$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6842676e-78c9-4fcd-8ace-d84afb3ec897.roa File: 6842676e-78c9-4fcd-8ace-d84afb3ec897.roa (raw, json) Hash identifier: 2j32ap5bqtmpAXOKaey2IU5Vpvj8RVU+kdE7dzMy0Co= Subject key identifier: CF:EE:FF:64:B9:56:99:3D:A2:27:9C:56:CB:62:48:E6:76:C9:45:F4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 753366EC17E0282E0530EBED05013C7C5973E755 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6842676e-78c9-4fcd-8ace-d84afb3ec897.roa Signing time: Sat 18 Oct 2025 06:12:23 +0000 ROA not before: Sat 18 Oct 2025 06:12:23 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.255.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:33:66:ec:17:e0:28:2e:05:30:eb:ed:05:01:3c:7c:59:73:e7:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 06:12:23 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=3250de137be4d571562e34a2791332befc0a38c4f934da30df17299ef40933e4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b1:0a:9b:dc:7f:e2:71:40:69:e7:1e:25:62: 0c:19:72:cf:4d:9b:a4:5e:48:a3:64:8b:59:f6:7c: d8:c7:57:c6:bd:6e:4f:1c:69:42:d5:e7:14:14:05: e7:a8:eb:08:4b:09:31:fa:57:c3:3b:55:a1:38:b1: b5:15:d3:9b:3c:62:a4:47:bf:88:f6:71:4c:33:85: 0b:bd:7a:bc:b6:17:c8:63:31:c0:34:f5:ae:c0:18: 28:8d:8c:9e:79:79:7d:b5:0b:5e:b5:d5:49:9f:c0: 31:5f:49:a3:54:a3:7b:23:49:30:7c:8e:ab:10:1c: 4f:af:a6:9b:f9:ba:e5:67:79:34:5c:41:39:04:4d: 05:2e:ae:a6:05:41:24:82:98:2d:06:39:5a:f0:ae: 8f:95:7b:d1:c1:42:b5:41:e3:f4:6e:e5:bf:cb:5a: 2d:5a:59:c6:2a:22:f9:3f:4e:ab:99:cc:ff:a9:b6: 7e:2e:a4:c9:1c:f6:d5:0d:3b:7f:f8:36:e6:bb:96: a0:c2:6f:57:ce:de:cd:70:5f:17:1d:20:bd:e5:13: f7:9b:64:4d:f3:fd:bc:9c:d1:d0:e5:1a:67:26:c7: 52:af:7e:55:d8:86:51:98:79:4d:b5:00:ce:89:a7: b3:6d:1c:74:31:bb:df:1a:9c:dd:d0:19:c4:78:12: 5b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:EE:FF:64:B9:56:99:3D:A2:27:9C:56:CB:62:48:E6:76:C9:45:F4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6842676e-78c9-4fcd-8ace-d84afb3ec897.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.255.112.0/21 Signature Algorithm: sha256WithRSAEncryption 01:88:88:06:fb:8d:cf:be:85:d6:d9:16:f8:53:08:e8:d6:86: 20:e0:73:4e:f3:33:aa:07:2c:6e:c1:4a:a4:95:f8:48:ed:ee: cc:c0:5e:5a:25:a2:75:cb:d1:a9:dc:1c:bd:05:68:55:e0:33: f0:49:70:ad:61:a4:79:8c:05:cb:f8:da:e6:a3:0f:e4:03:a0: 3f:c9:f4:50:41:cf:33:40:23:df:9a:24:f0:e9:8e:59:bb:07: bc:cb:14:11:3d:fc:fd:b8:95:10:57:d3:fa:f9:f2:2b:75:db: 82:11:a6:67:0d:9b:34:4c:fb:77:4c:39:0f:33:2e:fe:f2:43: e7:2b:b7:4e:e0:28:fb:95:55:46:db:2e:e4:a2:23:d4:43:01: ae:53:4f:0a:5a:cb:cb:f7:7d:b5:e4:88:54:76:0e:ee:98:9d: 13:3a:93:45:cc:40:13:09:12:e4:36:1d:87:95:a1:ef:3e:fd: b1:71:bb:86:52:3a:e6:f0:84:41:ce:51:af:f2:8c:b2:b2:7b: c6:a0:84:0a:31:54:ac:ce:eb:c4:ef:7a:8b:c2:64:c1:42:d1: c6:80:be:0c:f9:cc:3f:83:a6:01:0b:da:02:5e:17:e5:be:26: d4:2f:4e:a7:99:d0:28:77:11:af:4b:bf:e0:3b:7e:6a:ef:56: a6:75:7f:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdTNm7BfgKC4FMOvtBQE8fFlz51UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MDYxMjIzWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjUwZGUxMzdiZTRkNTcxNTYyZTM0YTI3OTEzMzJiZWZj MGEzOGM0ZjkzNGRhMzBkZjE3Mjk5ZWY0MDkzM2U0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDasQqb3H/icUBp5x4lYgwZcs9Nm6ReSKNki1n2fNjHV8a9 bk8caULV5xQUBeeo6whLCTH6V8M7VaE4sbUV05s8YqRHv4j2cUwzhQu9ery2F8hj McA09a7AGCiNjJ55eX21C1611UmfwDFfSaNUo3sjSTB8jqsQHE+vppv5uuVneTRc QTkETQUurqYFQSSCmC0GOVrwro+Ve9HBQrVB4/Ru5b/LWi1aWcYqIvk/TquZzP+p tn4upMkc9tUNO3/4Nua7lqDCb1fO3s1wXxcdIL3lE/ebZE3z/byc0dDlGmcmx1Kv flXYhlGYeU21AM6Jp7NtHHQxu98anN3QGcR4ElsLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUz+7/ZLlWmT2iJ5xWy2JI5nbJRfQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY4NDI2NzZlLTc4YzktNGZjZC04YWNlLWQ4NGFmYjNlYzg5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM2/3AwDQYJKoZIhvcNAQELBQADggEBAAGIiAb7jc++hdbZFvhTCOjWhiDg c07zM6oHLG7BSqSV+Ejt7szAXlolonXL0ancHL0FaFXgM/BJcK1hpHmMBcv42uaj D+QDoD/J9FBBzzNAI9+aJPDpjlm7B7zLFBE9/P24lRBX0/r58it124IRpmcNmzRM +3dMOQ8zLv7yQ+crt07gKPuVVUbbLuSiI9RDAa5TTwpay8v3fbXkiFR2Du6YnRM6 k0XMQBMJEuQ2HYeVoe8+/bFxu4ZSOubwhEHOUa/yjLKye8aghAoxVKzO68TveovC ZMFC0caAvgz5zD+DpgEL2gJeF+W+JtQvTqeZ0Ch3Ea9Lv+A7fmrvVqZ1fwA= -----END CERTIFICATE-----Generated at Wed Nov 5 09:05:57 2025 by rpki-client