$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e509b26-eb2f-4b8a-8031-d39229950c03.roa File: 1e509b26-eb2f-4b8a-8031-d39229950c03.roa (raw, json) Hash identifier: mTDU84YQmt/vXqGlMidq6ogxPGF32Zdqyc83dnzO2H0= Subject key identifier: BC:EA:5C:35:7E:34:BB:80:CD:05:38:90:8E:AD:3B:73:A8:48:4B:87 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 393CC30CFB5A7128B4C5E9EC0C3118FA3551224F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e509b26-eb2f-4b8a-8031-d39229950c03.roa Signing time: Tue 04 Nov 2025 01:21:54 +0000 ROA not before: Tue 04 Nov 2025 01:21:54 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.163.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:3c:c3:0c:fb:5a:71:28:b4:c5:e9:ec:0c:31:18:fa:35:51:22:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 4 01:21:54 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=6f2893126e0fc11216ebf2ed1524cfee356a06dfcb1047ecae000948451a0dc9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:93:84:f0:84:12:45:29:f6:9f:25:c9:3f:c3: f6:d1:58:20:d9:3e:dd:b4:49:cc:60:9e:65:05:c1: 94:c1:18:b5:f9:11:86:1c:e8:1e:0a:ac:9a:10:43: ea:74:97:bb:b8:0a:91:b8:d9:1c:22:5c:0e:11:a8: 7a:ca:18:bc:57:2e:94:00:23:bd:f7:af:dc:3b:1f: 54:86:81:69:3d:b8:9a:6a:d0:66:8d:d2:2e:c3:45: 07:72:60:cc:55:50:55:42:f4:22:a5:1c:5a:42:f3: ef:17:80:51:3b:61:5f:6e:e1:b5:43:91:1c:d6:34: f6:22:75:87:13:64:c0:28:d5:ca:c5:80:59:b9:0d: 09:a3:b2:74:7e:84:c2:7b:ff:b7:45:04:80:cd:2d: bc:df:23:8f:7e:5e:61:76:d6:a2:9e:8c:3d:2f:f7: 3e:25:07:64:a6:e9:b8:48:d1:50:60:57:27:54:1f: 85:6c:f0:e7:87:13:bc:13:7a:a8:21:4c:8c:b8:03: 5b:9d:65:04:66:97:c4:93:db:b3:9b:78:84:2b:2a: 18:eb:e8:03:54:15:54:ee:46:26:71:dd:7c:d2:9b: 37:9f:f0:e3:06:5c:f3:9c:e8:d0:3a:6a:10:98:84: b7:a7:77:0c:3a:85:4d:cf:2e:73:db:7f:90:0b:f2: a8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:EA:5C:35:7E:34:BB:80:CD:05:38:90:8E:AD:3B:73:A8:48:4B:87 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e509b26-eb2f-4b8a-8031-d39229950c03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.163.128.0/18 Signature Algorithm: sha256WithRSAEncryption 01:9c:d8:32:6a:40:b2:89:f2:2c:e2:e6:ee:c3:b3:f0:9b:94: 59:1d:33:3e:1b:00:3d:60:68:fb:8e:2b:89:6f:9c:63:77:07: 99:8d:78:f9:ba:df:4d:cf:95:ab:22:8b:77:4d:14:b9:5c:a8: 34:b1:36:2b:22:10:b4:c8:b9:df:2e:46:86:4c:d5:98:d7:e6: 4b:a9:3d:f0:6c:3f:7a:8f:38:e9:8a:be:6c:db:f8:07:b9:f1: bb:95:2f:29:eb:78:dd:11:55:19:81:0e:ec:c4:f7:52:58:4a: 47:84:de:fa:51:bc:de:5c:e5:bf:38:5d:95:a6:4a:8a:85:c3: cc:10:38:20:e1:52:6d:40:b2:c9:92:93:fa:a6:8e:6a:db:aa: 09:b9:6a:e7:cf:16:0f:46:30:41:6c:22:cc:97:72:5a:36:ed: 68:25:d1:48:c6:92:ec:e5:2f:08:ae:48:b0:a2:3e:1b:3a:20: 92:b7:d9:88:26:3b:ab:b2:d3:c3:b7:6f:7d:70:03:da:33:f7: e7:f1:27:19:29:d1:83:f7:ce:e0:c0:c2:22:84:cf:9d:4c:0e: 19:66:c2:cc:56:dd:a5:25:18:78:f6:9d:bc:59:ee:5d:2c:b4: 7d:23:93:ad:70:3e:5f:ad:16:31:5e:e2:87:c5:e8:8f:88:77: ef:bf:18:16 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOTzDDPtacSi0xensDDEY+jVRIk8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA0MDEyMTU0WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZjI4OTMxMjZlMGZjMTEyMTZlYmYyZWQxNTI0Y2ZlZTM1 NmEwNmRmY2IxMDQ3ZWNhZTAwMDk0ODQ1MWEwZGM5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyk4TwhBJFKfafJck/w/bRWCDZPt20ScxgnmUFwZTBGLX5 EYYc6B4KrJoQQ+p0l7u4CpG42RwiXA4RqHrKGLxXLpQAI733r9w7H1SGgWk9uJpq 0GaN0i7DRQdyYMxVUFVC9CKlHFpC8+8XgFE7YV9u4bVDkRzWNPYidYcTZMAo1crF gFm5DQmjsnR+hMJ7/7dFBIDNLbzfI49+XmF21qKejD0v9z4lB2Sm6bhI0VBgVydU H4Vs8OeHE7wTeqghTIy4A1udZQRml8ST27ObeIQrKhjr6ANUFVTuRiZx3XzSmzef 8OMGXPOc6NA6ahCYhLendww6hU3PLnPbf5AL8qilAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvOpcNX40u4DNBTiQjq07c6hIS4cwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFlNTA5YjI2LWViMmYtNGI4YS04MDMxLWQzOTIyOTk1MGMwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2o4AwDQYJKoZIhvcNAQELBQADggEBAAGc2DJqQLKJ8izi5u7Ds/CblFkd Mz4bAD1gaPuOK4lvnGN3B5mNePm6303Plasii3dNFLlcqDSxNisiELTIud8uRoZM 1ZjX5kupPfBsP3qPOOmKvmzb+Ae58buVLynreN0RVRmBDuzE91JYSkeE3vpRvN5c 5b84XZWmSoqFw8wQOCDhUm1AssmSk/qmjmrbqgm5aufPFg9GMEFsIsyXclo27Wgl 0UjGkuzlLwiuSLCiPhs6IJK32YgmO6uy08O3b31wA9oz9+fxJxkp0YP3zuDAwiKE z51MDhlmwsxW3aUlGHj2nbxZ7l0stH0jk61wPl+tFjFe4ofF6I+Id++/GBY= -----END CERTIFICATE-----Generated at Wed Nov 5 09:17:40 2025 by rpki-client