$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/465b22a6-e5ab-419b-ad6a-55ce7704428c.roa File: 465b22a6-e5ab-419b-ad6a-55ce7704428c.roa (raw, json) Hash identifier: dKFCbnNRDr/65bnR/S5L5wfYVQ/cSS87v+WB0h8hvLw= Subject key identifier: 51:74:65:BE:34:AC:C0:E5:0F:52:B5:17:2C:3B:51:D0:CA:EE:7A:B8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0815BE2E2DC66A1938F0562F9F3170D0AAD7A7B8 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/465b22a6-e5ab-419b-ad6a-55ce7704428c.roa Signing time: Tue 21 Oct 2025 10:52:27 +0000 ROA not before: Tue 21 Oct 2025 10:52:27 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:15:be:2e:2d:c6:6a:19:38:f0:56:2f:9f:31:70:d0:aa:d7:a7:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 10:52:27 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=bdf1fe625750b64df029d85061b488b62fe96d72c598cfba53cf8ccca066fb29, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:11:3a:cd:93:96:0e:16:24:5a:32:97:59:1b: 5c:67:6f:c2:8a:39:98:43:c8:b9:66:3c:5b:16:e3: bd:81:0b:43:7a:04:20:28:19:3b:b0:dd:a1:90:ce: c3:89:32:fc:2b:06:0c:b1:5f:67:86:a8:94:51:8b: 70:38:33:81:da:53:96:39:f4:c8:02:9e:a7:13:6b: 72:1e:82:3d:fd:17:0b:89:5c:48:eb:2a:6f:f7:a8: dc:62:46:dd:eb:04:bf:04:6d:bf:9a:4e:dd:00:50: 4f:62:eb:85:cd:dd:dc:41:4f:ae:e5:a4:98:8d:23: cf:4d:6e:30:82:7e:fb:dc:61:cf:1c:7d:f5:c9:eb: fc:f2:e6:2a:c1:22:7d:9a:10:0e:4a:8f:4e:15:9e: 23:ea:de:db:b6:35:46:e4:32:5f:82:0b:a1:ac:5e: 64:9d:8c:70:33:8f:56:f2:73:82:44:2e:ae:66:f0: 1c:a8:e5:68:2a:87:be:23:b4:19:51:b1:df:b6:a5: 62:ef:7f:39:81:17:bb:66:0b:d2:dd:5e:94:a8:89: 96:d9:d1:39:17:aa:56:1e:a7:4b:95:12:4f:ef:c2: b2:cf:c5:b4:91:bc:64:8a:53:71:d0:e7:3e:c4:e4: 3b:db:2d:c8:3f:a6:79:7c:1f:dc:6a:39:de:40:7d: 65:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:74:65:BE:34:AC:C0:E5:0F:52:B5:17:2C:3B:51:D0:CA:EE:7A:B8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/465b22a6-e5ab-419b-ad6a-55ce7704428c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.24.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:97:24:d4:d7:a8:61:36:95:16:ff:62:15:a0:2e:75:87:93: 13:de:a5:87:4a:b9:ed:7e:92:12:46:9d:93:62:35:84:bc:ed: f8:21:62:20:a6:db:62:88:04:2a:b2:24:16:fb:09:fe:ef:aa: d3:b9:89:04:8b:0a:ba:e7:ab:a3:a7:11:c5:58:7a:a9:95:72: 73:01:ad:6e:20:03:b0:ae:88:5f:58:51:dd:66:0a:38:0a:a2: dc:d3:60:1b:bd:ee:e2:04:71:af:be:0e:f1:a1:5c:3a:81:0b: f1:b9:a3:fe:be:3c:7e:96:3f:81:1a:0e:5b:61:5f:5f:17:72: fb:4f:17:81:1b:44:21:5f:33:9a:fa:a0:7d:c3:c0:5a:58:a4: b7:04:be:2e:e2:63:80:13:3b:86:60:fc:b6:ae:15:ad:db:9a: 90:1b:0b:61:7e:92:ae:a5:b6:c3:8f:a9:09:f1:f1:fb:a5:ec: ae:81:1d:ad:68:58:4d:75:96:98:15:69:48:96:2d:95:8a:9d: 62:0e:bb:87:a5:82:cb:9c:4a:2b:85:88:a7:63:f0:6d:99:d4: 0a:f4:3e:7e:d5:81:53:c8:33:a5:26:ea:36:16:81:1a:7f:b0: 72:6c:b7:a6:39:13:82:6d:64:70:86:80:82:57:ba:4c:46:2f: 07:c1:a7:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCBW+Li3Gahk48FYvnzFw0KrXp7gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMTA1MjI3WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZGYxZmU2MjU3NTBiNjRkZjAyOWQ4NTA2MWI0ODhiNjJm ZTk2ZDcyYzU5OGNmYmE1M2NmOGNjY2EwNjZmYjI5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuETrNk5YOFiRaMpdZG1xnb8KKOZhDyLlmPFsW472BC0N6 BCAoGTuw3aGQzsOJMvwrBgyxX2eGqJRRi3A4M4HaU5Y59MgCnqcTa3Iegj39FwuJ XEjrKm/3qNxiRt3rBL8Ebb+aTt0AUE9i64XN3dxBT67lpJiNI89NbjCCfvvcYc8c ffXJ6/zy5irBIn2aEA5Kj04VniPq3tu2NUbkMl+CC6GsXmSdjHAzj1byc4JELq5m 8Byo5Wgqh74jtBlRsd+2pWLvfzmBF7tmC9LdXpSoiZbZ0TkXqlYep0uVEk/vwrLP xbSRvGSKU3HQ5z7E5DvbLcg/pnl8H9xqOd5AfWWTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUXRlvjSswOUPUrUXLDtR0MruergwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ2NWIyMmE2LWU1YWItNDE5Yi1hZDZhLTU1Y2U3NzA0NDI4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0XxgwDQYJKoZIhvcNAQELBQADggEBAI+XJNTXqGE2lRb/YhWgLnWHkxPe pYdKue1+khJGnZNiNYS87fghYiCm22KIBCqyJBb7Cf7vqtO5iQSLCrrnq6OnEcVY eqmVcnMBrW4gA7CuiF9YUd1mCjgKotzTYBu97uIEca++DvGhXDqBC/G5o/6+PH6W P4EaDlthX18XcvtPF4EbRCFfM5r6oH3DwFpYpLcEvi7iY4ATO4Zg/LauFa3bmpAb C2F+kq6ltsOPqQnx8ful7K6BHa1oWE11lpgVaUiWLZWKnWIOu4elgsucSiuFiKdj 8G2Z1Ar0Pn7VgVPIM6Um6jYWgRp/sHJst6Y5E4JtZHCGgIJXukxGLwfBp+w= -----END CERTIFICATE-----Generated at Wed Nov 5 07:25:19 2025 by rpki-client