$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5bfc8985-f30d-4aee-baa4-fb39c7f7d7b5.roa File: 5bfc8985-f30d-4aee-baa4-fb39c7f7d7b5.roa (raw, json) Hash identifier: nBnvFczWF4CqLCaanmmbWCwVo3uWxO0Fp9tGW66p7KQ= Subject key identifier: 1B:0C:73:E2:14:37:89:BF:50:3D:46:C3:CD:EB:D7:B5:12:A0:51:64 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 772162C99C772866D234FE92DEFAF5E4C42FA48E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5bfc8985-f30d-4aee-baa4-fb39c7f7d7b5.roa Signing time: Tue 21 Oct 2025 02:11:23 +0000 ROA not before: Tue 21 Oct 2025 02:11:23 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.92.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:21:62:c9:9c:77:28:66:d2:34:fe:92:de:fa:f5:e4:c4:2f:a4:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 02:11:23 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=4cfd357d992d66b5c50d337d4e67015b988b3819f807750cce34c60fec638676, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6f:f4:e8:68:51:ab:2b:ff:8d:0b:96:36:14: 0e:fa:df:66:f9:7e:10:e2:a0:f8:96:ca:f6:60:c6: cc:5d:2e:3a:44:39:9c:64:84:0b:a2:93:d0:75:fe: 47:cb:61:86:53:6d:18:b4:b2:9f:c8:e1:22:f9:a5: 1d:5f:f2:de:1e:d2:04:12:f3:25:29:15:5c:06:b0: ed:f7:20:c2:73:6c:5b:86:30:cf:8b:7e:c9:7d:03: 72:ab:74:cb:7a:82:28:c6:9f:c9:c1:9b:b0:ab:b8: 8b:39:aa:aa:7a:60:d1:5e:57:6b:31:3b:80:1e:84: 57:0e:a1:34:05:ba:15:e0:6e:5e:cb:1f:19:dd:be: 29:cf:36:16:3e:d6:5e:5b:bb:e4:0a:be:cc:6d:f8: 3a:b4:88:83:e0:87:d0:76:f5:5f:6d:ae:5d:6e:ad: 96:11:cb:f1:c1:e9:53:df:36:70:77:87:ab:a7:8c: a4:c6:c3:11:e3:b2:2c:16:77:85:f6:20:6b:b1:78: 0b:e3:25:a8:02:c8:51:b4:f2:b0:7b:0b:74:55:2a: 63:80:ba:74:96:49:8f:b5:32:81:62:fe:6f:77:dc: d3:18:bb:30:e0:91:24:f5:ad:2f:6c:37:01:5a:b5: cd:a2:ae:39:7c:c0:aa:1a:3c:14:f8:57:95:ef:8f: 0f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:0C:73:E2:14:37:89:BF:50:3D:46:C3:CD:EB:D7:B5:12:A0:51:64 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5bfc8985-f30d-4aee-baa4-fb39c7f7d7b5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.92.128.0/17 Signature Algorithm: sha256WithRSAEncryption 51:ed:46:4c:22:8f:e4:5a:ce:12:51:70:4e:dc:b4:6f:d7:aa: 59:67:94:d5:7d:52:6a:57:09:c0:3f:b2:01:a9:3b:4c:69:52: e6:e2:9e:ea:d8:eb:71:db:83:47:c9:85:35:5a:85:dd:84:ba: bf:96:b0:e4:21:1d:cd:c7:34:b7:a5:ed:7b:73:53:23:80:95: ef:64:54:45:a6:49:65:81:1e:35:8b:9f:3f:f8:6a:1f:37:97: f0:54:75:61:99:a0:17:40:3f:21:2d:8d:d0:63:76:02:c8:41: be:ab:69:b6:ac:45:54:b1:a3:1c:96:12:52:3f:93:30:c5:91: 7a:1a:ee:05:d2:2a:5f:01:48:cb:7a:13:6a:48:25:03:ba:dc: f6:cf:e9:e4:dc:7e:f3:8a:ff:74:cf:cf:b9:03:58:7c:cc:ed: f5:f2:b0:0d:77:fa:81:ed:9e:97:42:9c:c3:a6:b3:30:11:e4: 3d:da:c3:70:61:09:6a:a5:e0:3d:fb:77:08:42:7f:24:1e:41: 1d:95:54:58:7a:06:c8:91:14:a3:3e:60:41:92:79:05:f3:ca: 00:64:33:b9:f6:1b:82:e3:4d:f3:0d:ba:37:1d:23:76:7b:af: 23:49:e0:8f:a6:d8:30:3e:81:7c:5b:fc:b8:7d:06:69:00:2e: 98:f1:0c:d1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdyFiyZx3KGbSNP6S3vr15MQvpI4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDIxMTIzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2ZkMzU3ZDk5MmQ2NmI1YzUwZDMzN2Q0ZTY3MDE1Yjk4 OGIzODE5ZjgwNzc1MGNjZTM0YzYwZmVjNjM4Njc2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEb/ToaFGrK/+NC5Y2FA7632b5fhDioPiWyvZgxsxdLjpE OZxkhAuik9B1/kfLYYZTbRi0sp/I4SL5pR1f8t4e0gQS8yUpFVwGsO33IMJzbFuG MM+Lfsl9A3KrdMt6gijGn8nBm7CruIs5qqp6YNFeV2sxO4AehFcOoTQFuhXgbl7L HxndvinPNhY+1l5bu+QKvsxt+Dq0iIPgh9B29V9trl1urZYRy/HB6VPfNnB3h6un jKTGwxHjsiwWd4X2IGuxeAvjJagCyFG08rB7C3RVKmOAunSWSY+1MoFi/m933NMY uzDgkST1rS9sNwFatc2irjl8wKoaPBT4V5Xvjw9RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGwxz4hQ3ib9QPUbDzevXtRKgUWQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzViZmM4OTg1LWYzMGQtNGFlZS1iYWE0LWZiMzljN2Y3ZDdiNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2XIAwDQYJKoZIhvcNAQELBQADggEBAFHtRkwij+RazhJRcE7ctG/Xqlln lNV9UmpXCcA/sgGpO0xpUubinurY63Hbg0fJhTVahd2Eur+WsOQhHc3HNLel7Xtz UyOAle9kVEWmSWWBHjWLnz/4ah83l/BUdWGZoBdAPyEtjdBjdgLIQb6rabasRVSx oxyWElI/kzDFkXoa7gXSKl8BSMt6E2pIJQO63PbP6eTcfvOK/3TPz7kDWHzM7fXy sA13+oHtnpdCnMOmszAR5D3aw3BhCWql4D37dwhCfyQeQR2VVFh6BsiRFKM+YEGS eQXzygBkM7n2G4LjTfMNujcdI3Z7ryNJ4I+m2DA+gXxb/Lh9BmkALpjxDNE= -----END CERTIFICATE-----Generated at Wed Nov 5 01:49:24 2025 by rpki-client