$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0eeadd97-00fe-4bb9-ae64-34d965484079.roa File: 0eeadd97-00fe-4bb9-ae64-34d965484079.roa (raw, json) Hash identifier: yCCAsGEKRJuUTLRTfeSC1yLJM1/YnsFtBLqj8KhK77k= Subject key identifier: 32:92:68:2D:9D:FE:A4:1A:6C:3C:B5:5F:EC:BA:5D:62:E0:89:5F:6A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0DB189704DFA352E9716064611F42BCEEF1BCE27 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0eeadd97-00fe-4bb9-ae64-34d965484079.roa Signing time: Sat 01 Nov 2025 01:11:08 +0000 ROA not before: Sat 01 Nov 2025 01:11:08 +0000 ROA not after: Sat 06 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:b1:89:70:4d:fa:35:2e:97:16:06:46:11:f4:2b:ce:ef:1b:ce:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 1 01:11:08 2025 GMT Not After : Dec 6 23:59:59 2025 GMT Subject: serialNumber=4291a66d9e9149d0761c2601b89ed2baca006efdacaf5f0ae693f66541e1dbb2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5a:69:a8:09:39:57:b5:ac:a5:ca:25:00:bb: 37:73:89:f1:f5:fd:02:34:44:c2:08:6c:5f:41:0b: 59:a0:d3:83:7a:5a:00:b0:5e:3c:8c:0b:e9:c7:09: c3:1d:5d:d8:13:a2:8c:8a:61:a2:23:5f:6c:df:68: a7:cf:d3:8e:a6:62:77:75:29:0c:db:b4:6d:62:58: 59:7d:4a:a0:77:f9:bd:a3:3d:51:be:19:3b:81:97: ef:0f:3c:38:62:95:4c:7c:c9:e7:e2:ec:a1:ed:84: b3:a5:ab:b7:f9:38:13:24:28:4e:57:5b:bd:9b:86: 01:69:83:e9:a7:01:da:02:fe:39:8d:1b:cd:43:5e: b6:45:92:b8:41:9f:55:58:3e:44:51:0c:c2:71:bf: a9:eb:89:64:06:80:8c:3e:76:73:c4:c3:51:1e:2b: 38:e4:e2:85:6b:1f:43:f1:d4:42:97:6f:c6:aa:a1: ea:82:3d:da:1b:16:83:05:f6:28:34:81:a1:c2:ad: d5:ab:0f:bb:70:a4:9d:dc:67:06:9d:17:bb:05:ec: e8:55:f6:d5:b5:c8:09:7e:a1:06:d8:1e:0d:10:42: 49:3e:7a:ab:54:1e:42:b5:bb:4f:86:6b:6e:91:9a: ba:85:fe:53:40:26:61:31:d3:7e:06:46:ae:af:ee: 98:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:92:68:2D:9D:FE:A4:1A:6C:3C:B5:5F:EC:BA:5D:62:E0:89:5F:6A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0eeadd97-00fe-4bb9-ae64-34d965484079.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.20.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:19:1c:74:01:08:5d:8a:a4:1d:e6:f6:f3:0f:ab:b0:18:60: 59:1b:85:c3:5b:b5:f4:02:0f:22:1f:ad:ce:5e:98:85:ad:98: ad:86:7d:dc:91:3b:3b:d7:d8:d1:eb:bc:bc:15:18:9c:51:ef: 94:d2:1c:e4:03:c3:5a:aa:ae:7f:6a:07:59:03:96:35:c2:c8: 19:5c:27:08:1e:e5:a3:6d:e3:12:b2:fe:f4:ed:30:00:84:6f: 06:79:94:b8:f4:5a:56:91:9e:76:aa:4c:0d:d5:aa:d4:2b:fb: bb:78:3a:cb:de:2c:56:41:d5:68:ba:2a:41:d5:e1:4d:2d:ce: 83:c1:09:fa:77:36:82:9a:26:84:77:bf:47:b3:66:a4:f8:c6: ae:e1:4a:9c:d8:d5:1c:6a:1b:82:bc:67:9c:66:0e:6a:12:1b: df:c8:af:10:f5:ca:e1:6f:50:42:1f:8c:5a:05:ea:19:97:2e: 3e:bf:60:3a:5c:1a:65:5c:61:9b:e5:6c:f4:a1:ba:ad:64:a5: d0:9d:a0:dc:b2:46:2d:59:df:97:35:a3:3a:1a:a1:83:e8:44: 8e:7f:51:ee:08:c9:68:61:2d:7a:85:8f:35:b2:68:15:eb:3e: d4:e5:8c:a2:b5:d0:05:67:40:82:2b:01:37:14:ca:2b:72:52: 6e:2e:d8:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDbGJcE36NS6XFgZGEfQrzu8bzicwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTAxMDExMTA4WhcNMjUxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjkxYTY2ZDllOTE0OWQwNzYxYzI2MDFiODllZDJiYWNh MDA2ZWZkYWNhZjVmMGFlNjkzZjY2NTQxZTFkYmIyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5WmmoCTlXtaylyiUAuzdzifH1/QI0RMIIbF9BC1mg04N6 WgCwXjyMC+nHCcMdXdgTooyKYaIjX2zfaKfP046mYnd1KQzbtG1iWFl9SqB3+b2j PVG+GTuBl+8PPDhilUx8yefi7KHthLOlq7f5OBMkKE5XW72bhgFpg+mnAdoC/jmN G81DXrZFkrhBn1VYPkRRDMJxv6nriWQGgIw+dnPEw1EeKzjk4oVrH0Px1EKXb8aq oeqCPdobFoMF9ig0gaHCrdWrD7twpJ3cZwadF7sF7OhV9tW1yAl+oQbYHg0QQkk+ eqtUHkK1u0+Ga26RmrqF/lNAJmEx034GRq6v7pitAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMpJoLZ3+pBpsPLVf7LpdYuCJX2owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBlZWFkZDk3LTAwZmUtNGJiOS1hZTY0LTM0ZDk2NTQ4NDA3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIP3BQwDQYJKoZIhvcNAQELBQADggEBAG4ZHHQBCF2KpB3m9vMPq7AYYFkb hcNbtfQCDyIfrc5emIWtmK2GfdyROzvX2NHrvLwVGJxR75TSHOQDw1qqrn9qB1kD ljXCyBlcJwge5aNt4xKy/vTtMACEbwZ5lLj0WlaRnnaqTA3VqtQr+7t4OsveLFZB 1Wi6KkHV4U0tzoPBCfp3NoKaJoR3v0ezZqT4xq7hSpzY1RxqG4K8Z5xmDmoSG9/I rxD1yuFvUEIfjFoF6hmXLj6/YDpcGmVcYZvlbPShuq1kpdCdoNyyRi1Z35c1ozoa oYPoRI5/Ue4IyWhhLXqFjzWyaBXrPtTljKK10AVnQIIrATcUyityUm4u2Nk= -----END CERTIFICATE-----Generated at Wed Nov 5 03:34:30 2025 by rpki-client