$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6c31ce4d-c77c-4f23-93ae-18987700ff43.roa File: 6c31ce4d-c77c-4f23-93ae-18987700ff43.roa (raw, json) Hash identifier: jbFAPPFYedTUagUFU0QTHAHykV3T3OhcQDG6PoCRjyI= Subject key identifier: 31:AB:47:CB:2C:57:58:28:17:F0:54:98:3F:B6:39:86:68:FE:53:AA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 09DFACCFFEB536942BEDBDB38326EF581AFD6895 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6c31ce4d-c77c-4f23-93ae-18987700ff43.roa Signing time: Sat 18 Oct 2025 05:41:18 +0000 ROA not before: Sat 18 Oct 2025 05:41:18 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.238.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:df:ac:cf:fe:b5:36:94:2b:ed:bd:b3:83:26:ef:58:1a:fd:68:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 05:41:18 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=4b8dcce1951f5bd0a091dfe69b70f781b816790892d8a34fdcbf362ba779a3e7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c7:94:a2:64:1c:60:7a:b9:f2:a5:50:4d:5c: c3:15:3c:b5:17:74:79:6f:6b:b6:db:00:04:20:39: 13:2f:60:5f:10:95:8d:27:c5:d8:00:1d:b8:38:06: ea:c4:e6:25:05:16:3f:2b:07:3f:90:3a:3b:42:92: 7b:d6:cf:11:55:fb:0f:cf:cd:3b:2b:ec:3d:c4:b6: fe:7e:33:49:c0:a9:2b:e4:22:48:b2:af:57:35:ae: a1:d4:76:ae:e8:7b:9a:ff:81:0b:25:88:1d:1f:f1: a4:b8:fa:f8:77:f7:10:9e:49:b9:c3:b3:20:1d:ce: 6b:fa:6e:83:21:ba:1f:a7:c5:0a:1a:9a:63:39:92: d2:88:15:22:7f:21:3e:61:5c:f6:a3:9e:5b:e4:15: dd:21:d8:03:4e:8e:30:26:fe:9b:4a:7a:58:cb:0b: a7:1c:fd:39:f0:24:c2:3e:41:4d:90:6f:1f:58:2d: 64:a2:ac:5a:64:e3:dd:c0:cf:11:2d:32:3d:62:f8: 7d:6d:69:99:f4:55:5c:52:1b:0b:5e:0f:94:31:79: 28:01:f5:1b:65:f9:0d:8a:85:43:4f:df:be:fc:63: 22:dc:50:86:4b:82:78:9d:8b:41:69:45:f1:55:e4: 6b:c1:bf:71:93:6c:0c:31:b0:02:b2:88:c0:b2:69: 0f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AB:47:CB:2C:57:58:28:17:F0:54:98:3F:B6:39:86:68:FE:53:AA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6c31ce4d-c77c-4f23-93ae-18987700ff43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.238.48.0/20 Signature Algorithm: sha256WithRSAEncryption 2b:08:7f:b6:a5:ad:1c:97:25:a9:27:79:b7:2f:60:92:f5:6b: 52:86:cf:f5:46:7f:ff:22:14:d2:a8:a1:ba:da:04:53:b7:2c: 9c:51:36:d1:15:7b:ed:ac:67:de:83:00:81:5d:5d:49:b0:90: d0:cf:f0:e3:2d:30:d5:3e:aa:cd:ab:66:ad:e5:8b:f4:51:c4: e3:0a:e5:cc:d8:5c:8b:20:91:b7:5b:57:d2:5e:03:61:b3:9a: ed:48:5c:a6:d0:12:42:bd:2b:07:b7:29:11:07:ab:9d:bc:5e: b2:a1:db:d2:81:2f:ed:d4:3b:9e:d0:1b:bd:52:f8:c8:46:57: 19:3c:71:2d:fb:13:01:f5:75:ae:c7:d3:93:1f:74:c9:34:06: d8:24:75:a7:6a:41:42:16:72:a3:6d:97:2d:e4:77:fa:ba:30: 19:2f:d8:7c:7f:c1:c1:0d:f4:2d:da:9a:aa:6c:45:bb:77:c4: a7:15:4f:e7:cc:7e:51:ee:16:51:95:99:06:fe:b4:f1:3d:30: c3:df:50:58:83:9d:31:bd:eb:a7:dc:8a:d3:26:76:67:ea:62: 09:36:9e:14:3a:49:5f:2f:72:4b:c1:30:ff:3a:e4:2c:7c:5a: e5:cf:9e:a6:93:d2:a7:f2:8f:04:16:7b:c5:b1:f8:6f:ae:6a: 22:3e:0e:3e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCd+sz/61NpQr7b2zgybvWBr9aJUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MDU0MTE4WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjhkY2NlMTk1MWY1YmQwYTA5MWRmZTY5YjcwZjc4MWI4 MTY3OTA4OTJkOGEzNGZkY2JmMzYyYmE3NzlhM2U3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtx5SiZBxgernypVBNXMMVPLUXdHlva7bbAAQgORMvYF8Q lY0nxdgAHbg4BurE5iUFFj8rBz+QOjtCknvWzxFV+w/PzTsr7D3Etv5+M0nAqSvk Ikiyr1c1rqHUdq7oe5r/gQsliB0f8aS4+vh39xCeSbnDsyAdzmv6boMhuh+nxQoa mmM5ktKIFSJ/IT5hXPajnlvkFd0h2ANOjjAm/ptKeljLC6cc/TnwJMI+QU2Qbx9Y LWSirFpk493AzxEtMj1i+H1taZn0VVxSGwteD5QxeSgB9Rtl+Q2KhUNP3778YyLc UIZLgnidi0FpRfFV5GvBv3GTbAwxsAKyiMCyaQ+vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMatHyyxXWCgX8FSYP7Y5hmj+U6owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZjMzFjZTRkLWM3N2MtNGYyMy05M2FlLTE4OTg3NzAwZmY0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ27jAwDQYJKoZIhvcNAQELBQADggEBACsIf7alrRyXJaknebcvYJL1a1KG z/VGf/8iFNKoobraBFO3LJxRNtEVe+2sZ96DAIFdXUmwkNDP8OMtMNU+qs2rZq3l i/RRxOMK5czYXIsgkbdbV9JeA2Gzmu1IXKbQEkK9Kwe3KREHq528XrKh29KBL+3U O57QG71S+MhGVxk8cS37EwH1da7H05MfdMk0BtgkdadqQUIWcqNtly3kd/q6MBkv 2Hx/wcEN9C3amqpsRbt3xKcVT+fMflHuFlGVmQb+tPE9MMPfUFiDnTG966fcitMm dmfqYgk2nhQ6SV8vckvBMP865Cx8WuXPnqaT0qfyjwQWe8Wx+G+uaiI+Dj4= -----END CERTIFICATE-----Generated at Wed Nov 5 01:54:39 2025 by rpki-client