$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/863b9fc8-bafd-4b27-aba8-54ea14f095bc.roa File: 863b9fc8-bafd-4b27-aba8-54ea14f095bc.roa (raw, json) Hash identifier: heknZtmPeNwdhmpEJqUTi06TZXlqZ4ZHJ03DYIiWgUE= Subject key identifier: A1:9E:59:83:77:05:C7:BB:CD:92:30:63:46:76:9E:81:21:4B:EC:41 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 48E7F0103753158A2860EED84B96197F07686F5F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/863b9fc8-bafd-4b27-aba8-54ea14f095bc.roa Signing time: Tue 04 Nov 2025 02:40:58 +0000 ROA not before: Tue 04 Nov 2025 02:40:58 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 34.208.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:e7:f0:10:37:53:15:8a:28:60:ee:d8:4b:96:19:7f:07:68:6f:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 4 02:40:58 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=a3caa9a84996c8d25a3f17e39bfd1f59ccd924f3fffe94bd9e2810e0ea2be934, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:46:e8:d0:0b:e0:c4:ff:31:05:3e:b0:84:f9: 79:76:a5:12:00:d4:3d:b3:c5:b9:e6:2c:58:d8:00: 6f:c8:13:f5:5f:08:b9:ad:6e:59:04:cd:67:c0:14: ec:83:1d:fc:0d:1d:87:19:5c:97:cd:b5:8a:2f:e6: 96:35:83:fe:6e:7d:a5:b1:29:13:f6:b3:ba:27:0a: 86:17:f8:35:e1:f5:e8:ee:bf:8a:4f:3a:47:ee:86: 9f:87:5b:cd:04:e2:b1:4d:02:e7:fa:49:87:00:66: c9:e3:e8:24:20:b5:59:09:5a:02:89:35:a9:70:83: 12:ff:dc:ef:a6:3e:dc:26:25:d4:fb:12:d7:de:f4: 5b:d4:07:11:89:b1:61:f9:e3:67:69:e2:a6:5b:29: 23:08:01:4c:12:7a:e9:17:2a:80:66:5b:15:d2:3a: 33:53:86:01:90:7c:51:e7:7e:4a:1b:4d:1d:9d:00: 09:c2:bd:87:8a:e7:90:aa:4c:7a:c5:41:38:73:b5: f8:1b:84:9c:64:11:2c:fa:8c:f4:79:0d:cc:2f:b5: d3:65:cb:eb:4a:e1:f9:b5:b9:9b:40:37:8d:9e:a4: df:c1:31:28:0b:06:d3:13:79:a3:e5:39:6a:f9:3c: a7:bf:c5:98:ff:ae:4d:8a:8e:67:77:fd:f2:fd:2e: 46:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9E:59:83:77:05:C7:BB:CD:92:30:63:46:76:9E:81:21:4B:EC:41 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/863b9fc8-bafd-4b27-aba8-54ea14f095bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.208.0.0/12 Signature Algorithm: sha256WithRSAEncryption 64:88:ec:32:76:5b:6e:eb:f4:c2:95:5c:52:6e:0d:30:11:e8: 30:80:ef:22:3b:6d:f5:dd:52:f1:16:8b:5d:f4:94:02:88:d9: b5:60:bd:5f:d7:fe:56:06:10:29:19:82:2b:ad:0a:17:e9:f8: d2:93:28:5c:b5:03:6e:8a:79:91:41:00:d8:d7:ce:66:80:3c: fa:3e:1b:89:a5:ec:b8:8f:cf:de:ef:69:49:00:3b:0a:e4:3b: a2:f4:1f:4f:bb:bc:fb:ac:f9:f3:20:3a:ec:72:1e:8f:86:b3: f1:05:8c:4b:e8:0a:4e:f7:eb:20:84:22:09:1d:a1:4a:7d:8a: ad:28:39:67:6a:7e:a1:c6:18:1e:83:73:14:79:9e:f3:16:5e: 4f:ff:87:50:73:0f:85:73:92:ca:ee:13:ab:27:84:09:dc:97: 7a:76:b4:a9:04:6a:a1:b8:b4:f2:18:82:ce:91:3d:4a:30:f8: cb:af:f2:35:32:ac:79:9c:ad:41:de:bc:e4:6e:a5:ee:ec:54: 01:8c:36:f1:f2:18:55:03:73:49:24:da:0c:95:56:dd:c9:89: 3f:4e:11:30:dd:37:ad:f0:7e:9f:0f:ce:89:d8:da:5d:3e:7f: 90:82:84:30:42:0b:95:1f:14:48:c9:9d:15:31:00:ae:fd:16: 8e:e1:ac:40 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSOfwEDdTFYooYO7YS5YZfwdob18wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA0MDI0MDU4WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhM2NhYTlhODQ5OTZjOGQyNWEzZjE3ZTM5YmZkMWY1OWNj ZDkyNGYzZmZmZTk0YmQ5ZTI4MTBlMGVhMmJlOTM0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZRujQC+DE/zEFPrCE+Xl2pRIA1D2zxbnmLFjYAG/IE/Vf CLmtblkEzWfAFOyDHfwNHYcZXJfNtYov5pY1g/5ufaWxKRP2s7onCoYX+DXh9eju v4pPOkfuhp+HW80E4rFNAuf6SYcAZsnj6CQgtVkJWgKJNalwgxL/3O+mPtwmJdT7 Etfe9FvUBxGJsWH542dp4qZbKSMIAUwSeukXKoBmWxXSOjNThgGQfFHnfkobTR2d AAnCvYeK55CqTHrFQThztfgbhJxkESz6jPR5DcwvtdNly+tK4fm1uZtAN42epN/B MSgLBtMTeaPlOWr5PKe/xZj/rk2Kjmd3/fL9LkbrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUoZ5Zg3cFx7vNkjBjRnaegSFL7EEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg2M2I5ZmM4LWJhZmQtNGIyNy1hYmE4LTU0ZWExNGYwOTViYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQi0DANBgkqhkiG9w0BAQsFAAOCAQEAZIjsMnZbbuv0wpVcUm4NMBHoMIDv Ijtt9d1S8RaLXfSUAojZtWC9X9f+VgYQKRmCK60KF+n40pMoXLUDbop5kUEA2NfO ZoA8+j4biaXsuI/P3u9pSQA7CuQ7ovQfT7u8+6z58yA67HIej4az8QWMS+gKTvfr IIQiCR2hSn2KrSg5Z2p+ocYYHoNzFHme8xZeT/+HUHMPhXOSyu4TqyeECdyXena0 qQRqobi08hiCzpE9SjD4y6/yNTKseZytQd685G6l7uxUAYw28fIYVQNzSSTaDJVW 3cmJP04RMN03rfB+nw/OidjaXT5/kIKEMEILlR8USMmdFTEArv0WjuGsQA== -----END CERTIFICATE-----Generated at Wed Nov 5 01:47:17 2025 by rpki-client