$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9057571d-fc5a-46a1-8c20-bb70e822a20e.roa File: 9057571d-fc5a-46a1-8c20-bb70e822a20e.roa (raw, json) Hash identifier: rNxuiqKobgtlrP8K27Zi1B1golI+lhz1y0VdbOrVpQQ= Subject key identifier: 83:25:B4:60:8A:E8:7A:33:63:62:0D:75:9C:9E:25:4D:DB:8C:C3:56 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 50973604B78AB91968D06BA1FB195D252E968C9F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9057571d-fc5a-46a1-8c20-bb70e822a20e.roa Signing time: Tue 21 Oct 2025 03:21:22 +0000 ROA not before: Tue 21 Oct 2025 03:21:22 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 138.111.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:97:36:04:b7:8a:b9:19:68:d0:6b:a1:fb:19:5d:25:2e:96:8c:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 03:21:22 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=fa1cb34fa0bce10e2fd6aec35dc031e059dd0c632d9ad7970b095c80fb368a55, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:cb:ee:6c:2b:18:0a:96:29:8a:7f:96:bc:1c: 6d:fd:93:16:ac:5c:b0:d8:d6:fa:ce:6d:b0:b4:eb: 79:e4:96:10:ec:30:b0:29:89:36:e1:9a:47:b0:1e: 72:0e:c1:24:c8:f9:66:06:f2:2c:cc:c3:10:14:85: 46:97:b0:d1:c9:1b:1a:31:d5:80:10:92:bc:34:ef: fb:b0:b1:67:92:e3:f5:fc:4c:86:61:3e:6b:fa:81: c2:c6:27:4d:81:d9:8c:33:33:ee:bf:85:db:17:96: d4:85:a2:a5:98:b2:94:7a:c9:b0:41:47:81:0b:9e: 86:d3:d5:03:89:88:ee:92:fd:3e:30:d3:00:59:f6: d5:c4:f0:18:7c:a7:0e:dd:42:dc:45:53:a6:56:72: 27:1d:c2:70:99:0c:b9:26:0d:f1:1d:77:07:58:08: 1a:41:4a:a5:f4:b1:5a:80:0e:6e:82:02:bd:9b:b7: 39:09:ef:e1:cc:06:02:80:b7:41:c1:40:6c:1b:57: f4:76:e4:99:8c:0f:b7:11:b5:6e:ac:35:3f:58:ea: 06:2f:90:b1:c1:0a:87:4d:d3:92:a7:3e:fa:a3:80: bd:c9:e6:80:a1:bc:90:26:8d:f1:8f:ab:b7:72:ad: 4e:ce:29:64:af:37:41:10:e4:92:9d:a9:e4:ca:83: 8b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:25:B4:60:8A:E8:7A:33:63:62:0D:75:9C:9E:25:4D:DB:8C:C3:56 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9057571d-fc5a-46a1-8c20-bb70e822a20e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.111.0.0/16 Signature Algorithm: sha256WithRSAEncryption b3:28:bf:f0:cd:3c:c0:74:af:8e:06:81:0b:b9:0c:c9:1f:3c: 9b:ec:f1:89:3f:bd:19:9c:2d:5f:85:17:e2:17:1d:cd:a5:97: 57:6e:6b:a0:8b:0d:da:66:20:5d:93:9e:78:4b:c7:a3:11:29: 32:af:33:61:b4:c8:a5:78:5d:e0:09:7d:01:a0:d6:ee:8a:bc: 22:f8:f2:68:15:74:9b:e1:92:6d:c3:67:94:32:64:c6:3a:54: 6c:1f:4e:ec:1d:52:6e:3f:0c:b4:7f:24:21:39:1c:da:d6:96: de:af:b3:bc:08:07:6e:c2:37:bf:73:a9:4a:f5:44:c4:61:6d: 7d:a3:d3:bb:98:2c:ac:7e:cb:65:f7:43:f3:8c:93:08:ca:c0: 18:95:fc:b0:19:a5:e3:96:04:c2:ff:48:e8:1a:90:f9:8b:a3: 7a:20:75:0f:27:8a:7a:55:5d:bd:cf:3b:7c:c6:3b:92:82:6e: e8:b4:8e:43:ef:01:3d:dc:63:31:70:c9:51:3d:10:21:9d:e5: 5e:78:44:cd:98:52:48:4a:0d:e9:54:77:00:04:1d:d7:ba:2b: 5f:f2:6d:e9:a8:62:ac:96:86:89:00:58:97:a1:ba:c1:14:8b: ab:e6:ed:64:7f:b8:f4:63:9f:f5:96:2f:0e:a6:8e:cf:f6:c4: 9c:f5:40:91 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUJc2BLeKuRlo0Guh+xldJS6WjJ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDMyMTIyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTFjYjM0ZmEwYmNlMTBlMmZkNmFlYzM1ZGMwMzFlMDU5 ZGQwYzYzMmQ5YWQ3OTcwYjA5NWM4MGZiMzY4YTU1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCky+5sKxgKlimKf5a8HG39kxasXLDY1vrObbC063nklhDs MLApiTbhmkewHnIOwSTI+WYG8izMwxAUhUaXsNHJGxox1YAQkrw07/uwsWeS4/X8 TIZhPmv6gcLGJ02B2YwzM+6/hdsXltSFoqWYspR6ybBBR4ELnobT1QOJiO6S/T4w 0wBZ9tXE8Bh8pw7dQtxFU6ZWcicdwnCZDLkmDfEddwdYCBpBSqX0sVqADm6CAr2b tzkJ7+HMBgKAt0HBQGwbV/R25JmMD7cRtW6sNT9Y6gYvkLHBCodN05KnPvqjgL3J 5oChvJAmjfGPq7dyrU7OKWSvN0EQ5JKdqeTKg4uPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgyW0YIroejNjYg11nJ4lTduMw1YwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzkwNTc1NzFkLWZjNWEtNDZhMS04YzIwLWJiNzBlODIyYTIwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCKbzANBgkqhkiG9w0BAQsFAAOCAQEAsyi/8M08wHSvjgaBC7kMyR88m+zx iT+9GZwtX4UX4hcdzaWXV25roIsN2mYgXZOeeEvHoxEpMq8zYbTIpXhd4Al9AaDW 7oq8IvjyaBV0m+GSbcNnlDJkxjpUbB9O7B1Sbj8MtH8kITkc2taW3q+zvAgHbsI3 v3OpSvVExGFtfaPTu5gsrH7LZfdD84yTCMrAGJX8sBml45YEwv9I6BqQ+YujeiB1 DyeKelVdvc87fMY7koJu6LSOQ+8BPdxjMXDJUT0QIZ3lXnhEzZhSSEoN6VR3AAQd 17orX/Jt6ahirJaGiQBYl6G6wRSLq+btZH+49GOf9ZYvDqaOz/bEnPVAkQ== -----END CERTIFICATE-----Generated at Wed Nov 5 01:48:58 2025 by rpki-client