$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/45dc4776-5339-42ce-8fea-1b1d733fd6b6.roa File: 45dc4776-5339-42ce-8fea-1b1d733fd6b6.roa (raw, json) Hash identifier: TrW56DdteVSWDT8/kBCpzUYFQUCmCs8+CmVQuliNd34= Subject key identifier: 77:5E:08:CC:49:D4:3A:D9:59:05:6C:3E:1E:99:33:66:42:B4:3A:61 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0D6529F5CB9E0EC02CDF94A5753C2587FEC22674 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/45dc4776-5339-42ce-8fea-1b1d733fd6b6.roa Signing time: Wed 05 Nov 2025 00:50:05 +0000 ROA not before: Wed 05 Nov 2025 00:50:05 +0000 ROA not after: Wed 10 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 52.93.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:65:29:f5:cb:9e:0e:c0:2c:df:94:a5:75:3c:25:87:fe:c2:26:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 5 00:50:05 2025 GMT Not After : Dec 10 23:59:59 2025 GMT Subject: serialNumber=ecbb3e6f85703d1c46e40ed8527257857976641b20bdb9587a163361839c1afb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bd:5f:8b:62:11:1a:d7:0d:dc:d1:9c:48:5a: 4e:42:c5:41:20:32:e9:fd:9a:b5:bf:b4:eb:fa:78: ed:ff:20:fd:e8:fc:2d:fd:a4:c3:41:62:1c:ae:88: 39:44:a7:3b:f3:c4:25:01:e2:43:f9:cf:30:2a:6b: dd:ea:c0:15:e4:75:3b:3c:59:55:2a:71:90:d5:a5: aa:14:09:4e:f9:df:f9:74:2e:b6:a9:33:55:64:d4: f9:86:17:97:77:3b:47:c0:12:70:a8:88:5c:4c:9f: 7b:33:1a:90:10:73:cd:d3:44:72:ac:40:50:cf:49: 5e:24:f4:1e:b2:14:a6:55:0a:f6:fc:03:44:a9:cc: d4:19:7f:ea:ab:18:03:42:37:9e:fd:bf:92:7a:08: 19:9b:fb:7a:28:1a:b5:53:53:4e:c5:5c:fa:4f:7c: 6e:3f:bb:a3:f4:1f:25:6a:e8:cc:74:0b:39:17:73: 1c:5f:a1:a1:ea:7d:f7:a7:d5:58:24:6f:e8:5f:fe: 9e:d1:df:c1:65:e9:fe:ca:71:b0:81:a5:22:d3:a7: 7f:63:0c:6b:0c:5c:01:58:1b:37:e5:47:f9:77:ab: cc:79:22:0e:58:73:a7:fa:07:54:18:89:d8:87:2e: b4:4f:61:6e:8e:f7:75:ad:b0:6a:3e:9c:8b:b0:06: 08:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:5E:08:CC:49:D4:3A:D9:59:05:6C:3E:1E:99:33:66:42:B4:3A:61 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/45dc4776-5339-42ce-8fea-1b1d733fd6b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.93.249.0/24 Signature Algorithm: sha256WithRSAEncryption 20:4c:82:ed:94:71:0d:cc:13:b1:d4:5c:6b:90:dc:ce:7b:9c: e9:86:50:24:70:ab:7a:c8:bf:d5:3b:6d:ae:30:29:62:bc:7d: 98:ce:88:a9:b3:b4:d7:0d:c2:c9:f9:b1:ab:25:da:39:0a:1e: 54:5d:a3:53:bb:8e:2d:f9:eb:67:42:9d:83:0e:b0:86:80:da: 66:4f:2a:0f:b4:d0:8b:e8:89:b8:aa:fa:5b:dc:6f:e6:db:8a: b5:b6:b5:20:6d:14:4a:55:33:3f:91:5d:aa:b0:95:ee:56:81: a3:4f:0b:d7:89:18:1a:29:f1:c5:78:8c:cb:4e:78:cb:8e:3e: 88:79:99:2a:09:db:78:c1:c6:70:cc:15:4b:ae:bb:bc:43:1b: ac:36:5a:06:f9:fb:72:89:01:d1:79:db:ea:48:3f:0d:d5:93: 7e:84:b6:cf:6f:aa:7b:e5:ec:fb:97:e0:d9:77:d6:31:ac:64: 11:47:16:18:8e:41:7c:f7:57:0e:cb:fa:e3:49:bd:f7:6d:d7: 04:3f:16:4d:15:0d:c1:0e:f5:2f:74:93:e9:50:fb:ef:9c:ec: 2e:db:17:77:02:9b:07:9d:ac:b6:4d:77:8c:04:82:e5:ee:55: 81:ac:ed:b9:d2:9d:71:79:f7:88:37:24:a7:77:f0:23:8f:4e: 76:a8:f8:dd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDWUp9cueDsAs35SldTwlh/7CJnQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA1MDA1MDA1WhcNMjUxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2JiM2U2Zjg1NzAzZDFjNDZlNDBlZDg1MjcyNTc4NTc5 NzY2NDFiMjBiZGI5NTg3YTE2MzM2MTgzOWMxYWZiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZvV+LYhEa1w3c0ZxIWk5CxUEgMun9mrW/tOv6eO3/IP3o /C39pMNBYhyuiDlEpzvzxCUB4kP5zzAqa93qwBXkdTs8WVUqcZDVpaoUCU753/l0 LrapM1Vk1PmGF5d3O0fAEnCoiFxMn3szGpAQc83TRHKsQFDPSV4k9B6yFKZVCvb8 A0SpzNQZf+qrGANCN579v5J6CBmb+3ooGrVTU07FXPpPfG4/u6P0HyVq6Mx0CzkX cxxfoaHqffen1Vgkb+hf/p7R38Fl6f7KcbCBpSLTp39jDGsMXAFYGzflR/l3q8x5 Ig5Yc6f6B1QYidiHLrRPYW6O93WtsGo+nIuwBgi5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUd14IzEnUOtlZBWw+HpkzZkK0OmEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ1ZGM0Nzc2LTUzMzktNDJjZS04ZmVhLTFiMWQ3MzNmZDZiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0XfkwDQYJKoZIhvcNAQELBQADggEBACBMgu2UcQ3ME7HUXGuQ3M57nOmG UCRwq3rIv9U7ba4wKWK8fZjOiKmztNcNwsn5sasl2jkKHlRdo1O7ji3562dCnYMO sIaA2mZPKg+00Ivoibiq+lvcb+bbirW2tSBtFEpVMz+RXaqwle5WgaNPC9eJGBop 8cV4jMtOeMuOPoh5mSoJ23jBxnDMFUuuu7xDG6w2Wgb5+3KJAdF52+pIPw3Vk36E ts9vqnvl7PuX4Nl31jGsZBFHFhiOQXz3Vw7L+uNJvfdt1wQ/Fk0VDcEO9S90k+lQ +++c7C7bF3cCmwedrLZNd4wEguXuVYGs7bnSnXF594g3JKd38COPTnao+N0= -----END CERTIFICATE-----Generated at Wed Nov 5 07:43:25 2025 by rpki-client