$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8049f3ec-35fc-441a-9546-52731bf857cb.roa File: 8049f3ec-35fc-441a-9546-52731bf857cb.roa (raw, json) Hash identifier: NaFH5jAmapCfUGCOuxeHzDVPyuUS+v5ovEcWh/nr6wc= Subject key identifier: 83:55:B3:DF:99:27:83:9D:97:57:0C:C4:54:AA:8E:06:B4:2A:DE:E9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 737B150A70DAF5E517A4DCC481CAACB0CE3F4E3B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8049f3ec-35fc-441a-9546-52731bf857cb.roa Signing time: Tue 21 Oct 2025 01:00:15 +0000 ROA not before: Tue 21 Oct 2025 01:00:15 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.87.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:7b:15:0a:70:da:f5:e5:17:a4:dc:c4:81:ca:ac:b0:ce:3f:4e:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 01:00:15 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=2342639ff2d05f314a413b7dc36f9407d804801e7611ecc2085a34ea45059d1b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:78:b4:35:d4:48:2d:ac:4d:63:2d:be:e6:04: c4:9d:ed:d1:21:ce:d0:61:54:0d:bc:1b:b6:a8:d0: 6c:9c:1f:fd:ff:04:b3:00:73:ee:0b:34:0d:a8:37: 5f:f0:40:dd:a2:a9:89:de:cb:54:74:37:67:96:43: dd:36:81:28:56:0a:05:ef:52:b9:88:0f:d6:27:3c: aa:11:86:13:7a:be:00:bd:6a:35:ea:b3:3e:6f:12: 89:9d:77:c3:c7:79:6a:7d:d2:73:36:f6:dd:0b:c5: f7:1f:6b:17:49:fd:f5:37:76:fb:90:54:7b:a8:e9: 50:04:ce:0c:3d:30:5e:e3:bd:f8:43:72:56:90:d7: c9:8c:1c:b9:5b:43:b1:d2:1c:74:57:38:d3:0f:fa: c6:2b:4e:e6:c4:74:18:99:80:28:09:d2:d1:34:bd: f9:61:2f:7f:95:fb:bd:de:f9:9c:4d:bf:71:d3:40: f1:ac:66:ae:1c:a9:34:34:4c:13:68:d5:db:a8:fc: f4:8b:92:69:4a:ba:4f:4d:a3:69:76:75:6c:1b:79: b8:89:b1:59:56:46:74:dc:56:59:13:fd:b6:75:05: 23:15:f2:90:41:84:84:6b:df:cf:0d:62:c6:64:15: 4f:b1:b6:43:18:38:7d:5f:bd:43:ff:f8:e4:68:0c: 32:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:55:B3:DF:99:27:83:9D:97:57:0C:C4:54:AA:8E:06:B4:2A:DE:E9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8049f3ec-35fc-441a-9546-52731bf857cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.87.128.0/17 Signature Algorithm: sha256WithRSAEncryption 67:dd:3f:ba:51:66:52:c6:89:f3:9a:1e:f6:00:9c:11:59:e5: 8a:aa:84:d3:71:8f:9b:fb:9d:71:7f:38:2e:54:40:44:87:07: 13:45:22:40:d2:58:de:23:ab:41:d8:7b:8e:b2:bc:f2:c7:c4: 34:ea:73:1b:db:e2:fe:0a:1b:ae:fb:2f:42:53:9a:2a:f1:89: 5e:0f:e2:8f:79:7b:fa:85:51:7e:b1:9f:f8:a1:8f:19:46:d3: 03:24:ab:00:d5:4f:16:2a:b8:c8:3c:49:71:a9:56:6d:36:e2: 7d:1b:9a:f0:64:a2:dd:e1:1c:e9:fd:4d:32:9f:0c:ac:52:7d: fd:5a:b2:9d:14:c6:d2:b3:59:8f:4b:73:70:09:87:0b:4e:2b: f2:fb:54:f0:68:f8:ed:cf:f0:df:62:49:d5:bc:4d:9e:fe:79: 57:32:d0:ea:8b:7f:0c:37:f8:b7:3e:0c:03:ee:d7:e0:a0:97: 07:bf:e9:b8:c0:e9:e0:c8:2e:41:8b:ea:49:49:f7:20:21:2d: 57:f1:63:19:04:33:08:fe:e7:17:8a:22:eb:6c:06:2e:7e:97: 09:ed:95:c2:73:9e:b3:44:dd:30:f5:a6:91:de:c8:fb:e3:94: 23:79:41:44:3c:39:b2:e9:46:97:ed:f8:37:72:99:17:d6:26: 08:5d:bb:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc3sVCnDa9eUXpNzEgcqssM4/TjswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDEwMDE1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzQyNjM5ZmYyZDA1ZjMxNGE0MTNiN2RjMzZmOTQwN2Q4 MDQ4MDFlNzYxMWVjYzIwODVhMzRlYTQ1MDU5ZDFiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbeLQ11EgtrE1jLb7mBMSd7dEhztBhVA28G7ao0GycH/3/ BLMAc+4LNA2oN1/wQN2iqYney1R0N2eWQ902gShWCgXvUrmID9YnPKoRhhN6vgC9 ajXqsz5vEomdd8PHeWp90nM29t0LxfcfaxdJ/fU3dvuQVHuo6VAEzgw9MF7jvfhD claQ18mMHLlbQ7HSHHRXONMP+sYrTubEdBiZgCgJ0tE0vflhL3+V+73e+ZxNv3HT QPGsZq4cqTQ0TBNo1duo/PSLkmlKuk9No2l2dWwbebiJsVlWRnTcVlkT/bZ1BSMV 8pBBhIRr388NYsZkFU+xtkMYOH1fvUP/+ORoDDLhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg1Wz35kng52XVwzEVKqOBrQq3ukwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzgwNDlmM2VjLTM1ZmMtNDQxYS05NTQ2LTUyNzMxYmY4NTdjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2V4AwDQYJKoZIhvcNAQELBQADggEBAGfdP7pRZlLGifOaHvYAnBFZ5Yqq hNNxj5v7nXF/OC5UQESHBxNFIkDSWN4jq0HYe46yvPLHxDTqcxvb4v4KG677L0JT mirxiV4P4o95e/qFUX6xn/ihjxlG0wMkqwDVTxYquMg8SXGpVm024n0bmvBkot3h HOn9TTKfDKxSff1asp0UxtKzWY9Lc3AJhwtOK/L7VPBo+O3P8N9iSdW8TZ7+eVcy 0OqLfww3+Lc+DAPu1+Cglwe/6bjA6eDILkGL6klJ9yAhLVfxYxkEMwj+5xeKIuts Bi5+lwntlcJznrNE3TD1ppHeyPvjlCN5QUQ8ObLpRpft+DdymRfWJghdu9Y= -----END CERTIFICATE-----Generated at Wed Nov 5 07:43:30 2025 by rpki-client