$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e78508b-66cd-4d2d-acce-b9c2220d481d.roa File: 1e78508b-66cd-4d2d-acce-b9c2220d481d.roa (raw, json) Hash identifier: Or9oZz95qypT4kl9KDEqk1y+h/0y3q54hbGbgJjM23U= Subject key identifier: 1C:D2:34:67:96:52:69:D1:42:24:AC:DE:CD:0B:0D:B0:71:07:A7:11 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 02984D9D53EFCB2E02D81BAE64D0E000A0D1DC99 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e78508b-66cd-4d2d-acce-b9c2220d481d.roa Signing time: Tue 21 Oct 2025 06:02:38 +0000 ROA not before: Tue 21 Oct 2025 06:02:38 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 52.95.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:98:4d:9d:53:ef:cb:2e:02:d8:1b:ae:64:d0:e0:00:a0:d1:dc:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 06:02:38 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=ecc940fc59174f0bf1ea9fc6b44c031a476f8ebb4c42c0da4a3b0bf9e0e2f4fb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e5:af:8f:7f:cd:de:94:fe:a4:83:65:b1:f9: cb:c3:13:f3:46:e2:ce:35:f2:b8:83:b1:37:bc:d1: 04:76:4c:4c:d7:cf:dc:98:e0:62:b8:05:5a:01:3d: 9b:08:11:ab:f0:90:9a:14:9e:21:5d:c9:b1:1a:14: 3c:cf:57:75:ce:b0:ad:14:8a:f1:6b:70:e4:84:bc: 3b:f7:49:b3:12:53:ab:6e:8a:2f:55:33:31:6b:14: 67:8d:90:f8:ce:9c:b7:ed:be:95:ee:83:f8:4a:47: 36:d9:84:c0:10:14:d7:c8:a4:4a:af:8f:63:2b:71: 00:2e:25:dd:21:2d:c1:80:3b:36:ab:02:df:13:16: e7:ab:fa:ca:6b:b3:c3:22:c3:32:17:df:fc:e2:c9: eb:8e:e5:7c:16:f1:44:5f:88:71:87:4e:fa:dc:19: b5:b6:97:b6:1e:4a:f1:31:b4:44:db:4a:ac:2e:a8: 06:12:9f:17:27:d4:68:97:89:ad:e9:80:a6:33:c4: cf:e7:cf:18:3c:b7:ba:f8:14:a1:0d:c1:be:72:64: 19:7b:84:d2:61:b0:c0:85:ae:e5:81:37:2d:ac:9d: 29:63:2f:dc:f1:16:2a:57:93:e4:12:ff:ea:81:ee: 1d:ff:7d:a6:c6:72:1f:ea:c7:0d:1e:91:dd:e7:c5: b4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D2:34:67:96:52:69:D1:42:24:AC:DE:CD:0B:0D:B0:71:07:A7:11 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e78508b-66cd-4d2d-acce-b9c2220d481d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.108.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:84:fb:28:83:fa:6f:ab:2c:47:21:58:e9:5d:29:9f:09:a4: fc:fe:31:66:09:02:6b:8a:55:0d:02:b7:2f:80:ba:6d:ee:c8: 19:c5:03:6e:a7:29:03:5f:80:80:aa:8f:ad:20:39:65:df:ee: 04:80:94:3c:0a:a2:f7:a8:bb:19:a9:4f:48:b9:ce:5f:32:b5: 51:60:93:ce:7e:89:1a:4e:82:96:a7:d6:03:59:86:29:19:05: c2:da:e7:f8:32:ee:9e:fa:42:14:9c:43:aa:a1:5a:40:5a:d3: 02:20:96:cd:bc:4b:40:68:4b:c3:e2:db:e1:7d:c6:d2:c8:6a: 0e:9b:79:49:5c:c5:2b:ca:b9:5b:48:70:d9:c0:ae:f3:9c:f3: 79:da:82:2a:32:da:c0:4d:19:c7:27:76:89:a2:26:44:68:63: 86:6b:5d:e2:9a:1e:38:e4:61:c0:72:76:95:19:57:c8:7a:36: b6:c6:3d:97:1b:2c:0a:01:86:2d:51:8d:c9:9e:46:db:cc:4a: 3c:c3:86:12:8e:ed:95:90:18:91:59:40:6f:bb:bc:4f:13:13: b0:8f:39:9f:b8:3c:7d:59:02:d9:17:d3:d7:be:01:6a:82:ee: 19:46:5c:32:c8:8a:d6:66:57:73:e4:c5:d0:b4:38:66:0e:61: de:11:3e:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAphNnVPvyy4C2BuuZNDgAKDR3JkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDYwMjM4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2M5NDBmYzU5MTc0ZjBiZjFlYTlmYzZiNDRjMDMxYTQ3 NmY4ZWJiNGM0MmMwZGE0YTNiMGJmOWUwZTJmNGZiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS5a+Pf83elP6kg2Wx+cvDE/NG4s418riDsTe80QR2TEzX z9yY4GK4BVoBPZsIEavwkJoUniFdybEaFDzPV3XOsK0UivFrcOSEvDv3SbMSU6tu ii9VMzFrFGeNkPjOnLftvpXug/hKRzbZhMAQFNfIpEqvj2MrcQAuJd0hLcGAOzar At8TFuer+sprs8MiwzIX3/ziyeuO5XwW8URfiHGHTvrcGbW2l7YeSvExtETbSqwu qAYSnxcn1GiXia3pgKYzxM/nzxg8t7r4FKENwb5yZBl7hNJhsMCFruWBNy2snSlj L9zxFipXk+QS/+qB7h3/fabGch/qxw0ekd3nxbSHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHNI0Z5ZSadFCJKzezQsNsHEHpxEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFlNzg1MDhiLTY2Y2QtNGQyZC1hY2NlLWI5YzIyMjBkNDgxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE0X2wwDQYJKoZIhvcNAQELBQADggEBAJ6E+yiD+m+rLEchWOldKZ8JpPz+ MWYJAmuKVQ0Cty+Aum3uyBnFA26nKQNfgICqj60gOWXf7gSAlDwKoveouxmpT0i5 zl8ytVFgk85+iRpOgpan1gNZhikZBcLa5/gy7p76QhScQ6qhWkBa0wIgls28S0Bo S8Pi2+F9xtLIag6beUlcxSvKuVtIcNnArvOc83nagioy2sBNGccndomiJkRoY4Zr XeKaHjjkYcBydpUZV8h6NrbGPZcbLAoBhi1RjcmeRtvMSjzDhhKO7ZWQGJFZQG+7 vE8TE7CPOZ+4PH1ZAtkX09e+AWqC7hlGXDLIitZmV3PkxdC0OGYOYd4RPrM= -----END CERTIFICATE-----Generated at Wed Nov 5 01:48:55 2025 by rpki-client