$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16788add-b139-4af8-bd22-fe8b2177c578.roa File: 16788add-b139-4af8-bd22-fe8b2177c578.roa (raw, json) Hash identifier: YS4PI2bc6CWqSfHSCjE6/TRa8XOU13eIW6hxSna79jw= Subject key identifier: F4:63:BB:29:83:14:A2:10:3B:5F:A2:57:1C:BE:34:52:8A:1A:E2:45 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 79FC7FD8FEEC0C64250BCAEA10309CAD7D4FA23A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16788add-b139-4af8-bd22-fe8b2177c578.roa Signing time: Tue 21 Oct 2025 06:40:05 +0000 ROA not before: Tue 21 Oct 2025 06:40:05 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.137.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:fc:7f:d8:fe:ec:0c:64:25:0b:ca:ea:10:30:9c:ad:7d:4f:a2:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 06:40:05 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=c21b60327554271899cd44666d99c2f920b718b3a1051c5be7eaa55a6681032b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:aa:b5:c0:96:aa:51:b9:bf:24:21:56:60:4d: e9:be:86:7b:ce:bd:1a:d8:ac:77:15:42:e6:93:34: 89:bf:2a:a5:7e:c6:65:3e:95:6f:ee:b5:4b:17:e0: c1:4d:a5:15:5a:86:20:73:b3:1a:06:0c:96:cf:90: 4a:5a:fb:ac:eb:dc:f3:fe:90:72:d6:52:7f:ef:f6: 8f:de:52:13:ee:43:25:e5:71:9c:b7:0e:d0:9a:0c: 01:fe:86:15:ab:3f:70:94:80:67:27:53:5b:b5:fd: f8:02:16:3d:fa:ab:99:be:ff:3b:51:56:d6:22:b9: 70:26:bd:d0:ee:ef:cd:61:03:3c:4f:a3:6f:71:fa: 8b:f6:c2:2c:b8:6e:ea:f9:b8:8e:ce:be:01:88:dd: e8:e1:18:43:a7:1c:ed:8e:e3:b5:2f:ec:81:67:d8: d2:a4:5f:36:55:f5:e9:59:bb:6b:9a:df:f0:9f:49: 7b:51:9b:83:df:2e:d2:b4:b0:32:7d:bc:a1:8e:39: 74:d2:5b:60:a5:3e:77:db:ef:28:c5:17:2c:c3:c6: 56:8b:ad:e2:b8:f2:ba:4b:58:84:e9:a7:90:39:d9: 1f:25:3c:e4:14:63:69:f8:e8:2b:cf:17:61:e8:d3: 71:c6:ab:32:73:ee:f7:88:1a:7f:9b:d1:8f:32:42: 77:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:63:BB:29:83:14:A2:10:3B:5F:A2:57:1C:BE:34:52:8A:1A:E2:45 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16788add-b139-4af8-bd22-fe8b2177c578.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.137.0.0/16 Signature Algorithm: sha256WithRSAEncryption ad:17:d8:c8:0d:07:f7:26:73:50:1c:fc:9b:cc:91:4b:50:e7: 27:09:9e:f4:d2:b8:c4:f9:50:76:51:e2:f9:6b:72:1b:af:da: 54:a4:87:03:19:69:4f:11:96:04:a0:6c:f8:54:a0:49:2e:2f: 98:e1:94:51:35:70:05:90:80:17:f9:e5:09:79:bd:22:0d:91: 56:79:16:ae:bd:f9:d1:51:9d:6f:1d:ba:76:76:f8:a2:e6:60: 34:61:5d:a4:03:c5:77:58:81:cd:89:a9:3e:43:af:0f:b6:f7: 3e:a6:c2:c5:b5:8e:4b:51:99:c1:29:9b:6f:6f:ad:2b:9f:e9: 1b:90:d5:e5:13:02:9b:e0:61:c1:b2:ec:e2:be:cf:cf:0f:c4: ca:88:45:00:80:3a:4e:fd:a2:44:e9:ba:2d:ad:24:c1:30:c5: 36:bb:e6:3c:fb:47:b4:04:ab:f0:30:a1:03:d4:bd:84:53:64: 33:ce:b2:fd:13:71:30:a1:32:16:86:8d:1f:79:83:cd:d9:4c: 4e:26:ac:bd:72:e1:7d:2e:2a:dc:a9:06:ca:56:dd:de:8e:16: 88:39:ab:47:6b:68:87:71:8f:30:40:32:a0:94:3c:c1:fe:29: 04:fd:88:dc:c7:b4:02:34:de:92:4b:91:63:f7:08:fe:35:a8: 81:f9:2e:e1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUefx/2P7sDGQlC8rqEDCcrX1PojowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDY0MDA1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjFiNjAzMjc1NTQyNzE4OTljZDQ0NjY2ZDk5YzJmOTIw YjcxOGIzYTEwNTFjNWJlN2VhYTU1YTY2ODEwMzJiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQqrXAlqpRub8kIVZgTem+hnvOvRrYrHcVQuaTNIm/KqV+ xmU+lW/utUsX4MFNpRVahiBzsxoGDJbPkEpa+6zr3PP+kHLWUn/v9o/eUhPuQyXl cZy3DtCaDAH+hhWrP3CUgGcnU1u1/fgCFj36q5m+/ztRVtYiuXAmvdDu781hAzxP o29x+ov2wiy4bur5uI7OvgGI3ejhGEOnHO2O47Uv7IFn2NKkXzZV9elZu2ua3/Cf SXtRm4PfLtK0sDJ9vKGOOXTSW2ClPnfb7yjFFyzDxlaLreK48rpLWITpp5A52R8l POQUY2n46CvPF2Ho03HGqzJz7veIGn+b0Y8yQneZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9GO7KYMUohA7X6JXHL40Uooa4kUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzE2Nzg4YWRkLWIxMzktNGFmOC1iZDIyLWZlOGIyMTc3YzU3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPiTANBgkqhkiG9w0BAQsFAAOCAQEArRfYyA0H9yZzUBz8m8yRS1DnJwme 9NK4xPlQdlHi+WtyG6/aVKSHAxlpTxGWBKBs+FSgSS4vmOGUUTVwBZCAF/nlCXm9 Ig2RVnkWrr350VGdbx26dnb4ouZgNGFdpAPFd1iBzYmpPkOvD7b3PqbCxbWOS1GZ wSmbb2+tK5/pG5DV5RMCm+BhwbLs4r7Pzw/EyohFAIA6Tv2iROm6La0kwTDFNrvm PPtHtASr8DChA9S9hFNkM86y/RNxMKEyFoaNH3mDzdlMTiasvXLhfS4q3KkGylbd 3o4WiDmrR2toh3GPMEAyoJQ8wf4pBP2I3Me0AjTekkuRY/cI/jWogfku4Q== -----END CERTIFICATE-----Generated at Wed Nov 5 07:44:13 2025 by rpki-client