$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/422d351c-92b4-456a-9704-2e3f9fc7e256.roa File: 422d351c-92b4-456a-9704-2e3f9fc7e256.roa (raw, json) Hash identifier: iMlaPSAVeTApchU5+YOm7ALc6fN9p3JWddgQ0MuXbyE= Subject key identifier: E5:5A:8F:13:6C:50:87:D8:A4:DC:94:35:31:47:CC:A2:87:8D:CC:9E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 66958F9D4BFA1571FFC56A3886D1D8D205BE8F71 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/422d351c-92b4-456a-9704-2e3f9fc7e256.roa Signing time: Sat 01 Nov 2025 01:10:14 +0000 ROA not before: Sat 01 Nov 2025 01:10:14 +0000 ROA not after: Sat 06 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:95:8f:9d:4b:fa:15:71:ff:c5:6a:38:86:d1:d8:d2:05:be:8f:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 1 01:10:14 2025 GMT Not After : Dec 6 23:59:59 2025 GMT Subject: serialNumber=0cc2f332a83bfe621e41e3b2fe0e118c5e94c5da8105c798b0bcc91d55d42c11, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:87:29:48:d3:ee:b4:84:82:f1:e2:1d:67:b6: 4e:cd:d3:47:c7:86:ca:7e:2f:b0:87:6e:69:a6:da: 47:50:f3:ad:a7:14:a3:0c:6d:77:11:39:0d:f2:5a: d9:ad:6e:2b:3a:97:23:f8:b4:0d:9f:0a:26:fb:ec: be:f8:5e:35:0a:83:26:3f:0e:36:55:04:00:09:32: f2:21:75:bb:ad:66:51:d8:71:46:eb:a9:03:c6:42: 8e:27:71:74:5d:02:14:06:92:b7:a1:4c:b6:51:eb: 32:0d:87:c8:56:af:ed:ee:64:c0:71:65:59:11:01: 30:26:f5:89:1e:1d:9d:10:0a:9c:f2:9a:5c:08:77: 4d:24:8e:de:56:00:01:3a:a4:81:36:4c:6d:f0:90: c8:e9:7f:be:cc:c1:55:f6:32:47:3b:6e:9a:93:5f: 06:8b:3d:92:31:bc:07:a0:78:a7:b3:4c:a9:1a:ae: 53:0f:39:31:3d:e7:85:3e:eb:70:fc:62:53:f5:a4: 5d:ed:74:b3:72:76:45:6a:94:c7:cb:33:bf:16:e3: 76:81:6a:f6:c2:3b:aa:39:bf:56:98:ec:1b:83:cd: 8e:9c:34:f5:e5:21:a7:85:c1:8f:3b:50:87:5d:8c: b2:3a:f9:cc:31:bc:6b:a4:ea:f9:32:66:15:99:e8: d9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5A:8F:13:6C:50:87:D8:A4:DC:94:35:31:47:CC:A2:87:8D:CC:9E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/422d351c-92b4-456a-9704-2e3f9fc7e256.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.136.0/22 Signature Algorithm: sha256WithRSAEncryption 27:72:99:39:02:be:8a:36:49:1b:31:3d:06:5b:a8:1c:53:58: d8:9c:f4:7d:cc:c8:d7:58:1c:ce:31:51:bb:ac:82:97:d2:a8: cd:6a:53:33:fc:12:43:37:07:83:b2:b6:68:01:31:d8:0e:22: 70:e1:4b:c8:da:92:72:19:07:3a:89:9f:1b:59:d3:8f:fd:3a: 91:46:e7:bc:ba:f9:66:23:21:bf:d1:75:ed:a7:a2:df:9e:38: 63:29:51:6d:ed:64:98:af:5b:b4:a4:b6:e5:74:9d:91:da:47: bf:da:83:bb:03:e4:32:9c:84:f2:45:39:74:1a:2c:b9:ce:60: 6c:4a:79:5f:25:05:b0:cb:82:68:e8:24:54:36:07:f8:3a:b2: db:a2:1b:73:04:4e:f6:0d:18:11:58:71:db:3d:5f:f9:5a:fe: 47:4f:22:39:da:12:df:06:30:3f:87:5d:94:10:38:bb:6b:07: 52:a2:e8:c2:3e:97:84:3e:8c:ce:11:76:61:52:f2:65:3c:0e: 38:66:ff:50:fb:9c:83:59:b3:06:7e:29:ee:bd:d9:81:42:ca: e6:8a:cf:f3:11:14:ba:dd:af:a5:32:64:32:af:4e:e7:8b:79: 03:47:19:52:d5:48:c3:bc:27:d2:a9:f2:57:60:3f:b1:80:d7: cc:f6:3c:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZpWPnUv6FXH/xWo4htHY0gW+j3EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTAxMDExMDE0WhcNMjUxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2MyZjMzMmE4M2JmZTYyMWU0MWUzYjJmZTBlMTE4YzVl OTRjNWRhODEwNWM3OThiMGJjYzkxZDU1ZDQyYzExMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWhylI0+60hILx4h1ntk7N00fHhsp+L7CHbmmm2kdQ862n FKMMbXcROQ3yWtmtbis6lyP4tA2fCib77L74XjUKgyY/DjZVBAAJMvIhdbutZlHY cUbrqQPGQo4ncXRdAhQGkrehTLZR6zINh8hWr+3uZMBxZVkRATAm9YkeHZ0QCpzy mlwId00kjt5WAAE6pIE2TG3wkMjpf77MwVX2Mkc7bpqTXwaLPZIxvAegeKezTKka rlMPOTE954U+63D8YlP1pF3tdLNydkVqlMfLM78W43aBavbCO6o5v1aY7BuDzY6c NPXlIaeFwY87UIddjLI6+cwxvGuk6vkyZhWZ6NmXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5VqPE2xQh9ik3JQ1MUfMooeNzJ4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQyMmQzNTFjLTkyYjQtNDU2YS05NzA0LTJlM2Y5ZmM3ZTI1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIP3IgwDQYJKoZIhvcNAQELBQADggEBACdymTkCvoo2SRsxPQZbqBxTWNic 9H3MyNdYHM4xUbusgpfSqM1qUzP8EkM3B4OytmgBMdgOInDhS8jaknIZBzqJnxtZ 04/9OpFG57y6+WYjIb/Rde2not+eOGMpUW3tZJivW7SktuV0nZHaR7/ag7sD5DKc hPJFOXQaLLnOYGxKeV8lBbDLgmjoJFQ2B/g6stuiG3METvYNGBFYcds9X/la/kdP IjnaEt8GMD+HXZQQOLtrB1Ki6MI+l4Q+jM4RdmFS8mU8Djhm/1D7nINZswZ+Ke69 2YFCyuaKz/MRFLrdr6UyZDKvTueLeQNHGVLVSMO8J9Kp8ldgP7GA18z2PKg= -----END CERTIFICATE-----Generated at Wed Nov 5 01:53:41 2025 by rpki-client