$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65bfddf3-ef71-4a93-8e37-258271701606.roa File: 65bfddf3-ef71-4a93-8e37-258271701606.roa (raw, json) Hash identifier: l9+wU74Apet6F3gFYxDmjzqI3ttYb3RNgGFGKM81XSM= Subject key identifier: 4E:7F:09:CE:07:2D:20:7E:4C:CD:F5:AB:6B:14:A6:79:7E:D1:58:5B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 155868468E5064D8204A8C6ECE8DDBA4CB7CCA08 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65bfddf3-ef71-4a93-8e37-258271701606.roa Signing time: Fri 31 Oct 2025 20:36:54 +0000 ROA not before: Fri 31 Oct 2025 20:36:54 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.197.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:58:68:46:8e:50:64:d8:20:4a:8c:6e:ce:8d:db:a4:cb:7c:ca:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 31 20:36:54 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=05cefd516523a0cd34580d26f41280bfcf271ca09d6211f708aa085ef29cb148, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:d2:55:1e:23:84:cc:ae:4c:5d:df:d2:57:0e: ff:7e:32:64:cc:24:20:ce:47:be:0f:d7:b8:20:b0: 8f:cd:34:76:b3:a6:70:bb:d9:7d:41:51:8c:a7:f5: 71:dd:cc:09:83:51:fb:ef:ea:34:71:f6:7a:92:b0: f8:18:0d:e1:02:a6:7b:18:14:80:04:27:3d:66:2c: 44:6e:69:ca:a8:b4:69:6f:54:73:b8:bf:06:aa:b4: 6d:1d:84:47:e0:cc:a3:98:f9:29:c7:08:be:e2:a0: de:39:f2:c6:80:10:ee:8f:b8:d8:1b:68:46:ee:9a: aa:0d:79:e5:60:a0:7a:4f:4b:70:c8:5f:aa:b4:08: 2f:8b:f1:af:61:03:35:5d:5d:65:24:9e:6e:14:aa: cb:e8:9c:1e:ee:ac:b1:d3:3b:db:62:08:2b:96:24: b2:11:aa:f2:eb:23:e4:fa:44:ee:14:07:91:f9:7f: f9:d2:98:00:99:fc:f3:81:c8:e8:fa:d7:f3:f9:2f: 4e:5d:f3:3f:8a:96:e8:aa:d8:9a:f8:dc:05:7f:d6: ae:8c:b5:20:af:cf:6e:bd:e2:db:e5:15:36:79:85: b9:2d:00:b9:fe:1e:3e:b0:c7:d5:ac:c0:9e:27:1f: 8f:d5:07:cb:63:9c:54:d8:f6:a3:39:c3:7e:20:da: 6e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:7F:09:CE:07:2D:20:7E:4C:CD:F5:AB:6B:14:A6:79:7E:D1:58:5B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65bfddf3-ef71-4a93-8e37-258271701606.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.197.6.0/23 Signature Algorithm: sha256WithRSAEncryption 56:d1:b6:54:80:5e:95:73:e8:77:1e:71:b2:30:a5:8c:21:b9: 43:86:bd:ad:07:32:62:7c:ec:34:7d:c1:de:92:42:f6:70:a7: 50:16:c4:57:5c:d2:f0:03:be:98:01:f2:de:fc:57:76:a2:80: 9e:00:8a:d9:26:f1:b9:29:a5:24:5d:e0:ff:18:a1:fa:b7:8b: 74:42:44:80:05:c0:a0:35:b7:a4:b7:08:41:9c:26:c3:97:ac: bc:7a:47:2d:a3:4d:fd:68:a2:33:84:d1:a9:98:d3:dd:e0:de: ce:6b:28:54:a4:0b:71:7d:46:48:65:db:fd:69:b1:2b:60:be: 2a:03:23:e5:e9:f5:09:ee:75:a9:85:fa:3c:c2:10:3d:89:b2: b5:a2:5f:98:0d:2c:0f:e7:d1:d7:9d:12:19:0a:43:02:5c:d3: a2:c9:51:7c:f7:a0:10:40:9e:af:50:66:71:4c:13:9f:72:74: b5:10:61:da:83:5f:d3:bf:16:58:7c:1b:5b:18:34:41:72:d8: f2:8c:e8:ea:50:72:83:af:d0:a5:25:13:66:c8:ca:be:19:65: 6c:b1:0a:70:0e:c1:e7:6f:f3:42:e7:c3:ca:38:ff:39:5b:16: a7:58:01:f5:de:11:7f:6b:49:f1:94:db:17:af:e5:f7:57:f9: 83:db:7a:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFVhoRo5QZNggSoxuzo3bpMt8yggwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDMxMjAzNjU0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWNlZmQ1MTY1MjNhMGNkMzQ1ODBkMjZmNDEyODBiZmNm MjcxY2EwOWQ2MjExZjcwOGFhMDg1ZWYyOWNiMTQ4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDx0lUeI4TMrkxd39JXDv9+MmTMJCDOR74P17ggsI/NNHaz pnC72X1BUYyn9XHdzAmDUfvv6jRx9nqSsPgYDeECpnsYFIAEJz1mLERuacqotGlv VHO4vwaqtG0dhEfgzKOY+SnHCL7ioN458saAEO6PuNgbaEbumqoNeeVgoHpPS3DI X6q0CC+L8a9hAzVdXWUknm4UqsvonB7urLHTO9tiCCuWJLIRqvLrI+T6RO4UB5H5 f/nSmACZ/POByOj61/P5L05d8z+Kluiq2Jr43AV/1q6MtSCvz2694tvlFTZ5hbkt ALn+Hj6wx9WswJ4nH4/VB8tjnFTY9qM5w34g2m4lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTn8JzgctIH5MzfWraxSmeX7RWFswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY1YmZkZGYzLWVmNzEtNGE5My04ZTM3LTI1ODI3MTcwMTYwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEPxQYwDQYJKoZIhvcNAQELBQADggEBAFbRtlSAXpVz6HcecbIwpYwhuUOG va0HMmJ87DR9wd6SQvZwp1AWxFdc0vADvpgB8t78V3aigJ4Aitkm8bkppSRd4P8Y ofq3i3RCRIAFwKA1t6S3CEGcJsOXrLx6Ry2jTf1oojOE0amY093g3s5rKFSkC3F9 Rkhl2/1psStgvioDI+Xp9QnudamF+jzCED2JsrWiX5gNLA/n0dedEhkKQwJc06LJ UXz3oBBAnq9QZnFME59ydLUQYdqDX9O/Flh8G1sYNEFy2PKM6OpQcoOv0KUlE2bI yr4ZZWyxCnAOwedv80Lnw8o4/zlbFqdYAfXeEX9rSfGU2xev5fdX+YPbenw= -----END CERTIFICATE-----Generated at Wed Nov 5 11:40:57 2025 by rpki-client