$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/41b455b0-d4ec-45f7-87bb-597fb62d7277.roa File: 41b455b0-d4ec-45f7-87bb-597fb62d7277.roa (raw, json) Hash identifier: 9bplCmV9yuyJCZuZxPh+vI02UhzzknlM71P66gM0s4k= Subject key identifier: C9:FB:FF:05:E9:AD:A8:85:18:FB:21:D6:B2:8B:44:CF:93:2D:66:6E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6074B7F0610CDBC09439EC9746297AF5EB2DDE2B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/41b455b0-d4ec-45f7-87bb-597fb62d7277.roa Signing time: Tue 04 Nov 2025 01:10:15 +0000 ROA not before: Tue 04 Nov 2025 01:10:15 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.219.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:74:b7:f0:61:0c:db:c0:94:39:ec:97:46:29:7a:f5:eb:2d:de:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 4 01:10:15 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=a37c27bb78825943d403aedd807b4fe8bb712f12c8f5aa44e95c0405fae96f8b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d1:68:f0:5f:9d:f3:fe:5e:34:e0:2e:56:d9: e6:33:87:de:8d:47:d4:89:86:1d:ca:70:fe:b7:7b: d7:1d:9a:3a:a7:a6:b9:54:6c:29:ad:1c:ee:d2:7e: 2b:09:72:a4:12:58:64:92:8e:e4:01:f4:21:8b:d5: 28:57:51:33:f5:d1:55:9a:6a:9d:64:ef:1f:23:df: 41:5f:50:fe:4e:da:bd:88:60:4b:51:a7:02:58:0f: 74:b0:de:ee:66:a5:99:13:9b:3e:32:25:24:57:99: 54:fc:34:f6:7b:b3:1e:a3:14:92:a0:63:50:0a:21: e0:3a:c8:ea:1c:14:48:43:35:55:35:9d:a1:7f:23: 9e:9c:a5:5c:90:2b:60:b4:e1:4b:e0:99:03:b3:4a: a1:2b:2a:1f:be:68:11:f0:85:c2:4d:3c:02:50:07: c3:b6:2e:a8:24:34:34:7c:d2:29:bf:de:50:13:1c: 95:9b:69:e2:4e:67:13:c7:ac:31:05:ee:09:32:0f: e7:8c:2e:58:1c:26:12:5d:0a:e7:06:a9:2d:13:84: d8:7f:13:79:c6:c5:2d:16:f5:53:38:a1:e5:42:ff: e9:91:ff:17:45:4e:1e:16:31:fd:6c:1f:0c:be:43: c4:53:ec:9b:7a:8d:ef:f3:47:a4:60:cd:57:4b:f9: ca:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:FB:FF:05:E9:AD:A8:85:18:FB:21:D6:B2:8B:44:CF:93:2D:66:6E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/41b455b0-d4ec-45f7-87bb-597fb62d7277.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.219.248.0/22 Signature Algorithm: sha256WithRSAEncryption 17:dd:dc:4f:59:1c:7b:1e:6e:de:a2:60:d4:98:5e:77:11:44: c4:2c:c7:63:55:49:9c:b5:49:06:c7:b2:79:c1:0a:93:0e:bc: e7:5a:7c:75:29:73:b4:96:5a:d4:bb:a7:30:1b:b2:5d:fa:84: 08:88:03:cd:1c:5e:ee:4e:18:29:f0:e1:f9:6f:8e:d5:20:73: f4:c5:45:b4:4a:72:1b:fb:a1:0d:7c:62:b3:94:1f:64:b8:5e: 6e:c6:89:d3:20:82:a7:7e:66:45:22:19:dc:b7:82:0d:80:14: b1:7a:0f:57:ad:60:b4:c6:18:e5:36:fc:00:de:ab:74:86:57: 9a:33:6f:fa:2c:97:b3:9b:e5:8a:dc:57:bf:bc:87:28:4c:32: 7e:8b:42:9a:d2:46:7f:11:a0:4b:6b:31:01:48:a3:06:2a:d7: 30:76:a9:f1:5c:4f:ed:2c:5e:5a:9a:7e:27:e3:31:ed:41:29: 5e:ee:51:db:9a:f8:0a:e0:c7:99:2a:b4:8b:92:f6:34:9f:ea: c3:e2:47:f5:eb:c9:57:95:bf:61:42:52:59:b7:10:c0:79:39: 2e:26:97:35:8c:a6:b3:21:52:8b:ae:92:28:f6:e6:d7:36:34: 96:90:e3:ec:be:e6:70:a5:bc:aa:ed:fe:95:9b:02:d9:f1:a8: 0b:81:70:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYHS38GEM28CUOeyXRil69est3iswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA0MDExMDE1WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzdjMjdiYjc4ODI1OTQzZDQwM2FlZGQ4MDdiNGZlOGJi NzEyZjEyYzhmNWFhNDRlOTVjMDQwNWZhZTk2ZjhiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC70WjwX53z/l404C5W2eYzh96NR9SJhh3KcP63e9cdmjqn prlUbCmtHO7SfisJcqQSWGSSjuQB9CGL1ShXUTP10VWaap1k7x8j30FfUP5O2r2I YEtRpwJYD3Sw3u5mpZkTmz4yJSRXmVT8NPZ7sx6jFJKgY1AKIeA6yOocFEhDNVU1 naF/I56cpVyQK2C04UvgmQOzSqErKh++aBHwhcJNPAJQB8O2LqgkNDR80im/3lAT HJWbaeJOZxPHrDEF7gkyD+eMLlgcJhJdCucGqS0ThNh/E3nGxS0W9VM4oeVC/+mR /xdFTh4WMf1sHwy+Q8RT7Jt6je/zR6RgzVdL+cotAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyfv/BemtqIUY+yHWsotEz5MtZm4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQxYjQ1NWIwLWQ0ZWMtNDVmNy04N2JiLTU5N2ZiNjJkNzI3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI22/gwDQYJKoZIhvcNAQELBQADggEBABfd3E9ZHHsebt6iYNSYXncRRMQs x2NVSZy1SQbHsnnBCpMOvOdafHUpc7SWWtS7pzAbsl36hAiIA80cXu5OGCnw4flv jtUgc/TFRbRKchv7oQ18YrOUH2S4Xm7GidMggqd+ZkUiGdy3gg2AFLF6D1etYLTG GOU2/ADeq3SGV5ozb/osl7Ob5YrcV7+8hyhMMn6LQprSRn8RoEtrMQFIowYq1zB2 qfFcT+0sXlqafifjMe1BKV7uUdua+Argx5kqtIuS9jSf6sPiR/XryVeVv2FCUlm3 EMB5OS4mlzWMprMhUouukij25tc2NJaQ4+y+5nClvKrt/pWbAtnxqAuBcOw= -----END CERTIFICATE-----Generated at Wed Nov 5 03:33:45 2025 by rpki-client