$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa File: 4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa (raw, json) Hash identifier: krE9npJm8YXX6BGr29KErBVncXhC6vckS2FJxeG+yM8= Subject key identifier: AA:9E:3A:E6:7C:B6:3C:A9:2A:6A:D0:FF:06:CB:25:D2:7C:73:10:99 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 134352A2DF5C1A1E9B71A4B4C7B6540EA657A7BD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa Signing time: Tue 21 Oct 2025 03:11:16 +0000 ROA not before: Tue 21 Oct 2025 03:11:16 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.168.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:43:52:a2:df:5c:1a:1e:9b:71:a4:b4:c7:b6:54:0e:a6:57:a7:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 03:11:16 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=55643c82a869d39105d593997123d1b336b6cabf8dd07fee9dbf2878043bc3a3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9d:5b:32:c0:9c:cb:54:5e:10:52:04:7c:c8: 03:5a:14:0c:2b:16:ba:0b:68:78:83:f4:1c:61:08: 9b:e0:df:24:7f:a7:01:f7:e1:29:27:0e:7f:49:68: de:44:07:70:23:75:52:25:db:19:6b:7f:c3:9b:13: 1f:58:4a:aa:b0:61:30:7f:08:c3:42:a0:fb:fd:01: 54:76:68:e9:ff:3c:ac:e6:86:ca:b7:fd:9e:59:5c: 98:ef:46:b3:87:98:ed:7e:17:84:63:ce:b3:9e:b3: 01:99:a2:9b:38:65:0b:cc:87:63:b4:82:54:97:24: 37:ac:c2:c7:ae:52:72:68:e0:66:ed:0a:e8:68:e9: 45:1a:20:7a:25:e2:5c:6a:55:eb:49:81:11:36:0c: e6:c8:dd:9b:48:c4:a4:0c:3c:58:28:5f:71:2f:98: 98:86:7a:32:c3:1a:31:dd:d8:8b:22:69:48:41:d8: d0:8f:db:4c:79:d8:b0:b3:f4:21:a2:dc:29:0a:1a: 1c:86:2a:02:81:84:1e:5c:5f:21:a5:32:8a:af:26: 8e:6a:c3:ab:45:8c:2b:07:a6:39:f1:ff:59:f7:45: 28:e7:ba:a8:cb:43:80:c9:9f:88:93:7d:8b:52:0c: 32:fe:73:68:ca:76:46:1d:23:1d:2a:70:a5:42:b2: 05:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:9E:3A:E6:7C:B6:3C:A9:2A:6A:D0:FF:06:CB:25:D2:7C:73:10:99 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4524df21-4ec7-4287-b1ee-e4f4bf219d5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.168.96.0/22 Signature Algorithm: sha256WithRSAEncryption 48:86:0e:a0:26:cb:bc:d6:58:f3:a4:30:7c:53:95:ea:72:f6: 2a:e4:3b:93:db:39:71:9e:ad:90:b1:a3:de:d1:00:79:74:b9: 7c:8a:b7:9d:e0:07:74:6a:5c:65:71:91:a6:c5:a6:27:f2:e6: b8:73:a2:c4:bb:09:2b:a4:45:03:a3:c7:5f:c8:a6:fe:c8:0f: be:d1:cc:d1:10:e7:a7:3e:28:6a:77:6b:d0:14:d9:a6:cd:89: 9f:5e:16:a5:11:5e:b1:85:55:83:4e:bd:43:0a:57:41:3c:21: fc:98:ec:52:c6:dd:12:11:db:da:84:cb:22:f2:ea:1d:5c:02: b8:a0:e0:03:5e:3c:63:34:5a:11:e1:e6:d7:cf:eb:5c:6b:f5: 4a:3d:73:7f:f0:4a:30:87:4a:ed:ab:18:ba:a4:46:14:8c:41: b3:4f:be:7d:ec:b3:20:b1:90:ba:09:a2:43:79:47:b7:25:97: 7a:03:13:7b:d5:7d:10:60:fc:51:54:6c:92:58:35:27:ae:2f: 87:06:ce:3f:41:52:a9:a4:3c:23:23:7a:07:2f:f1:33:d6:7f: e3:29:e9:f4:44:7f:5d:41:ba:6c:02:c5:6c:8c:31:e9:f5:2e: aa:29:19:da:9f:39:a3:7b:0e:0d:8b:24:4f:09:15:b5:cd:24: b2:e2:ce:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE0NSot9cGh6bcaS0x7ZUDqZXp70wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDMxMTE2WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTY0M2M4MmE4NjlkMzkxMDVkNTkzOTk3MTIzZDFiMzM2 YjZjYWJmOGRkMDdmZWU5ZGJmMjg3ODA0M2JjM2EzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8nVsywJzLVF4QUgR8yANaFAwrFroLaHiD9BxhCJvg3yR/ pwH34SknDn9JaN5EB3AjdVIl2xlrf8ObEx9YSqqwYTB/CMNCoPv9AVR2aOn/PKzm hsq3/Z5ZXJjvRrOHmO1+F4RjzrOeswGZops4ZQvMh2O0glSXJDeswseuUnJo4Gbt Cuho6UUaIHol4lxqVetJgRE2DObI3ZtIxKQMPFgoX3EvmJiGejLDGjHd2IsiaUhB 2NCP20x52LCz9CGi3CkKGhyGKgKBhB5cXyGlMoqvJo5qw6tFjCsHpjnx/1n3RSjn uqjLQ4DJn4iTfYtSDDL+c2jKdkYdIx0qcKVCsgXFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqp465ny2PKkqatD/Bssl0nxzEJkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ1MjRkZjIxLTRlYzctNDI4Ny1iMWVlLWU0ZjRiZjIxOWQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIPqGAwDQYJKoZIhvcNAQELBQADggEBAEiGDqAmy7zWWPOkMHxTlepy9irk O5PbOXGerZCxo97RAHl0uXyKt53gB3RqXGVxkabFpify5rhzosS7CSukRQOjx1/I pv7ID77RzNEQ56c+KGp3a9AU2abNiZ9eFqURXrGFVYNOvUMKV0E8IfyY7FLG3RIR 29qEyyLy6h1cArig4ANePGM0WhHh5tfP61xr9Uo9c3/wSjCHSu2rGLqkRhSMQbNP vn3ssyCxkLoJokN5R7cll3oDE3vVfRBg/FFUbJJYNSeuL4cGzj9BUqmkPCMjegcv 8TPWf+Mp6fREf11BumwCxWyMMen1LqopGdqfOaN7Dg2LJE8JFbXNJLLizko= -----END CERTIFICATE-----Generated at Wed Nov 5 01:54:09 2025 by rpki-client