$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3958d8cc-b49d-47bf-a39f-3ab7a7f5feb5.roa File: 3958d8cc-b49d-47bf-a39f-3ab7a7f5feb5.roa (raw, json) Hash identifier: NR+nfnX6umIZcfm55pwJo25E40l/6AXMzb50w6mRbow= Subject key identifier: 76:07:97:44:CD:4B:6E:CC:C9:3B:D3:16:EA:50:A3:77:F8:13:82:C8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 030E96D13312FA67AFE951659561B178075E7C24 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3958d8cc-b49d-47bf-a39f-3ab7a7f5feb5.roa Signing time: Tue 21 Oct 2025 06:10:10 +0000 ROA not before: Tue 21 Oct 2025 06:10:10 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:0e:96:d1:33:12:fa:67:af:e9:51:65:95:61:b1:78:07:5e:7c:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 06:10:10 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=13c81dc3c376fc236958b3cdea7e18cac33964cb971729f44fb1531983b23078, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7e:e4:9d:c3:7e:68:c1:c3:38:33:b2:d8:ea: fa:bd:a1:0e:85:9f:96:ad:81:91:46:f9:9c:8d:fa: 1b:57:84:23:57:8d:ba:d5:ed:01:78:d7:ff:af:72: 8c:34:58:2e:5c:0e:b0:5f:a0:13:16:c6:ed:2b:d4: 23:2a:e6:5f:f5:9a:e5:0c:fc:fc:1a:e5:c3:a5:df: 92:a9:34:6a:5b:2c:6c:c0:9d:91:39:21:9e:09:04: fe:49:f0:10:73:be:4e:b3:67:5a:21:d0:1f:7b:af: fe:1a:3d:58:17:ef:35:91:bf:0b:62:70:8a:70:87: d5:cd:54:86:0e:05:24:61:08:2f:8a:4f:6f:4c:86: 0a:54:ff:c9:29:c4:3b:c7:0d:f2:98:85:c2:5d:90: 67:5e:a2:c8:ce:f6:06:19:71:ab:4a:4f:92:05:01: ea:b3:ad:60:d0:a1:59:2d:78:bb:2c:e9:52:39:99: 50:34:17:ea:ed:a6:41:93:72:ba:f6:3f:71:26:2e: 1e:84:28:fc:24:33:75:69:8a:94:cd:e0:e3:4e:f6: 8c:1f:2c:32:18:93:50:d5:27:65:60:eb:f0:a7:0f: 15:d7:69:e4:a2:34:0f:39:ac:63:ab:6d:48:d8:3d: 6d:5a:55:cd:44:3b:64:c7:21:ce:ad:76:21:18:a1: ed:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:07:97:44:CD:4B:6E:CC:C9:3B:D3:16:EA:50:A3:77:F8:13:82:C8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3958d8cc-b49d-47bf-a39f-3ab7a7f5feb5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.208.0/22 Signature Algorithm: sha256WithRSAEncryption 74:6b:80:cc:60:e1:60:39:f0:b5:98:0d:44:6d:26:63:30:30: d4:28:80:fb:0f:11:1c:f7:51:a4:9c:4e:63:51:8f:4e:44:fd: 1d:80:d6:7f:28:33:e4:1f:01:d2:c4:7e:31:41:4d:c0:48:28: ca:5a:69:71:ad:27:9c:a0:8d:a0:1f:17:df:0c:26:a5:0a:80: 95:e7:7f:f4:09:c5:84:68:02:0d:d2:a8:47:ea:a4:14:0e:40: f0:d6:b1:5d:2a:b9:d5:32:85:86:5d:bd:44:f6:df:49:f3:21: ea:71:75:99:2a:56:63:06:6c:ae:2e:75:22:bd:36:51:b3:49: 38:cf:5d:63:5e:fa:d6:ef:c9:d7:e9:39:bd:9f:11:4a:fe:b8: 6e:30:8a:d7:b2:bf:ca:66:ce:d3:f8:2f:76:a3:35:ab:93:69: f3:95:3e:94:b2:d7:23:06:02:a3:cd:41:41:8d:02:13:ef:dc: ca:0e:b1:c8:45:52:eb:ff:9d:65:c0:00:da:76:8f:ba:46:0a: 49:46:7b:d0:f6:b6:b2:17:79:40:92:8d:66:5d:3e:9f:b7:84: d4:13:35:1d:74:49:e0:fe:34:62:e4:2e:94:66:9d:0c:17:a6: 0d:f8:f1:cd:b3:a4:ee:4b:57:35:ba:da:d2:57:da:ce:74:8f: 02:35:c7:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAw6W0TMS+mev6VFllWGxeAdefCQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDYxMDEwWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2M4MWRjM2MzNzZmYzIzNjk1OGIzY2RlYTdlMThjYWMz Mzk2NGNiOTcxNzI5ZjQ0ZmIxNTMxOTgzYjIzMDc4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFfuSdw35owcM4M7LY6vq9oQ6Fn5atgZFG+ZyN+htXhCNX jbrV7QF41/+vcow0WC5cDrBfoBMWxu0r1CMq5l/1muUM/Pwa5cOl35KpNGpbLGzA nZE5IZ4JBP5J8BBzvk6zZ1oh0B97r/4aPVgX7zWRvwticIpwh9XNVIYOBSRhCC+K T29MhgpU/8kpxDvHDfKYhcJdkGdeosjO9gYZcatKT5IFAeqzrWDQoVkteLss6VI5 mVA0F+rtpkGTcrr2P3EmLh6EKPwkM3VpipTN4ONO9owfLDIYk1DVJ2Vg6/CnDxXX aeSiNA85rGOrbUjYPW1aVc1EO2THIc6tdiEYoe0DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdgeXRM1LbszJO9MW6lCjd/gTgsgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzM5NThkOGNjLWI0OWQtNDdiZi1hMzlmLTNhYjdhN2Y1ZmViNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0X9AwDQYJKoZIhvcNAQELBQADggEBAHRrgMxg4WA58LWYDURtJmMwMNQo gPsPERz3UaScTmNRj05E/R2A1n8oM+QfAdLEfjFBTcBIKMpaaXGtJ5ygjaAfF98M JqUKgJXnf/QJxYRoAg3SqEfqpBQOQPDWsV0qudUyhYZdvUT230nzIepxdZkqVmMG bK4udSK9NlGzSTjPXWNe+tbvydfpOb2fEUr+uG4witeyv8pmztP4L3ajNauTafOV PpSy1yMGAqPNQUGNAhPv3MoOschFUuv/nWXAANp2j7pGCklGe9D2trIXeUCSjWZd Pp+3hNQTNR10SeD+NGLkLpRmnQwXpg348c2zpO5LVzW62tJX2s50jwI1x+M= -----END CERTIFICATE-----Generated at Wed Nov 5 07:25:31 2025 by rpki-client