: 0b:f5:fa:4a:da:4c:cb:66:ea:14:5f:dd:0a:eb:12: a1:ec:e0:a5:52:c5:ea:a0:c6:a9:e2:fa:32:70:69: f5:51:6a:3b:bf:83:02:09:1d:42:74:97:75:77:16: 09:ac:de:40:f4:06:5b:da:ff:65:76:fb:ec:77:ba: ba:90:05:58:c0:e3:a0:d6:01:74:9c:78:ba:92:50: 4c:8d:66:a4:53:4b:cc:5e:4f:de:b2:b3:61:55:a7: 99:1c:04:47:39:2f:de:e1:3a:12:9d:08:c4:73:ff: ac:42:57:29:4c:f5:d5:b0:65:a4:ce:22:06:ee:2a: f6:72:03:d2:65:28:1d:54:60:8b:0b:a4:06:99:6f: 6d:d4:39:2d:7a:83:2c:08:40:37:b8:75:53:c3:26: 23:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:4B:25:83:38:D5:A1:A1:AF:D9:73:C6:6D:DF:BD:7B:EC:6B:DA:60 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/ebd968d3-ce48-4118-aed7-b938cd13153f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.169.228.0/24 Signature Algorithm: sha256WithRSAEncryption 84:5e:c2:62:4c:12:55:90:55:17:f1:03:44:b0:de:d6:eb:e5: a7:2e:ae:a3:cb:2f:af:8c:6a:19:54:06:ff:61:7d:2f:05:5b: 3c:6a:7a:58:31:69:99:68:c5:9b:94:46:72:66:b4:8c:16:12: f6:18:f9:45:c5:52:d2:0d:4d:69:5e:76:dd:45:8d:88:29:99: dd:f7:20:67:51:5f:2f:39:6b:ed:65:62:11:69:23:46:1b:cf: 36:fb:7f:dd:07:5a:d2:f7:53:2e:96:50:0f:8c:9d:fb:20:1b: 75:1a:f9:1c:51:e9:97:f7:fa:2d:78:16:0a:3e:ef:b9:66:eb: 08:56:a9:87:23:00:58:6c:5f:52:10:13:40:83:af:bb:fa:7c: e4:b1:a7:50:50:ef:11:78:0d:94:d1:fd:26:d2:52:42:21:e6: a2:5f:0a:21:f6:bf:a9:b4:63:63:74:21:90:42:e5:d4:17:a7: d3:45:37:f1:61:92:b3:c5:3d:c9:ce:4a:0f:33:e2:7e:34:fe: 04:83:e4:7b:5c:20:61:7b:b6:89:d3:67:43:44:a7:43:b5:2a: 86:35:ae:38:a5:40:0a:c0:ed:3c:ac:f6:4c:0d:10:f9:d5:9a: f3:49:ff:14:76:9f:22:40:fc:51:d3:58:7c:e2:98:b6:f4:7e: d9:20:be:ce -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZtQzGlTkWrHNEOfmhkjT2PQtviAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDA0MDAyMDQxWhcNMjUxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZmI3MmUxMjEyYjVkN2NkMjAzODU5MDA1YmQwNzNhODdj ODJmOWFmZTIyYjM4ZGVlYTMzZDAzOGU1MDExMmE0MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgjz7WlOEXgYFdwiCDUwxjCmirfOTfCM9b199DOd4MmrfR Dqzs6ZNKdH1yR69RQlLSq4aeXvhFVEPcdxoTgivow6D5lXUMDcinNskVGGEdlE5l OuVkUhogacj9OqP86T7JMPH35ATP1Av1+kraTMtm6hRf3QrrEqHs4KVSxeqgxqni +jJwafVRaju/gwIJHUJ0l3V3Fgms3kD0Blva/2V2++x3urqQBVjA46DWAXSceLqS UEyNZqRTS8xeT96ys2FVp5kcBEc5L97hOhKdCMRz/6xCVylM9dWwZaTOIgbuKvZy A9JlKB1UYIsLpAaZb23UOS16gywIQDe4dVPDJiNJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeEslgzjVoaGv2XPGbd+9e+xr2mAwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2ViZDk2OGQzLWNlNDgtNDExOC1hZWQ3LWI5MzhjZDEzMTUzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFqeQwDQYJKoZIhvcNAQELBQADggEBAIRewmJMElWQVRfxA0Sw3tbr5acu rqPLL6+MahlUBv9hfS8FWzxqelgxaZloxZuURnJmtIwWEvYY+UXFUtINTWledt1F jYgpmd33IGdRXy85a+1lYhFpI0Ybzzb7f90HWtL3Uy6WUA+MnfsgG3Ua+RxR6Zf3 +i14Fgo+77lm6whWqYcjAFhsX1IQE0CDr7v6fOSxp1BQ7xF4DZTR/SbSUkIh5qJf CiH2v6m0Y2N0IZBC5dQXp9NFN/FhkrPFPcnOSg8z4n40/gSD5HtcIGF7tonTZ0NE p0O1KoY1rjilQArA7Tys9kwNEPnVmvNJ/xR2nyJA/FHTWHzimLb0ftkgvs4= -----END CERTIFICATE-----Generated at Mon Oct 20 13:03:25 2025 by rpki-client