$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/03efc2c4-f35c-4ff9-aefe-135c62760950.roa File: 03efc2c4-f35c-4ff9-aefe-135c62760950.roa (raw, json) Hash identifier: RyLqfHPlcZNpH7MV2zYlbU2jMshTVstOHT8Xvjr2Tm0= Subject key identifier: CB:D9:0C:B4:5D:B4:15:87:72:91:8E:43:02:16:B8:74:B4:C7:36:F8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5BD01F7BE630AB2739D6EA82C571A5E0F0AEFEB3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/03efc2c4-f35c-4ff9-aefe-135c62760950.roa Signing time: Tue 21 Oct 2025 08:11:28 +0000 ROA not before: Tue 21 Oct 2025 08:11:28 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d0:1f:7b:e6:30:ab:27:39:d6:ea:82:c5:71:a5:e0:f0:ae:fe:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 08:11:28 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=0cfb3a4bc50361bc5bb61be3d586a86150bb24db371828928320b52970b4a613, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:75:44:2d:f6:e6:6e:ef:a1:c9:ff:56:cf:4a: 0f:0e:08:24:5e:c7:3b:60:c1:6f:05:f3:80:ef:40: 07:58:58:6c:97:6f:b0:57:58:2b:34:8d:8a:15:f7: 4a:5d:75:1f:fa:72:d3:47:c4:ea:e0:f3:48:93:25: 5d:b2:81:e5:c8:51:c7:5b:9d:74:d0:42:08:fb:23: 2a:a6:76:b0:2f:23:c4:ac:d8:b7:a0:28:51:59:8c: a0:4d:5e:12:35:ae:4f:d1:20:4f:11:2c:3e:00:02: d0:22:92:0c:f0:70:1f:68:91:69:b4:75:6b:04:94: c5:59:4c:e5:19:d7:74:6d:1c:fc:41:eb:ab:b6:7c: 7a:0e:e3:12:ea:29:a2:3d:be:3c:03:8b:1d:82:e1: 37:f2:29:14:d2:6f:05:e9:b8:d9:3e:54:12:09:cd: c1:1d:03:eb:4a:d1:23:be:ed:65:e2:65:5c:f6:c7: f5:19:0d:9d:84:87:12:d5:d8:fe:9a:d9:af:1e:87: bc:0e:29:af:4f:7f:a3:18:d5:c0:5c:dc:aa:df:a8: 80:2a:de:e7:8b:81:82:ad:9e:04:bc:0f:a2:87:11: 6f:f5:75:29:b1:4f:2b:f3:0c:70:51:ad:1b:6d:3c: 05:7e:d8:0c:93:6d:a6:e7:66:23:f5:ed:f4:98:32: c6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D9:0C:B4:5D:B4:15:87:72:91:8E:43:02:16:B8:74:B4:C7:36:F8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/03efc2c4-f35c-4ff9-aefe-135c62760950.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.205.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:32:be:91:68:9c:ea:fd:b6:50:f1:a4:b9:e2:79:26:42:9a: af:9d:57:72:8e:fa:2c:0c:b4:0b:09:9f:46:92:8e:c3:90:50: cb:4d:21:28:8f:ad:51:bc:ac:b3:e6:3b:b9:72:e9:97:cc:67: 38:09:88:1d:ae:90:3f:80:fa:47:80:ab:b6:06:7d:03:1f:4a: c6:46:e4:54:70:56:c8:82:97:aa:5f:4c:fb:58:de:0c:be:60: ba:4f:07:15:b3:f1:e4:1a:6f:67:d0:45:79:ca:f3:93:1f:86: 38:07:3a:83:67:99:62:97:1b:e9:0d:f4:f4:15:31:b3:f5:81: 3d:83:09:81:1f:bc:5f:d2:b6:ce:70:ba:cc:33:2c:89:04:22: 62:41:a7:0c:d1:6c:fe:19:39:e9:19:a5:95:79:37:3c:27:fa: 95:2a:0e:8b:b4:61:eb:51:9f:5a:5a:6f:4d:01:fe:52:9b:b4: d1:5d:ed:9f:0a:9a:c6:56:20:e5:c9:ad:73:60:55:d0:70:fa: cb:52:ba:51:db:77:70:fd:6c:9b:50:3d:a3:24:f9:96:db:4f: fe:56:cd:6e:ea:83:34:9f:77:62:c4:b2:96:09:c4:85:a5:49: 74:fc:a2:8d:84:59:39:ed:79:c4:bf:98:b6:53:b6:ce:01:9d: 21:a6:76:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW9Afe+Ywqyc51uqCxXGl4PCu/rMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDgxMTI4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2ZiM2E0YmM1MDM2MWJjNWJiNjFiZTNkNTg2YTg2MTUw YmIyNGRiMzcxODI4OTI4MzIwYjUyOTcwYjRhNjEzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrdUQt9uZu76HJ/1bPSg8OCCRexztgwW8F84DvQAdYWGyX b7BXWCs0jYoV90pddR/6ctNHxOrg80iTJV2ygeXIUcdbnXTQQgj7IyqmdrAvI8Ss 2LegKFFZjKBNXhI1rk/RIE8RLD4AAtAikgzwcB9okWm0dWsElMVZTOUZ13RtHPxB 66u2fHoO4xLqKaI9vjwDix2C4TfyKRTSbwXpuNk+VBIJzcEdA+tK0SO+7WXiZVz2 x/UZDZ2EhxLV2P6a2a8eh7wOKa9Pf6MY1cBc3KrfqIAq3ueLgYKtngS8D6KHEW/1 dSmxTyvzDHBRrRttPAV+2AyTbabnZiP17fSYMsYnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUy9kMtF20FYdykY5DAha4dLTHNvgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAzZWZjMmM0LWYzNWMtNGZmOS1hZWZlLTEzNWM2Mjc2MDk1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP3M0wDQYJKoZIhvcNAQELBQADggEBACsyvpFonOr9tlDxpLnieSZCmq+d V3KO+iwMtAsJn0aSjsOQUMtNISiPrVG8rLPmO7ly6ZfMZzgJiB2ukD+A+keAq7YG fQMfSsZG5FRwVsiCl6pfTPtY3gy+YLpPBxWz8eQab2fQRXnK85MfhjgHOoNnmWKX G+kN9PQVMbP1gT2DCYEfvF/Sts5wuswzLIkEImJBpwzRbP4ZOekZpZV5Nzwn+pUq Dou0YetRn1pab00B/lKbtNFd7Z8KmsZWIOXJrXNgVdBw+stSulHbd3D9bJtQPaMk +ZbbT/5WzW7qgzSfd2LEspYJxIWlSXT8oo2EWTntecS/mLZTts4BnSGmdgM= -----END CERTIFICATE-----Generated at Wed Nov 5 01:46:59 2025 by rpki-client